Skip to content

chore(deps): bump the production-dependencies group across 1 directory with 12 updates#162

Open
dependabot[bot] wants to merge 1 commit into
stagingfrom
dependabot/pip/staging/production-dependencies-d9442c8faa
Open

chore(deps): bump the production-dependencies group across 1 directory with 12 updates#162
dependabot[bot] wants to merge 1 commit into
stagingfrom
dependabot/pip/staging/production-dependencies-d9442c8faa

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the production-dependencies group with 12 updates in the / directory:

Package From To
alembic 1.13.1 1.18.5
cachetools 7.1.3 7.1.4
cryptography 48.0.0 49.0.0
fastapi 0.136.1 0.138.2
grpcio 1.80.0 1.81.1
grpcio-testing 1.80.0 1.81.1
grpcio-tools 1.80.0 1.81.1
phonenumbers 9.0.30 9.0.33
pymysql 1.1.3 1.2.0
sentry-sdk 2.60.0 2.63.0
sqlalchemy 2.0.50 2.0.51
tqdm 4.67.3 4.68.3

Updates alembic from 1.13.1 to 1.18.5

Release notes

Sourced from alembic's releases.

1.18.5

Released: June 25, 2026

usecase

  • [usecase] [commands] Added --splice support to the merge() command. Previously, the merge command would suggest using --splice when attempting to merge non-head revisions, but the flag was not actually accepted by the command. The splice parameter is now available in both the command-line interface and the command.merge() function, matching the existing support in command.revision(). Pull request courtesy Kadir Can Ozden.

    References: #1712

  • [usecase] [environment] Added ScriptDirectory.get_heads.consider_depends_on parameter to ScriptDirectory.get_heads(). When set to True, head revisions that are also a dependency of another revision via depends_on are excluded from the result, matching the effective heads that would be present in the alembic_version table after running all upgrades.

    References: #1806

bug

  • [bug] [autogenerate] Fixed rendering of dialect keyword arguments containing ~sqlalchemy.schema.Column objects within sequences, such as postgresql_include. These were previously rendered using repr(), producing invalid Python in the generated migration scripts. Column objects within list or tuple values are now correctly rendered as their string column names. Pull request courtesy Ajay Singh.

    References: #1258

  • [bug] [mysql] Implemented type comparison for ENUM datatypes on MySQL, which checks that the individual enum values are equivalent. If additional entries are on either side, this generates a diff. Changes of order do not generate a diff. Pull request courtesy Furkan Köykıran.

    References: #1745, #779

  • [bug] [operations] Fixed bug where the inline_references parameter of Operations.add_column() did not include foreign key referential actions such as ON DELETE, ON UPDATE, DEFERRABLE, INITIALLY, and MATCH when rendering the inline REFERENCES clause.

... (truncated)

Commits

Updates cachetools from 7.1.3 to 7.1.4

Changelog

Sourced from cachetools's changelog.

v7.1.4 (2026-05-22)

  • Minor unit test improvements.

  • Update build environment.

Commits
  • 48284d7 Release v7.1.4.
  • 55ea96b Update build environment.
  • c5439fe Add threading tests for lock-only decorators.
  • 91828fc Run threading tests unconditionally with timeout.
  • See full diff in compare view

Updates cryptography from 48.0.0 to 49.0.0

Changelog

Sourced from cryptography's changelog.

49.0.0 - 2026-06-12


* **BACKWARDS INCOMPATIBLE:** Support for ``x86_64`` macOS has been removed.
  We now only publish ``arm64`` wheels for macOS.
* **BACKWARDS INCOMPATIBLE:** Support for 32-bit Windows has been removed.
  Users should move to a 64-bit Python installation.
* **BACKWARDS INCOMPATIBLE:** Removed the deprecated
  ``PUBLIC_KEY_TYPES``, ``PRIVATE_KEY_TYPES``,
  ``CERTIFICATE_PRIVATE_KEY_TYPES``, ``CERTIFICATE_ISSUER_PUBLIC_KEY_TYPES``,
  and ``CERTIFICATE_PUBLIC_KEY_TYPES`` type aliases. Use
  ``PublicKeyTypes``, ``PrivateKeyTypes``, ``CertificateIssuerPrivateKeyTypes``,
  ``CertificateIssuerPublicKeyTypes``, and ``CertificatePublicKeyTypes``
  instead. These were deprecated in version 40.0.
* **BACKWARDS INCOMPATIBLE:** :class:`~cryptography.hazmat.primitives.ciphers.algorithms.ChaCha20`
  now treats the first 4 bytes of the ``nonce`` as a 32-bit little-endian block
  counter (as defined in :rfc:`7539`) and tracks the number of bytes processed.
  Attempting to encrypt or decrypt more data than the counter allows before it
  would overflow now raises a :class:`ValueError` rather than silently diverging
  from RFC 7539. Setting the counter portion of the ``nonce`` to zero allows
  encrypting up to 256 GiB with a given nonce.
* **BACKWARDS INCOMPATIBLE:** Loading an X.509 certificate whose ECDSA or DSA
  signature ``AlgorithmIdentifier`` contains encoded NULL parameters now raises
  a :class:`ValueError`. Such certificates are invalid, but older versions of
  Java emitted them; previously they loaded with a deprecation warning.
* Fixed cross-compilation of the CFFI bindings when ``PYO3_CROSS_LIB_DIR``
  is set. The build now derives the Python include directory from
  ``PYO3_CROSS_LIB_DIR`` instead of querying the host interpreter, which
  previously caused the build to fail during cross-compilations for embedded
  systems, on hosts which have same-version Python development headers
  installed as the target Python.
* Added support for signing and verifying X.509 certificates, certificate
  signing requests, and certificate revocation lists with
  :doc:`/hazmat/primitives/asymmetric/mldsa` keys, as well as loading
  certificates that contain ML-DSA public keys.
* Added :meth:`~cryptography.hazmat.primitives.hpke.KEM.enc_length` to
  :class:`~cryptography.hazmat.primitives.hpke.KEM` so callers can split the
  encapsulated key from the ciphertext returned by
  :meth:`~cryptography.hazmat.primitives.hpke.Suite.encrypt`.
* :meth:`~cryptography.x509.verification.ExtensionPolicy.require_present`,
  :meth:`~cryptography.x509.verification.ExtensionPolicy.may_be_present`, and
  :meth:`~cryptography.x509.verification.ExtensionPolicy.require_not_present`
  now accept any extension type. Previously only a fixed set of extension
  types was supported, which made it impossible to account for otherwise
  unrecognized critical extensions during path validation.
* Added support for using :class:`~cryptography.x509.Certificate`,
  :class:`~cryptography.x509.CertificateSigningRequest`, and
  :class:`~cryptography.x509.CertificateRevocationList` as field types in
  :doc:`/hazmat/asn1/index` structures.
* Added :func:`~cryptography.hazmat.asn1.value_set`, a class decorator that
</tr></table> 

... (truncated)

Commits
  • e300bbe bump version and changelog for 49.0.0 (#15030)
  • fa74cd8 Add external mu (message representative) support for ML-DSA (#14979)
  • f594db3 chore(deps): bump openssl from 0.10.80 to 0.10.81 (#15029)
  • 608e011 chore(deps): bump openssl-sys from 0.9.116 to 0.9.117 (#15028)
  • a322bc4 chore(deps): bump cc from 1.2.63 to 1.2.64 (#15027)
  • 33181a7 Reject critical nameConstraints extensions containing directoryName constrain...
  • 6080dc7 Bump dependencies that dependabot isn't (#15026)
  • 121faa3 chore(deps): bump virtualenv from 21.4.2 to 21.4.3 (#15023)
  • 829520b Add more robust processing for DH parameters. (#15016)
  • 0f05001 Bump downstream dependencies in CI (#15025)
  • Additional commits viewable in compare view

Updates fastapi from 0.136.1 to 0.138.2

Release notes

Sourced from fastapi's releases.

0.138.1

Refactors

  • ♻️ Refactor Library Skills, make info easier to find for agents. PR #15841 by @​tiangolo.

Internal

0.138.0

Features

  • ✨ Add support for app.frontend("/", directory="dist") and router.frontend("/", directory="dist"). PR #15800 by @​tiangolo.

Docs

Translations

Internal

0.137.2

Features

  • ✨ Add iter_route_contexts() for advanced use cases that used to use router.routes (e.g. Jupyverse). PR #15785 by @​tiangolo.

