• 67d0c46 [4.0.x] Bumped version for 4.0 release.
• 0f4fa0c [4.0.x] Finalized release notes for Django 4.0.
• 01c0fb9 [4.0.x] Updated asgiref dependency for 4.0 release series.
• 7f20e89 [4.0.x] Added CVE-2021-44420 to security archive.
• 20b9ad3 [4.0.x] Fixed #30530, CVE-2021-44420 -- Fixed potential bypass of an upstream...
• 4c5215a [4.0.x] Updated translations from Transifex.
• fed7f99 [4.0.x] Fixed #33335 -- Made model validation ignore functional unique constr...
• 7bde53a [4.0.x] Refs #33333 -- Fixed PickleabilityTestCase.test_annotation_with_calla...
• 2c20883 [4.0.x] Fixed #33333 -- Fixed setUpTestData() crash with models.BinaryField o...
• 306fbf1 [4.0.x] Fixed #33334 -- Alphabetized form and model fields in reference docs.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from amqp's releases.

v5.0.7

What's Changed

• Remove dependency to case by @​matusvalo in celery/py-amqp#364
• Fix typos by @​kianmeng in celery/py-amqp#365
• added codeql actions by @​auvipy in celery/py-amqp#369
• drop as we dont use travis by @​auvipy in celery/py-amqp#371
• Bugfix: not closing socket after server disconnect by @​michael-lazar in celery/py-amqp#374
• add new python versions to tox by @​auvipy in celery/py-amqp#366

New Contributors

• @​kianmeng made their first contribution in celery/py-amqp#365
• @​michael-lazar made their first contribution in celery/py-amqp#374

Full Changelog: https://github.com/celery/py-amqp/compare/v5.0.6...v5.0.7

Sourced from amqp's changelog.

5.0.7

:release-date: 2021-12-13 15:45 P.M. UTC+6:00 :release-by: Asif Saif Uddin

• Remove dependency to case
• Bugfix: not closing socket after server disconnect

.. _version-5.0.6:

• fb162f2 Bump version: 5.0.6 → 5.0.7
• fb95a45 changelog entry for v5.0.7 release
• b992496 add new python versions to tox (#366)
• d4c879f Adding two tests, for Connection.collect and Transport.close.
• 1cf468c added tidelift alignment action
• 92ddf36 drop as we dont use travis
• 57f3ec5 added codeql actions
• c1fe574 Fix typos
• fa4c4bb Remove dependency to case
• 7300741 fix errors
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from tzdata's releases.

2022.6: Release of upstream tzdata 2022f

Version 2022.6

Upstream version 2022f released 2022-10-29T01:04:57+00:00

Briefly:

Mexico will no longer observe DST except near the US border. Chihuahua moves to year-round -06 on 2022-10-30. Fiji no longer observes DST. Move links to 'backward'. In vanguard form, GMT is now a Zone and Etc/GMT a link. zic now supports links to links, and vanguard form uses this. Simplify four Ontario zones. Fix a Y2438 bug when reading TZif data. Enable 64-bit time_t on 32-bit glibc platforms. Omit large-file support when no longer needed. In C code, use some C23 features if available. Remove no-longer-needed workaround for Qt bug 53071.

Changes to future timestamps.

Mexico will no longer observe DST after 2022, except for areas near the US border that continue to observe US DST rules. On 2022-10-30 at 02:00 the Mexican state of Chihuahua moves from -07 (-06 with DST) to year-round -06, thus not changing its clocks that day. The new law states that Chihuahua near the US border no longer observes US DST.

Fiji will not observe DST in 2022/3. (Thanks to Shalvin Narayan.) For now, assume DST is suspended indefinitely.

Changes to data

Move links to 'backward' to ease and simplify link maintenance. This affects generated data only if you use 'make BACKWARD='.

GMT is now a Zone and Etc/GMT a link instead of vice versa, as GMT is needed for leap second support whereas Etc/GMT is not. However, this change exposes a bug in TZUpdater 2.3.2 so it is present only in vanguard form for now.

Vanguard form now uses links to links, as zic now supports this.

Changes to past timestamps

Simplify four Ontario zones, as most of the post-1970 differences seem to have been imaginary. (Problem reported by Chris Walton.) Move America/Nipigon, America/Rainy_River, and America/Thunder_Bay to 'backzone'; backward- compatibility links still work, albeit with some different timestamps before November 2005.

2022.5: Release of upstream tzdata 2022e

Version 2022.5

Upstream version 2022e released 2022-10-11T18:13:02+00:00

Briefly:

... (truncated)

Sourced from tzdata's changelog.

Version 2022.6

Upstream version 2022f released 2022-10-29T01:04:57+00:00

Briefly:

Mexico will no longer observe DST except near the US border. Chihuahua moves to year-round -06 on 2022-10-30. Fiji no longer observes DST. Move links to 'backward'. In vanguard form, GMT is now a Zone and Etc/GMT a link. zic now supports links to links, and vanguard form uses this. Simplify four Ontario zones. Fix a Y2438 bug when reading TZif data. Enable 64-bit time_t on 32-bit glibc platforms. Omit large-file support when no longer needed. In C code, use some C23 features if available. Remove no-longer-needed workaround for Qt bug 53071.

Changes to future timestamps.

Mexico will no longer observe DST after 2022, except for areas near the US border that continue to observe US DST rules. On 2022-10-30 at 02:00 the Mexican state of Chihuahua moves from -07 (-06 with DST) to year-round -06, thus not changing its clocks that day. The new law states that Chihuahua near the US border no longer observes US DST.

Fiji will not observe DST in 2022/3. (Thanks to Shalvin Narayan.) For now, assume DST is suspended indefinitely.

Changes to data

Move links to 'backward' to ease and simplify link maintenance. This affects generated data only if you use 'make BACKWARD='.

GMT is now a Zone and Etc/GMT a link instead of vice versa, as GMT is needed for leap second support whereas Etc/GMT is not. However, this change exposes a bug in TZUpdater 2.3.2 so it is present only in vanguard form for now.

Vanguard form now uses links to links, as zic now supports this.

Changes to past timestamps

Simplify four Ontario zones, as most of the post-1970 differences seem to have been imaginary. (Problem reported by Chris Walton.) Move America/Nipigon, America/Rainy_River, and America/Thunder_Bay to 'backzone'; backward- compatibility links still work, albeit with some different timestamps before November 2005.

---

Version 2022.5

Upstream version 2022e released 2022-10-11T18:13:02+00:00

Briefly:

... (truncated)

• 291f754 Update time zone data to 2022f
• fe638cc Update tzdata to 2022e
• 967f57f Update tzdata to 2022d
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from black's releases.

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

Preview style

• Fix a crash when formatting some dicts with parenthesis-wrapped long string keys (#3262)

Configuration

• .ipynb_checkpoints directories are now excluded by default (#3293)
• Add --skip-source-first-line / -x option to ignore the first line of source code while formatting (#3299)

Packaging

• Executables made with PyInstaller will no longer crash when formatting several files at once on macOS. Native x86-64 executables for macOS are available once again. (#3275)
• Hatchling is now used as the build backend. This will not have any effect for users who install Black with its wheels from PyPI. (#3233)
• Faster compiled wheels are now available for CPython 3.11 (#3276)

Blackd

• Windows style (CRLF) newlines will be preserved (#3257).

Integrations

• Vim plugin: add flag (g:black_preview) to enable/disable the preview style (#3246)
• Update GitHub Action to support formatting of Jupyter Notebook files via a jupyter option (#3282)
• Update GitHub Action to support use of version specifiers (e.g. <23) for Black version (#3265)

Sourced from black's changelog.

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

Preview style

• Fix a crash when formatting some dicts with parenthesis-wrapped long string keys (#3262)

Configuration

• .ipynb_checkpoints directories are now excluded by default (#3293)
• Add --skip-source-first-line / -x option to ignore the first line of source code while formatting (#3299)

Packaging

• Executables made with PyInstaller will no longer crash when formatting several files at once on macOS. Native x86-64 executables for macOS are available once again. (#3275)
• Hatchling is now used as the build backend. This will not have any effect for users who install Black with its wheels from PyPI. (#3233)
• Faster compiled wheels are now available for CPython 3.11 (#3276)

Blackd

• Windows style (CRLF) newlines will be preserved (#3257).

Integrations

• Vim plugin: add flag (g:black_preview) to enable/disable the preview style (#3246)
• Update GitHub Action to support formatting of Jupyter Notebook files via a jupyter option (#3282)
• Update GitHub Action to support use of version specifiers (e.g. <23) for Black version (#3265)

• 27d2014 Prepare release 22.10.0 (#3311)
• 4da0851 Add option to skip the first line of source code (#3299)
• 0359b85 Preserve crlf line endings in blackd (#3257)
• 27d7ea4 Bump docutils from 0.18.1 to 0.19 in /docs (#3161)
• 1a20c4d Bump sphinx from 5.2.1 to 5.2.3 in /docs (#3305)
• 980997f Bump furo from 2022.9.15 to 2022.9.29 in /docs (#3304)
• b1077aa Bump myst-parser from 0.18.0 to 0.18.1 in /docs (#3303)
• 956bf39 Add .ipynb_checkpoints to DEFAULT_EXCLUDES (#3293)
• 141291a Enable build isolation under CIWB (#3297)
• ddb9924 Bump pypa/cibuildwheel from 2.10.0 to 2.10.2 (#3290)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from tzdata's releases.

2022.4: Release of upstream tzdata 2022d

Version 2022.4

Upstream version 2022d released 2022-09-23T19:02:57+00:00

Briefly:

Palestine transitions are now Saturdays at 02:00. Simplify three Ukraine zones into one.

Changes to future timestamps

Palestine now springs forward and falls back at 02:00 on the first Saturday on or after March 24 and October 24, respectively. This means 2022 falls back 10-29 at 02:00, not 10-28 at 01:00. (Thanks to Heba Hamad.)

Changes to past timestamps

Simplify three Ukraine zones to one, since the post-1970 differences seem to have been imaginary. Move Europe/Uzhgorod and Europe/Zaporozhye to 'backzone'; backward-compatibility links still work, albeit with different timestamps before October 1991.

2022.3: Release of upstream tzdata 2022c

Version 2022.3

Upstream version 2022c released 2022-08-16T00:47:18+00:00

Briefly:

Work around awk bug in FreeBSD, macOS, etc. Improve tzselect on intercontinental Zones.

Sourced from tzdata's changelog.

Version 2022.4

Upstream version 2022d released 2022-09-23T19:02:57+00:00

Briefly:

Palestine transitions are now Saturdays at 02:00. Simplify three Ukraine zones into one.

Changes to future timestamps

Palestine now springs forward and falls back at 02:00 on the first Saturday on or after March 24 and October 24, respectively. This means 2022 falls back 10-29 at 02:00, not 10-28 at 01:00. (Thanks to Heba Hamad.)

Changes to past timestamps

Simplify three Ukraine zones to one, since the post-1970 differences seem to have been imaginary. Move Europe/Uzhgorod and Europe/Zaporozhye to 'backzone'; backward-compatibility links still work, albeit with different timestamps before October 1991.

---

Version 2022.3

Upstream version 2022c released 2022-08-16T00:47:18+00:00

Briefly:

Work around awk bug in FreeBSD, macOS, etc. Improve tzselect on intercontinental Zones.

---

• 8c45339 Update tzdata to 2022d
• c5e7813 Update to 2022c
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from coverage's changelog.

Version 7.0.0 — 2022-12-18

Nothing new beyond 7.0.0b1.

.. _changes_7-0-0b1:

Version 7.0.0b1 — 2022-12-03

A number of changes have been made to file path handling, including pattern matching and path remapping with the [paths] setting (see :ref:config_paths). These changes might affect you, and require you to update your settings.

(This release includes the changes from 6.6.0b1 <changes_6-6-0b1_>_, since 6.6.0 was never released.)

• Changes to file pattern matching, which might require updating your configuration:

  • Previously, * would incorrectly match directory separators, making precise matching difficult. This is now fixed, closing issue 1407_.

  • Now ** matches any number of nested directories, including none.

• Improvements to combining data files when using the :ref:config_run_relative_files setting, which might require updating your configuration:

  • During coverage combine, relative file paths are implicitly combined without needing a [paths] configuration setting. This also fixed issue 991_.

  • A [paths] setting like */foo will now match foo/bar.py so that relative file paths can be combined more easily.

  • The :ref:config_run_relative_files setting is properly interpreted in more places, fixing issue 1280_.

• When remapping file paths with [paths], a path will be remapped only if the resulting path exists. The documentation has long said the prefix had to exist, but it was never enforced. This fixes issue 608, improves issue 649, and closes issue 757_.

• Reporting operations now implicitly use the [paths] setting to remap file paths within a single data file. Combining multiple files still requires the coverage combine step, but this simplifies some single-file situations. Closes issue 1212_ and issue 713_.

... (truncated)

• df3f2bf docs: latest sample HTML report
• 52b5680 docs: prep for 7.0.0
• be5f556 chore: make upgrade
• d20c1d0 docs: #1024 was also fixed
• 5feb451 chore: make upgrade
• 84749fd build: use tox.pip to ensure all tox pins are the same
• 3cd0bc6 test: this was wrong?
• c053b7f chore: make upgrade
• 7e0e072 build: a target to summarize make upgrade
• 18681c4 build: this link could be useful in the future
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from tzdata's releases.

2022.5: Release of upstream tzdata 2022e

Version 2022.5

Upstream version 2022e released 2022-10-11T18:13:02+00:00

Briefly:

Jordan and Syria switch from +02/+03 with DST to year-round +03.

Changes to future timestamps

Jordan and Syria are abandoning the DST regime and are changing to permanent +03, so they will not fall back from +03 to +02 on 2022-10-28. (Thanks to Steffen Thorsen and Issam Al-Zuwairi.)

Changes to past timestamps

On 1922-01-01 Tijuana adopted standard time at 00:00, not 01:00.

Changes to past time zone abbreviations and DST flags

The temporary advancement of clocks in central Mexico in summer 1931 is now treated as daylight saving time, instead of as two changes to standard time.

Sourced from tzdata's changelog.

Version 2022.5

Upstream version 2022e released 2022-10-11T18:13:02+00:00

Briefly:

Jordan and Syria switch from +02/+03 with DST to year-round +03.

Changes to future timestamps

Jordan and Syria are abandoning the DST regime and are changing to permanent +03, so they will not fall back from +03 to +02 on 2022-10-28. (Thanks to Steffen Thorsen and Issam Al-Zuwairi.)

Changes to past timestamps

On 1922-01-01 Tijuana adopted standard time at 00:00, not 01:00.

Changes to past time zone abbreviations and DST flags

The temporary advancement of clocks in central Mexico in summer 1931 is now treated as daylight saving time, instead of as two changes to standard time.

---

• fe638cc Update tzdata to 2022e
• 967f57f Update tzdata to 2022d
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sqlparse's changelog.

Release 0.4.3 (Sep 23, 2022)

Enhancements

• Add support for DIV operator (pr664, by chezou).
• Add support for additional SPARK keywords (pr643, by mrmasterplan).
• Avoid tokens copy (pr622, by living180).
• Add REGEXP as a comparision (pr647, by PeterSandwich).
• Add DISTINCTROW keyword for MS Access (issue677).
• Improve parsing of CREATE TABLE AS SELECT (pr662, by chezou).

Bug Fixes

• Fix spelling of INDICATOR keyword (pr653, by ptld).
• Fix formatting error in EXTRACT function (issue562, issue670, pr676, by ecederstrand).
• Fix bad parsing of create table statements that use lower case (issue217, pr642, by mrmasterplan).
• Handle backtick as valid quote char (issue628, pr629, by codenamelxl).
• Allow any unicode character as valid identifier name (issue641).

Other

• Update github actions to test on Python 3.10 as well (pr661, by cclaus).

• fba15d3 Bump version.
• b72a8ff Allow any unicode character as identifier name (fixes #641).
• 07a2e81 Add docstring and comments.
• 4235eb8 Add tests for utils.remove_quotes.
• e269881 Update Changelog and authors.
• c1a597e add backtick to remove_quotes character list
• 893d7b2 Update CHANGELOG.
• 403de6f Fixed bad parsing of create table statements that use lower case
• a172486 Update Changelog.
• 7de1999 CREATE TABLE tbl AS SELECT should return get_alias() for its column
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from django-debug-toolbar's releases.

3.7

What's Changed

• Fix JS linting error from pre-commit. by @​tim-schilling in jazzband/django-debug-toolbar#1670
• Use system font stack in the toolbar by @​matthiask in jazzband/django-debug-toolbar#1672
• Profiling panel improvements by @​tim-schilling in jazzband/django-debug-toolbar#1669
• added functionality to keep unsort the session dict by @​ritiksoni00 in jazzband/django-debug-toolbar#1673

New Contributors

• @​ritiksoni00 made their first contribution in jazzband/django-debug-toolbar#1673

Full Changelog: https://github.com/jazzband/django-debug-toolbar/compare/3.6...3.7

Sourced from django-debug-toolbar's changelog.

3.7.0 (2022-09-25)

• Added Profiling panel setting PROFILER_THRESHOLD_RATIO to give users better control over how many function calls are included. A higher value will include more data, but increase render time.
• Update Profiling panel to include try to always include user code. This code is more important to developers than dependency code.
• Highlight the project function calls in the profiling panel.
• Added Profiling panel setting PROFILER_CAPTURE_PROJECT_CODE to allow users to disable the inclusion of all project code. This will be useful to project setups that have dependencies installed under settings.BASE_DIR.
• The toolbar's font stack now prefers system UI fonts. Tweaked paddings, margins and alignments a bit in the CSS code.
• Only sort the session dictionary when the keys are all strings. Fixes a bug that causes the toolbar to crash when non-strings are used as keys.

• 9f0b938 Version 3.7.0
• 348e582 added functionality to keep unsort the session dict (#1673)
• 5cbf357 [pre-commit.ci] pre-commit autoupdate
• 6bc4ca2 Make the docs linter happy
• c359e76 Tweak spacings a bit because of the changed fonts
• be0a433 Profiling panel improvements (#1669)
• c88a13d Use system font stack in the toolbar
• 5923f38 [pre-commit.ci] pre-commit autoupdate
• b20ddd3 Fix JS linting error from pre-commit.
• 6f548ae [pre-commit.ci] pre-commit autoupdate (#1667)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from mako's releases.

1.2.3

Released: Thu Sep 22 2022

bug

• [bug] [lexer] Fixed issue in lexer in the same category as that of #366 where the regexp used to match an end tag didn't correctly organize for matching characters surrounded by whitespace, leading to high memory / interpreter hang if a closing tag incorrectly had a large amount of unterminated space in it. Credit to Sebastian Chnelik for locating the issue.

  As Mako templates inherently render and directly invoke arbitrary Python code from the template source, it is never appropriate to create templates that contain untrusted input.

  References: #367

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from prompt-toolkit's changelog.

3.0.31: 2022-09-02

New features:

• Pass through name property in TextArea widget to Buffer.
• Added a enable_cpr parameter to Vt100_Output, TelnetServer and PromptToolkitSSHServer, to completely disable CPR support instead of automatically detecting it.

• 5e11c13 Release 3.0.31
• 783d8a9 Fixed bug: enable_cpr should be True by default.
• 2d4e7e8 Added enable_cpr parameter to Vt100_Output, TelnetServer and PromptToolkitSSH...
• 8e9bdd9 Use ExitStack in Application.run()
• d3dcbe8 Add passthrough of the name property in TextArea (#1654)
• ee8b783 Add git-bbb
• ffaa5f5 docs: Fix a few typos
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pep8-naming's releases.

0.13.3

• Formally require flake8 5.0.0 or later.
• Add support for Python 3.11.

Sourced from pep8-naming's changelog.

0.13.3 - 2022-12-19

• Formally require flake8 5.0.0 or later.
• Add support for Python 3.11.

• 615b8e7 Prepare the 0.13.3 release (#211)
• e970d40 Officially support Python 3.11 (#212)
• af89472 Update pep8-naming compatibility with flake8 (#210)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from black's releases.

22.12.0

Preview style

• Enforce empty lines before classes and functions with sticky leading comments (#3302)
• Reformat empty and whitespace-only files as either an empty file (if no newline is present) or as a single newline character (if a newline is present) (#3348)
• Implicitly concatenated strings used as function args are now wrapped inside parentheses (#3307)
• Correctly handle trailing commas that are inside a line's leading non-nested parens (#3370)

Configuration

• Fix incorrectly applied .gitignore rules by considering the .gitignore location and the relative path to the target file (#3338)
• Fix incorrectly ignoring .gitignore presence when more than one source directory is specified (#3336)

Parser

• Parsing support has been added for walruses inside generator expression that are passed as function args (for example, any(match := my_re.match(text) for text in texts)) (#3327).

Integrations

• Vim plugin: Optionally allow using the system installation of Black via let g:black_use_virtualenv = 0(#3309)

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

Preview style

... (truncated)

Sourced from black's changelog.

22.12.0

Preview style

• Enforce empty lines before classes and functions with sticky leading comments (#3302)
• Reformat empty and whitespace-only files as either an empty file (if no newline is present) or as a single newline character (if a newline is present) (#3348)
• Implicitly concatenated strings used as function args are now wrapped inside parentheses (#3307)
• Correctly handle trailing commas that are inside a line's leading non-nested parens (#3370)

Configuration

• Fix incorrectly applied .gitignore rules by considering the .gitignore location and the relative path to the target file (#3338)
• Fix incorrectly ignoring .gitignore presence when more than one source directory is specified (#3336)

Parser

• Parsing support has been added for walruses inside generator expression that are passed as function args (for example, any(match := my_re.match(text) for text in texts)) (#3327).

Integrations

• Vim plugin: Optionally allow using the system installation of Black via let g:black_use_virtualenv = 0(#3309)

22.10.0

Highlights

• Runtime support for Python 3.6 has been removed. Formatting 3.6 code will still be supported until further notice.

Stable style

• Fix a crash when # fmt: on is used on a different block level than # fmt: off (#3281)

... (truncated)

• 2ddea29 Prepare release 22.12.0 (#3413)
• 5b1443a release: skip bad macos wheels for now (#3411)
• 9ace064 Bump peter-evans/find-comment from 2.0.1 to 2.1.0 (#3404)
• 19c5fe4 Fix CI with latest flake8-bugbear (#3412)
• d4a8564 Bump sphinx-copybutton from 0.5.0 to 0.5.1 in /docs (#3390)
• 2793249 Wordsmith current_style.md (#3383)
• d97b789 Remove whitespaces of whitespace-only files (#3348)
• c23a5c1 Clarify that Black runs with --safe by default (#3378)
• 8091b25 Correctly handle trailing commas that are inside a line's leading non-nested ...
• ffaaf48 Compare each .gitignore found with an appropiate relative path (#3338)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from django-debug-toolbar's releases.

3.8.1

Note: 3.8.0 was not released, use 3.8.1

What's Changed

• fix: Simplify logic for Panel.enabled property by @​adamantike in jazzband/django-debug-toolbar#1676
• Auto-update History panel with JavaScript fetch requests. by @​tim-schilling in jazzband/django-debug-toolbar#1685
• Improve the template_source view coverage a bit by @​matthiask in jazzband/django-debug-toolbar#1688
• Support rerendering the toolbar on HTMX boosted pages. by @​tim-schilling in jazzband/django-debug-toolbar#1686
• Include panel scripts in content when RENDER_PANELS=True by @​matthiask in jazzband/django-debug-toolbar#1689
• Fixed #1693 -- Run tests on python 3.11 by @​pauloxnet in jazzband/django-debug-toolbar#1694
• Add divide by zero protection in timer.js by @​SmailBestybay in jazzband/django-debug-toolbar#1687
• Fixed #1695 - Run test on Python 3.11 for Django 4.1 by @​pauloxnet in jazzband/django-debug-toolbar#1696
• Create one-time mouseup listener for each mousedown by @​scuml in jazzband/django-debug-toolbar#1697
• Update package metadata by @​ofek in jazzband/django-debug-toolbar#1690
• Validate and format pyproject.toml by @​hugovk in jazzband/django-debug-toolbar#1700
• Drop Rob's email address in project config. by @​tim-schilling in jazzband/django-debug-toolbar#1699
• Fix highlighting on history panel by @​scuml in jazzband/django-debug-toolbar#1698
• Allow Language Selection on the Toolbar by @​leandrodesouzadev in jazzband/django-debug-toolbar#1703
• Attach handlers to djDebug instead of document by @​scuml in jazzband/django-debug-toolbar#1702
• Formalize support for Python 3.11. by @​tim-schilling in jazzband/django-debug-toolbar#1713

New Contributors

• @​adamantike made their first contribution in jazzband/django-debug-toolbar#1676
• @​SmailBestybay made their first contribution in jazzband/django-debug-toolbar#1687
• @​ofek made their first contribution in jazzband/django-debug-toolbar#1690
• @​hugovk made their first contribution in jazzband/django-debug-toolbar#1700
• @​leandrodesouzadev made their first contribution in jazzband/django-debug-toolbar#1703

Full Changelog: https://github.com/jazzband/django-debug-toolbar/compare/3.7...3.8.1

3.8

This tag was not released due to a bug in the release job. Use 3.8.1

Sourced from django-debug-toolbar's changelog.

3.8.1 (2022-12-03)

• Fixed release process by re-adding twine to release dependencies. No functional change.

3.8.0 (2022-12-03)

• Added protection against division by 0 in timer.js
• Auto-update History panel for JavaScript fetch requests.
• Support HTMX boosting <https://htmx.org/docs/#boosting/>__ and Turbo <https://turbo.hotwired.dev/>__ pages.
• Simplify logic for Panel.enabled property by checking cookies earlier.
• Include panel scripts in content when RENDER_PANELS is set to True.
• Create one-time mouseup listener for each mousedown when dragging the handle.
• Update package metadata to use Hatchling.
• Fix highlighting on history panel so odd rows are highlighted when selected.
• Formalize support for Python 3.11.

• 6e265c1 Version 3.8.1
• 47e6f1a Fix release job by including twine to check distributions.
• d2be499 Version 3.8.0
• bc195b1 Formalize support for Python 3.11.
• be01d51 Update changelog.
• 00bc368 Attach handlers to djdebug instead of document
• d04b9d1 [pre-commit.ci] pre-commit autoupdate
• d9b25f2 Added TOOLBAR_LANGUAGE setting.
• a0681c9 [pre-commit.ci] pre-commit autoupdate (#1701)
• a481849 Fix highlighting on history panel (#1698)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from flake8-comprehensions's changelog.

3.10.1 (2022-10-29)

• Fix false positive in rules C402 and C404 for dict() calls with keyword arguments.

  Thanks to Anders Kaseorg for the report in Issue [#457](https://github.com/adamchainz/flake8-comprehensions/issues/457) <https://github.com/adamchainz/flake8-comprehensions/issues/457>__.

• 1eb8823 Version 3.10.1
• e655c26 Fix C402/C404 false positive for dict() with kwargs (#458)
• 7d8f47f Test with Python 3.11.0 (#456)
• 26681c6 Upgrade requirements (#455)
• 4fb5a39 [pre-commit.ci] pre-commit autoupdate (#453)
• 778eaad Upgrade GitHub Actions workflows to Ubuntu 22.04 (#452)
• baa8acd Add 'Typing :: Typed' PyPI classifier
• 76a79c0 [pre-commit.ci] pre-commit autoupdate (#451)
• 763cf2a Upgrade to Mypy 0.981
• eb96bb6 [pre-commit.ci] pre-commit autoupdate (#450)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)