From 6a523e0c56095d95edbf1fed15882e093b1c3173 Mon Sep 17 00:00:00 2001
From: Heinz-Alexander Fuetterer <35225576+afuetterer@users.noreply.github.com>
Date: Mon, 16 Oct 2023 15:31:11 +0200
Subject: [PATCH] build: pin django-mptt dependency

---
 .github/dependabot.yml | 2 ++
 pyproject.toml         | 5 ++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index ee73ab2200..02ffb752a9 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -10,6 +10,8 @@ updates:
       - dependencies
       - python
       - type:maintenance
+    ignore:
+      - dependency-name: django-mptt # pinned, 0.15 requires Python >= 3.9
   - package-ecosystem: github-actions
     directory: /
     schedule:
diff --git a/pyproject.toml b/pyproject.toml
index 86cf1dbcfa..9665e8e7c5 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -37,6 +37,9 @@ dynamic = [
   "version",
 ]
 dependencies = [
+  # dependencies with major version on zero are declared with
+  # major.minor.patch, because they can potentially introduce breaking changes
+  # in minor version updates anytime
   "defusedcsv~=2.0",
   "defusedxml~=0.7.1",
   "django~=4.2",
@@ -46,7 +49,7 @@ dependencies = [
   "django-filter~=23.2",
   "django-libsass~=0.9",
   "django-mathfilters~=1.0",
-  "django-mptt~=0.14.0",
+  "django-mptt==0.14.0", # pinned, 0.15 requires Python >= 3.9
   "django-rest-swagger~=2.2",
   "django-settings-export~=1.2",
   "django-split-settings~=1.2",