Translations

... (truncated)

Commits
  • 702fea8 🔖 Release version 0.138.2 (#15864)
  • 6466865 📝 Update release notes
  • b790e14 ♻️ Make app.frontend() return 404 for methods other than GET or HEAD wi...
  • c2708d9 📝 Update release notes
  • 403b1fa 🔧 Update sponsors: remove Stainless (#15862)
  • 1929ac2 📝 Update release notes
  • cba4158 ♻️ Refactor how sponsors data is handled for banners (#15852)
  • b90c49a 🔖 Release version 0.138.1 (#15842)
  • 1f2f3df 📝 Update release notes
  • 0af003a ♻️ Refactor Library Skills, make info easier to find for agents (#15841)
  • Additional commits viewable in compare view

Updates grpcio from 1.80.0 to 1.81.1

Release notes

Sourced from grpcio's releases.

Release v1.81.1

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [EventEngine] Fix a potential use-after-free error on Windows. (#42078)
  • [ssl] Server side handshaker factory stores a map of key signers. (#42002)
  • [Core] Fix completion queue shutdown race on weak memory models (ARM). (#41510)
  • [EventEngine] Fix a Windows race that causes an assertion error. (#41563)
  • [grpc_error] enable error_flatten experiment in OSS. (#41471)

Objective-C

  • [ObjC] Add receiveNextMessage to GRPCUnaryProtoCall. (#42260)

Python

  • [Python] Add typing_extensions dep to aio Bazel target. (#42001)
  • [Python] [Pyright] Part 1 - Pyright for src/python/grpcio/grpc/aio/_base_server.py. (#42240)
  • [Python] Drop 3.9. (#42145)
  • [Python] grpc-status: Relax protobuf dependency upper bound to allow 7.x. (#41948)
  • [Python] [Typeguard] Part 5 - Add Typeguard SYNC Stack in tests. (#40278)
  • [Python] Remove GIL from ReceiveMessageOperation.un_c method. (#41812)
  • [Python] Support observability in AsyncIO stack. (#41573)
  • [Python] Trim Python2 backward compatiblity syntax - removed (object) inheritance. (#41708)

Ruby

  • [Ruby] Drop support for EOL Ruby 3.1 and clean up. (#41435)
  • [Ruby] Composed CallCredentials keep a reference to their source. (#41782)

Release v1.81.0

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

... (truncated)

Commits
  • e84a8a2 [Release] Bump version to 1.81.1 (on v1.81.x branch) (#42584)
  • 4706d6a [xDS] fix use-after-free in global XdsClient map (#42559)
  • 42a6b5b [Core][Release] Update BCR presubmit job definition (#42561)
  • 8bdf11e [Release] Bump version to 1.81.0 (on v1.81.x branch) (#42432)
  • 0029e06 Move all gRPC Session classes to the experimental namespace (#42462)
  • 1f18268 [CI] Fix Asan thread_stress_test error by reducing thread count (#42424) (#42...
  • ee3fed7 Backport MacOS fix cl/917004588 to v1.81.x (#42441)
  • 6244f3b [Release] Bump version to 1.81.0-pre1 (on v1.81.x branch) (#42378)
  • 1108777 [Release] Bump core version to 54.0.0 for upcoming release (#42321)
  • 74940e8 [fix] Add back the do-while loop that handles the TSI_RESULT correctly.
  • Additional commits viewable in compare view

Updates grpcio-testing from 1.80.0 to 1.81.1

Updates grpcio-tools from 1.80.0 to 1.81.1

Release notes

Sourced from grpcio-tools's releases.

Release v1.81.1

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [EventEngine] Fix a potential use-after-free error on Windows. (#42078)
  • [ssl] Server side handshaker factory stores a map of key signers. (#42002)
  • [Core] Fix completion queue shutdown race on weak memory models (ARM). (#41510)
  • [EventEngine] Fix a Windows race that causes an assertion error. (#41563)
  • [grpc_error] enable error_flatten experiment in OSS. (#41471)

Objective-C

  • [ObjC] Add receiveNextMessage to GRPCUnaryProtoCall. (#42260)

Python

  • [Python] Add typing_extensions dep to aio Bazel target. (#42001)
  • [Python] [Pyright] Part 1 - Pyright for src/python/grpcio/grpc/aio/_base_server.py. (#42240)
  • [Python] Drop 3.9. (#42145)
  • [Python] grpc-status: Relax protobuf dependency upper bound to allow 7.x. (#41948)
  • [Python] [Typeguard] Part 5 - Add Typeguard SYNC Stack in tests. (#40278)
  • [Python] Remove GIL from ReceiveMessageOperation.un_c method. (#41812)
  • [Python] Support observability in AsyncIO stack. (#41573)
  • [Python] Trim Python2 backward compatiblity syntax - removed (object) inheritance. (#41708)

Ruby

  • [Ruby] Drop support for EOL Ruby 3.1 and clean up. (#41435)
  • [Ruby] Composed CallCredentials keep a reference to their source. (#41782)

Release v1.81.0

This is release 1.81.0 (graphic) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

... (truncated)

Commits

Updates phonenumbers from 9.0.30 to 9.0.33

Commits
  • 0efec90 Fix lint
  • 6400333 Prep for 9.0.33 release
  • 4419992 Generated files for metadata
  • 2e01d60 Merge metadata changes from upstream 9.0.33
  • bdee3ff Merge code changes from upstream v9.0.33
  • facd74c Prep for 9.0.32 release
  • 8ea3d6a Generated files for metadata
  • 1d40b76 Merge metadata changes from upstream 9.0.32
  • 43a9c86 Prep for 9.0.31 release
  • 98c625e Generated files for metadata
  • Additional commits viewable in compare view

Updates pymysql from 1.1.3 to 1.2.0

Release notes

Sourced from pymysql's releases.

v1.2.0

What's Changed

New Contributors

Full Changelog: PyMySQL/PyMySQL@v1.1.3...v1.2.0

Changelog

Sourced from pymysql's changelog.

v1.2.0

Release date: 2026-05-19

Breaking changes

  • Connection.ping() change the default to not reconnect and deprecate reconnect argument. Create a new connection if you want to reconnect. (#1241)

  • Error classes in Cursor class are removed. (#1240)

  • connect() arguments db and passwd now emit DeprecationWarning. Use database and password instead. (#1240)

  • Reorganize TLS connection behavior.

    • PyMySQL uses TLS by default when server supports it. Use ssl_disabled=True to prohibit SSL. (#1213)

    • When ssl_verify_cert=True, ssl_verify_identity=True, an ssl.SSLContext is passed, or when any other SSL option is configured, the connection requires SSL and raises OperationalError (CR_SSL_CONNECTION_ERROR) if the server doesn't support it. (#1234)

Other changes

  • Support MySQL 8 row/column alias syntax in executemany INSERT regex. (#1235)
  • Expose SQLSTATE on MySQL protocol exceptions without changing exception formatting. (#1236)
  • Reject non-finite decimal.Decimal query parameters (NaN, sNaN, ±Infinity). (#1237)
  • Connection.set_charset(charset) now emits DeprecationWarning.
Commits
  • 0f1c324 use ubuntu-latest for pypi publishing
  • 53b16b2 Release v1.2.0 (#1244)
  • 637fe7e Deprecate Connection.set_charset() at runtime and document warning behavior...
  • 23ca04a add AGENTS.md
  • 7349a44 deprecate reconnect in Connection.ping() (#1241)
  • ad5c50c update CHANGELOG
  • c963edb Deprecation and removals (#1240)
  • af6b9b4 Prepare CHANGELOG for v1.2.0 release from v1.1.3 changes (#1238)
  • c7bf73f docs: update outdated requirements and reference links (#1239)
  • c532b8d Reject non-finite decimal.Decimal query parameters (NaN, sNaN, `±Infini...
  • Additional commits viewable in compare view

Updates sentry-sdk from 2.60.0 to 2.63.0

Release notes

Sourced from sentry-sdk's releases.

2.63.0

Bug Fixes 🐛

Fastapi

Other

Internal Changes 🔧

2.62.0

New Features ✨

  • Add integration for aiomysql by @​tonal in #4703

    We're adding support for the aiomysql package. To enable the integration, add it to your integrations list:

    import sentry_sdk
    from sentry_sdk.integrations.aiomysql import AioMySQLIntegration
    sentry_sdk.init(
    traces_sample_rate=1.0,
    integrations=[AioMySQLIntegration()],
    )

  • Support HTTPX2 by @​sentrivana in #6463

    We're adding out-of-the-box support for HTTPX2. As long as use the package, the Sentry integration will be enabled automatically and you should see your requests instrumented in Sentry.

    import httpx2
    import sentry_sdk
    sentry_sdk.init(...)
    with sentry_sdk.start_transaction(name="testing_sentry"):

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.63.0

Bug Fixes 🐛

Fastapi

Other

Internal Changes 🔧

2.62.0

New Features ✨

  • Add integration for aiomysql by @​tonal in #4703

    We're adding support for the aiomysql package. To enable the integration, add it to your integrations list:

    import sentry_sdk
    from sentry_sdk.integrations.aiomysql import AioMySQLIntegration
    sentry_sdk.init(
    traces_sample_rate=1.0,
    integrations=[AioMySQLIntegration()],
    )

  • Support HTTPX2 by @​sentrivana in #6463

    We're adding out-of-the-box support for HTTPX2. As long as use the package, the Sentry integration will be enabled automatically and you should see your requests instrumented in Sentry.

    import httpx2
    import sentry_sdk
    sentry_sdk.init(...)

... (truncated)

Commits
  • 44b008a update changelog
  • 0b2af51 Update CHANGELOG.md
  • 250caad release: 2.63.0
  • 72a57de fix(flask): Set user data on scope at request start (#6566)
  • 6a4c3a1 fix: Remove 0000 trace_id fallbacks (#6570)
  • 1df9835 feat(falcon): Set name and source on request span when streaming (#6562)
  • 77874bd test(falcon): Support span streaming (#6561)
  • 6bcfb9c fix(fastapi): Prevent double wrapping of sync handlers on FastAPI >= 0.137 (#...
  • 72d972c fix(fastapi): use effective_route_context path for prefixed routers (#6572)
  • cc802f6 feat(chalice): Add span streaming support to Chalice integration (#6503)
  • Additional commits viewable in compare view

Updates sqlalchemy from 2.0.50 to 2.0.51

Release notes

Sourced from sqlalchemy's releases.

2.0.51

Released: June 15, 2026

orm

  • [orm] [bug] Fixed issue where _orm.subqueryload() combined with PropComparator.of_type() and PropComparator.and_() would silently drop the additional filter criteria, causing all related objects to be loaded instead of only those matching the filter. The LoaderCriteriaOption was being constructed against the base entity rather than the effective entity indicated by PropComparator.of_type(). Pull request courtesy Arya Rizky.

    References: #13207

  • [orm] [bug] Fixed bug where a failure during tpc_prepare() within _orm.Session.commit() for a two-phase session would raise IllegalStateChangeError instead of the original database exception. The internal _prepare_impl() method's error handler was unable to invoke _orm.SessionTransaction.rollback() due to a state-change guard, preventing proper cleanup and masking the underlying error.

    References: #13356

engine

  • [engine] [bug] Fixed issue where Result.freeze() would lose track of ambiguous column names present in the original CursorResult, causing key-based access on the thawed result to silently return a value instead of raising InvalidRequestError. The SimpleResultMetaData now accepts and propagates ambiguous key information so that frozen, thawed, and pickled results raise consistently for duplicate column names. Pull request courtesy Saurabh Kohli.

    References: #9427

sql

  • [sql] [bug] Fixed issue where _sql.StatementLambdaElement would proxy attribute access through the cached "expected" expression rather than the resolved expression, causing stale closure-bound parameter values to be used when a lambda statement was extended with non-lambda criteria such as an additional .where() clause. Courtesy cjc0013.

    References: #10827

... (truncated)

Commits

Updates tqdm from 4.67.3 to 4.68.3

Release notes

Sourced from tqdm's releases.

tqdm v4.68.3 stable

  • utils: delay os.get_terminal_size (#1763 <- #1760)
  • autonotebook: support QtConsole, Spyder, JupyterLite (#1763, #1628, #1559 <- #1283, #1098, #512)
  • minor docs updates
    • fix typo (#1762)
    • use git-fame
  • misc minor framework updates
    • fix & update CI build
    • pre-commit: add docs & metadata generation
    • move tox.ini -> pyproject.toml, move tox-gh-actions -> tox-gh
    • add Python 3.14, drop 3.7 support

tqdm v4.68.2 stable

  • revert accidental change to ascii default (fixes #1760)
    • UnicodeEncodeError: 'charmap' codec can't encode characters in position 6-7: character maps to <undefined> can be fixed by installing tqdm!=4.68.0,!=4.68.1
  • misc docs updates
    • fix links
    • replace stray rst -> md syntax
    • consistent "progress bar" terminology (#1737)
  • tests: fix coverage (fixes #1760)

tqdm v4.68.1 stable

tqdm v4.68.0 stable

  • utils: simplify terminal size detection (#1760)
  • contrib
    • itertools (#1760)
      • add chain, permutations, combinations, combinations_with_replacement, batched
      • add product(repeat=1) keyword argument (#1428)
    • fix discord, telegram error handling
    • fix discord, slack, telegram format for total=None
  • soft-deprecate tqdm.utils.envwrap -> envwrap
  • benchmarks: fix asv
  • misc linting
  • misc framework updates
    • CI: migrate manual job to pre-commit.ci
    • bump workflow actions & pre-commit hooks
Commits
  • 9aff609 bump version, merge pull request #1763 from tqdm/jupyterlite
  • 9872f80 drop date from snap version str to fix pydantic
  • b829334 support QtConsole, Spyder, JupyterLite
  • 6fa4867 delay os.get_terminal_size
  • 748e107 lint
  • e6e29eb move tox.ini -> pyproject.toml
  • 617e4fa tox-gh-actions -> tox-gh
  • c49c50d add python 3.14, drop python 3.7 support
  • fa2bcdb pre-commit: tqdm.1
  • 1ec7988 auto git-fame
  • Additional commits viewable in compare view

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 15, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/staging/production-dependencies-d9442c8faa branch 2 times, most recently from 5c82214 to b0defbf Compare June 24, 2026 00:57
…y with 12 updates

Bumps the production-dependencies group with 12 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [alembic](https://github.com/sqlalchemy/alembic) | `1.13.1` | `1.18.5` |
| [cachetools](https://github.com/tkem/cachetools) | `7.1.3` | `7.1.4` |
| [cryptography](https://github.com/pyca/cryptography) | `48.0.0` | `49.0.0` |
| [fastapi](https://github.com/fastapi/fastapi) | `0.136.1` | `0.138.2` |
| [grpcio](https://github.com/grpc/grpc) | `1.80.0` | `1.81.1` |
| [grpcio-testing](https://grpc.io) | `1.80.0` | `1.81.1` |
| [grpcio-tools](https://github.com/grpc/grpc) | `1.80.0` | `1.81.1` |
| [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) | `9.0.30` | `9.0.33` |
| [pymysql](https://github.com/PyMySQL/PyMySQL) | `1.1.3` | `1.2.0` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.60.0` | `2.63.0` |
| [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) | `2.0.50` | `2.0.51` |
| [tqdm](https://github.com/tqdm/tqdm) | `4.67.3` | `4.68.3` |



Updates `alembic` from 1.13.1 to 1.18.5
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

Updates `cachetools` from 7.1.3 to 7.1.4
- [Changelog](https://github.com/tkem/cachetools/blob/master/CHANGELOG.rst)
- [Commits](tkem/cachetools@v7.1.3...v7.1.4)

Updates `cryptography` from 48.0.0 to 49.0.0
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@48.0.0...49.0.0)

Updates `fastapi` from 0.136.1 to 0.138.2
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.136.1...0.138.2)

Updates `grpcio` from 1.80.0 to 1.81.1
- [Release notes](https://github.com/grpc/grpc/releases)
- [Commits](grpc/grpc@v1.80.0...v1.81.1)

Updates `grpcio-testing` from 1.80.0 to 1.81.1

Updates `grpcio-tools` from 1.80.0 to 1.81.1
- [Release notes](https://github.com/grpc/grpc/releases)
- [Commits](grpc/grpc@v1.80.0...v1.81.1)

Updates `phonenumbers` from 9.0.30 to 9.0.33
- [Commits](daviddrysdale/python-phonenumbers@v9.0.30...v9.0.33)

Updates `pymysql` from 1.1.3 to 1.2.0
- [Release notes](https://github.com/PyMySQL/PyMySQL/releases)
- [Changelog](https://github.com/PyMySQL/PyMySQL/blob/main/CHANGELOG.md)
- [Commits](PyMySQL/PyMySQL@v1.1.3...v1.2.0)

Updates `sentry-sdk` from 2.60.0 to 2.63.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.60.0...2.63.0)

Updates `sqlalchemy` from 2.0.50 to 2.0.51
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

Updates `tqdm` from 4.67.3 to 4.68.3
- [Release notes](https://github.com/tqdm/tqdm/releases)
- [Commits](tqdm/tqdm@v4.67.3...v4.68.3)

---
updated-dependencies:
- dependency-name: alembic
  dependency-version: 1.18.4
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: cachetools
  dependency-version: 7.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: cryptography
  dependency-version: 49.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: fastapi
  dependency-version: 0.137.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio-testing
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio-tools
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: phonenumbers
  dependency-version: 9.0.32
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: pymysql
  dependency-version: 1.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sentry-sdk
  dependency-version: 2.62.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sqlalchemy
  dependency-version: 2.0.51
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: tqdm
  dependency-version: 4.68.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/staging/production-dependencies-d9442c8faa branch from b0defbf to 0be40ac Compare June 29, 2026 17:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants