Sourced from filelock's releases.
3.20.2
What's Changed
- Support Unix systems without O_NOFOLLOW by
@mwilliamsonin tox-dev/filelock#463- [pre-commit.ci] pre-commit autoupdate by
@pre-commit-ci[bot] in tox-dev/filelock#464New Contributors
@mwilliamsonmade their first contribution in tox-dev/filelock#463Full Changelog: https://github.com/tox-dev/filelock/compare/3.20.1...3.20.2
f2e7d40
[pre-commit.ci] pre-commit autoupdate (#464)5088854
Support Unix systems without O_NOFOLLOW (#463)c64d9f3
2026.01.04 (#389)4ac232f
Bump actions/download-artifact from 6.0.0 to 7.0.0 (#387)95ae4b2
Update CI workflow to use Ubuntu 24.04 and Python 3.14 stable (#386)b72a7b1
Bump dessant/lock-threads from 5.0.1 to 6.0.0 (#385)ecc2672
Bump actions/upload-artifact from 5.0.0 to 6.0.0 (#384)6a897db
Bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 (#383)27ca98a
Bump peter-evans/create-pull-request from 7.0.9 to 7.0.11 (#381)56c59a6
Bump actions/checkout from 6.0.0 to 6.0.1 (#382)ae0021c
Bump actions/setup-python from 6.0.0 to 6.1.0 (#380)ddf5d0b
Bump actions/checkout from 5.0.1 to 6.0.0 (#378)Sourced from pathspec's releases.
v1.0.2
Release v1.0.2. See CHANGES.rst.
v1.0.1
Release v1.0.1. See CHANGES.rst.
v1.0.0
Release v1.0.0. See CHANGES.rst.
Sourced from pathspec's changelog.
1.0.2 (2026-01-07)
Bug fixes:
- Type hint
collections.abc.Callabledoes not properly replacetyping.Callableuntil Python 3.9.2.1.0.1 (2026-01-06)
Bug fixes:
Issue [#100](https://github.com/cpburnz/python-pathspec/issues/100)_: ValueError(f"{patterns=!r} cannot be empty.") when using black... _
Issue [#100](https://github.com/cpburnz/python-pathspec/issues/100): cpburnz/python-pathspec#1001.0.0 (2026-01-05)
Major changes:
Issue [#91](https://github.com/cpburnz/python-pathspec/issues/91)_: Dropped support of EoL Python 3.8.- Added concept of backends to allow for faster regular expression matching. The backend can be controlled using the
backendargument toPathSpec(),PathSpec.from_lines(),GitIgnoreSpec(), andGitIgnoreSpec.from_lines().- Renamed "gitwildmatch" pattern back to "gitignore". The "gitignore" pattern behaves slightly differently when used with
PathSpec(gitignore as documented) than withGitIgnoreSpec(replicates Git's edge cases).API changes:
- Breaking: protected method
pathspec.pathspec.PathSpec._match_file()(with a leading underscore) has been removed and replaced by backends. This does not affect normal usage ofPathSpecorGitIgnoreSpec. Only custom subclasses will be affected. If this breaks your usage, let me know byopening an issue <https://github.com/cpburnz/python-pathspec/issues>_.- Deprecated: "gitwildmatch" is now an alias for "gitignore".
- Deprecated:
pathspec.patterns.GitWildMatchPatternis now an alias forpathspec.patterns.gitignore.spec.GitIgnoreSpecPattern.- Deprecated:
pathspec.patterns.gitwildmatchmodule has been replaced by thepathspec.patterns.gitignorepackage.- Deprecated:
pathspec.patterns.gitwildmatch.GitWildMatchPatternis now an alias forpathspec.patterns.gitignore.spec.GitIgnoreSpecPattern.- Deprecated:
pathspec.patterns.gitwildmatch.GitWildMatchPatternErroris now an alias forpathspec.patterns.gitignore.GitIgnorePatternError.- Removed:
pathspec.patterns.gitwildmatch.GitIgnorePatternhas been deprecated since v0.4 (2016-07-15).- Signature of method
pathspec.pattern.RegexPattern.match_file()has been changed fromdef match_file(self, file: str) -> RegexMatchResult | Nonetodef match_file(self, file: AnyStr) -> RegexMatchResult | Noneto reflect usage.- Signature of class method
pathspec.pattern.RegexPattern.pattern_to_regex()has been changed fromdef pattern_to_regex(cls, pattern: str) -> tuple[str, bool]todef pattern_to_regex(cls, pattern: AnyStr) -> tuple[AnyStr | None, bool | None]to reflect usage and documentation.New features:
- Added optional "hyperscan" backend using
hyperscan_ library. It will automatically be used when installed. This dependency can be installed withpip install 'pathspec[hyperscan]'.- Added optional "re2" backend using the
google-re2_ library. It will automatically be used when installed. This dependency can be installed withpip install 'pathspec[re2]'.- Added optional dependency on
typing-extensions_ library to improve some type hints.Bug fixes:
Issue [#93](https://github.com/cpburnz/python-pathspec/issues/93)_: Do not remove leading spaces.Issue [#95](https://github.com/cpburnz/python-pathspec/issues/95)_: Matching for files inside folder does not seem to behave like .gitignore's.
... (truncated)
0ff6629
Release v1.0.2cbb6601
Release v1.0.273a0220
Trusted publishing is a pain4cf4e97
Trusted publishing is a pain35df8d9
Trusted publishing is a pain5f5283f
Trusted publishing is a pain979b019
Trusted publishing is a pain4e782be
Fix testpypi build3d8ab2b
Fix testpypi build69d9955
Fix testpypi buildSourced from urllib3's releases.
2.6.3
🚀 urllib3 is fundraising for HTTP/2 support
urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.
Thank you for your support.
Changes
- Fixed a security issue where decompression-bomb safeguards of the streaming API were bypassed when HTTP redirects were followed. (CVE-2026-21441 reported by
@D47A, 8.9 High, GHSA-38jv-5279-wg99)- Started treating
Retry-Aftertimes greater than 6 hours as 6 hours by default. (urllib3/urllib3#3743)- Fixed
urllib3.connection.VerifiedHTTPSConnectionon Emscripten. (urllib3/urllib3#3752)
Sourced from urllib3's changelog.
2.6.3 (2026-01-07)
- Fixed a high-severity security issue where decompression-bomb safeguards of the streaming API were bypassed when HTTP redirects were followed. (
GHSA-38jv-5279-wg99 <https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99>__)- Started treating
Retry-Aftertimes greater than 6 hours as 6 hours by default. ([#3743](https://github.com/urllib3/urllib3/issues/3743) <https://github.com/urllib3/urllib3/issues/3743>__)- Fixed
urllib3.connection.VerifiedHTTPSConnectionon Emscripten. ([#3752](https://github.com/urllib3/urllib3/issues/3752) <https://github.com/urllib3/urllib3/issues/3752>__)
0248277
Release 2.6.38864ac4
Merge commit from fork70cecb2
Fix Scorecard issues related to vulnerable dev dependencies (#3755)41f249a
Move "v2.0 Migration Guide" to the end of the table of
contents (#3747)fd4dffd
Patch VerifiedHTTPSConnection for Emscripten (#3752)13f0bfd
Handle massive values in Retry-After when calculating time to sleep for
(#3743)8c480bf
Bump actions/upload-artifact from 5.0.0 to 6.0.0 (#3748)4b40616
Bump actions/cache from 4.3.0 to 5.0.1 (#3750)82b8479
Bump actions/download-artifact from 6.0.0 to 7.0.0 (#3749)34284cb
Mention experimental features in the security policy (#3746)Sourced from cython's changelog.
3.2.4 (2026-01-04)
Features added
In preparation of Cython 3.3, a new decorator
@collection_type(tname)can be used to advertise an extension type as being a'sequence'or'mapping'. This currently only has the effect of setting thePy_TPFLAGS_SEQUENCEflag on the type or not, but is provided for convenience to allow using the new decorator already in Cython 3.2 code.Several C++ exception declarations were added to
libcpp.exceptions. (Github issue :issue:7389)Bugs fixed
Pseudo-literal default values of function arguments like
arg=str()could generate invalid C code when internally converted into a real literal. (Github issue :issue:6192)The pickle serialisation of extension types using the
auto_picklefeature was larger than necessary since 3.2.0 for types without Python object attributes. It is now back to the state before 3.2.0 again. (Github issue :issue:7443)Constants are now only made immortal on freethreading Python if they are not shared. (Github issue :issue:
7439)
PyDict_SetDefaultRef()is now used when available to avoid temporary borrowed references. (Github issue :issue:7347)Includes all fixes as of Cython 3.1.8.
21bda42
Update changelog.ea5e926
Define missing C++ exception classes (#7389)c533d67
Add sequence return type annotations in Parsing.py (GH-7416)d056a18
Allow 'mapping' as @collection_type()
in preparation of 3.3, but without actu...d347c82
Remove exclusion of collection_type in test (#7442)fd6e825
Merge branch '3.1.x' into 3.2.xce5c6cb
Update changelog.74b97f9
Fix arg=str() default argument (GH-6193)9c9e5c7
Avoid immortalizing anything shared on freethreading (GH-7439)9d5507b
Fix accidental inefficiency in auto-pickling that always stored the
object st...Sourced from pypa/cibuildwheel's releases.
v3.3.1
- 🛠 Update dependencies and container pins, including updating to CPython 3.14.2. (#2708)
Sourced from pypa/cibuildwheel's changelog.
v3.3.1
5 January 2026
- 🛠 Update dependencies and container pins, including updating to CPython 3.14.2. (#2708)
298ed2f
Bump version: v3.3.1f0ff944
[3.3.x] Update dependencies (#2708)Sourced from pathspec's changelog.
1.0.3 (2026-01-09)
Bug fixes:
Issue [#101](https://github.com/cpburnz/python-pathspec/issues/101)_: pyright strict errors with pathspec >= 1.0.0.Issue [#102](https://github.com/cpburnz/python-pathspec/issues/102)_: No module named 'tomllib'... _
Issue [#101](https://github.com/cpburnz/python-pathspec/issues/101): cpburnz/python-pathspec#101 .. _Issue [#102](https://github.com/cpburnz/python-pathspec/issues/102): cpburnz/python-pathspec#102
Sourced from filelock's releases.
3.20.3
What's Changed
- Fix TOCTOU symlink vulnerability in SoftFileLock by
@gaborbernatin tox-dev/filelock#465Full Changelog: https://github.com/tox-dev/filelock/compare/3.20.2...3.20.3
41b42dd
Fix TOCTOU symlink vulnerability in SoftFileLock (#465)Sourced from virtualenv's releases.
20.36.1
What's Changed
- release 20.36.0 by
@gaborbernatin pypa/virtualenv#3011- fix: resolve TOCTOU vulnerabilities in app_data and lock directory creation by
@gaborbernatin pypa/virtualenv#3013Full Changelog: https://github.com/pypa/virtualenv/compare/20.36.0...20.36.1
20.36.0
What's Changed
- release 20.35.3 by
@gaborbernatin pypa/virtualenv#2981- fix: Prevent NameError when accessing _DISTUTILS_PATCH during file ov… by
@gracetyyin pypa/virtualenv#2982- Upgrade pip and fix 3.15 picking old wheel by
@gaborbernatin pypa/virtualenv#2989- release 20.35.4 by
@gaborbernatin pypa/virtualenv#2990- fix: wrong path on migrated venv by
@sk1234567891in pypa/virtualenv#2996- test_too_many_open_files: assert on
errno.EMFILEinstead ofstrerrorby@pltrzin pypa/virtualenv#3001- fix: update filelock dependency version to 3.20.1 to fix CVE CVE-2025-68146 by
@pythonhubdevin pypa/virtualenv#3002- fix: resolve EncodingWarning in tox upgrade environment by
@gaborbernatin pypa/virtualenv#3007- Fix Interpreter discovery bug wrt. Microsoft Store shortcut using Latin-1 by
@rahuldevikarin pypa/virtualenv#3006- Add support for PEP 440 version specifiers in the
--pythonflag. by@rahuldevikarin pypa/virtualenv#3008New Contributors
@gracetyymade their first contribution in pypa/virtualenv#2982@sk1234567891made their first contribution in pypa/virtualenv#2996@pltrzmade their first contribution in pypa/virtualenv#3001@pythonhubdevmade their first contribution in pypa/virtualenv#3002@rahuldevikarmade their first contribution in pypa/virtualenv#3006Full Changelog: https://github.com/pypa/virtualenv/compare/20.35.3...20.36.0
Sourced from virtualenv's changelog.
v20.36.1 (2026-01-09)
Bugfixes - 20.36.1
- Fix TOCTOU vulnerabilities in app_data and lock directory creation that could be exploited via symlink attacks - reported by :user:`tsigouris007`, fixed by :user:`gaborbernat`. (:issue:`3013`)v20.36.0 (2026-01-07)
Features - 20.36.0
- Add support for PEP 440 version specifiers in the
--pythonflag. Users can now specify Python versions using operators like>=,<=,~=, etc. For example:virtualenv --python=">=3.12" myenv. (:issue:2994`)
d0ad11d
release 20.36.1dec4cec
Merge pull request #3013
from gaborbernat/fix-sec5fe5d38
release 20.36.0 (#3011)9719376
release 20.36.00276db6
Add support for PEP 440 version specifiers in the --python
flag. (#3008)4f900c2
Fix Interpreter discovery bug wrt. Microsoft Store shortcut using
Latin-1 (#3...13afcc6
fix: resolve EncodingWarning in tox upgrade environment (#3007)31b5d31
[pre-commit.ci] pre-commit autoupdate (#2997)7c28422
fix: update filelock dependency version to 3.20.1 to fix CVE
CVE-2025-68146 (...365628c
test_too_many_open_files: assert on errno.EMFILE instead of
strerror (#3001)Sourced from tomli's changelog.
2.4.0
- Added
- TOML v1.1.0 compatibility
- Binary wheels for Windows arm64
a678e6f
Bump version: 2.3.0 → 2.4.0b8a1358
Tests: remove now needless "TOML
compliance"->"burntsushi" format conversion4979375
Update GitHub actionsf890dd1
Update pre-commit hooksd9c65c3
Add 2.4.0 change log0efe49d
Update README for v2.4.09eb2125
TOML 1.1: Make seconds optional in Date-Time and Time (#203)12314bd
TOML 1.1: Add \xHH Unicode escape code to basic strings (#202)2a2aa62
TOML 1.1: Allow newlines and trailing comma in inline tables (#200)38297f8
Xfail on tests for TOML 1.1 features not yet supportede31a62b
v2.6.16de8beb6
Merge pull request #558
from seanbudd/patch-1b5574ac
Add support for '.xliff' file extension059831f
Merge pull request #555
from Roxedus/feat/ipxe7e6b541
Add .ipxe extension9e78792
Merge pull request #554
from pre-commit/pre-commit-ci-update-configa35c416
[pre-commit.ci] pre-commit autoupdate5cab69e
Merge pull request #553
from pre-commit/pre-commit-ci-update-configc8edd7e
[pre-commit.ci] pre-commit autoupdate47d582b
Merge pull request #551
from pre-commit/pre-commit-ci-update-config7b16380
Sync mypySourced from regex's changelog.
Version: 2026.1.15
Re-uploaded.Version: 2026.1.14
Git issue 596: Specifying {e<=0} causes ca 210× slow-down.Added RISC-V wheels.
Version: 2025.11.3
Git issue 594: Support relative PARNO in recursive subpatterns.Version: 2025.10.23
'setup.py' was missing from the source distribution.Version: 2025.10.22
Fixed test in main.yml.Version: 2025.10.21
Moved tests into subfolder.Version: 2025.10.20
Re-organised files.Updated to Unicode 17.0.0.
Version: 2025.9.20
Enable free-threading support in cibuildwheel in another place.Version: 2025.9.19
Enable free-threading support in cibuildwheel.Version: 2025.9.18
Git issue 565: Support the free-threaded build of CPython 3.13Version: 2025.9.1
Git PR 585: Fix AttributeError: 'AnyAll' object has no attribute '_key'Version: 2025.8.29
... (truncated)
234de9a
Re-uploaded.1bc3d1e
Merge branch 'hg' of https://github.com/mrabarnett/mrab-regex
into hgd7f7c8c
Git issue 596: Specifying {e<=0} causes ca 210× slow-down35b2934
Merge pull request #599
from justeph/ci-add-riscv64-supportaf2f411
ci: add riscv64 manylinux/musllinux wheelsSourced from python-on-whales's releases.
v0.80.0
What's Changed
- feat: add support for buildx create --annotations flag by
@bo0tzzin gabrieldemarmiesse/python-on-whales#690- Add 'pull' argument to compose.create by
@g-arjonesin gabrieldemarmiesse/python-on-whales#691- Add --with-dependencies to compose build by
@perrito666in gabrieldemarmiesse/python-on-whales#694- Add unconditional debug level logging by
@Hasnainzin gabrieldemarmiesse/python-on-whales#696- fix: missing ipam_config in NetworkInspectResult by
@Quenaryin gabrieldemarmiesse/python-on-whales#700- Add another test for buildx secrets by
@Felixoidin gabrieldemarmiesse/python-on-whales#651- Add --service-ports flag to compose.run by
@perrito666in gabrieldemarmiesse/python-on-whales#701- Add support for
--metadata-fileoption with buildx bake by@ianpittwoodin gabrieldemarmiesse/python-on-whales#693New Contributors
@bo0tzzmade their first contribution in gabrieldemarmiesse/python-on-whales#690@g-arjonesmade their first contribution in gabrieldemarmiesse/python-on-whales#691@perrito666made their first contribution in gabrieldemarmiesse/python-on-whales#694@Hasnainzmade their first contribution in gabrieldemarmiesse/python-on-whales#696@Quenarymade their first contribution in gabrieldemarmiesse/python-on-whales#700@Felixoidmade their first contribution in gabrieldemarmiesse/python-on-whales#651@ianpittwoodmade their first contribution in gabrieldemarmiesse/python-on-whales#693Full Changelog: https://github.com/gabrieldemarmiesse/python-on-whales/compare/v0.79.0...v0.80.0
ee87a94
Bump version to 0.80.012efa46
Add support for --metadata-file option with buildx bake (#693)6dfcce4
Add --service-ports flag to compose.run (#701)fde7e12
Use the trusted publisher system of pypi (#702)511ca73
Add another test for buildx secrets (#651)5c697f9
fix: missing ipam_config in NetworkInspectResult (#700)6423af2
Add unconditional debug level logging (#696)30068c8
Add --with-dependencies to compose build (#694)dd061b3
Add 'pull' argument to compose.create (#691)1c681d7
feat: add support for buildx create --annotations flag (#690)Sourced from actions/cache's releases.
v.5.0.2
v5.0.2
What's Changed
When creating cache entries, 429s returned from the cache service will not be retried.
adfb0c9
Bump version: 80.10.0 → 80.10.18535d10
docs: Link pyproject.toml to ext_modules (#5125)fafbe2c
[CI] Workaround for GHA handling of 'skipped' in job dependency chain
(#5152)d171023
Add news fragment3dbba06
Refine comment to reference issuee4922c8
Apply suggestion from @webknjaz218c146
[CI] Workaround for GHA handling of 'skipped' in job dependency
chain2903171
Bump version: 80.9.0 → 80.10.023a2b18
[CI] Allow the action check-changed-folders to be skipped
in the check ac...660e581
[CI] Allow the action check-changed-folders to be skipped
in the check ac...Sourced from wheel's releases.
0.46.2
- Restored the
bdist_wheelcommand for compatibility withsetuptoolsolder than v70.1- Importing
wheel.bdist_wheelnow emits aFutureWarninginstead of aDeprecationWarning- Fixed
wheel unpackpotentially altering the permissions of files outside of the destination tree with maliciously crafted wheels (CVE-2026-24049)0.46.1
- Temporarily restored the
wheel.macosx_libfilemodule (#659)0.46.0
- Dropped support for Python 3.8
- Removed the
bdist_wheelsetuptools command implementation and entry point. Thewheel.bdist_wheelmodule is now just an alias tosetuptools.command.bdist_wheel, emitting a deprecation warning on import.- Removed vendored
packagingin favor of a run-time dependency on it- Made the
wheel.metadatamodule private (with a deprecation warning if it's imported- Made the
wheel.clipackage private (no deprecation warning)- Fixed an exception when calling the
convertcommand with an empty description field
Sourced from wheel's changelog.
Release Notes
0.46.2 (2026-01-22)
- Restored the
bdist_wheelcommand for compatibility withsetuptoolsolder than v70.1- Importing
wheel.bdist_wheelnow emits aFutureWarninginstead of aDeprecationWarning- Fixed
wheel unpackpotentially altering the permissions of files outside of the destination tree with maliciously crafted wheels (CVE-2026-24049)0.46.1 (2025-04-08)
- Temporarily restored the
wheel.macosx_libfilemodule ([#659](https://github.com/pypa/wheel/issues/659) <https://github.com/pypa/wheel/issues/659>_)0.46.0 (2025-04-03)
- Dropped support for Python 3.8
- Removed the
bdist_wheelsetuptools command implementation and entry point. Thewheel.bdist_wheelmodule is now just an alias tosetuptools.command.bdist_wheel, emitting a deprecation warning on import.- Removed vendored
packagingin favor of a run-time dependency on it- Made the
wheel.metadatamodule private (with a deprecation warning if it's imported- Made the
wheel.clipackage private (no deprecation warning)- Fixed an exception when calling the
convertcommand with an empty description field0.45.1 (2024-11-23)
- Fixed pure Python wheels converted from eggs and wininst files having the ABI tag in the file name
0.45.0 (2024-11-08)
Refactored the
convertcommand to not need setuptools to be installedDon't configure setuptools logging unless running
bdist_wheelAdded a redirection from
wheel.bdist_wheel.bdist_wheeltosetuptools.command.bdist_wheel.bdist_wheelto improve compatibility withsetuptools' latest fixes.Projects are still advised to migrate away from the deprecated module and import the
setuptools' implementation explicitly. (PR by@abravalheri)0.44.0 (2024-08-04)
- Canonicalized requirements in METADATA file (PR by Wim Jeantine-Glenn)
- Deprecated the
bdist_wheelmodule, as the code was migrated tosetuptools
... (truncated)
eba4036
Updated the version number for v0.46.2557fb54
Created a new release7a7d2de
Fixed security issue around wheel unpack (#675)41418fa
Fixed test failures due to metadata normalization changesc1d442b
[pre-commit.ci] pre-commit autoupdate (#674)0bac882
Update github actions environments (#673)be9f45b
[pre-commit.ci] pre-commit autoupdate (#667)6244f08
Update pre-commit ruff legacy alias (#668)15b7577
PEP 639 compliance (#670)fc8cb41
Revert "Removed redundant Python version from the publish workflow
(#666)"Sourced from pycparser's releases.
release_v3.00
What's Changed
- Removed dependency on PLY, by rewriting pycparser to use a hand-written lexer and recursive-descent parser for C. No API changes / functionality changes intended - the same AST is produced.
- Add support for Python 3.14 and drop EOL 3.8 by
@hugovkin eliben/pycparser#581- Update _ast_gen.py to be in sync with c_ast.py by
@simonlindholmin eliben/pycparser#582Full Changelog: https://github.com/eliben/pycparser/compare/release_v2.23...release_v3.00
77de509
Prepare for release 3.00e57ccd1
Update README230e12d
disable uv caching in CI9c52f40
Update CI to run make check+test via uvx6b8f064
Use dataclass where applicable; add 'make test' to Makefile25376cb
Use f-strings instead of older formatting in other auxiliary files9bd8997
Use f-strings instead of older formatting in core code + tests664eac2
Modernize some code with pattern matching842f064
Add type annotations to more examples076f374
Add types to several exmaplesSourced from gunicorn's releases.
24.0.0
New Features
ASGI Worker (Beta): Native asyncio-based ASGI support for running async Python frameworks like FastAPI, Starlette, and Quart without external dependencies
- HTTP/1.1 with keepalive connections
- WebSocket support
- Lifespan protocol for startup/shutdown hooks
- Optional uvloop for improved performance
uWSGI Binary Protocol: Support for receiving requests from nginx via
uwsgi_passdirectiveDocumentation Migration: Migrated to MkDocs with Material theme
Security
- eventlet: Require eventlet >= 0.40.3 (CVE-2021-21419, CVE-2025-58068)
- gevent: Require gevent >= 24.10.1 (CVE-2023-41419, CVE-2024-3219)
- tornado: Require tornado >= 6.5.0 (CVE-2025-47287)
Install
pip install gunicorn==24.0.0
3960372
Merge pull request #3426
from benoitc/website-2025d34d3de
docs: Set release date for 24.0.0066e6d8
docs: Move ASGI worker tab after Gthreadc6b1159
docs: Add Tornado worker to design pagec959dae
docs: Redesign architecture page with visual components571bc12
docs: Add punchy theme with vibrant colors and modern features73adc7c
docs: Add collapsible TOC for settings referencedcec6e7
docs: Modern landing page with custom template5ea4eb3
docs: Add 2026 changelog and modernize README0b96103
docs: Configure GitHub Pages deployment with custom domainSourced from wheel's releases.
0.46.3
- Fixed
ImportError: cannot import name '_setuptools_logging' from 'wheel'when installed alongside an old version of setuptools and running thebdist_wheelcommand (#676)
Sourced from wheel's changelog.
Release Notes
0.46.3 (2026-01-22)
- Fixed
ImportError: cannot import name '_setuptools_logging' from 'wheel'when installed alongside an old version of setuptools and running thebdist_wheelcommand ([#676](https://github.com/pypa/wheel/issues/676) <https://github.com/pypa/wheel/issues/676>_)0.46.2 (2026-01-22)
- Restored the
bdist_wheelcommand for compatibility withsetuptoolsolder than v70.1- Importing
wheel.bdist_wheelnow emits aFutureWarninginstead of aDeprecationWarning- Fixed
wheel unpackpotentially altering the permissions of files outside of the destination tree with maliciously crafted wheels (CVE-2026-24049)0.46.1 (2025-04-08)
- Temporarily restored the
wheel.macosx_libfilemodule ([#659](https://github.com/pypa/wheel/issues/659) <https://github.com/pypa/wheel/issues/659>_)0.46.0 (2025-04-03)
- Dropped support for Python 3.8
- Removed the
bdist_wheelsetuptools command implementation and entry point. Thewheel.bdist_wheelmodule is now just an alias tosetuptools.command.bdist_wheel, emitting a deprecation warning on import.- Removed vendored
packagingin favor of a run-time dependency on it- Made the
wheel.metadatamodule private (with a deprecation warning if it's imported- Made the
wheel.clipackage private (no deprecation warning)- Fixed an exception when calling the
convertcommand with an empty description field0.45.1 (2024-11-23)
- Fixed pure Python wheels converted from eggs and wininst files having the ABI tag in the file name
0.45.0 (2024-11-08)
Refactored the
convertcommand to not need setuptools to be installedDon't configure setuptools logging unless running
bdist_wheelAdded a redirection from
wheel.bdist_wheel.bdist_wheeltosetuptools.command.bdist_wheel.bdist_wheelto improve compatibility withsetuptools' latest fixes.Projects are still advised to migrate away from the deprecated module and import
... (truncated)
8b6fa74
Created a new release7445fb5
Fixed an import of a removed moduleSourced from rich's releases.
The Nerdy Fix release
Fixed issue with characters outside of unicode range reporting 0 cell size
[14.3.1] - 2026-01-24
Fixed
- Fixed characters out of unicode range reporting a cell size if 0 Textualize/rich#3944
The more emojis release
Rich now has support for multi-codepoint emojis. There have also been some Markdown improvements, and a number of fixes. See the release notes below for details.
[14.3.0] - 2026-01-24
Fixed
- IPython now respects when a
Consoleinstance is passed topretty.installTextualize/rich#3915- Fixed extraneous blank line on non-interactive disabled
ProgressTextualize/rich#3905- Fixed extra padding on first cell in columns Textualize/rich#3935
- Fixed trailing whitespace removed when soft_wrap=True Textualize/rich#3937
- Fixed style new-lines when soft_wrap = True and a print style is set Textualize/rich#3938
Added
- Added support for some multi-codepopint glyphs (will fix alignment issues for these characters) Textualize/rich#3930
- Added support for
UNICODE_VERSIONenvironment variable Textualize/rich#3930- Added
last_render_heightproperty to LiveRender Textualize/rich#3934- Expose locals_max_depth and locals_overflow in traceback.install Textualize/rich#3906
- Added
Segment.split_lines_terminatorTextualize/rich#3938Changed
cells.cell_lennow has aunicode_versionparameter (that you probably should never change) Textualize/rich#3930- Live will not write a new line if there was nothing rendered Textualize/rich#3934
- Changed style of Markdown headers Textualize/rich#3942
- Changed style of Markdown tables, added
markdown.table.headerandmarkdown.table.borderstyles Textualize/rich#3942- Changed style of Markdown rules Textualize/rich#3942
Sourced from rich's changelog.
[14.3.1] - 2026-01-24
Fixed
- Fixed characters out of unicode range reporting a cell size if 0 Textualize/rich#3944
[14.3.0] - 2026-01-24
Fixed
- IPython now respects when a
Consoleinstance is passed topretty.installTextualize/rich#3915- Fixed extraneous blank line on non-interactive disabled
ProgressTextualize/rich#3905- Fixed extra padding on first cell in columns Textualize/rich#3935
- Fixed trailing whitespace removed when soft_wrap=True Textualize/rich#3937
- Fixed style new-lines when soft_wrap = True and a print style is set Textualize/rich#3938
Added
- Added support for some multi-codepopint glyphs (will fix alignment issues for these characters) Textualize/rich#3930
- Added support for
UNICODE_VERSIONenvironment variable Textualize/rich#3930- Added
last_render_heightproperty to LiveRender Textualize/rich#3934- Expose locals_max_depth and locals_overflow in traceback.install Textualize/rich#3906
- Added
Segment.split_lines_terminatorTextualize/rich#3938Changed
cells.cell_lennow has aunicode_versionparameter (that you probably should never change) Textualize/rich#3930- Live will not write a new line if there was nothing rendered Textualize/rich#3934
- Changed style of Markdown headers Textualize/rich#3942
- Changed style of Markdown tables, added
markdown.table.headerandmarkdown.table.borderstyles Textualize/rich#3942- Changed style of Markdown rules Textualize/rich#3942
f2a1c3b
Merge pull request #3944
from Textualize/nerf-fonts2e5a5da
changelog73ee823
fix fonts36fe3f7
docstring9a99acc
Merge pull request #3828
from RyanSharafuddin/master2f56d4d
Merge pull request #3942
from Textualize/markdown-style97b5bea
typo9303d77
markdown test900052c
bumpe9b0e19
Update to markdown stylesSourced from gunicorn's releases.
24.1.1
Bug Fixes
- Fix
forwarded_allow_ipsandproxy_allow_ipsto remain as strings for backward compatibility with external tools like uvicorn. Network validation now uses strict mode to detect invalid CIDR notation (e.g.,192.168.1.1/24where host bits are set) (#3458, [PR #3459](benoitc/gunicorn#3459))
Full Changelog: https://github.com/benoitc/gunicorn/compare/24.1.0...24.1.1
Gunicorn 24.1.0
New Features
Official Docker Image: Gunicorn now publishes official Docker images to GitHub Container Registry ([PR #3454](benoitc/gunicorn#3454))
- Available at
ghcr.io/benoitc/gunicorn- Based on Python 3.12 slim image
- Uses recommended worker formula (2 × CPU + 1)
- Configurable via environment variables
PROXY Protocol v2 Support: Extended PROXY protocol implementation to support the binary v2 format in addition to the existing text-based v1 format ([PR #3451](benoitc/gunicorn#3451))
- New
--proxy-protocolmodes:off,v1,v2,autoautomode (default when enabled) detects v1 or v2 automatically- v2 binary format is more efficient and supports additional metadata
- Works with HAProxy, AWS NLB/ALB, and other PROXY protocol v2 sources
CIDR Network Support:
--forwarded-allow-ipsand--proxy-allow-fromnow accept CIDR notation (e.g.,192.168.0.0/16) for specifying trusted networks ([PR #3449](benoitc/gunicorn#3449))Socket Backlog Metric: New
gunicorn.socket.backloggauge metric reports the current socket backlog size on Linux systems ([PR #3450](benoitc/gunicorn#3450))InotifyReloader Enhancement: The inotify-based reloader now watches newly imported modules, not just those loaded at startup ([PR #3447](benoitc/gunicorn#3447))
Bug Fixes
- Fix signal handling regression where SIGCLD alias caused "Unhandled signal: cld" errors on Linux when workers fail during boot (#3453)
- Fix socket blocking mode on keepalive connections preventing SSL handshake failures with async workers ([PR #3452](benoitc/gunicorn#3452))
- Use smaller buffer size in
finish_body()for faster timeout detection on slow or abandoned connections ([PR #3453](benoitc/gunicorn#3453))- Handle
SSLWantReadErrorinfinish_body()to prevent worker hangs during SSL renegotiation ([PR #3448](benoitc/gunicorn#3448))- Log SIGTERM as info level instead of warning to reduce noise in orchestrated environments ([PR #3446](benoitc/gunicorn#3446))
- Print exception details to stderr when worker fails to boot ([PR #3443](benoitc/gunicorn#3443))
- Fix
unreader.unread()to prepend data to buffer instead of appending ([PR #3442](benoitc/gunicorn#3442))- Prevent
RecursionErrorwhen pickling Config objects ([PR #3441](benoitc/gunicorn#3441))- Use proper exception chaining with
raise fromin glogging.py ([PR #3440](benoitc/gunicorn#3440))Installation
pip install gunicorn==24.1.0 </tr></table>
... (truncated)
375e79e
release: bump version to 24.1.1ad0c12d
docs: add sponsors section to README70200ee
chore: add GitHub Sponsors funding configuration6841804
docs: remove incorrect PR reference from Docker changelog entryabce0ca
docs: add 24.1.1 changelog entry for forwarded_allow_ips fixe9a3f30
fix: keep forwarded_allow_ips as strings for backward compatibility (#3459)d73ff4b
docs: update main changelog with 24.1.053f2c31
ci: allow docs deploy on workflow_dispatcheab5f0b
ci: trigger Docker publish on tags with or without v prefixa20d3fb
docs: add Docker image to 24.1.0 changelogSourced from coverage's changelog.
Version 7.13.2 — 2026-01-25
Fix: when Python is installed via symlinks, for example with Homebrew, the standard library files could be incorrectly included in coverage reports. This is now fixed, closing
issue 2115_.Fix: if a data file is created with no read permissions, the combine step would fail completely. Now a warning is issued and the file is skipped. Closes
issue 2117_... _issue 2115: coveragepy/coveragepy#2115 .. _issue 2117: coveragepy/coveragepy#2117
.. _changes_7-13-1:
513e971
docs: sample HTML for 7.13.227a8230
docs: prep for 7.13.227d8daa
refactor: plural does morea2f248c
fix: stdlib might be through a symlink. #2115bc52a22
debug: re-organize Matchers to show more of what they dof338d81
debug: build is a tuple, don't show it on two lines92020e4
refactor(test): convert to parametrized6387d0a
test: let (most) tests run with no network1d31e33
build: workflows sometimes need more than 10 min6294978
refactor: an error message is now uniform across versionsSourced from cryptography's changelog.
46.0.4 - 2026-01-27
* `Dropped support for win_arm64 wheels`_. * Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.5.5... _v46-0-3:
e6f44fc
bump for 46.0.4 and drop win arm64 due to CI issues (#14217)Sourced from actions/cache's releases.
v5.0.3
What's Changed
- Bump
@actions/cacheto v5.0.5 (Resolves: https://github.com/actions/cache/security/dependabot/33)- Bump
@actions/coreto v2.0.3Full Changelog: https://github.com/actions/cache/compare/v5...v5.0.3
Sourced from actions/cache's changelog.
5.0.3
- Bump
@actions/cacheto v5.0.5 (Resolves: https://github.com/actions/cache/security/dependabot/33)- Bump
@actions/coreto v2.0.3
Sourced from rich's releases.
The ZWJy release
A fix for
cell_lenedge cases[14.3.2] - 2026-02-01
Fixed
- Fixed solo ZWJ crash Textualize/rich#3953
- Fixed control codes reporting width of 1 Textualize/rich#3953
Sourced from rich's changelog.
[14.3.2] - 2026-02-01
Fixed
- Fixed solo ZWJ crash Textualize/rich#3953
- Fixed control codes reporting width of 1 Textualize/rich#3953
Sourced from setuptools's changelog.
v80.10.2
Bugfixes
- Update vendored dependencies. (#5159)
Misc
5cf2d08
Bump version: 80.10.1 → 80.10.2852cd5e
Merge pull request #5166
from pypa/bugfix/5159-vendor-bin-free11115ee
Suppress deprecation warning.5cf9185
Update vendored dependencies.cf59f41
Delete all binaries generated by vendored package install.89a5981
Add missing newsfragmentsc0114af
Postpone deprecation warnings related to PEP 639 to 2027-Feb-18 (#5115)de07603
Revert "[CI] Constraint transient test dependency on pyobjc"
(#5128)3afd5d6
Revert "[CI] Constraint transient test dependency on
pyobjc"Sourced from gunicorn's releases.
25.0.1
Bug Fixes
- Fix ASGI streaming responses (SSE) hanging: add chunked transfer encoding for HTTP/1.1 responses without Content-Length header. Without chunked encoding, clients wait for connection close to determine end-of-response.
Changes
- Update celery_alternative example to use FastAPI with native ASGI worker and uvloop for async task execution
Testing
- Add ASGI compliance test suite with Docker-based integration tests covering HTTP, WebSocket, streaming, lifespan, framework integration (Starlette, FastAPI), HTTP/2, and concurrency scenarios
Gunicorn 25.0.0
New Features
Dirty Arbiters: Separate process pool for executing long-running, blocking operations (AI model loading, heavy computation) without blocking HTTP workers ([PR #3460](benoitc/gunicorn#3460))
- Inspired by Erlang's dirty schedulers
- Asyncio-based with Unix socket IPC
- Stateful workers that persist loaded resources
- New settings:
--dirty-app,--dirty-workers,--dirty-timeout,--dirty-threads,--dirty-graceful-timeout- Lifecycle hooks:
on_dirty_starting,dirty_post_fork,dirty_worker_init,dirty_worker_exitPer-App Worker Allocation for Dirty Arbiters: Control how many dirty workers load each app for memory optimization with heavy models ([PR #3473](benoitc/gunicorn#3473))
- Set
workersclass attribute on DirtyApp (e.g.,workers = 2)- Or use config format
module:class:N(e.g.,myapp:HeavyModel:2)- Requests automatically routed to workers with the target app
- New exception
DirtyNoWorkersAvailableErrorfor graceful error handling- Example: 8 workers × 10GB model = 80GB → with
workers=2: 20GB (75% savings)HTTP/2 Support (Beta): Native HTTP/2 (RFC 7540) support for improved performance with modern clients ([PR #3468](benoitc/gunicorn#3468))
- Multiplexed streams over a single connection
- Header compression (HPACK)
- Flow control and stream prioritization
- Works with gthread, gevent, and ASGI workers
- New settings:
--http-protocols,--http2-max-concurrent-streams,--http2-initial-window-size,--http2-max-frame-size,--http2-max-header-list-size- Requires SSL/TLS and h2 library:
pip install gunicorn[http2]
... (truncated)
3bf529f
docs: sync news.md with 2026-news.md1f4f245
Merge pull request #3478
from benoitc/feature/asgi-compliance-testbede1519c0
docs: add ASGI compliance test suite to changelog0885005
fix(tests): correct assertions in ASGI compliance tests658924c
docs: update changelog for 25.0.1c5b6e82
chore: bump version to 25.0.1ce352dc
fix(asgi): add chunked transfer encoding for streaming responses29b8a3a
Merge pull request #3476
from benoitc/dependabot/github_actions/actions/check...791ab46
chore(deps): bump actions/checkout from 4 to 69235b72
Merge pull request #3475
from benoitc/dependabot/github_actions/actions/uploa...Sourced from babel's releases.
v2.18.0
Happy 2026! Like last year's release (ahem...), this one too is being made from FOSDEM 2026, in Brussels, Belgium. 🇧🇪 We'll aspire for a less glacial release cycle for 2.19. 😁
Please see CHANGELOG.rst for the detailed change log.
Full Changelog: https://github.com/python-babel/babel/compare/v2.17.0...v2.18.0
Sourced from babel's changelog.
Version 2.18.0
Happy 2026! This release is, coincidentally, also being made from FOSDEM.
We will aspire for a slightly less glacial release cadence in this year; there are interesting features in the pipeline.
Features
* Core: Add `babel.core.get_cldr_version()` by @akx in :gh:`1242` * Core: Use CLDR 47 by @tomasr8 in :gh:`1210` * Core: Use canonical IANA zone names in zone_territories by @akx in :gh:`1220` * Messages: Improve extract performance via ignoring directories early during os.walk by @akx in :gh:`968` * Messages: Merge in per-format keywords and auto_comments by @akx in :gh:`1243` * Messages: Update keywords for extraction of dpgettext and dnpgettext by @mardiros in :gh:`1235` * Messages: Validate all plurals in Python format checker by @tomasr8 in :gh:`1188` * Time: Use standard library `timezone` instead of `FixedOffsetTimezone` by @akx in :gh:`1203`Bugfixes
- Core: Fix formatting for "Empty locale identifier" exception added in #1164 by
@akxin :gh:1184- Core: Improve handling of no-inheritance-marker in timezone data by
@akxin :gh:1194- Core: Make the number pattern regular expression more efficient by
@akxin :gh:1213- Messages: Keep translator comments next to the translation function call by
@akxin :gh:1196- Numbers: Fix KeyError that occurred when formatting compact currencies of exactly one thousand in several locales by
@bartbroerein :gh:1246Other improvements
* Core: Avoid unnecessary uses of `map()` by @akx in :gh:`1180` * Messages: Have init-catalog create directories too by @akx in :gh:`1244` * Messages: Optimizations for read_po by @akx in :gh:`1200` * Messages: Use pathlib.Path() in catalog frontend; improve test coverage by @akx in :gh:`1204`Infrastructure and documentation
- CI: Renovate CI & lint tools by
@akxin :gh:1228- CI: Tighten up CI with Zizmor by
@akxin :gh:1230- CI: make job permissions explicit by
@akxin :gh:1227- Docs: Add SECURITY.md by
@akxin :gh:1229- Docs: Remove u string prefix from docs by
@verhovskyin :gh:1174- Docs: Update dates.rst with current unicode.org tr35 link by
@clach04in :gh:1189- General: Add some PyPI classifiers by
@tomasr8in :gh:1186- General: Apply reformatting by hand and with Ruff by
@akxin :gh:1202- General: Test on and declare support for Python 3.14 by
@akxin :gh:1233
... (truncated)
56c63ca
Prepare for 2.18.0 (#1248)73015a1
Add user-agent to CLDR downloader (#1247)29bd362
Fix formatting compact currencies of exactly one thousand in several
locales ...851db43
Reuse InitCatalog's guts in UpdateCatalog (#1244)fd00e60
Extract: Merge in per-format keywords and auto_comments (#1243)12a14b6
Add dpgettext and dnpgettext support (#1235)7110e62
Use canonical IANA zone names in zone_territories (#1220)e91c346
Improve extract performance via ignoring directories early during
os.walk (#968)0c4f378
Convert Unittest testcases with setup/teardown to fixtures (#1240)218c96e
Add babel.core.get_cldr_version() (#1242)Sourced from pip's changelog.
26.0.1 (2026-02-04)
Bug Fixes
- Fix
--prenot being respected from the command line when a requirement file includes an option e.g.-extra-index-url. ([#13788](https://github.com/pypa/pip/issues/13788) <https://github.com/pypa/pip/issues/13788>_)26.0 (2026-01-30)
Deprecations and Removals
- Remove support for non-bare project names in egg fragments. Affected users should use the
Direct URL requirement syntax <https://packaging.python.org/en/latest/specifications/version-specifiers/#direct-references>. ([#13157](https://github.com/pypa/pip/issues/13157) <https://github.com/pypa/pip/issues/13157>)Features
Display pip's command-line help in colour, if possible. (
[#12134](https://github.com/pypa/pip/issues/12134) <https://github.com/pypa/pip/issues/12134>_)Support installing dependencies declared with inline script metadata (:pep:
723) with--requirements-from-script. ([#12891](https://github.com/pypa/pip/issues/12891) <https://github.com/pypa/pip/issues/12891>_)Add
--all-releasesand--only-finaloptions to control pre-release and final release selection during package installation. ([#13221](https://github.com/pypa/pip/issues/13221) <https://github.com/pypa/pip/issues/13221>_)Add
--uploaded-prior-tooption to only consider packages uploaded prior to a given datetime when theupload-timefield is available from a remote index. ([#13625](https://github.com/pypa/pip/issues/13625) <https://github.com/pypa/pip/issues/13625>_)Add
--use-feature inprocess-build-depsto request that build dependencies are installed within the same pip install process. This new mechanism is faster, supports--no-cleanand--no-cache-dirreliably, and supports prompting for authentication.Enabling this feature will also enable
--use-feature build-constraints. This feature will become the default in a future pip version. ([#9081](https://github.com/pypa/pip/issues/9081) <https://github.com/pypa/pip/issues/9081>_)
pip cache purgeandpip cache removenow clean up empty directories and legacy files left by older pip versions. ([#9058](https://github.com/pypa/pip/issues/9058) <https://github.com/pypa/pip/issues/9058>_)Bug Fixes
- Fix selecting pre-release versions when only pre-releases match. For example,
package>1.0with versions1.0, 2.0rc1now installs2.0rc1instead of failing. ([#13746](https://github.com/pypa/pip/issues/13746) <https://github.com/pypa/pip/issues/13746>_)- Revisions in version control URLs now must be percent-encoded. For example, use
git+https://example.com/repo.git@issue%231to specify the branchissue#1. If you previously used a branch name containing a%character in a version control URL, you now need to replace it with%25to ensure correct percent-encoding. ([#13407](https://github.com/pypa/pip/issues/13407) <https://github.com/pypa/pip/issues/13407>_)- Preserve original casing when a path is displayed. (
[#6823](https://github.com/pypa/pip/issues/6823) <https://github.com/pypa/pip/issues/6823>_)- Fix bash completion when the
$IFSvariable has been modified from its default. ([#13555](https://github.com/pypa/pip/issues/13555) <https://github.com/pypa/pip/issues/13555>_)- Precompute Python requirements on each candidate, reducing time of long resolutions. (
[#13656](https://github.com/pypa/pip/issues/13656) <https://github.com/pypa/pip/issues/13656>_)- Skip redundant work converting version objects to strings when using the
... (truncated)
5fe4ea4
Bump for releasebea3cbe
windows fix testsed22252
News Entryaf13274
Match release control behavior to the same as format control
behavior2f4d4a8
Merge pull request #13779 from
notatallshaw/fix-26.0-news04307a4
fix 26.0 news6ec7b0a
Merge pull request #13775 from
notatallshaw/release/26.04104356
Bump for release58be883
Update AUTHORS.txt66f2dec
Merge pull request #13778 from
ichard26/docs/groupsSourced from coverage's changelog.
Version 7.13.3 — 2026-02-03
- Fix: in some situations, third-party code was measured when it shouldn't have been, slowing down test execution. This happened with layered virtual environments such as uv sometimes makes. The problem is fixed, closing
issue 2082_. Now any directory on sys.path that is inside a virtualenv is considered third-party code... _issue 2082: coveragepy/coveragepy#2082
.. _changes_7-13-2:
6bf962f
docs: sample HTML for 7.13.39f2e54c
docs: prep for 7.13.36208c42
fix: find third-party packages in more locations. #2082edb5016
refactor: make dataclass imports uniformb05826a
chore: bump actions/setup-python in the action-dependencies group (#2126)b519e17
refactor: no need for ox_profile connection775f1cb
build: remove pudb, I can install it if I need it0ccb1fe
chore: make upgradee9e2a0e
chore: bump actions/checkout in the action-dependencies group (#2122)77e1a04
chore: make upgradeSourced from gunicorn's releases.
25.0.3
What's Changed
Bug Fixes
- Fix RuntimeError when StopIteration raised in ASGI coroutine (#3484)
- Fix passing maxsplit in re.split() as positional argument (deprecated in Python 3.13)
Documentation
- Updated sponsorship section and homepage
Full Changelog: https://github.com/benoitc/gunicorn/compare/25.0.2...25.0.3
25.0.2
What's Changed
Bug Fixes
- Fix ASGI concurrent request failures through nginx proxy
- Graceful disconnect handling for ASGI worker
- Lazy import dirty module for gevent compatibility
Other
- Increase CI timeout for signal tests on PyPy
- Remove trailing blank line in instrument/init.py
Full Changelog: https://github.com/benoitc/gunicorn/compare/25.0.1...25.0.2
fc85068
chore: prepare release 25.0.3787602f
docs: shorten README sponsor sectiona52c81f
Merge pull request #3492
from benoitc/feature/improve-sponsorship1afb2b7
Merge pull request #3490
from tyrossel/master2ead70d
docs: add Sponsor to top-level navigation874e8be
docs: shorten sponsor section on homepage7293b21
docs: add prominent sponsorship options70d571b
docs: update homepage title and remove version displayd301d53
fix: resolve RuntimeError when StopIteration raised in ASGI
coroutine9508df6
test: increase CI timeout for signal tests on PyPySourced from setuptools's changelog.
v82.0.0
Deprecations and Removals
pkg_resourceshas been removed from Setuptools. Most common uses ofpkg_resourceshave been superseded by theimportlib.resources <https://docs.python.org/3/library/importlib.resources.html>_ andimportlib.metadata <https://docs.python.org/3/library/importlib.metadata.html>_ projects. Projects and environments relying onpkg_resourcesfor namespace packages or other behavior should depend on older versions ofsetuptools. (#3085)v81.0.0
Deprecations and Removals
- Removed support for the --dry-run parameter to setup.py. This one feature by its nature threads through lots of core and ancillary functionality, adding complexity and friction. Removal of this parameter will help decouple the compiler functionality from distutils and thus the eventual full integration of distutils. These changes do affect some class and function signatures, so any derivative functionality may require some compatibility shims to support their expected interface. Please report any issues to the Setuptools project for investigation. (#4872)
03f3615
Bump version: 81.0.0 → 82.0.0530d114
Merge pull request #5007
from pypa/feature/remove-more-pkg_resources11efe9f
Merge branch 'maint/75.3'118f129
Bump version: 75.3.3 → 75.3.490561ff
Merge pull request #5150
from UladzimirTrehubenka/backport_cve_472734595034
Add news fragment.fc00800
Merge pull request #5171
from cclauss/ruff-v0.15.0127e561
Remove tests reliant on pkg_resources, rather than xfailing them.64bc21e
Reference the superseding libraries.cf1ff45
Merge branch 'main' into debt/pbr-without-pkg_resourcesSourced from pytest-codspeed's releases.
v4.3.0
What's Changed
This release brings support for the memory instrument, which enables you to track memory usage, heap allocations, and memory leaks in your benchmarks.
- Bump uv in CI from 0.5.20 to 0.9.5 by
@edgarrmondragonin CodSpeedHQ/pytest-codspeed#95- feat/improve local walltime by
@adriencacciain CodSpeedHQ/pytest-codspeed#97- feat: rename instrumentation to simulation by
@GuillaumeLagrangein CodSpeedHQ/pytest-codspeed#98- Pin python in ci integration tests to prevent intermitent codspeed segfaults in walltime by
@GuillaumeLagrangein CodSpeedHQ/pytest-codspeed#105- feat: add memory profiling support by
@not-matthiasin CodSpeedHQ/pytest-codspeed#103- feat: add .gitignore to .codspeed folder on creation by
@art049in CodSpeedHQ/pytest-codspeed#107New Contributors
@GuillaumeLagrangemade their first contribution in CodSpeedHQ/pytest-codspeed#98Full Changelog: https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.2.0...v4.3.0
Sourced from pytest-codspeed's changelog.
[4.3.0] - 2026-02-09
🚀 Features
- Add .gitignore to .codspeed folder on creation (#107) by
@art049in #107- Support memory profiling by
@not-matthias- Rename instrumentation to simulation by
@GuillaumeLagrangein #98- Improve time unit display in local walltime by
@adriencaccia🐛 Bug Fixes
- Switch to OIDC token by
@not-matthias⚙️ Internals
- Use github runner instead of buildjet by
@art049- Enable memory profiling by
@not-matthiasin #103- Pin python to 3.14.2 in CI to prevent walltime crashes by
@GuillaumeLagrangein #105- Add comment about uv pinning by
@GuillaumeLagrange- Add comment to explain results storing in .codspeed folder by
@adriencacciain #97- Add 3.14 to the list of supported python versions by
@adriencaccia
a24abfe
Release v4.3.0 🚀748f2dd
ci: use github runner instead of buildjet66e54c8
feat: add .gitignore to .codspeed folder on creation (#107)36f5930
chore(ci): enable memory profiling8ce65af
feat: support memory profiling4df4f8c
fix(ci): switch to OIDC tokenc3a194a
chore: pin python to 3.14.2 in CI to prevent walltime crashesadee8a1
feat: rename instrumentation to simulation08e0519
chore: add comment about uv pinningbb84077
chore: add comment to explain results storing in .codspeed folderSourced from coverage's changelog.
Version 7.13.4 — 2026-02-09
Fix: the third-party code fix in 7.13.3 required examining the parent directories where coverage was run. In the unusual situation that one of the parent directories is unreadable, a PermissionError would occur, as described in
issue 2129_. This is now fixed.Fix: in test suites that change sys.path, coverage.py could fail with "RuntimeError: Set changed size during iteration" as described and fixed in
pull 2130_. Thanks, Noah Fatsi.We now publish ppc64le wheels, thanks to
Pankhudi Jain <pull 2121_>_... _pull 2121: coveragepy/coveragepy#2121 .. _issue 2129: coveragepy/coveragepy#2129 .. _pull 2130: coveragepy/coveragepy#2130
.. _changes_7-13-3:
4f78d57
build: no need to publish status.jsonf8616ff
docs: sample HTML for 7.13.4fcf8c68
docs: prep for 7.13.4189ecfd
docs: thanks Pankhudi Jain for ppc64le wheels #212158aade0
build: add support for ppc64le architecture (#2121)8ea42c8
chore: bump actions/attest-build-provenance (#2131)c09595f
docs: Janine put a lot of effort into debugging issue #21288ee1760
docs: Greg wrote a great issue: #212976ba043
docs: thanks, Noah Fatsi371fcc5
fix: set fixed paths_list in TreeMatcher init (#2130)Sourced from pip-tools's releases.
v7.5.3
2026-02-11
Bug fixes
The option
--unsafe-packageis now normalized -- by@shifqu.PRs and issues: #2150
Fixed a bug in which
pip-compilelost any index URL options when looking up hashes -- by@sirosen.This caused errors when a package was only available from an extra index, and caused
pip-compileto incorrectly drop index URL options from output, even when they were present in the input requirements.Fixed removal of temporary files used when reading requirements from stdin -- by
@sirosen.Features
pip-toolsis now tested against Python 3.14 and 3.14t in CI, and marks them as supported in the core packaging metadata -- by@webknjaz.PRs and issues: #2255
pip-tools is now compatible with pip 26.0 -- by
@sirosen.Removals and backward incompatible breaking changes
- Removed support for Python 3.8 -- by
@sirosen.Improved documentation
The change log management infra now allows the maintainers to add notes before and after the regular categories -- by
@webknjaz.Added documentation clarifying that
pip-compilereads the existing output file as a constraint source, and how to use--upgradeto refresh dependencies -- by@maliktafheem.PRs and issues: #2307
... (truncated)
Sourced from pip-tools's changelog.
v7.5.3
2026-02-09
Bug fixes
The option
--unsafe-packageis now normalized -- by {user}shifqu.PRs and issues: {issue}
2150Fixed a bug in which
pip-compilelost any index URL options when looking up hashes -- by {user}sirosen.This caused errors when a package was only available from an extra index, and caused
pip-compileto incorrectly drop index URL options from output, even when they were present in the input requirements.PRs and issues: {issue}
2220, {issue}2294, {issue}2305Fixed removal of temporary files used when reading requirements from stdin -- by {user}
sirosen.Features
pip-toolsis now tested against Python 3.14 and 3.14t in CI, and marks them as supported in the core packaging metadata -- by {user}webknjaz.PRs and issues: {issue}
2255pip-tools is now compatible with pip 26.0 -- by {user}
sirosen.PRs and issues: {issue}
2319, {issue}2320Removals and backward incompatible breaking changes
- Removed support for Python 3.8 -- by {user}
sirosen.Improved documentation
The change log management infra now allows the maintainers to add notes before and after the regular categories -- by {user}
webknjaz.PRs and issues: {issue}
2287, {issue}2322Added documentation clarifying that
pip-compilereads the existing output file as a constraint source, and how to use--upgradeto refresh dependencies -- by {user}maliktafheem.PRs and issues: {issue}
2307
... (truncated)
5f31d8a
Merge pull request #2332
from sirosen/fix-release-version-normalization106f1d6
Fix CI workflow to normalize versions (for release)3a0f5ed
Merge pull request #2329
from sirosen/release/v7.5.3e4bd31d
Merge pull request #2328
from jazzband/pre-commit-ci-update-config08107ab
Update changelog for version 7.5.35b4d130
Merge pull request #2325
from sirosen/ensure-tmpfile-cleanupcc6a2b9
Apply feedback/suggestions from reviewfc53265
[pre-commit.ci] pre-commit autoupdate6c27507
Add 'tempfile_compat' to handle windows tmp files9ac94db
Fix leak of temp files when reading from stdinSourced from packaging's releases.
26.0
Read about the performance improvements here: https://iscinumpy.dev/post/packaging-faster.
What's Changed
Features:
- PEP 751: support pylock by
@sbidoulin pypa/packaging#900- PEP 794: import name metadata by
@brettcannonin pypa/packaging#948- Support writing metadata by
@henryiiiin pypa/packaging#846- Support
__replace__forVersionby@henryiiiin pypa/packaging#1003- Support positional pattern matching for
VersionandSpecifierby@henryiiiin pypa/packaging#1004Behavior adaptations:
- PEP 440 handling of prereleases for
Specifier.contains,SpecifierSet.contains, andSpecifierSet.filterby@notatallshawin pypa/packaging#897- Handle PEP 440 edge case in
SpecifierSet.filterby@notatallshawin pypa/packaging#942- Adjust arbitrary equality intersection preservation in
SpecifierSetby@notatallshawin pypa/packaging#951- Return
Falseinstead of raising for.containswith invalid version by@Liam-DeVoein pypa/packaging#932- Support arbitrary equality on arbitrary strings for
SpecifierandSpecifierSet'sfilterandcontainsmethod. by@notatallshawin pypa/packaging#954- Only try to parse as
Versionon certain marker keys, returnFalseon unequal ordered comparsions by@JP-Ellisin pypa/packaging#939Fixes:
- Update
_hashwhen unpicklingTag()by@dholthin pypa/packaging#860- Correct comment and simplify implicit prerelease handling in
Specifier.prereleasesby@notatallshawin pypa/packaging#896- Use explicit
_GLibCVersionNamedTuplein_manylinuxby@cthoytin pypa/packaging#868- Detect invalid license expressions containing
()by@bwoodsendin pypa/packaging#879- Correct regex for metadata
'name'format by@diin pypa/packaging#925- Improve the message around expecting a semicolon by
@pradyunsgin pypa/packaging#833- Support nested parens in license expressions by
@Liam-DeVoein pypa/packaging#931- Add space before at symbol in
Requirementsstring by@henryiiiin pypa/packaging#953- A root logger use found by ruff LOG, use
packaginglogger instead by@henryiiiin pypa/packaging#965- Better support for subclassing
MarkerandRequirementby@henryiiiin pypa/packaging#1022- Normalize all extras, not just if it comes first by
@henryiiiin pypa/packaging#1024- Don't produce a broken repr if
Markerfails to construct by@henryiiiin pypa/packaging#1033Performance:
- Avoid recompiling regexes in the tokenizer for a 3x speedup by
@hauntsaninjain pypa/packaging#1019- Improve performance in
_manylinux.pyby@cthoytin pypa/packaging#869- Minor cleanups to
Versionby@bearomorphismin pypa/packaging#913- Skip redundant creation of
Versions in specifier comparison by@notatallshawin pypa/packaging#986- Cache
Specifier's Version by@notatallshawin pypa/packaging#985- Make
Versiona little faster by@henryiiiin pypa/packaging#987- Minor
Versionregex cleanup by@henryiiiin pypa/packaging#990- Faster regex on Python 3.11.5+ by
@henryiiiin pypa/packaging#988 and pypa/packaging#1055- Lazily calculate
_keyinVersionby@notatallshawin pypa/packaging#989 and regression forpackaging_legacyfixed by@henryiiiin pypa/packaging#1048- Faster
canonicalize_versionby@henryiiiin pypa/packaging#993- Use
fullmatchin a couple more places by@henryiiiin pypa/packaging#992
... (truncated)
Sourced from packaging's changelog.
26.0 - 2026-01-20
Features:
- PEP 751: support pylock (:pull:
900)- PEP 794: import name metadata (:pull:
948)- Support for writing metadata to a file (:pull:
846)- Support
__replace__on Version (:pull:1003)- Support positional pattern matching for
VersionandSpecifierSet(:pull:1004)Behavior adaptations:
- PEP 440 handling of prereleases for
Specifier.contains,SpecifierSet.contains, andSpecifierSet.filter(:pull:897)- Handle PEP 440 edge case in
SpecifierSet.filter(:pull:942)- Adjust arbitrary equality intersection preservation in
SpecifierSet(:pull:951)- Return
Falseinstead of raising for.containswith invalid version (:pull:932)- Support arbitrary equality on arbitrary strings for
SpecifierandSpecifierSet'sfilterandcontainsmethod. (:pull:954)- Only try to parse as
Versionon certain marker keys, returnFalseon unequal ordered comparisons (:pull:939)Fixes:
- Update
_hashwhen unpicklingTag()(:pull:860)- Correct comment and simplify implicit prerelease handling in
Specifier.prereleases(:pull:896)- Use explicit
_GLibCVersionNamedTuplein_manylinux(:pull:868)- Detect invalid license expressions containing
()(:pull:879)- Correct regex for metadata
'name'format (:pull:925)- Improve the message around expecting a semicolon (:pull:
833)- Support nested parens in license expressions (:pull:
931)- Add space before at symbol in
Requirementsstring (:pull:953)- A root logger use found, use a
packaginglogger instead (:pull:965)- Better support for subclassing
MarkerandRequirement(:pull:1022)- Normalize all extras, not just if it comes first (:pull:
1024)- Don't produce a broken repr if
Markerfails to construct (:pull:1033)Performance:
- Avoid recompiling regexes in the tokenizer for a 3x speedup (:pull:
1019)- Improve performance in
_manylinux.py(:pull:869)- Minor cleanups to
Version(:pull:913)- Skip redundant creation of
Version's in specifier comparison (:pull:986)- Cache the
Specifier'sVersion(:pull:985)- Make
Versiona little faster (:pull:987)- Minor
Versionregex cleanup (:pull:990)- Faster regex on Python 3.11.5+ for
Version(:pull:988, :pull:1055)- Lazily calculate
_keyinVersion(:pull:989, :pull:1048)- Faster
canonicalize_version(:pull:993)- Use
re.fullmatchin a couple more places (:pull:992, :pull:1029)- Use
mapinstead of generator (:pull:996)- Deprecate
._version(_Version, aNamedTuple) (:pull:995, :pull:1062)
</tr></table>
... (truncated)
3b77a26
Bump for release31371cc
docs: prepare for 26.0 final (#1063)9627a88
perf: dual replace (#1064)d5398b8
fix: restore ._version as a compat shim (#1062)3a7b600
Bump for developmentd4eefdc
Bump for release4618912
docs: prepare for 26.0rc3 (#1060)0cf1b41
ci: test on first public release of CPythons (#1056)716beb1
perf: 10% faster stripping zeros (#1058)350a230
fix: support CPython 3.11.0-3.11.4 and older PyPy3.11 (#1055)Sourced from pathspec's changelog.
1.0.4 (2026-01-26)
Issue [#103](https://github.com/cpburnz/python-pathspec/issues/103)_: Using re2 fails if pyre2 is also installed... _
Issue [#103](https://github.com/cpburnz/python-pathspec/issues/103): cpburnz/python-pathspec#103
39f02a9
Release v1.0.4529c0f8
Improve testpypi01057ce
Fix 103593a859
Improve testpypiSourced from filelock's releases.
3.21.2
What's Changed
- 🐛 fix: catch ImportError for missing sqlite3 C library by
@gaborbernatin tox-dev/filelock#475Full Changelog: https://github.com/tox-dev/filelock/compare/3.21.1...3.21.2
3.21.1
What's Changed
- 🐛 fix: gracefully handle missing
sqlite3when importingReadWriteLockby@bayandinin tox-dev/filelock#473New Contributors
@bayandinmade their first contribution in tox-dev/filelock#473Full Changelog: https://github.com/tox-dev/filelock/compare/3.21.0...3.21.1
3.21.0
What's Changed
- 🔧 chore: modernize tooling and bump deps by
@gaborbernatin tox-dev/filelock#470- ✨ feat(lock): add SQLite-based ReadWriteLock by
@leventovin tox-dev/filelock#399- Enable removal of UNIX lock files by
@sbc100in tox-dev/filelock#408- 👷 ci(release): persist changelog on release by
@gaborbernatin tox-dev/filelock#471- 👷 ci(release): commit changelog and use release config by
@gaborbernatin tox-dev/filelock#472New Contributors
@leventovmade their first contribution in tox-dev/filelock#399@sbc100made their first contribution in tox-dev/filelock#408Full Changelog: https://github.com/tox-dev/filelock/compare/3.20.3...3.21.0
Sourced from filelock's changelog.
3.21.2 (2026-02-13)
- 🐛 fix: catch ImportError for missing sqlite3 C library :pr:
4753.21.1 (2026-02-12)
- 🐛 fix: gracefully handle missing
sqlite3when importingReadWriteLock:pr:473- by :user:bayandin- 🐛 fix(ci): make release workflow robust
3.21.0 (2026-02-12)
- 🐛 fix(ci): make release workflow robust
- 👷 ci(release): commit changelog and use release config :pr:
472- 👷 ci(release): consolidate to two jobs :pr:
471- ✨ feat(unix): delete lock file on release :pr:
408- by :user:sbc100- ✨ feat(lock): add SQLite-based ReadWriteLock :pr:
399- by :user:leventov- 🔧 chore: modernize tooling and bump deps :pr:
470
9678acc
Release 3.21.24194182
🐛 fix: catch ImportError for missing sqlite3 C library (#475)9b2d086
Release 3.21.1eff3991
🐛 fix: gracefully handle missing sqlite3 when importing
ReadWriteLock (#473)3692417
🐛 fix(ci): make release workflow robust053168f
Release 3.21.0c2f5754
🐛 fix(ci): make release workflow robust0dc277c
👷 ci(release): commit changelog and use release config (#472)be8fe1a
👷 ci(release): consolidate to two jobs (#471)03b0ab7
✨ feat(unix): delete lock file on release (#408)Sourced from filelock's releases.
3.24.2
What's Changed
- 📝 docs: restructure using Diataxis framework by
@gaborbernatin tox-dev/filelock#489- 🐛 fix(test): resolve flaky write non-starvation test by
@gaborbernatin tox-dev/filelock#490- 🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race by
@gaborbernatin tox-dev/filelock#491Full Changelog: https://github.com/tox-dev/filelock/compare/3.24.1...3.24.2
3.24.1
What's Changed
- 🐛 fix(soft): resolve Windows deadlock and test race condition by
@gaborbernatin tox-dev/filelock#488Full Changelog: https://github.com/tox-dev/filelock/compare/3.24.0...3.24.1
3.24.0
What's Changed
- 🐛 fix(unix): auto-fallback to SoftFileLock on ENOSYS by
@gaborbernatin tox-dev/filelock#480- ✨ feat(lock): add poll_interval to constructor by
@gaborbernatin tox-dev/filelock#482- 🐛 fix(win): eliminate lock file race in threaded usage by
@gaborbernatin tox-dev/filelock#484- ✨ feat(mode): respect POSIX default ACL inheritance by
@gaborbernatin tox-dev/filelock#483- 🐛 fix(api): detect same-thread self-deadlock by
@gaborbernatin tox-dev/filelock#481- ✨ feat(lock): add cancel_check to acquire by
@gaborbernatin tox-dev/filelock#487- ✨ feat(lock): add lifetime parameter for lock expiration by
@gaborbernatin tox-dev/filelock#486Full Changelog: https://github.com/tox-dev/filelock/compare/3.23.0...3.24.0
3.23.0
What's Changed
- 📝 docs: add fasteners to similar libraries by
@gaborbernatin tox-dev/filelock#478- 📝 docs: move from Unlicense to MIT by
@gaborbernatin tox-dev/filelock#479Full Changelog: https://github.com/tox-dev/filelock/compare/3.22.0...3.23.0
3.22.0
What's Changed
- ✨ feat(soft): detect and break stale locks by
@gaborbernatin tox-dev/filelock#476
... (truncated)
Sourced from filelock's changelog.
########### Changelog ###########
3.24.2 (2026-02-16)
- 🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race :pr:
491- 🐛 fix(test): resolve flaky write non-starvation test :pr:
490- 📝 docs: restructure using Diataxis framework :pr:
489
3.24.1 (2026-02-15)
- 🐛 fix(soft): resolve Windows deadlock and test race condition :pr:
488
3.24.0 (2026-02-14)
- ✨ feat(lock): add lifetime parameter for lock expiration (#68) :pr:
486- ✨ feat(lock): add cancel_check to acquire (#309) :pr:
487- 🐛 fix(api): detect same-thread self-deadlock :pr:
481- ✨ feat(mode): respect POSIX default ACLs (#378) :pr:
483- 🐛 fix(win): eliminate lock file race in threaded usage :pr:
484- ✨ feat(lock): add poll_interval to constructor :pr:
482- 🐛 fix(unix): auto-fallback to SoftFileLock on ENOSYS :pr:
480
3.23.0 (2026-02-14)
- 📝 docs: move from Unlicense to MIT :pr:
479- 📝 docs: add fasteners to similar libraries :pr:
478
3.22.0 (2026-02-14)
- 🐛 fix(soft): skip stale detection on Windows :pr:
477- ✨ feat(soft): detect and break stale locks :pr:
476
3.21.2 (2026-02-13)
- 🐛 fix: catch ImportError for missing sqlite3 C library :pr:
475
... (truncated)
db3e05a
Release 3.24.2ab6b90e
🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race (#491)98b4ee9
🐛 fix(test): resolve flaky write non-starvation test (#490)ef15f6b
📝 docs: restructure using Diataxis framework (#489)0b2f65b
Release 3.24.1abccdba
🐛 fix(soft): resolve Windows deadlock and test race condition (#488)2de9380
Release 3.24.0d429e18
✨ feat(lock): add lifetime parameter for lock expiration (#68)
(#486)6c75bf7
✨ feat(lock): add cancel_check to acquire (#309)
(#487)fa6a27b
🐛 fix(api): detect same-thread self-deadlock (#481)Sourced from platformdirs's releases.
4.9.2
What's Changed
- 📝 docs(platforms): fix RST formatting and TOC hierarchy by
@gaborbernatin tox-dev/platformdirs#447- 📝 docs: restructure following Diataxis framework by
@gaborbernatin tox-dev/platformdirs#448Full Changelog: https://github.com/tox-dev/platformdirs/compare/4.9.1...4.9.2
4.9.1
What's Changed
- 📝 docs: enhance README, fix issues, and reorganize platforms.rst by
@gaborbernatin tox-dev/platformdirs#445Full Changelog: https://github.com/tox-dev/platformdirs/compare/4.9.0...4.9.1
4.9.0
What's Changed
- 📝 docs(usage): add use_site_for_root and comprehensive guidance by
@gaborbernatin tox-dev/platformdirs#439- 🐛 fix(unix): use correct runtime dir path for OpenBSD by
@gaborbernatin tox-dev/platformdirs#440- ✨ feat(api): add site_applications_dir property by
@gaborbernatin tox-dev/platformdirs#442- ✨ feat(api): add site_bin_dir property by
@gaborbernatin tox-dev/platformdirs#443- 📚 docs: split usage guide into tutorial, how-to, and reference by
@gaborbernatin tox-dev/platformdirs#441Full Changelog: https://github.com/tox-dev/platformdirs/compare/4.8.0...4.9.0
4.8.0
What's Changed
- 📝 docs(windows): document Store Python sandbox path behavior by
@gaborbernatin tox-dev/platformdirs#423- ✨ feat(api): add site_log_dir and document Store Python sandbox by
@gaborbernatin tox-dev/platformdirs#424- ✨ feat(api): add site_state_dir for system-wide state by
@gaborbernatin tox-dev/platformdirs#425- ✨ feat(api): add use_site_for_root parameter by
@gaborbernatin tox-dev/platformdirs#426- ✨ feat(windows): add PLATFORMDIRS_* env var overrides by
@gaborbernatin tox-dev/platformdirs#427- ✨ feat(windows): add WIN_PD_OVERRIDE_* env var overrides by
@gaborbernatin tox-dev/platformdirs#428- 🐛 fix(macos): yield individual site dirs in iter_*_dirs by
@gaborbernatin tox-dev/platformdirs#429- ✨ feat(api): add user_bin_dir property by
@gaborbernatin tox-dev/platformdirs#430- ✨ feat(api): add user_applications_dir property by
@gaborbernatin tox-dev/platformdirs#432- 📝 docs(usage): note that home dir is in stdlib by
@gaborbernatin tox-dev/platformdirs#431Full Changelog: https://github.com/tox-dev/platformdirs/compare/4.7.1...4.8.0
... (truncated)
Sourced from platformdirs's changelog.
########### Changelog ###########
4.9.2 (2026-02-16)
- 📝 docs: restructure following Diataxis framework :pr:
448- 📝 docs(platforms): fix RST formatting and TOC hierarchy :pr:
447
4.9.1 (2026-02-14)
- 📝 docs: enhance README, fix issues, and reorganize platforms.rst :pr:
445
4.9.0 (2026-02-14)
- 📚 docs: split usage guide into tutorial, how-to, and reference :pr:
441- ✨ feat(api): add site_bin_dir property :pr:
443- ✨ feat(api): add site_applications_dir property :pr:
442- 🐛 fix(unix): use correct runtime dir path for OpenBSD :pr:
440- 📝 docs(usage): document use_site_for_root parameter :pr:
439
4.8.0 (2026-02-14)
- 📝 docs(usage): note that home dir is in stdlib :pr:
431- ✨ feat(api): add user_applications_dir property :pr:
432- ✨ feat(api): add user_bin_dir property :pr:
430- 🐛 fix(macos): yield individual site dirs in iter_*_dirs :pr:
429- ✨ feat(windows): add WIN_PD_OVERRIDE_* env var overrides :pr:
428- ✨ feat(windows): add PLATFORMDIRS_* env var overrides :pr:
427- ✨ feat(api): add use_site_for_root parameter :pr:
426- ✨ feat(api): add site_state_dir for system-wide state :pr:
425- ✨ feat(api): add site_log_dir and document Store Python sandbox :pr:
424- 📝 docs(windows): document Store Python sandbox path behavior :pr:
423
4.7.1 (2026-02-13)
- 🐛 fix(windows): avoid FileNotFoundError in sandboxed environments :pr:
422
4.7.0 (2026-02-12)
... (truncated)
72271a6
Release 4.9.23e45fa9
📝 docs: restructure following Diataxis framework (#448)1d8448b
📝 docs(platforms): fix RST formatting and TOC hierarchy (#447)f656849
Release 4.9.1d983fb1
📝 docs: enhance README, fix issues, and reorganize platforms.rst (#445)685a1d9
Release 4.9.0ae73d34
📚 docs: split usage guide into tutorial, how-to, and reference (#441)816747e
✨ feat(api): add site_bin_dir property (#443)7a47ac4
✨ feat(api): add site_applications_dir property (#442)c69a552
🐛 fix(unix): use correct runtime dir path for OpenBSD (#440)Sourced from gunicorn's releases.
Gunicorn 25.1.0
New Features
Control Interface (gunicornc): Add interactive control interface for managing running Gunicorn instances, similar to birdc for BIRD routing daemon ([PR #3505](benoitc/gunicorn#3505))
- Unix socket-based communication with JSON protocol
- Interactive mode with readline support and command history
- Commands:
show all/workers/dirty/config/stats/listeners- Worker management:
worker add/remove/kill,dirty add/remove- Server control:
reload,reopen,shutdown- New settings:
--control-socket,--control-socket-mode,--no-control-socket- New CLI tool:
gunicorncfor connecting to control socket- See Control Interface Guide for details
Dirty Stash: Add global shared state between workers via
dirty.stash([PR #3503](benoitc/gunicorn#3503))
- In-memory key-value store accessible by all workers
- Supports get, set, delete, clear, keys, and has operations
- Useful for sharing state like feature flags, rate limits, or cached data
Dirty Binary Protocol: Implement efficient binary protocol for dirty arbiter IPC using TLV (Type-Length-Value) encoding ([PR #3500](benoitc/gunicorn#3500))
- More efficient than JSON for binary data
- Supports all Python types: str, bytes, int, float, bool, None, list, dict
- Better performance for large payloads
Dirty TTIN/TTOU Signals: Add dynamic worker scaling for dirty arbiters ([PR #3504](benoitc/gunicorn#3504))
- Send SIGTTIN to increase dirty workers
- Send SIGTTOU to decrease dirty workers
- Respects minimum worker constraints from app configurations
Changes
- ASGI Worker: Promoted from beta to stable
- Dirty Arbiters: Now marked as beta feature
Documentation
- Fix Markdown formatting in /configure documentation
2d43101
docs: merge gunicornc into 25.1.0 releasebf4ad8d
docs: update 25.1.0 release date to 2026-02-13730350e
Merge pull request #3505
from benoitc/feature/gunicornc-control-interface63df19b
fix(tests): use process groups for reliable signal handling in PyPycd77bcc
fix(tests): increase wait time for all server tests02ea985
fix(tests): improve server test reliability on FreeBSD6d81c9e
fix: resolve pylint warnings7486baa
fix: remove unused imports3e60d29
docs: add gunicornc control interface guidee05e40d
feat(ctl): add message-based dirty worker managementSourced from regex's changelog.
Version: 2026.2.19
Added \z as alias of \Z, like in re module.Added prefixmatch as alias of match, like in re module.
Version: 2026.1.15
Re-uploaded.Version: 2026.1.14
Git issue 596: Specifying {e<=0} causes ca 210× slow-down.Added RISC-V wheels.
Version: 2025.11.3
Git issue 594: Support relative PARNO in recursive subpatterns.Version: 2025.10.23
'setup.py' was missing from the source distribution.Version: 2025.10.22
Fixed test in main.yml.Version: 2025.10.21
Moved tests into subfolder.Version: 2025.10.20
Re-organised files.Updated to Unicode 17.0.0.
Version: 2025.9.20
Enable free-threading support in cibuildwheel in another place.Version: 2025.9.19
Enable free-threading support in cibuildwheel.Version: 2025.9.18
Git issue 565: Support the free-threaded build of CPython 3.13
... (truncated)
9789c22
Added \z as alias of \Z, like in re module.Sourced from rich's releases.
The infinite Release
Fixed a infinite loop in split_graphemes
[14.3.3] - 2026-02-19
Fixed
- Fixed infinite loop with
cells.split_graphemesTextualize/rich#4006
Sourced from rich's changelog.
[14.3.3] - 2026-02-19
Fixed
- Fixed infinite loop with
cells.split_graphemesTextualize/rich#4006
ce01188
Merge pull request #4008
from Textualize/bump143314a47c9
bumpf54bfe0
Merge pull request #4007
from Textualize/copilot/sub-pr-40067338cb9
Merge pull request #4006
from Textualize/fix-grapheme-stuck905b397
Update tests/test_cells.pyb031dca
Update tests/test_cells.pyf07a3fc
Add regression tests for VS16 after zero-width chars in
split_graphemesb618ccc
spelling378c34b
Initial plan87e7ca2
refinements, and testsSourced from virtualenv's releases.
20.39.0
What's Changed
- Move from extras to dependency-groups by
@gaborbernatin pypa/virtualenv#3056- 🐛 fix(sdist): include tox.toml in sdist by
@gaborbernatin pypa/virtualenv#3063- 🐛 fix(seed): add --ignore-installed to pip invoke seeder by
@gaborbernatin pypa/virtualenv#3064- 👷 ci(brew): add missing Homebrew Python versions and fix discovery by
@gaborbernatin pypa/virtualenv#3066- 🧪 test(discovery): fix test_py_info_cache_clear outside venv by
@gaborbernatin pypa/virtualenv#3065- Add architecture (ISA) awareness to Python discovery by
@rahuldevikarin pypa/virtualenv#3058- 🐛 fix(discovery): resolve version-manager shims to real binaries by
@gaborbernatin pypa/virtualenv#3067- Add auto-upgrade workflow for embedded dependencies by
@rahuldevikarin pypa/virtualenv#3057Full Changelog: https://github.com/pypa/virtualenv/compare/20.38.0...20.39.0
20.38.0
What's Changed
- Fix Windows activation scripts to handle Python paths with spaces by
@rahuldevikarin pypa/virtualenv#3015- Exclude pywintypes*.dll and pythoncom*.dll from being copied to Scripts directory by
@rahuldevikarin pypa/virtualenv#3012- update
Automated testingdocumentation section by@elmjagin pypa/virtualenv#3016- Preserver Symlinks in pyvenv.cfg paths by
@rahuldevikarin pypa/virtualenv#3022- Add
PKG_CONFIG_PATHenvironment variable support to all activation scripts by@rahuldevikarin pypa/virtualenv#3023- Add ty type checker to CI via tox by
@rahuldevikarin pypa/virtualenv#3025- Upgrade embedded dependencies by
@rahuldevikarin pypa/virtualenv#3026- Fix ty Type Narrowing by
@rahuldevikarin pypa/virtualenv#3030- Replace ty: ignore with proper type declarations for inheritance patterns by
@rahuldevikarin pypa/virtualenv#3034- Use user_cache_dir for app data with auto-migration from old location by
@rahuldevikarin pypa/virtualenv#3033- Fix unhelpful KeyError when using invalid VIRTUALENV_DISCOVERY value by
@veeceeyin pypa/virtualenv#3031- ⚡ perf(test): parallelize test suite with pytest-xdist by
@gaborbernatin pypa/virtualenv#3035- ✨ feat(create): sync with upstream CPython/PyPy venv by
@gaborbernatin pypa/virtualenv#3036- Python3.9 dependency range correction by
@reactive-firewallin pypa/virtualenv#3038- Version bump filelock to latest by
@reactive-firewallin pypa/virtualenv#3039- Improve error message when discovery plugin is not available by
@veeceeyin pypa/virtualenv#3032- 👷 ci(release): add workflow_dispatch release with zipapp and get-virtualenv by
@gaborbernatin pypa/virtualenv#3040- 📝 docs: restructure to follow Diataxis framework by
@gaborbernatin pypa/virtualenv#3041- 👷 ci(release): split into release and tag-triggered publish by
@gaborbernatin pypa/virtualenv#3042- Fix bash activate PKG_CONFIG_PATH unbound variable under bash -u by
@Fridayai700in pypa/virtualenv#3047- 🐛 fix(discovery): harden subprocess interrogation and test reliability by
@gaborbernatin pypa/virtualenv#3054- 🔧 chore(tox): migrate tox.ini to tox.toml by
@gaborbernatin pypa/virtualenv#3050New Contributors
@elmjagmade their first contribution in pypa/virtualenv#3016@veeceeymade their first contribution in pypa/virtualenv#3031@reactive-firewallmade their first contribution in pypa/virtualenv#3038@Fridayai700made their first contribution in pypa/virtualenv#3047Full Changelog: https://github.com/pypa/virtualenv/compare/20.37.0...20.38.0
Sourced from virtualenv's changelog.
Features - 20.39.0
- Automatically resolve version manager shims (pyenv, mise, asdf) to the real Python binary during discovery, preventing incorrect interpreter selection when shims are on
PATH- by :user:gaborbernat. (:issue:3049)- Add architecture (ISA) awareness to Python discovery — users can now specify a CPU architecture suffix in the
--pythonspec string (e.g.cpython3.12-64-arm64) to distinguish between interpreters that share the same version and bitness but target different architectures. Usessysconfig.get_platform()as the data source, with cross-platform normalization (amd64↔x86_64,aarch64↔arm64). Omitting the suffix preserves existing behavior - by :user:rahuldevikar. (:issue:3059)
v20.38.0 (2026-02-19)
Features - 20.38.0
- Store app data (pip/setuptools/wheel caches) under the OS cache directory (
platformdirs.user_cache_dir) instead of the data directory (platformdirs.user_data_dir). Existing app data at the old location is automatically migrated on first use. This ensures cached files that can be redownloaded are placed in the standard cache location (e.g.~/.cacheon Linux,~/Library/Cacheson macOS) where they are excluded from backups and can be cleaned by system tools - by :user:rahuldevikar. (:issue:1884) (:issue:1884)- Add
PKG_CONFIG_PATHenvironment variable support to all activation scripts (Bash, Batch, PowerShell, Fish, C Shell, Nushell, and Python). The virtualenv'slib/pkgconfigdirectory is now automatically prepended toPKG_CONFIG_PATHon activation and restored on deactivation, enabling packages that usepkg-configduring build/install to find their configuration files - by :user:rahuldevikar. (:issue:2637)- Upgrade embedded pip to
26.0.1from25.3and setuptools to82.0.0,75.3.4from75.3.2,80.9.0
- by :user:
rahuldevikar. (:issue:3027)- Replace
ty: ignorecomments with proper type narrowing using assertions and explicit None checks - by :user:rahuldevikar. (:issue:3029)Bugfixes - 20.38.0
- Exclude pywin32 DLLs (
pywintypes*.dll,pythoncom*.dll) from being copied to the Scripts directory during virtualenv creation on Windows. This fixes compatibility issues with pywin32, which expects its DLLs to be installed insite-packages/pywin32_system32by its own post-install script - by :user:rahuldevikar. (:issue:2662)- Preserve symlinks in
pyvenv.cfgpaths to matchvenvbehavior. Useos.path.abspath()instead ofos.path.realpath()to normalize paths without resolving symlinks, fixing issues with Python installations accessed via symlinked directories (common in network-mounted filesystems) - by :user:rahuldevikar. Fixes :issue:2770. (:issue:2770)- Fix Windows activation scripts to properly quote
python.exepath, preventing failures when Python is installed in a path with spaces (e.g.,C:\Program Files) and a file namedC:\Programexists on the filesystem - by :user:rahuldevikar. (:issue:2985)- Fix
bash -u(set -o nounset) compatibility in bash activation script by using${PKG_CONFIG_PATH:-}and${PKG_CONFIG_PATH:+:${PKG_CONFIG_PATH}}to handle unsetPKG_CONFIG_PATH- by :user:Fridayai700. (:issue:3044)- Gracefully handle corrupted on-disk cache and invalid JSON from Python interrogation subprocess instead of crashing with unhandled
JSONDecodeErrororKeyError- by :user:gaborbernat. (:issue:3054)
... (truncated)
ad56e78
release 20.39.0ae90556
Add auto-upgrade workflow for embedded dependencies (#3057)4582e41
🐛 fix(discovery): resolve version-manager shims to real binaries (#3067)e32d82d
Add architecture (ISA) awareness to Python discovery (#3058)f8f7f48
🧪 test(discovery): fix test_py_info_cache_clear outside venv (#3065)c22b548
👷 ci(brew): add missing Homebrew Python versions and fix discovery (#3066)a852cbb
🐛 fix(seed): add --ignore-installed to pip invoke seeder (#3064)6d22c9e
🐛 fix(sdist): include tox.toml in sdist (#3063)01e8f51
Move from extras to dependency-groups (#3056)fbbb97d
release 20.38.0Sourced from virtualenv's releases.
21.0.0
What's Changed
- ♻️ refactor(discovery): extract py_discovery as self-contained package by
@gaborbernatin pypa/virtualenv#3070- 📝 docs(changelog): add removal entry for python-discovery extraction by
@gaborbernatin pypa/virtualenv#3074Full Changelog: https://github.com/pypa/virtualenv/compare/20.39.1...21.0.0
20.39.1
What's Changed
- Align dependency versions across projects by
@gaborbernatin pypa/virtualenv#3069- ✨ feat(create): add RustPython support by
@gaborbernatin pypa/virtualenv#3071- 🐛 fix(create): add pythonw3.exe to Windows venvs by
@gaborbernatin pypa/virtualenv#3073Full Changelog: https://github.com/pypa/virtualenv/compare/20.39.0...20.39.1
Sourced from virtualenv's changelog.
Deprecations and Removals - 21.0.0
- The Python discovery logic has been extracted into a standalone
python-discoverypackage on PyPI (documentation <https://python-discovery.readthedocs.io/>_) and is now consumed as a dependency. If you previously imported discovery internals directly (e.g.from virtualenv.discovery.py_info import PythonInfo), switch tofrom python_discovery import PythonInfo. Backward-compatibility re-export shims are provided atvirtualenv.discovery.py_info,virtualenv.discovery.py_spec, andvirtualenv.discovery.cached_py_info, however these are considered unsupported and may be removed in a future release - by :user:gaborbernat. (:issue:3070)
v20.39.1 (2026-02-25)
Features - 20.39.1
- Add support for creating virtual environments with RustPython - by :user:
elmjag. (:issue:3010)
v20.39.0 (2026-02-23)
7687420
release 21.0.08ec3142
📝 docs(changelog): add removal entry for python-discovery extraction (#3074)f89d46c
♻️ refactor(discovery): extract py_discovery as self-contained package
(#3070)0272c72
release 20.39.1b1ca37f
🐛 fix(create): add pythonw3.exe to Windows venvs (#3073)1d4a338
✨ feat(create): add RustPython support (#3071)a10c5d4
Align dependency versions across projects (#3069)22a8860
[pre-commit.ci] pre-commit autoupdate (#3068)Sourced from filelock's releases.
3.24.3
What's Changed
- 🐛 fix(ci): add trailing blank line after changelog entries by
@gaborbernatin tox-dev/filelock#492- 🐛 fix(unix): handle ENOENT race on FUSE/NFS during acquire by
@gaborbernatin tox-dev/filelock#495Full Changelog: https://github.com/tox-dev/filelock/compare/3.24.2...3.24.3
Sourced from filelock's changelog.
########### Changelog ###########
3.24.3 (2026-02-19)
- 🐛 fix(unix): handle ENOENT race on FUSE/NFS during acquire :pr:
495- 🐛 fix(ci): add trailing blank line after changelog entries :pr:
492
3.24.2 (2026-02-16)
- 🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race :pr:
491- 🐛 fix(test): resolve flaky write non-starvation test :pr:
490- 📝 docs: restructure using Diataxis framework :pr:
489
3.24.1 (2026-02-15)
- 🐛 fix(soft): resolve Windows deadlock and test race condition :pr:
488
3.24.0 (2026-02-14)
- ✨ feat(lock): add lifetime parameter for lock expiration (#68) :pr:
486- ✨ feat(lock): add cancel_check to acquire (#309) :pr:
487- 🐛 fix(api): detect same-thread self-deadlock :pr:
481- ✨ feat(mode): respect POSIX default ACLs (#378) :pr:
483- 🐛 fix(win): eliminate lock file race in threaded usage :pr:
484- ✨ feat(lock): add poll_interval to constructor :pr:
482- 🐛 fix(unix): auto-fallback to SoftFileLock on ENOSYS :pr:
480
3.23.0 (2026-02-14)
- 📝 docs: move from Unlicense to MIT :pr:
479- 📝 docs: add fasteners to similar libraries :pr:
478
3.22.0 (2026-02-14)
- 🐛 fix(soft): skip stale detection on Windows :pr:
477- ✨ feat(soft): detect and break stale locks :pr:
476
... (truncated)
Sourced from actions/download-artifact's releases.
v8.0.0
v8 - What's new
Direct downloads
To support direct uploads in
actions/upload-artifact, the action will no longer attempt to unzip all downloaded files. Instead, the action checks theContent-Typeheader ahead of unzipping and skips non-zipped files. Callers wishing to download a zipped file as-is can also set the newskip-decompressparameter tofalse.Enforced checks (breaking)
A previous release introduced digest checks on the download. If a download hash didn't match the expected hash from the server, the action would log a warning. Callers can now configure the behavior on mismatch with the
digest-mismatchparameter. To be secure by default, we are now defaulting the behavior toerrorwhich will fail the workflow run.ESM
To support new versions of the @actions/* packages, we've upgraded the package to ESM.
What's Changed
- Don't attempt to un-zip non-zipped downloads by
@danwkennedyin actions/download-artifact#460- Add a setting to specify what to do on hash mismatch and default it to
errorby@danwkennedyin actions/download-artifact#461Full Changelog: https://github.com/actions/download-artifact/compare/v7...v8.0.0
70fc10c
Merge pull request #461
from actions/danwkennedy/digest-mismatch-behaviorf258da9
Add change docsccc058e
Fix linting issuesbd7976b
Add a setting to specify what to do on hash mismatch and default it to
errorac21fcf
Merge pull request #460
from actions/danwkennedy/download-no-unzip15999bf
Add note about package bumps974686e
Bump the version to v8 and add release notesfbe48b1
Update test names to make it clearer what they do96bf374
One more test fixb8c4819
Fix skip decompress testSourced from virtualenv's releases.
21.1.0
What's Changed
- add comprehensive type annotations across the entire codebase by
@rahuldevikarin pypa/virtualenv#3076Full Changelog: https://github.com/pypa/virtualenv/compare/21.0.0...21.1.0
Sourced from virtualenv's changelog.
Features - 21.1.0
- Add comprehensive type annotations across the entire codebase and ship a PEP 561
py.typedmarker so downstream consumers and type checkers recognize virtualenv as an inline-typed package - by :user:rahuldevikar. (:issue:3075)
v21.0.0 (2026-02-25)
404a3e5
release 21.1.0981d87c
add comprehensive type annotations across the entire codebase (#3076)17d98ba
Add security policySourced from filelock's releases.
3.25.0
What's Changed
- Add permissions to check workflow by
@gaborbernatin tox-dev/filelock#500- Move SECURITY.md to .github/SECURITY.md by
@gaborbernatin tox-dev/filelock#501- Standardize .github files to .yaml suffix by
@gaborbernatin tox-dev/filelock#504- ✨ feat(async): add AsyncReadWriteLock by
@gaborbernatin tox-dev/filelock#506Full Changelog: https://github.com/tox-dev/filelock/compare/3.24.4...3.25.0
3.24.4
What's Changed
- Suppress ValueError in _try_break_stale_lock for corrupted lock files by
@bysiberin tox-dev/filelock#496- Fix ValueError in _acquire_transaction_lock when blocking=False with timeout by
@gaborbernatin tox-dev/filelock#498New Contributors
@bysibermade their first contribution in tox-dev/filelock#496Full Changelog: https://github.com/tox-dev/filelock/compare/3.24.3...3.24.4
Sourced from filelock's changelog.
########### Changelog ###########
3.25.0 (2026-03-01)
- ✨ feat(async): add AsyncReadWriteLock :pr:
506- Standardize .github files to .yaml suffix
- build(deps): bump actions/download-artifact from 7 to 8 :pr:
503- by :user:dependabot[bot]- build(deps): bump actions/upload-artifact from 6 to 7 :pr:
502- by :user:dependabot[bot]- Move SECURITY.md to .github/SECURITY.md
- Add security policy
- Add permissions to check workflow :pr:
500- [pre-commit.ci] pre-commit autoupdate :pr:
499- by :user:pre-commit-ci[bot]
3.24.3 (2026-02-19)
- 🐛 fix(unix): handle ENOENT race on FUSE/NFS during acquire :pr:
495- 🐛 fix(ci): add trailing blank line after changelog entries :pr:
492
3.24.2 (2026-02-16)
- 🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race :pr:
491- 🐛 fix(test): resolve flaky write non-starvation test :pr:
490- 📝 docs: restructure using Diataxis framework :pr:
489
3.24.1 (2026-02-15)
- 🐛 fix(soft): resolve Windows deadlock and test race condition :pr:
488
3.24.0 (2026-02-14)
- ✨ feat(lock): add lifetime parameter for lock expiration (#68) :pr:
486- ✨ feat(lock): add cancel_check to acquire (#309) :pr:
487- 🐛 fix(api): detect same-thread self-deadlock :pr:
481- ✨ feat(mode): respect POSIX default ACLs (#378) :pr:
483- 🐛 fix(win): eliminate lock file race in threaded usage :pr:
484- ✨ feat(lock): add poll_interval to constructor :pr:
482- 🐛 fix(unix): auto-fallback to SoftFileLock on ENOSYS :pr:
480
... (truncated)
7f195d9
Release 3.25.0df2754e
✨ feat(async): add AsyncReadWriteLock (#506)8a359c5
Standardize .github files to .yaml suffix9e7b33d
build(deps): bump actions/download-artifact from 7 to 8 (#503)5fe6836
build(deps): bump actions/upload-artifact from 6 to 7 (#502)af265f9
Move SECURITY.md to .github/SECURITY.md67a5569
Add security policy4b8c261
Add permissions to check workflow (#500)e749d66
[pre-commit.ci] pre-commit autoupdate (#499)721b37b
Fix ValueError in _acquire_transaction_lock when blocking=False with
timeout ...bc5fa61
v2.6.17c866be7
Merge pull request #563
from seanbudd/patch-2c20eeb5
Add support for sconstruct and sconscript extensions8f02442
Merge pull request #577
from andykernahan/add-slnxa10759d
Merge pull request #571
from petamas/add-entitlements749d185
Add support for 'slnx' file extensiona4ed2ca
Merge pull request #560
from sebastiw/patch-153e33c6
Add 'escript' file type for Erlang50e032f
Merge pull request #574
from petamas/add-diff93f1aa6
Merge pull request #569
from petamas/add-uv-lockSourced from docker/setup-qemu-action's releases.
v4.0.0
- Node 24 as default runtime (requires Actions Runner v2.327.1 or later) by
@crazy-maxin docker/setup-qemu-action#245- Switch to ESM and update config/test wiring by
@crazy-maxin docker/setup-qemu-action#241- Bump
@actions/corefrom 1.11.1 to 3.0.0 in docker/setup-qemu-action#244- Bump
@docker/actions-toolkitfrom 0.67.0 to 0.77.0 in docker/setup-qemu-action#243- Bump
@isaacs/brace-expansionfrom 5.0.0 to 5.0.1 in docker/setup-qemu-action#240- Bump js-yaml from 3.14.1 to 3.14.2 in docker/setup-qemu-action#231
- Bump lodash from 4.17.21 to 4.17.23 in docker/setup-qemu-action#238
Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.7.0...v4.0.0
v3.7.0
- Bump
@docker/actions-toolkitfrom 0.56.0 to 0.67.0 in docker/setup-qemu-action#217 docker/setup-qemu-action#230- Bump brace-expansion from 1.1.11 to 1.1.12 in docker/setup-qemu-action#220
- Bump form-data from 2.5.1 to 2.5.5 in docker/setup-qemu-action#218
- Bump tmp from 0.2.3 to 0.2.4 in docker/setup-qemu-action#221
- Bump undici from 5.28.4 to 5.29.0 in docker/setup-qemu-action#219
Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.6.0...v3.7.0
v3.6.0
- Display binfmt version by
@crazy-maxin docker/setup-qemu-action#202Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.5.0...v3.6.0
v3.5.0
- Bump
@docker/actions-toolkitfrom 0.54.0 to 0.56.0 in docker/setup-qemu-action#205Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.4.0...v3.5.0
v3.4.0
- Bump
@docker/actions-toolkitfrom 0.49.0 to 0.54.0 in docker/setup-qemu-action#193 docker/setup-qemu-action#197Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.3.0...v3.4.0
v3.3.0
- Add
cache-imageinput to enable/disable caching of binfmt image by@crazy-maxin docker/setup-qemu-action#130- Bump
@actions/corefrom 1.10.1 to 1.11.1 in docker/setup-qemu-action#172- Bump
@docker/actions-toolkitfrom 0.35.0 to 0.49.0 in docker/setup-qemu-action#187- Bump cross-spawn from 7.0.3 to 7.0.6 in docker/setup-qemu-action#182
- Bump path-to-regexp from 6.2.2 to 6.3.0 in docker/setup-qemu-action#162
Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.2.0...v3.3.0
v3.2.0
- Bump
@docker/actions-toolkitfrom 0.31.0 to 0.35.0 in docker/setup-qemu-action#154 docker/setup-qemu-action#155Full Changelog: https://github.com/docker/setup-qemu-action/compare/v3.1.0...v3.2.0
v3.1.0
... (truncated)
ce36039
Merge pull request #245
from crazy-max/node246386344
node 24 as default runtime1ea3db7
Merge pull request #243
from docker/dependabot/npm_and_yarn/docker/actions-to...b56a002
chore: update generated contentc43f02d
build(deps): bump @docker/actions-toolkit from 0.67.0 to
0.77.0ce10c58
Merge pull request #244
from docker/dependabot/npm_and_yarn/actions/core-3.0.0429fc9d
chore: update generated content060e5f8
build(deps): bump @actions/core from 1.11.1 to 3.0.044be13e
Merge pull request #231
from docker/dependabot/npm_and_yarn/js-yaml-3.14.21897438
chore: update generated contentSourced from pypa/cibuildwheel's releases.
v3.4.0
- 🌟 You can now build wheels using
uvas a build frontend. This should improve performance, especially if your project has lots of build dependencies. To use, setbuild-frontendtouv. (#2322)- ⚠️ We no longer support running on Travis CI. It may continue working but we don't run tests there anymore so we can't be sure. (#2682)
- ✨ Improvements to building rust wheels on Android (#2650)
- 🐛 Fix bug with the GitHub Action on Windows, where PATH was getting unnecessarily changed, causing issues with meson builds. (#2723)
- ✨ Add support for quiet setting on
buildanduvfrom the cibuildwheelbuild-verbositysetting. (#2737)- 📚 Docs updates, including guidance on using Meson on Windows (#2718)
Sourced from pypa/cibuildwheel's changelog.
v3.4.0
5 March 2026
- 🌟 You can now build wheels using
uvas a build frontend. This should improve performance, especially if your project has lots of build dependencies. To use, setbuild-frontendtouv. (#2322)- ⚠️ We no longer support running on Travis CI. It may continue working but we don't run tests there anymore so we can't be sure. (#2682)
- ✨ Improvements to building rust wheels on Android (#2650)
- 🐛 Fix bug with the GitHub Action on Windows, where PATH was getting unnecessarily changed, causing issues with meson builds. (#2723)
- ✨ Add support for quiet setting on
buildanduvfrom the cibuildwheelbuild-verbositysetting. (#2737)- 📚 Docs updates, including guidance on using Meson on Windows (#2718)
ee02a15
Bump version: v3.4.0f08ce70
chore: match copyright to BSD-2-clause template (#2758)95b4b79
Fix incorrect document regarding pyodide auditwheel (#2752)f046d0a
Bump to Pyodide v0.29.3 (#2743)f5a31ee
chore(deps): bump the actions group across 1 directory with 4 updates
(#2755)35ec456
[pre-commit.ci] pre-commit autoupdate (#2756)51fed90
[Bot] Update dependencies (#2734)b70562f
Debug GraalPy/uv test failures on Windows (#2741)0a85e29
Work around CDN rate limiting on Python.org in bin/update_pythons.py (#2753)2d33864
Pin the actions/setup-python for the externally used action.yml (#2749)Sourced from actions/cache's releases.
v5.0.4
What's Changed
- Add release instructions and update maintainer docs by
@Link- in actions/cache#1696- Potential fix for code scanning alert no. 52: Workflow does not contain permissions by
@Link- in actions/cache#1697- Fix workflow permissions and cleanup workflow names / formatting by
@Link- in actions/cache#1699- docs: Update examples to use the latest version by
@XZTDeanin actions/cache#1690- Fix proxy integration tests by
@Link- in actions/cache#1701- Fix cache key in examples.md for bun.lock by
@RyPeckin actions/cache#1722- Update dependencies & patch security vulnerabilities by
@Link- in actions/cache#1738New Contributors
@XZTDeanmade their first contribution in actions/cache#1690@RyPeckmade their first contribution in actions/cache#1722Full Changelog: https://github.com/actions/cache/compare/v5...v5.0.4
Sourced from actions/cache's changelog.
5.0.4
- Bump
minimatchto v3.1.5 (fixes ReDoS via globstar patterns)- Bump
undicito v6.24.1 (WebSocket decompression bomb protection, header validation fixes)- Bump
fast-xml-parserto v5.5.6
6682284
Merge pull request #1738
from actions/prepare-v5.0.4e340396
Update RELEASES8a67110
Add licenses1865903
Update dependencies & patch security vulnerabilities5656298
Merge pull request #1722
from RyPeck/patch-14e380d1
Fix cache key in examples.md for bun.lockb7e8d49
Merge pull request #1701
from actions/Link-/fix-proxy-integration-tests984a21b
Add traffic sanity check stepacf2f1f
Fix resolution95a07c5
Add wait for proxySourced from codecov/codecov-action's releases.
v6.0.0
⚠️ This version introduces support for node24 which make cause breaking changes for systems that do not currently support node24. ⚠️
What's Changed
- Revert "Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0"" by
@thomasrockhu-codecovin codecov/codecov-action#1929- Th/6.0.0 by
@thomasrockhu-codecovin codecov/codecov-action#1928Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.4...v6.0.0
v5.5.4
This is a mirror of
v5.5.2.v6will be released which requiresnode24What's Changed
- Revert "build(deps): bump actions/github-script from 7.0.1 to 8.0.0" by
@thomasrockhu-codecovin codecov/codecov-action#1926- chore(release): 5.5.4 by
@thomasrockhu-codecovin codecov/codecov-action#1927Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.3...v5.5.4
v5.5.3
What's Changed
- build(deps): bump actions/github-script from 7.0.1 to 8.0.0 by
@dependabot[bot] in codecov/codecov-action#1874- chore(release): bump to 5.5.3 by
@thomasrockhu-codecovin codecov/codecov-action#1922Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.2...v5.5.3
v5.5.2
What's Changed
- check gpg only when skip-validation = false by
@maxweng-sentryin codecov/codecov-action#1894- chore:
disable_searchalignment by@freemanzMrojoin codecov/codecov-action#1881- chore(release): 5.5.2 by
@thomasrockhu-codecovin codecov/codecov-action#1902New Contributors
@maxweng-sentrymade their first contribution in codecov/codecov-action#1894@freemanzMrojomade their first contribution in codecov/codecov-action#1881Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.1...v5.5.2
v5.5.1
What's Changed
- build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by
@dependabot[bot] in codecov/codecov-action#1833- build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by
@dependabot[bot] in codecov/codecov-action#1861- Document a
codecov-cliversion reference example by@webknjazin codecov/codecov-action#1774- docs: fix typo in README by
@datalaterin codecov/codecov-action#1866- fix: update to use local app/ dir by
@thomasrockhu-codecovin codecov/codecov-action#1872- build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by
@dependabot[bot] in codecov/codecov-action#1867- build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by
@dependabot[bot] in codecov/codecov-action#1868- fix: overwrite pr number on fork by
@thomasrockhu-codecovin codecov/codecov-action#1871
... (truncated)
Sourced from codecov/codecov-action's changelog.
v5.5.2
What's Changed
Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.1..v5.5.2
v5.5.1
What's Changed
- fix: overwrite pr number on fork by
@thomasrockhu-codecovin codecov/codecov-action#1871- build(deps): bump actions/checkout from 4.2.2 to 5.0.0 by
@app/dependabotin codecov/codecov-action#1868- build(deps): bump github/codeql-action from 3.29.9 to 3.29.11 by
@app/dependabotin codecov/codecov-action#1867- fix: update to use local app/ dir by
@thomasrockhu-codecovin codecov/codecov-action#1872- docs: fix typo in README by
@datalaterin codecov/codecov-action#1866- Document a
codecov-cliversion reference example by@webknjazin codecov/codecov-action#1774- build(deps): bump github/codeql-action from 3.28.18 to 3.29.9 by
@app/dependabotin codecov/codecov-action#1861- build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by
@app/dependabotin codecov/codecov-action#1833Full Changelog: https://github.com/codecov/codecov-action/compare/v5.5.0..v5.5.1
v5.5.0
What's Changed
- feat: upgrade wrapper to 0.2.4 by
@jviallin codecov/codecov-action#1864- Pin actions/github-script by Git SHA by
@martincostelloin codecov/codecov-action#1859- fix: check reqs exist by
@joseph-sentryin codecov/codecov-action#1835- fix: Typo in README by
@spalmurrayin codecov/codecov-action#1838- docs: Refine OIDC docs by
@spalmurrayin codecov/codecov-action#1837- build(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by
@app/dependabotin codecov/codecov-action#1829Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.3..v5.5.0
v5.4.3
What's Changed
- build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by
@app/dependabotin codecov/codecov-action#1822- fix: OIDC on forks by
@joseph-sentryin codecov/codecov-action#1823Full Changelog: https://github.com/codecov/codecov-action/compare/v5.4.2..v5.4.3
v5.4.2
... (truncated)
57e3a13
Th/6.0.0 (#1928)f67d33d
Revert "Revert "build(deps): bump actions/github-script from
7.0.1 to 8.0.0""...