Skip to content

[HOLD] Upgrade deps #16220

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
TheRealHaoLiu wants to merge 2 commits into
base: devel
Choose a base branch
from
Open

[HOLD] Upgrade deps #16220

TheRealHaoLiu wants to merge 2 commits into from

Conversation

@TheRealHaoLiu
Copy link
Member

@TheRealHaoLiu TheRealHaoLiu commented Jan 8, 2026
edited
Loading

SUMMARY
ISSUE TYPE
  • Bug, Docs Fix or other nominal change
COMPONENT NAME
  • API
  • Collection
  • CLI
  • Docs
  • Other
ADDITIONAL INFORMATION

Note

Updates dependency pins across the stack and refreshes licenses for new transitive packages.

  • Deps: Broad upgrades in requirements.in/requirements.txt (e.g., django 5.2.10, aiohttp 3.13.3, boto3/botocore, redis[hiredis] 7.1, grpcio, google-auth, protobuf 6.33.x, psycopg 3.3.x, uwsgi 2.0.31)
  • OpenTelemetry: Bumps to opentelemetry-* 1.39.1 / 0.60b1
  • New/removed packages: Adds backports-zstd, cbor2, py-ubjson, ujson; removes zstandard (license file deleted)
  • Pins/adjustments: Pins Cython==3.1.3, wheel==0.45.1, setuptools-scm==9.2.2; adds cachetools; minor comment/format cleanups
  • Tests: Expands pytest.ini filters to ignore a polymorphic deprecation warning
  • Licenses: Adds new license files for backports-zstd, cbor2, py-ubjson, ujson

Written by Cursor Bugbot for commit 8679252. This will update automatically on new commits. Configure here.
@github-actions github-actions bot added the dependencies Pull requests that update a dependency file label Jan 8, 2026
cursor[bot]
cursor bot reviewed Jan 8, 2026
View reviewed changes
@TheRealHaoLiu
Fix CI failures from dependency upgrades
8679252 
- Add pytest filter for django-polymorphic deprecation warning
  (polymorphic_primary_key_name deprecated in 4.6.0+)
- Update embedded source: psycopg 3.2.10 -> 3.3.2
- Update embedded source: uwsgi 2.0.30 -> 2.0.31
- Remove obsolete zstandard.txt license
- Add licenses for new dependencies: backports-zstd, cbor2,
  py-ubjson, ujson
@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 9, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud
@thedoubl3j
Copy link
Member

thedoubl3j commented Jan 9, 2026

hold on merge
@TheRealHaoLiu TheRealHaoLiu changed the title Upgrade deps Jan 9, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

3 participants

@TheRealHaoLiu @thedoubl3j @AlanCoding