Skip to content

Pin dependencies#388

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/pin-dependencies
Open

Pin dependencies#388
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/pin-dependencies

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate Bot commented May 5, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change OpenSSF
@atlaskit/pragmatic-drag-and-drop (source) dependencies pin ^1.7.71.8.1 OpenSSF Scorecard
@atlaskit/pragmatic-drag-and-drop-hitbox (source) dependencies pin ^1.1.01.1.0 OpenSSF Scorecard
@vite-pwa/assets-generator devDependencies pin ^1.0.21.0.2 OpenSSF Scorecard
alembic (changelog) project.dependencies pin >=1.14.0==1.18.4 OpenSSF Scorecard
asgi-correlation-id project.dependencies pin >=4.3.4==4.3.4 OpenSSF Scorecard
asyncpg project.dependencies pin >=0.30.0==0.31.0 OpenSSF Scorecard
cloudpickle project.dependencies pin >=3.1.2==3.1.2 OpenSSF Scorecard
fastapi (changelog) project.dependencies pin >=0.135.3==0.136.1 OpenSSF Scorecard
ghcr.io/kreuzberg-dev/kreuzberg pinDigest db5429b
httpx (changelog) project.dependencies pin >=0.28.1==0.28.1 OpenSSF Scorecard
langchain (changelog) project.dependencies pin >=1.2.15==1.2.17 OpenSSF Scorecard
langchain-core (changelog) project.dependencies pin >=1.2.31==1.3.3 OpenSSF Scorecard
langchain-mcp-adapters project.dependencies pin >=0.2.2==0.2.2 OpenSSF Scorecard
langchain-openai (changelog) project.dependencies pin >=1.1.12==1.2.1 OpenSSF Scorecard
langchain_community (changelog) project.dependencies pin >=0.4.1==0.4.1 OpenSSF Scorecard
langfuse project.dependencies pin >=4.0.1==4.5.1
langgraph (source, changelog) project.dependencies pin >=1.1.6==1.1.10 OpenSSF Scorecard
langsmith project.dependencies pin >=0.7.31==0.8.2 OpenSSF Scorecard
prismjs dependencies pin >=1.30.01.30.0 OpenSSF Scorecard
psycopg2-binary (source, changelog) project.dependencies pin >=2.9.10==2.9.12 OpenSSF Scorecard
pydantic-settings (changelog) project.dependencies pin >=2.8.1==2.14.0 OpenSSF Scorecard
pydantic-settings (changelog) project.dependencies pin >=2.10.1==2.14.0 OpenSSF Scorecard
python (source) requires-python pin >=3.10==3.14.5 OpenSSF Scorecard
python (source) requires-python pin >=3.13==3.14.5 OpenSSF Scorecard
python-multipart (changelog) project.dependencies pin >=0.0.5==0.0.27 OpenSSF Scorecard
redis (changelog) project.dependencies pin >=7.3.0==7.4.0 OpenSSF Scorecard
rehype-external-links dependencies pin ^3.0.03.0.0 OpenSSF Scorecard
requests (changelog) project.dependencies pin >=2.32.5==2.33.1 OpenSSF Scorecard
sqlalchemy (changelog) project.dependencies pin >=2.0.43==2.0.49
sqlalchemy (changelog) project.dependencies pin >=2.0.41==2.0.49
truststore project.dependencies pin >=0.10.4==0.10.4 OpenSSF Scorecard
uvicorn (changelog) project.dependencies pin >=0.44.0==0.46.0 OpenSSF Scorecard
uvicorn (changelog) project.dependencies pin >=0.35.0==0.46.0 OpenSSF Scorecard
vite-plugin-pwa devDependencies pin ^1.3.01.3.0 OpenSSF Scorecard

⚠️ Renovate's pin functionality does not currently wire in the release age for a package, so the Minimum Release Age checks can apply. You will need to manually validate the Minimum Release Age for these package(s).

Add the preset :preserveSemverRanges to your config if you don't want to pin your dependencies.

Configuration

📅 Schedule: (in timezone Europe/Berlin)

  • Branch creation
    • Between 12:00 AM and 03:59 AM, only on Monday (* 0-3 * * 1)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 9502091 to 36f443b Compare May 7, 2025 09:44
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 36f443b to a2c558a Compare May 23, 2025 11:23
@renovate renovate Bot changed the title Pin Python to ==3.13.3 Pin dependencies May 23, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 2 times, most recently from 9b05203 to fb27190 Compare May 28, 2025 13:33
@renovate renovate Bot changed the title Pin dependencies Pin Python to ==3.13.3 May 28, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from fb27190 to aa901d6 Compare June 5, 2025 03:45
@renovate renovate Bot changed the title Pin Python to ==3.13.3 Pin Python to ==3.13.4 Jun 5, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from aa901d6 to 651e591 Compare June 13, 2025 03:09
@renovate renovate Bot changed the title Pin Python to ==3.13.4 Pin Python to ==3.13.5 Jun 13, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 651e591 to aa4f608 Compare June 24, 2025 11:34
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from aa4f608 to 991dd8c Compare July 29, 2025 09:33
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 991dd8c to 794c36c Compare August 7, 2025 22:38
@renovate renovate Bot changed the title Pin Python to ==3.13.5 Pin Python to ==3.13.6 Aug 7, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 794c36c to 4cd189b Compare August 10, 2025 15:49
@renovate renovate Bot changed the title Pin Python to ==3.13.6 Pin dependencies Aug 10, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 2 times, most recently from 8d87be6 to 278e83e Compare August 19, 2025 11:53
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from 278e83e to 186c8db Compare August 24, 2025 10:52
@renovate
Copy link
Copy Markdown
Contributor Author

