Skip to content
This repository has been archived by the owner on Feb 28, 2022. It is now read-only.

Bump pipenv from 2018.10.13 to 2018.11.14 #514

Closed
wants to merge 1 commit into from

Conversation

dependabot-preview[bot]
Copy link
Contributor

Bumps pipenv from 2018.10.13 to 2018.11.14.

Release notes

Sourced from pipenv's releases.

2018.11.14 (2018-11-14)

Features & Improvements

  • Improved exceptions and error handling on
    failures. #1977
  • Added persistent settings for all CLI flags via PIPENV_{FLAG_NAME}
    environment variables by enabling auto_envvar_prefix=PIPENV in
    click (implements PEEP-0002). #2200
  • Added improved messaging about available but skipped updates due to
    dependency conflicts when running
    pipenv update --outdated. #2411
  • Added environment variable PIPENV_PYUP_API_KEY to add ability to
    override the bundled pyup.io API key. #2825
  • Added additional output to pipenv update --outdated to indicate
    that the operation succeded and all packages were already up to
    date. #2828
  • Updated crayons patch to enable colors on native powershell but
    swap native blue for magenta. #3020
  • Added support for --bare to pipenv clean, and fixed
    pipenv sync --bare to actually reduce output. #3041
  • Added windows-compatible spinner via upgraded vistir dependency. #3089
  • Added support for python installations managed by
    asdf. #3096
  • Improved runtime performance of no-op commands such as
    pipenv --venv by around 2/3. #3158
  • Do not show error but success for running pipenv uninstall --all
    in a fresh virtual environment. #3170
  • Improved asynchronous installation and error handling via queued
    subprocess paralleization. #3217

Bug Fixes

  • Remote non-PyPI artifacts and local wheels and artifacts will now
    include their own hashes rather than including hashes from
    PyPI. #2394
  • Non-ascii characters will now be handled correctly when parsed by
    pipenv's ToML
    parsers. #2737
  • Updated pipenv uninstall to respect the --skip-lock
    argument. #2848
  • Fixed a bug which caused uninstallation to sometimes fail to
    successfullly remove packages from Pipfiles with comments on
    preceding or following
    lines. #2885, #3099
  • Pipenv will no longer fail when encountering python versions on
    Windows that have been
... (truncated)
Changelog

Sourced from pipenv's changelog.

2018.11.14 (2018-11-14)

Features & Improvements

  • Improved exceptions and error handling on failures.#1977 <https://github-redirect.dependabot.com/pypa/pipenv/issues/1977>_
  • Added persistent settings for all CLI flags via PIPENV_{FLAG_NAME} environment variables by enabling auto_envvar_prefix=PIPENV in click (implements PEEP-0002).#2200 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2200>_
  • Added improved messaging about available but skipped updates due to dependency conflicts when running pipenv update --outdated.#2411 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2411>_
  • Added environment variable PIPENV_PYUP_API_KEY to add ability
    to override the bundled pyup.io API key.#2825 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2825>_
  • Added additional output to pipenv update --outdated to indicate that the operation succeded and all packages were already up to date.#2828 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2828>_
  • Updated crayons patch to enable colors on native powershell but swap native blue for magenta.#3020 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3020>_
  • Added support for --bare to pipenv clean, and fixed pipenv sync --bare to actually reduce output.#3041 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3041>_
  • Added windows-compatible spinner via upgraded vistir dependency.#3089 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3089>_
    • Added support for python installations managed by asdf.#3096 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3096>_
  • Improved runtime performance of no-op commands such as pipenv --venv by around 2/3.#3158 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3158>_
  • Do not show error but success for running pipenv uninstall --all in a fresh virtual environment.#3170 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3170>_
  • Improved asynchronous installation and error handling via queued subprocess paralleization.#3217 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3217>_

Bug Fixes

  • Remote non-PyPI artifacts and local wheels and artifacts will now include their own hashes rather than including hashes from PyPI.#2394 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2394>_
  • Non-ascii characters will now be handled correctly when parsed by pipenv's ToML parsers.#2737 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2737>_
  • Updated pipenv uninstall to respect the --skip-lock argument.#2848 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2848>_
  • Fixed a bug which caused uninstallation to sometimes fail to successfullly remove packages from Pipfiles with comments on preceding or following lines.#2885 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2885>,
    #3099 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3099>
  • Pipenv will no longer fail when encountering python versions on Windows that have been uninstalled.#2983 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2983>_
  • Fixed unnecessary extras are added when translating markers#3026 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3026>_
  • Fixed a virtualenv creation issue which could cause new virtualenvs to inadvertently attempt to read and write to global site packages.#3047 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3047>_
  • Fixed an issue with virtualenv path derivation which could cause errors, particularly for users on WSL bash.#3055 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3055>_
  • Fixed a bug which caused Unexpected EOF errors to be thrown when pip was waiting for input from users who had put login credentials in environment variables.#3088 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3088>_
  • Fixed a bug in requirementslib which prevented successful installation from mercurial repositories.#3090 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3090>_
  • Fixed random resource warnings when using pyenv or any other subprocess calls.#3094 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3094>_
    • Fixed a bug which sometimes prevented cloning and parsing mercurial requirements.#3096 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3096>_
  • Fixed an issue in delegator.py related to subprocess calls when using PopenSpawn to stream output, which sometimes threw unexpected EOF errors.#3102 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3102>,
    #3114 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3114>
    ,
    #3117 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3117>_
  • Fix the path casing issue that makes pipenv clean fail on Windows#3104 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3104>_
  • Pipenv will avoid leaving build artifacts in the current working directory.#3106 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3106>_
  • Fixed issues with broken subprocess calls leaking resource handles and causing random and sporadic failures.#3109 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3109>_
  • Fixed an issue which caused pipenv clean to sometimes clean packages from the base site-packages folder or fail entirely.#3113 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3113>_
  • Updated pythonfinder to correct an issue with unnesting of nested paths when searching for python versions.#3121 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3121>_
  • Added additional logic for ignoring and replacing non-ascii characters when formatting console output on non-UTF-8 systems.#3131 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3131>_
  • Fix virtual environment discovery when PIPENV_VENV_IN_PROJECT is set, but the in-project .venv is a file.#3134 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3134>_
  • Hashes for remote and local non-PyPI artifacts will now be included in Pipfile.lock during resolution.#3145 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3145>_
  • Fix project path hashing logic in purpose to prevent collisions of virtual environments.#3151 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3151>_
  • Fix package installation when the virtual environment path contains parentheses.#3158 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3158>_
  • Azure Pipelines YAML files are updated to use the latest syntax and product name.#3164 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3164>_
... (truncated)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Automerge options (never/patch/minor, and dev/runtime dependencies)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

@dependabot-preview dependabot-preview bot added the dependencies Pull requests that update a dependency file label Nov 15, 2018
@davehunt
Copy link
Member

@dependabot ignore this version

The latest version is failing on Jenkins due to pypa/pipenv#3223

@dependabot-preview
Copy link
Contributor Author

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot-preview dependabot-preview bot deleted the dependabot/pip/pipenv-2018.11.14 branch November 16, 2018 15:31
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants