You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@superset.apache.org by dependabot on 2023/01/27 07:01:57 UTC
[GitHub] [superset] dependabot[bot] opened a new pull request, #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
dependabot[bot] opened a new pull request, #22884:
URL: https://github.com/apache/superset/pull/22884
Bumps [tox](https://github.com/tox-dev/tox) from 3.25.1 to 4.4.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/tox-dev/tox/releases">tox's releases</a>.</em></p>
<blockquote>
<h2>4.4.2</h2>
<h2>What's Changed</h2>
<ul>
<li>rename TOX_CONFIG_FILE to TOX_USER_CONFIG_FILE by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2896">tox-dev/tox#2896</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.4.1...4.4.2">https://github.com/tox-dev/tox/compare/4.4.1...4.4.2</a></p>
<h2>4.4.1</h2>
<h2>What's Changed</h2>
<ul>
<li>pip_install: constrain_package_deps is now False by default by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2899">tox-dev/tox#2899</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.4.0...4.4.1">https://github.com/tox-dev/tox/compare/4.4.0...4.4.1</a></p>
<h2>4.4.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Add more explanation to <code>list_dependencies_command</code> configuration option by <a href="https://github.com/Czaki"><code>@Czaki</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2883">tox-dev/tox#2883</a></li>
<li>[pre-commit.ci] pre-commit autoupdate by <a href="https://github.com/pre-commit-ci"><code>@pre-commit-ci</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2889">tox-dev/tox#2889</a></li>
<li>Enforce constraints during install_package_deps by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2888">tox-dev/tox#2888</a></li>
<li>Windows shlex fix by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2895">tox-dev/tox#2895</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/Czaki"><code>@Czaki</code></a> made their first contribution in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2883">tox-dev/tox#2883</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.3.5...4.4.0">https://github.com/tox-dev/tox/compare/4.3.5...4.4.0</a></p>
<h2>4.3.5</h2>
<h2>What's Changed</h2>
<ul>
<li>Include WHEEL metadata when using PDM and poetry backends by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2881">tox-dev/tox#2881</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.3.4...4.3.5">https://github.com/tox-dev/tox/compare/4.3.4...4.3.5</a></p>
<h2>4.3.4</h2>
<h2>What's Changed</h2>
<ul>
<li>Provision cwd by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2877">tox-dev/tox#2877</a></li>
<li>Fix the type annotation for <code>color</code> param of <code>Spinner.finalize()</code> by <a href="https://github.com/kurtmckee"><code>@kurtmckee</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2879">tox-dev/tox#2879</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.3.3...4.3.4">https://github.com/tox-dev/tox/compare/4.3.3...4.3.4</a></p>
<h2>4.3.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Provision: ignore other test environments by <a href="https://github.com/masenf"><code>@masenf</code></a> in <a href="https://github-redirect.dependabot.com/tox-dev/tox/pull/2865">tox-dev/tox#2865</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tox-dev/tox/compare/4.3.2...4.3.3">https://github.com/tox-dev/tox/compare/4.3.2...4.3.3</a></p>
<h2>4.3.2</h2>
<h2>What's Changed</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/tox-dev/tox/blob/main/docs/changelog.rst">tox's changelog</a>.</em></p>
<blockquote>
<h2>v4.4.2 (2023-01-25)</h2>
<p>Bugfixes - 4.4.2</p>
<pre><code>- Allow the user configuration file (default ``<appdir>/tox/config.ini``) to be overridden via the
``TOX_USER_CONFIG_FILE`` environment variable. Previously tox was looking at the ``TOX_CONFIG_FILE`` to override the
user configuration, however that environment variable is already used to override the main configuration - by
:user:`masenf`. (:issue:`2890`)
<h2>v4.4.1 (2023-01-25)</h2>
<p>Bugfixes - 4.4.1
</code></pre></p>
<ul>
<li>In tox 4.4.0 <code>constrain_package_deps</code> was introduced with a default value of <code>True</code>. This has been changed back to
<code>False</code>, which restores the original behavior of tox 4.3.5 - by :user:<code>masenf</code>. (:issue:<code>2897</code>)</li>
</ul>
<h2>v4.4.0 (2023-01-25)</h2>
<p>Features - 4.4.0</p>
<pre><code>- Test environments now recognize boolean config keys ``constrain_package_deps`` (default=true) and ``use_frozen_constraints`` (default=false),
which control how tox generates and applies constraints files when performing ``install_package_deps``.
<p>If <code>constrain_package_deps</code> is true (default), then tox will write out <code>{env_dir}{/}constraints.txt</code> and pass it to
<code>pip</code> during <code>install_package_deps</code>. If <code>use_frozen_constraints</code> is false (default), the constraints will be taken
from the specifications listed under <code>deps</code> (and inside any requirements or constraints file referenced in <code>deps</code>).
Otherwise, <code>list_dependencies_command</code> (<code>pip freeze</code>) is used to enumerate exact package specifications which will
be written to the constraints file.</p>
<p>In previous releases, conflicting package dependencies would silently override the <code>deps</code> named in the configuration,
resulting in test runs against unexpected dependency versions, particularly when using tox factors to explicitly test
with different versions of dependencies - by :user:<code>masenf</code>. (:issue:<code>2386</code>)</p>
<p>Bugfixes - 4.4.0
</code></pre></p>
<ul>
<li>
<p>When parsing command lines, use <code>shlex(..., posix=True)</code>, even on windows platforms, since non-POSIX mode does not
handle escape characters and quoting like a shell would. This improves cross-platform configurations without hacks or
esoteric quoting.</p>
<p>To make this transition easier, on Windows, the backslash path separator will not treated as an escape character unless
it preceeds a quote, whitespace, or another backslash chracter. This allows paths to mostly be written in single or
double backslash style.</p>
<p>Note that <strong>double-backslash will no longer be escaped to a single backslash in substitutions</strong>, instead the double
backslash will be consumed as part of command splitting, on either posix or windows platforms.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/tox-dev/tox/commit/402cf84c05a2ca7a6fd1942808f00d84a3dbd520"><code>402cf84</code></a> release 4.4.2</li>
<li><a href="https://github.com/tox-dev/tox/commit/ed39bd77f26e7c8e08c47c9a72a8287cb73289a7"><code>ed39bd7</code></a> rename TOX_CONFIG_FILE to TOX_USER_CONFIG_FILE (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2896">#2896</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/b654be7d682670cd32cbcf2d3df302f7a3dda3ff"><code>b654be7</code></a> release 4.4.1</li>
<li><a href="https://github.com/tox-dev/tox/commit/8155760626fbc44cb32daccd16a82f916688371c"><code>8155760</code></a> pip_install: constrain_package_deps is now False by default (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2899">#2899</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/e29217a0f8303f21993f792988413345a7afff0a"><code>e29217a</code></a> release 4.4.0</li>
<li><a href="https://github.com/tox-dev/tox/commit/ea12bf43b990ef3a7df087edb8b45d6514585d76"><code>ea12bf4</code></a> Windows shlex fix (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2895">#2895</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/8736549a48c8467045ea2a56edddc9d4b17a4546"><code>8736549</code></a> Enforce constraints during install_package_deps (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2888">#2888</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/d291752f6fb45a70415e45d92e0ade3023fec392"><code>d291752</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2889">#2889</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/7753e72528bd52f536ded9d734518bf3276a9225"><code>7753e72</code></a> Add more explanation to <code>list_dependencies_command</code> configuration option (<a href="https://github-redirect.dependabot.com/tox-dev/tox/issues/2883">#2883</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/7eec0251e6885fd025f745949c584f8ca44ffbb6"><code>7eec025</code></a> release 4.3.5</li>
<li>Additional commits viewable in <a href="https://github.com/tox-dev/tox/compare/3.25.1...4.4.2">compare view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
</details>
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org
[GitHub] [superset] dependabot[bot] commented on pull request #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
Posted by dependabot.
dependabot[bot] commented on PR #22884:
URL: https://github.com/apache/superset/pull/22884#issuecomment-1409862940
Superseded by #22917.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org
[GitHub] [superset] codecov[bot] commented on pull request #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
Posted by codecov.
codecov[bot] commented on PR #22884:
URL: https://github.com/apache/superset/pull/22884#issuecomment-1406160548
# [Codecov](https://codecov.io/gh/apache/superset/pull/22884?src=pr&el=h1&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) Report
> Merging [#22884](https://codecov.io/gh/apache/superset/pull/22884?src=pr&el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (f5cacfe) into [master](https://codecov.io/gh/apache/superset/commit/8226110be8bea6f1b06ce02def7ea56df44e6b50?el=desc&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) (8226110) will **increase** coverage by `0.00%`.
> The diff coverage is `n/a`.
```diff
@@ Coverage Diff @@
## master #22884 +/- ##
=======================================
Coverage 67.19% 67.19%
=======================================
Files 1870 1870
Lines 71746 71746
Branches 7869 7869
=======================================
+ Hits 48209 48213 +4
+ Misses 21519 21514 -5
- Partials 2018 2019 +1
```
| Flag | Coverage Δ | |
|---|---|---|
| javascript | `53.79% <ø> (+0.01%)` | :arrow_up: |
Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation#carryforward-flags-in-the-pull-request-comment) to find out more.
| [Impacted Files](https://codecov.io/gh/apache/superset/pull/22884?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation) | Coverage Δ | |
|---|---|---|
| [...nts/controls/DateFilterControl/DateFilterLabel.tsx](https://codecov.io/gh/apache/superset/pull/22884?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation#diff-c3VwZXJzZXQtZnJvbnRlbmQvc3JjL2V4cGxvcmUvY29tcG9uZW50cy9jb250cm9scy9EYXRlRmlsdGVyQ29udHJvbC9EYXRlRmlsdGVyTGFiZWwudHN4) | `59.37% <0.00%> (+4.16%)` | :arrow_up: |
:mega: We’re building smart automated test selection to slash your CI/CD build times. [Learn more](https://about.codecov.io/iterative-testing/?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=The+Apache+Software+Foundation)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org
[GitHub] [superset] dependabot[bot] closed pull request #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
Posted by dependabot.
dependabot[bot] closed pull request #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
URL: https://github.com/apache/superset/pull/22884
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org
[GitHub] [superset] dependabot[bot] commented on pull request #22884: build(deps): bump tox from 3.25.1 to 4.4.2 in /requirements
Posted by dependabot.
dependabot[bot] commented on PR #22884:
URL: https://github.com/apache/superset/pull/22884#issuecomment-1406101031
The following labels could not be found: `pip`.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org