renovate Bot commented Aug 24, 2025
edited
Loading

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: mucgpt-assistant-service-migrations/uv.lock
Command failed: uv lock --upgrade-package alembic --upgrade-package asyncpg --upgrade-package psycopg2-binary --upgrade-package pydantic-settings --upgrade-package python --upgrade-package sqlalchemy
Downloading cpython-3.12.4-linux-x86_64-gnu (download) (21.2MiB)
 Downloaded cpython-3.12.4-linux-x86_64-gnu (download)
Using CPython 3.12.4
error: The Python request from `.python-version` resolved to Python 3.12.4, which is incompatible with the project's Python requirement: `==3.14.5` (from `project.requires-python`)
Use `uv python pin` to update the `.python-version` file to a compatible version
File name: mucgpt-assistant-service/uv.lock
Command failed: uv lock --upgrade-package asyncpg --upgrade-package psycopg2-binary --upgrade-package pydantic-settings --upgrade-package python --upgrade-package requests --upgrade-package sqlalchemy --upgrade-package uvicorn
Downloading cpython-3.13.13-linux-x86_64-gnu (download) (33.2MiB)
 Downloaded cpython-3.13.13-linux-x86_64-gnu (download)
Using CPython 3.13.13
error: The Python request from `.python-version` resolved to Python 3.13.13, which is incompatible with the project's Python requirement: `==3.14.5` (from `project.requires-python`)
Use `uv python pin` to update the `.python-version` file to a compatible version
File name: mucgpt-core-service/uv.lock
Command failed: uv lock --upgrade-package asgi-correlation-id --upgrade-package cloudpickle --upgrade-package fastapi --upgrade-package httpx --upgrade-package langchain --upgrade-package langchain-core --upgrade-package langchain-mcp-adapters --upgrade-package langchain-openai --upgrade-package langchain-community --upgrade-package langfuse --upgrade-package langgraph --upgrade-package langsmith --upgrade-package pydantic-settings --upgrade-package python --upgrade-package python-multipart --upgrade-package redis --upgrade-package truststore --upgrade-package uvicorn
Using CPython 3.13.13
error: The Python request from `.python-version` resolved to Python 3.13.13, which is incompatible with the project's Python requirement: `==3.14.5` (from `project.requires-python`)
Use `uv python pin` to update the `.python-version` file to a compatible version
File name: uv.lock
Command failed: uv lock --upgrade-package python
Using CPython 3.12.4
error: The Python request from `.python-version` resolved to Python 3.12.4, which is incompatible with the project's Python requirement: `==3.14.5` (from `project.requires-python`)
Use `uv python pin` to update the `.python-version` file to a compatible version

@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 3 times, most recently from 1a98150 to 634a4ea Compare September 3, 2025 05:57
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 4 times, most recently from 6e1aebe to bb90b4c Compare September 10, 2025 04:52
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 3 times, most recently from 658b9bc to ddbb4ce Compare September 11, 2025 15:31
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 5 times, most recently from 8e89c5f to ca3eff9 Compare September 24, 2025 13:27
@renovate renovate Bot changed the title Pin dependencies fix(deps): pin dependencies Sep 24, 2025
@coderabbitai
Copy link
Copy Markdown
Contributor

coderabbitai Bot commented Sep 24, 2025
edited
Loading

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

  • 🔍 Trigger a full review

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate Bot force-pushed the renovate/pin-dependencies branch from ca3eff9 to 14d7d8f Compare September 25, 2025 08:42
@renovate renovate Bot added the renovate label Sep 25, 2025
@renovate renovate Bot changed the title fix(deps): pin dependencies Pin dependencies Sep 25, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 7 times, most recently from dcc3d2e to 67b7a3a Compare October 6, 2025 07:51
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 4 times, most recently from dda3355 to 7e81849 Compare October 8, 2025 11:52
@renovate renovate Bot changed the title Pin dependencies fix(deps): pin dependencies Oct 8, 2025
@renovate renovate Bot force-pushed the renovate/pin-dependencies branch 7 times, most recently from 16bec7b to 4ff236d Compare October 14, 2025 08:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file renovate

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants