Sourced from virtualenv's changelog.

v20.13.4 (2022-03-18)

Bugfixes - 20.13.4

- Improve performance of python startup inside created virtualenvs - by :user:`asottile`. (`[#2317](https://github.com/pypa/virtualenv/issues/2317) <https://github.com/pypa/virtualenv/issues/2317>`_)
- Upgrade embedded setuptools to ``60.10.0`` from ``60.9.3`` - by :user:`gaborbernat`. (`[#2320](https://github.com/pypa/virtualenv/issues/2320) <https://github.com/pypa/virtualenv/issues/2320>`_)
v20.13.3 (2022-03-07)
Bugfixes - 20.13.3

• Avoid symlinking the contents of /usr into PyPy3.8+ virtualenvs - by :user:stefanor. ([#2310](https://github.com/pypa/virtualenv/issues/2310) <https://github.com/pypa/virtualenv/issues/2310>_)
• Bump embed pip from 22.0.3 to 22.0.4 - by :user:gaborbernat. ([#2311](https://github.com/pypa/virtualenv/issues/2311) <https://github.com/pypa/virtualenv/issues/2311>_)

v20.13.2 (2022-02-24)

Bugfixes - 20.13.2

- Upgrade embedded setuptools to ``60.9.3`` from ``60.6.0`` - by :user:`gaborbernat`. (`[#2306](https://github.com/pypa/virtualenv/issues/2306) <https://github.com/pypa/virtualenv/issues/2306>`_)
v20.13.1 (2022-02-05)
Bugfixes - 20.13.1

• fix "execv() arg 2 must contain only strings" error on M1 MacOS ([#2282](https://github.com/pypa/virtualenv/issues/2282) <https://github.com/pypa/virtualenv/issues/2282>_)
• Ugrade embedded setuptools to 60.5.0 from 60.2.0 - by :user:asottile. ([#2289](https://github.com/pypa/virtualenv/issues/2289) <https://github.com/pypa/virtualenv/issues/2289>_)
• Upgrade embedded pip to 22.0.3 and setuptools to 60.6.0 - by :user:gaborbernat and :user:asottile. ([#2294](https://github.com/pypa/virtualenv/issues/2294) <https://github.com/pypa/virtualenv/issues/2294>_)

v20.13.0 (2022-01-02)

Features - 20.13.0

- Add downloaded wheel information in the relevant JSON embed file to
  prevent additional downloads of the same wheel. - by :user:`mayeut`. (`[#2268](https://github.com/pypa/virtualenv/issues/2268) <https://github.com/pypa/virtualenv/issues/2268>`_)
Bugfixes - 20.13.0

• Fix AttributeError: 'bool' object has no attribute 'error' when creating a Python 2.x virtualenv on macOS - by moreati. ([#2269](https://github.com/pypa/virtualenv/issues/2269) <https://github.com/pypa/virtualenv/issues/2269>_)
• Fix PermissionError: [Errno 1] Operation not permitted when creating a Python 2.x virtualenv on macOS/arm64 - by moreati. ([#2271](https://github.com/pypa/virtualenv/issues/2271) <https://github.com/pypa/virtualenv/issues/2271>_)

... (truncated)

• 775c189 release 20.13.4
• 63c94af Bump setuptools (#2320)
• a16f609 fix 20ms startup penalty added by virtualenv (#2317)
• d865c3e [pre-commit.ci] pre-commit autoupdate (#2318)
• 4d1176c Merge pull request #2312 from pypa/release-20.13.3
• e3c30b7 release 20.13.3
• 471e7cc Upgrade pip to 22.0.4 (#2311)
• 3a90a6b Avoid symlinking the contents of /usr into PyPy3 virtualenvs (#2310)
• bb3131a Merge pull request #2307 from pypa/release-20.13.2
• bcf9bb8 release 20.13.2
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 4a0292b v2.4.12
• ca95dc5 Merge pull request #288 from ClasherKasten/bugfix/issue255
• a6f551c .m files don't get associated with C language
• 7d0cc60 Merge pull request #287 from pre-commit/pre-commit-ci-update-config
• 79fd20f [pre-commit.ci] pre-commit autoupdate
• d474ee1 Merge pull request #286 from pre-commit/all-repos_autofix_gitignore-cleanup
• 77f32a1 remove unneeded gitignore lines
• 22cf27f v2.4.11
• 79779ae Merge pull request #285 from jamesharris-garmin/patch-1
• 7e25930 support identifying qml files as qml language
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from virtualenv's changelog.

v20.13.3 (2022-03-07)

Bugfixes - 20.13.3

- Avoid symlinking the contents of ``/usr`` into PyPy3.8+ virtualenvs - by :user:`stefanor`. (`[#2310](https://github.com/pypa/virtualenv/issues/2310) <https://github.com/pypa/virtualenv/issues/2310>`_)
- Bump embed pip from ``22.0.3`` to ``22.0.4`` - by :user:`gaborbernat`. (`[#2311](https://github.com/pypa/virtualenv/issues/2311) <https://github.com/pypa/virtualenv/issues/2311>`_)
v20.13.2 (2022-02-24)
Bugfixes - 20.13.2

• Upgrade embedded setuptools to 60.9.3 from 60.6.0 - by :user:gaborbernat. ([#2306](https://github.com/pypa/virtualenv/issues/2306) <https://github.com/pypa/virtualenv/issues/2306>_)

v20.13.1 (2022-02-05)

Bugfixes - 20.13.1

- fix "execv() arg 2 must contain only strings" error on M1 MacOS (`[#2282](https://github.com/pypa/virtualenv/issues/2282) <https://github.com/pypa/virtualenv/issues/2282>`_)
- Ugrade embedded setuptools to ``60.5.0`` from ``60.2.0`` - by :user:`asottile`. (`[#2289](https://github.com/pypa/virtualenv/issues/2289) <https://github.com/pypa/virtualenv/issues/2289>`_)
- Upgrade embedded pip to ``22.0.3`` and setuptools to ``60.6.0`` - by :user:`gaborbernat` and :user:`asottile`. (`[#2294](https://github.com/pypa/virtualenv/issues/2294) <https://github.com/pypa/virtualenv/issues/2294>`_)
v20.13.0 (2022-01-02)
Features - 20.13.0

• Add downloaded wheel information in the relevant JSON embed file to prevent additional downloads of the same wheel. - by :user:mayeut. ([#2268](https://github.com/pypa/virtualenv/issues/2268) <https://github.com/pypa/virtualenv/issues/2268>_)

Bugfixes - 20.13.0

- Fix ``AttributeError: 'bool' object has no attribute 'error'`` when creating a
  Python 2.x virtualenv on macOS - by ``moreati``. (`[#2269](https://github.com/pypa/virtualenv/issues/2269) <https://github.com/pypa/virtualenv/issues/2269>`_)
- Fix ``PermissionError: [Errno 1] Operation not permitted`` when creating a
  Python 2.x virtualenv on macOS/arm64 - by ``moreati``. (`[#2271](https://github.com/pypa/virtualenv/issues/2271) <https://github.com/pypa/virtualenv/issues/2271>`_)
v20.12.1 (2022-01-01)
Bugfixes - 20.12.1

• Try using previous updates of pip, setuptools & wheel when inside an update grace period rather than always falling back

... (truncated)

• e3c30b7 release 20.13.3
• 471e7cc Upgrade pip to 22.0.4 (#2311)
• 3a90a6b Avoid symlinking the contents of /usr into PyPy3 virtualenvs (#2310)
• bb3131a Merge pull request #2307 from pypa/release-20.13.2
• bcf9bb8 release 20.13.2
• 6378f72 Bump setuptools (#2306)
• 7424a01 use the workflow as part of the concurrency group (#2300)
• 253bee6 Merge pull request #2299 from pypa/release-20.13.1
• 16ad07f release 20.13.1
• 5ee5ad9 fix setuptools zipimport breakage by downgrading setuptools (#2296)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from sqlalchemy's releases.

1.4.32

Released: March 6, 2022

orm

• [orm] [bug] [regression] Fixed regression where the ORM exception that is to be raised when an INSERT silently fails to actually insert a row (such as from a trigger) would not be reached, due to a runtime exception raised ahead of time due to the missing primary key value, thus raising an uninformative exception rather than the correct one. For 1.4 and above, a new _ormexc.FlushError is added for this case that's raised earlier than the previous "null identity" exception was for 1.3, as a situation where the number of rows actually INSERTed does not match what was expected is a more critical situation in 1.4 as it prevents batching of multiple objects from working correctly. This is separate from the case where a newly fetched primary key is fetched as NULL, which continues to raise the existing "null identity" exception.

  References: #7594

• [orm] [bug] Fixed issue where using a fully qualified path for the classname in _orm.relationship() that nonetheless contained an incorrect name for path tokens that were not the first token, would fail to raise an informative error and would instead fail randomly at a later step.

  References: #7697

engine

• [engine] [bug] Adjusted the logging for key SQLAlchemy components including _engine.Engine, _engine.Connection to establish an appropriate stack level parameter, so that the Python logging tokens funcName and lineno when used in custom logging formatters will report the correct information, which can be useful when filtering log output; supported on Python 3.8 and above. Pull request courtesy Markus Gerstel.

  References: #7612

sql

• [sql] [bug] Fixed type-related error messages that would fail for values that were tuples, due to string formatting syntax, including compile of unsupported literal values and invalid boolean values.

  References: #7721

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from virtualenv's changelog.

v20.13.2 (2022-02-24)

Bugfixes - 20.13.2

- Upgrade embedded setuptools to ``60.9.3`` from ``60.6.0`` - by :user:`gaborbernat`. (`[#2306](https://github.com/pypa/virtualenv/issues/2306) <https://github.com/pypa/virtualenv/issues/2306>`_)
v20.13.1 (2022-02-05)
Bugfixes - 20.13.1

• fix "execv() arg 2 must contain only strings" error on M1 MacOS ([#2282](https://github.com/pypa/virtualenv/issues/2282) <https://github.com/pypa/virtualenv/issues/2282>_)
• Ugrade embedded setuptools to 60.5.0 from 60.2.0 - by :user:asottile. ([#2289](https://github.com/pypa/virtualenv/issues/2289) <https://github.com/pypa/virtualenv/issues/2289>_)
• Upgrade embedded pip to 22.0.3 and setuptools to 60.6.0 - by :user:gaborbernat and :user:asottile. ([#2294](https://github.com/pypa/virtualenv/issues/2294) <https://github.com/pypa/virtualenv/issues/2294>_)

v20.13.0 (2022-01-02)

Features - 20.13.0

- Add downloaded wheel information in the relevant JSON embed file to
  prevent additional downloads of the same wheel. - by :user:`mayeut`. (`[#2268](https://github.com/pypa/virtualenv/issues/2268) <https://github.com/pypa/virtualenv/issues/2268>`_)
Bugfixes - 20.13.0

• Fix AttributeError: 'bool' object has no attribute 'error' when creating a Python 2.x virtualenv on macOS - by moreati. ([#2269](https://github.com/pypa/virtualenv/issues/2269) <https://github.com/pypa/virtualenv/issues/2269>_)
• Fix PermissionError: [Errno 1] Operation not permitted when creating a Python 2.x virtualenv on macOS/arm64 - by moreati. ([#2271](https://github.com/pypa/virtualenv/issues/2271) <https://github.com/pypa/virtualenv/issues/2271>_)

v20.12.1 (2022-01-01)

Bugfixes - 20.12.1

- Try using previous updates of ``pip``, ``setuptools`` & ``wheel``
  when inside an update grace period rather than always falling back
  to embedded wheels - by :user:`mayeut`. (`[#2265](https://github.com/pypa/virtualenv/issues/2265) <https://github.com/pypa/virtualenv/issues/2265>`_)
- New patch versions of ``pip``, ``setuptools`` & ``wheel`` are now
  returned in the expected timeframe. - by :user:`mayeut`. (`[#2266](https://github.com/pypa/virtualenv/issues/2266) <https://github.com/pypa/virtualenv/issues/2266>`_)
- Manual upgrades of ``pip``, ``setuptools`` & ``wheel`` are
  not discarded by a periodic update - by :user:`mayeut`. (`[#2267](https://github.com/pypa/virtualenv/issues/2267) <https://github.com/pypa/virtualenv/issues/2267>`_)
v20.12.0 (2021-12-31)
</tr></table>

... (truncated)

• bcf9bb8 release 20.13.2
• 6378f72 Bump setuptools (#2306)
• 7424a01 use the workflow as part of the concurrency group (#2300)
• 253bee6 Merge pull request #2299 from pypa/release-20.13.1
• 16ad07f release 20.13.1
• 5ee5ad9 fix setuptools zipimport breakage by downgrading setuptools (#2296)
• 92166a9 Bump pip and setuptools (#2294)
• f969a91 fix: cast type from Path to text (#2288)
• 5dde2d8 Do not fail on warning and move to 3.10
• 2f54536 [pre-commit.ci] pre-commit autoupdate (#2293)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 22cf27f v2.4.11
• 79779ae Merge pull request #285 from jamesharris-garmin/patch-1
• 7e25930 support identifying qml files as qml language
• 3fb32cc v2.4.10
• cbf95f3 Merge pull request #284 from sirosen/add-json5
• 332394d Add the JSON5 format to extensions
• 7bc3999 Merge pull request #283 from PascalBourdier/patch-1
• a1f4cd8 doc: fix typo in README
• 45b19a7 v2.4.9
• 8acfb99 Merge pull request #280 from kreyoo/master
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from platformdirs's changelog.

platformdirs 2.5.1

• Add native support for nuitka

platformdirs 2.5.0

• Add support for Termux subsystems

platformdirs 2.4.1

• Drop python 3.6 support

• 73e00ef Out of box suppor for nuitka (#68)
• 7f47751 Support for Termux subsystem (#63)
• 36927be Merge pull request #56 from andrehedesand/andrehedesand-patch-1
• 888a033 Update README.rst
• e438af2 Fix changelog
• 2e22508 Bump linters, drop codecov and python 3.6 (#52)
• 7b78521 Update .pre-commit-config.yaml
• 19f3c11 Make codecov informational and disable comment (#46)
• 8d45906 Setup Githug workflow concurrency (#45)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from filelock's changelog.

v3.6.0 (2022-02-17)

• Fix pylint warning "Abstract class :class:WindowsFileLock <filelock.WindowsFileLock> with abstract methods instantiated" :pr:135 - by :user:vonschultz
• Fix pylint warning "Abstract class :class:UnixFileLock <filelock.UnixFileLock> with abstract methods instantiated" :pr:135 - by :user:vonschultz

v3.5.1 (2022-02-16)

• Use time.monotonic instead of time.time for calculating timeouts.

v3.5.0 (2022-02-15)

• Enable use as context decorator

v3.4.2 (2021-12-16)

• Drop support for python 3.6

v3.4.1 (2021-12-16)

• Add stacklevel to deprecation warnings for argument name change

• befd166 Raise NotImplementedError if using wrong class (#135)
• 46e4d0b Use time.monotonic() for calculating timeouts. (#136)
• 9ca0f61 Update changelog.rst
• 3db752f Fix file object treatment in docs (#130)
• 8947e72 Enable use as a context decorator (#128)
• 541baba [pre-commit.ci] pre-commit autoupdate (#134)
• 79ec7b2 [pre-commit.ci] pre-commit autoupdate
• 87acc9f Drop python3.11 checks
• b5e956c Drop support for python3.6 (#125)
• 6823192 Fix linting
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from filelock's changelog.

v3.5.1 (2022-02-16)

• Use time.monotonic instead of time.time for calculating timeouts.

v3.5.0 (2022-02-15)

• Enable use as context decorator

v3.4.2 (2021-12-16)

• Drop support for python 3.6

v3.4.1 (2021-12-16)

• Add stacklevel to deprecation warnings for argument name change

• 46e4d0b Use time.monotonic() for calculating timeouts. (#136)
• 9ca0f61 Update changelog.rst
• 3db752f Fix file object treatment in docs (#130)
• 8947e72 Enable use as a context decorator (#128)
• 541baba [pre-commit.ci] pre-commit autoupdate (#134)
• 79ec7b2 [pre-commit.ci] pre-commit autoupdate
• 87acc9f Drop python3.11 checks
• b5e956c Drop support for python3.6 (#125)
• 6823192 Fix linting
• 5a2629b Fix workflow step name
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from filelock's changelog.

v3.5.0 (2022-02-15)

• Enable use as context decorator

v3.4.2 (2021-12-16)

• Drop support for python 3.6

v3.4.1 (2021-12-16)

• Add stacklevel to deprecation warnings for argument name change

• 9ca0f61 Update changelog.rst
• 3db752f Fix file object treatment in docs (#130)
• 8947e72 Enable use as a context decorator (#128)
• 541baba [pre-commit.ci] pre-commit autoupdate (#134)
• 79ec7b2 [pre-commit.ci] pre-commit autoupdate
• 87acc9f Drop python3.11 checks
• b5e956c Drop support for python3.6 (#125)
• 6823192 Fix linting
• 5a2629b Fix workflow step name
• 8f4c287 Update changelog.rst
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• 3fb32cc v2.4.10
• cbf95f3 Merge pull request #284 from sirosen/add-json5
• 332394d Add the JSON5 format to extensions
• 7bc3999 Merge pull request #283 from PascalBourdier/patch-1
• a1f4cd8 doc: fix typo in README
• 45b19a7 v2.4.9
• 8acfb99 Merge pull request #280 from kreyoo/master
• cd6f892 add poetry.lock as toml
• 939e9c9 v2.4.8
• 5e466d7 Merge pull request #279 from adamchainz/patch-1
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from alembic's releases.

1.9.1

Released: December 23, 2022

bug

• [bug] [autogenerate] Fixed issue where server default compare would not work for string defaults that contained backslashes, due to mis-rendering of these values when comparing their contents.

  References: #1145

• [bug] [oracle] Implemented basic server default comparison for the Oracle backend; previously, Oracle's formatting of reflected defaults prevented any matches from occurring.

• [bug] [sqlite] Adjusted SQLite's compare server default implementation to better handle defaults with or without parens around them, from both the reflected and the local metadata side.

• [bug] [mssql] Adjusted SQL Server's compare server default implementation to better handle defaults with or without parens around them, from both the reflected and the local metadata side.

1.9.0

Released: December 15, 2022

feature

• [feature] [commands] Added new Alembic command alembic check. This performs the widely requested feature of running an "autogenerate" comparison between the current database and the MetaData that's currently set up for autogenerate, returning an error code if the two do not match, based on current autogenerate settings. Pull request courtesy Nathan Louie.

  References: #724

bug

• [bug] [tests] Fixed issue in tox.ini file where changes in the tox 4.0 series to the format of "passenv" caused tox to not function correctly, in particular raising an error as of tox 4.0.6.

• [bug] [typing] Fixed typing issue where revision.process_revision_directives was not fully typed; additionally ensured all Callable and Dict arguments to EnvironmentContext.configure() include parameters in

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

How often will the code scanning analysis run?

By default, code scanning will trigger a scan with the CodeQL engine on the following events:

• On every pull request — to flag up potential security problems for you to investigate before merging a PR.
• On every push to your default branch and other protected branches — this keeps the analysis results on your repository’s Security tab up to date.
• Once a week at a fixed time — to make sure you benefit from the latest updated security analysis even when no code was committed or PRs were opened.

What will this cost?

Nothing! The CodeQL engine will run inside GitHub Actions, making use of your unlimited free compute minutes for public repositories.

What types of problems does CodeQL find?

The CodeQL engine that powers GitHub code scanning is the exact same engine that powers LGTM.com. The exact set of rules has been tweaked slightly, but you should see almost exactly the same types of alerts as you were used to on LGTM.com: we’ve enabled the security-and-quality query suite for you.

How do I upgrade my CodeQL engine?

No need! New versions of the CodeQL analysis are constantly deployed on GitHub.com; your repository will automatically benefit from the most recently released version.

The analysis doesn’t seem to be working

If you get an error in GitHub Actions that indicates that CodeQL wasn’t able to analyze your code, please follow the instructions here to debug the analysis.

How do I disable LGTM.com?

If you have LGTM’s automatic pull request analysis enabled, then you can follow these steps to disable the LGTM pull request analysis. You don’t actually need to remove your repository from LGTM.com; it will automatically be removed in the next few months as part of the deprecation of LGTM.com (more info here).

Which source code hosting platforms does code scanning support?

GitHub code scanning is deeply integrated within GitHub itself. If you’d like to scan source code that is hosted elsewhere, we suggest that you create a mirror of that code on GitHub.

How do I know this PR is legitimate?

This PR is filed by the official LGTM.com GitHub App, in line with the deprecation timeline that was announced on the official GitHub Blog. The proposed GitHub Action workflow uses the official open source GitHub CodeQL Action. If you have any other questions or concerns, please join the discussion here in the official GitHub community!

I have another question / how do I get in touch?

Please join the discussion here to ask further questions and send us suggestions!

Sourced from psycopg2-binary's changelog.

Current release

What's new in psycopg 2.9.5 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.11.
• Add support for rowcount in MERGE statements in binary packages (:ticket:[#1497](https://github.com/psycopg/psycopg2/issues/1497)).
• Wheel package compiled against OpenSSL 1.1.1r and PostgreSQL 15 libpq.

What's new in psycopg 2.9.4 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Fix ~psycopg2.extras.register_composite(), ~psycopg2.extras.register_range() with customized :sql:search_path (:ticket:[#1487](https://github.com/psycopg/psycopg2/issues/1487)).
• Handle correctly composite types with names or in schemas requiring escape.
• Find pg_service.conf file in the /etc/postgresql-common directory in binary packages (:ticket:[#1365](https://github.com/psycopg/psycopg2/issues/1365)).
• ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 15.
• Wheel package compiled against OpenSSL 1.1.1q and PostgreSQL 14.4 libpq.

What's new in psycopg 2.9.3 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Alpine (musl) wheels now available (:ticket:[#1392](https://github.com/psycopg/psycopg2/issues/1392)).
• macOS arm64 (Apple M1) wheels now available (:ticket:1482).

What's new in psycopg 2.9.2 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Raise ValueError for dates >= Y10k (:ticket:[#1307](https://github.com/psycopg/psycopg2/issues/1307)).
• ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 14.
• Add preliminary support for Python 3.11 (:tickets:[#1376](https://github.com/psycopg/psycopg2/issues/1376), [#1386](https://github.com/psycopg/psycopg2/issues/1386)).
• Wheel package compiled against OpenSSL 1.1.1l and PostgreSQL 14.1 libpq (:ticket:[#1388](https://github.com/psycopg/psycopg2/issues/1388)).

What's new in psycopg 2.9.1 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Fix regression with named ~psycopg2.sql.Placeholder (:ticket:[#1291](https://github.com/psycopg/psycopg2/issues/1291)).

... (truncated)

• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from python-dotenv's releases.

Version 0.21.0

What's Changed

Added

• CLI: add support for invocations via 'python -m'. (#395 by @​theskumar)
• load_dotenv function now returns False. (#388 by @​larsks)
• CLI: add --format= option to list command. (#407 by @​sammck)

Fixed

• Drop Python 3.5 and 3.6 and upgrade GA (#393 by @​eggplants)
• Use open instead of io.open. (#389 by @​rabinadk1)
• Improve documentation for variables without a value (#390 by @​bbc2)
• Add parse_it to Related Projects by (#410 by @​naorlivne)
• Update README.md by (#415 by @​harveer07)
• Improve documentation with direct use of MkDocs by (#398 by @​bbc2)

New Contributors

• @​rabinadk1 made their first contribution in theskumar/python-dotenv#389
• @​larsks made their first contribution in theskumar/python-dotenv#388
• @​naorlivne made their first contribution in theskumar/python-dotenv#410
• @​eggplants made their first contribution in theskumar/python-dotenv#393
• @​sammck made their first contribution in theskumar/python-dotenv#407
• @​harveer07 made their first contribution in theskumar/python-dotenv#415
• @​theGOTOguy made their first contribution in theskumar/python-dotenv#414

Full Changelog: https://github.com/theskumar/python-dotenv/compare/v0.20.0...v0.21.0

Sourced from python-dotenv's changelog.

[0.21.0] - 2022-09-03

Added

• CLI: add support for invocations via 'python -m'. (#395 by @​theskumar)
• load_dotenv function now returns False. (#388 by @​larsks)
• CLI: add --format= option to list command. (#407 by @​sammck)

Fixed

• Drop Python 3.5 and 3.6 and upgrade GA (#393 by @​eggplants)
• Use open instead of io.open. (#389 by @​rabinadk1)
• Improve documentation for variables without a value (#390 by @​bbc2)
• Add parse_it to Related Projects by (#410 by @​naorlivne)
• Update README.md by (#415 by @​harveer07)
• Improve documentation with direct use of MkDocs by (#398 by @​bbc2)

[0.20.0] - 2022-03-24

Added

• Add encoding (Optional[str]) parameter to get_key, set_key and unset_key. (#379 by [@​bbc2])

Fixed

• Use dict to specify the entry_points parameter of setuptools.setup (#376 by [@​mgorny]).
• Don't build universal wheels (#387 by [@​bbc2]).

• b6fe193 Bump version: 0.20.0 → 0.21.0
• 5d07931 update changelog
• 490b116 Revert "fix: out of scope error when "dest" variable is undefined #413"
• b1f041d Add release notes for 0.21.0
• 6399af6 chore: fix flake8 issue
• a53d652 fix: out of scope error when "dest" variable is undefined #413
• a7c811d Update README.md (#415)
• 914c68e feat(cli) add --format= option to list command (#407)
• 2f36c08 Drop Python 3.5 and 3.6 and upgrade GA (#393)
• a50a3bf Add .vscode to gitignore
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from python-decouple's releases.

v3.6

What's Changed

• Update Changelog to reflect latest versions by @​stevejalim in henriquebastos/python-decouple#129
• fix: replace strtobool for local function by @​ZandorSabino in henriquebastos/python-decouple#128

New Contributors

• @​stevejalim made their first contribution in henriquebastos/python-decouple#129
• @​ZandorSabino made their first contribution in henriquebastos/python-decouple#128

Full Changelog: https://github.com/henriquebastos/python-decouple/compare/v3.5...v3.6

Sourced from python-decouple's changelog.

3.6 (2022-02-02)

• Add support for Docker secrets.
• Fix deprecation warning on Python 3.10

• 4f16fbe Update workflow to python 3.10.
• a75fdfc Bump version 3.6
• a627eef Fix #128
• f802447 Parametrize tests
• a4b104d Refactor PR #128
• 7e90cd3 join utils in decouple
• 0137606 Add twine to requirements to enable release workflow
• 440ce81 Merge branch 'pr-61'
• dd78373 Update changelog.
• e227ab6 Improve secret tests.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from itsdangerous's releases.

2.1.2

• Changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-2
• Milestone: https://github.com/pallets/itsdangerous/milestone/7?closed=1

2.1.1

• Changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-1
• Milestone: https://github.com/pallets/itsdangerous/milestone/6?closed=1

2.1.0

• Changes: https://itsdangerous.palletsprojects.com/en/2.1.x/changes/#version-2-1-0
• Milestone: https://github.com/pallets/itsdangerous/milestone/4

Sourced from itsdangerous's changelog.

Version 2.1.2

Released 2022-03-24

• Handle date overflow in timed unsign on 32-bit systems. :pr:299

Version 2.1.1

Released 2022-03-09

• Handle date overflow in timed unsign. :pr:296

Version 2.1.0

Released 2022-02-17

• Drop support for Python 3.6. :pr:272

• Remove previously deprecated code. :pr:273

  • JWS functionality: Use a dedicated library such as Authlib instead.
  • import itsdangerous.json: Import json from the standard library instead.

• 49d263f Merge pull request #301 from pallets/release-2.1.2
• 8c75d07 release version 2.1.2
• 64cd581 Merge pull request #299 from dirkmueller/main
• 3edfbbb handle OverflowError in timed unsign on 32-bit systems
• faa28bc start version 2.1.2
• 38e9d8a Merge pull request #298 from pallets/release-2.1.1
• ff13147 release version 2.1.1
• 25494a8 Merge pull request #296 from alanhamlett/main
• 177196d catch OSError on Windows
• 37f0997 catching year overflow ValueError
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)