Skip to content

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Dec 8, 2025

Bumps vcrpy from 7.0.0 to 8.0.0.

Release notes

Sourced from vcrpy's releases.

v8.0.0

Breaking Changes

New Features

  • New drop_unused_requests option to remove unused interactions from cassettes (#763) - thanks @​danielnsilva

Bug Fixes

  • Rewrite httpx support to patch httpcore instead of httpx (#943) - thanks @​seowalex
    • Fixes httpx.ResponseNotRead exceptions (#832, #834)
    • Fixes KeyError: 'follow_redirects' (#945)
    • Adds support for custom httpx transports
  • Fix HTTPS proxy handling - proxy address no longer ends up in cassette URIs (#809, #914) - thanks @​alga
  • Fix iscoroutinefunction deprecation warning on Python 3.14 - thanks @​kloczek

Other Changes

Full Changelog: kevin1024/vcrpy@v7.0.0...v8.0.0

Changelog

Sourced from vcrpy's changelog.

Changelog

For a full list of triaged issues, bugs and PRs and what release they are targeted for please see the following link.

ROADMAP MILESTONES <https://github.com/kevin1024/vcrpy/milestones>_

All help in providing PRs to close out bug issues is appreciated. Even if that is providing a repo that fully replicates issues. We have very generous contributors that have added these to bug issues which meant another contributor picked up the bug and closed it out.

  • 8.0.0

    • BREAKING: Drop support for Python 3.9 (major version bump) - thanks @​jairhenrique
    • BREAKING: Drop support for urllib3 < 2 - fixes CVE warnings from urllib3 1.x (#926, #880) - thanks @​jairhenrique
    • New feature: drop_unused_requests option to remove unused interactions from cassettes (#763) - thanks @​danielnsilva
    • Rewrite httpx support to patch httpcore instead of httpx (#943) - thanks @​seowalex
      • Fixes httpx.ResponseNotRead exceptions (#832, #834)
      • Fixes KeyError: 'follow_redirects' (#945)
      • Adds support for custom httpx transports
    • Fix HTTPS proxy handling - proxy address no longer ends up in cassette URIs (#809, #914) - thanks @​alga
    • Fix iscoroutinefunction deprecation warning on Python 3.14 - thanks @​kloczek
    • Only log message if response is appended - thanks @​talfus-laddus
    • Optimize urllib.parse calls - thanks @​Martin-Brunthaler
    • Fix CI for Ubuntu 24.04 - thanks @​hartwork
    • Various CI improvements: migrate to uv, update GitHub Actions - thanks @​jairhenrique
    • Various linting and test improvements - thanks @​jairhenrique and @​hartwork
  • 7.0.0

  • 6.0.2

  • 6.0.1

    • Bugfix with to Tornado cassette generator (thanks @​graingert)
  • 6.0.0

    • BREAKING: Fix issue with httpx support (thanks @​parkerhancock) in #784. NOTE: You may have to recreate some of your cassettes produced in previous releases due to the binary format being saved incorrectly in previous releases
    • BREAKING: Drop support for boto (vcrpy still supports boto3, but is dropping the deprecated boto support in this release. (thanks @​jairhenrique)
    • Fix compatibility issue with Python 3.12 (thanks @​hartwork)
    • Drop simplejson (fixes some compatibility issues) (thanks @​jairhenrique)
    • Run CI on Python 3.12 and PyPy 3.9-3.10 (thanks @​mgorny)
    • Various linting and docs improvements (thanks @​jairhenrique)
    • Tornado fixes (thanks @​graingert)
  • 5.1.0

... (truncated)

Commits
  • c7bb59e Release v8.0.0
  • 2183690 pre-commit: Autoupdate
  • d5ba702 only log message if response is appended
  • 952994b Patch httpcore instead of httpx
  • e2f3240 Fixes some tornado tests
  • bb69083 Enables SIM ruff lint
  • 73eed94 Drops Python 3.9 support
  • a23fe03 build(deps): bump actions/setup-python from 5 to 6
  • bb74386 build(deps): bump astral-sh/setup-uv from 6 to 7
  • ac70eaa build(deps): bump astral-sh/setup-uv from 5 to 6
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note

Bumps vcrpy from 7.0.0 to 8.0.0.

Written by Cursor Bugbot for commit 16b1624. This will update automatically on new commits. Configure here.

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Dec 8, 2025
Bumps [vcrpy](https://github.com/kevin1024/vcrpy) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/kevin1024/vcrpy/releases)
- [Changelog](https://github.com/kevin1024/vcrpy/blob/master/docs/changelog.rst)
- [Commits](kevin1024/vcrpy@v7.0.0...v8.0.0)

---
updated-dependencies:
- dependency-name: vcrpy
  dependency-version: 8.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/uv/vcrpy-8.0.0 branch from 4f966e2 to 16b1624 Compare December 11, 2025 01:33
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This PR is being reviewed by Cursor Bugbot

Details

Your team is on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle for each member of your team.

To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.

"pytest-asyncio==1.3.0",
"pytest-subprocess==1.5.3",
"vcrpy==7.0.0", # pinned, less versions break pytest-recording
"vcrpy==8.1.0", # pinned, less versions break pytest-recording
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: Wrong vcrpy version: 8.1.0 instead of 8.0.0

The PR title and description indicate an upgrade from vcrpy 7.0.0 to 8.0.0, but the actual code specifies version 8.1.0. The vcrpy changelog and release notes only document version 8.0.0 as the latest release. This appears to be a typo that would cause dependency resolution to fail if vcrpy==8.1.0 doesn't exist on PyPI.

Fix in Cursor Fix in Web

@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Dec 15, 2025

Superseded by #4085.

@dependabot dependabot bot closed this Dec 15, 2025
@dependabot dependabot bot deleted the dependabot/uv/vcrpy-8.0.0 branch December 15, 2025 10:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant