Bumps [django](https://github.com/django/django) from 3.2.20 to 3.2.23.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="60e648a7ae"><code>60e648a</code></a>
[3.2.x] Bumped version for 3.2.23 release.</li>
<li><a
href="f9a7fb8466"><code>f9a7fb8</code></a>
[3.2.x] Fixed CVE-2023-46695 -- Fixed potential DoS in UsernameField on
Windows.</li>
<li><a
href="e6d2591d9e"><code>e6d2591</code></a>
[3.2.x] Added stub release notes for 3.2.23.</li>
<li><a
href="3c04b74293"><code>3c04b74</code></a>
[3.2.x] Added CVE-2023-43665 to security archive.</li>
<li><a
href="86a14d653f"><code>86a14d6</code></a>
[3.2.x] Post release version bump.</li>
<li><a
href="3106e94e52"><code>3106e94</code></a>
[3.2.x] Bumped version for 3.2.22 release.</li>
<li><a
href="ccdade1a02"><code>ccdade1</code></a>
[3.2.x] Fixed CVE-2023-43665 -- Mitigated potential DoS in
django.utils.text....</li>
<li><a
href="6caf7b313d"><code>6caf7b3</code></a>
[3.2.x] Added stub release notes for 3.2.22.</li>
<li><a
href="9e814c3a5e"><code>9e814c3</code></a>
[3.2.x] Added CVE-2023-41164 to security archive.</li>
<li><a
href="4b439dcd05"><code>4b439dc</code></a>
[3.2.x] Post-release version bump.</li>
<li>Additional commits viewable in <a
href="https://github.com/django/django/compare/3.2.20...3.2.23">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Because
- we want to ensure that apps.yaml is always valid; and
- we want to ensure that each app specifies exactly one manifest file
This commit
- adds a test that loads the production apps.yaml;
- updates the AppConfig model with a validator to ensure only one
manifest path can be specified
Because
- Cirrus uses continuous enrollment (i.e., enrollment can't end until
the experiment does)
- Jetstream requires an end for enrollment before the experiment ends
for analysis
- We can't set `isEnrollmentPaused` to true without prematurely ending
the experiment in Cirrus context
This commit
- Adds an `actual_enrollment_end_date` field to the NimbusExperiment
model
- uses `actual_enrollment_end_date` for the serialized
`enrollmentEndDate` in API v6
Bumps
[browserify-sign](https://github.com/crypto-browserify/browserify-sign)
from 4.2.1 to 4.2.2.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/browserify/browserify-sign/blob/main/CHANGELOG.md">browserify-sign's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/browserify/browserify-sign/compare/v4.2.1...v4.2.2">v4.2.2</a>
- 2023-10-25</h2>
<h3>Fixed</h3>
<ul>
<li>[Tests] log when openssl doesn't support cipher <a
href="https://redirect.github.com/browserify/browserify-sign/issues/37"><code>[#37](https://github.com/crypto-browserify/browserify-sign/issues/37)</code></a></li>
</ul>
<h3>Commits</h3>
<ul>
<li>Only apps should have lockfiles <a
href="09a8995939"><code>09a8995</code></a></li>
<li>[eslint] switch to eslint <a
href="83fe46374b"><code>83fe463</code></a></li>
<li>[meta] add <code>npmignore</code> and <code>auto-changelog</code> <a
href="44181838e7"><code>4418183</code></a></li>
<li>[meta] fix package.json indentation <a
href="9ac5a5eaaa"><code>9ac5a5e</code></a></li>
<li>[Tests] migrate from travis to github actions <a
href="d845d855de"><code>d845d85</code></a></li>
<li>[Fix] <code>sign</code>: throw on unsupported padding scheme <a
href="8767739a45"><code>8767739</code></a></li>
<li>[Fix] properly check the upper bound for DSA signatures <a
href="85994cd634"><code>85994cd</code></a></li>
<li>[Tests] handle openSSL not supporting a scheme <a
href="f5f17c27f9"><code>f5f17c2</code></a></li>
<li>[Deps] update <code>bn.js</code>, <code>browserify-rsa</code>,
<code>elliptic</code>, <code>parse-asn1</code>,
<code>readable-stream</code>, <code>safe-buffer</code> <a
href="a67d0eb4ff"><code>a67d0eb</code></a></li>
<li>[Dev Deps] update <code>nyc</code>, <code>standard</code>,
<code>tape</code> <a
href="cc5350b967"><code>cc5350b</code></a></li>
<li>[Tests] always run coverage; downgrade <code>nyc</code> <a
href="75ce1d5c49"><code>75ce1d5</code></a></li>
<li>[meta] add <code>safe-publish-latest</code> <a
href="dcf49ce85a"><code>dcf49ce</code></a></li>
<li>[Tests] add <code>npm run posttest</code> <a
href="75dd8fd6ce"><code>75dd8fd</code></a></li>
<li>[Dev Deps] update <code>tape</code> <a
href="3aec0386dc"><code>3aec038</code></a></li>
<li>[Tests] skip unsupported schemes <a
href="703c83ea72"><code>703c83e</code></a></li>
<li>[Tests] node < 6 lacks array <code>includes</code> <a
href="3aa43cfbc1"><code>3aa43cf</code></a></li>
<li>[Dev Deps] fix eslint range <a
href="98d4e0d7ff"><code>98d4e0d</code></a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4af5a90bf8"><code>4af5a90</code></a>
v4.2.2</li>
<li><a
href="3aec0386dc"><code>3aec038</code></a>
[Dev Deps] update <code>tape</code></li>
<li><a
href="85994cd634"><code>85994cd</code></a>
[Fix] properly check the upper bound for DSA signatures</li>
<li><a
href="9ac5a5eaaa"><code>9ac5a5e</code></a>
[meta] fix package.json indentation</li>
<li><a
href="dcf49ce85a"><code>dcf49ce</code></a>
[meta] add <code>safe-publish-latest</code></li>
<li><a
href="44181838e7"><code>4418183</code></a>
[meta] add <code>npmignore</code> and <code>auto-changelog</code></li>
<li><a
href="8767739a45"><code>8767739</code></a>
[Fix] <code>sign</code>: throw on unsupported padding scheme</li>
<li><a
href="5f6fb17559"><code>5f6fb17</code></a>
[Tests] log when openssl doesn't support cipher</li>
<li><a
href="f5f17c27f9"><code>f5f17c2</code></a>
[Tests] handle openSSL not supporting a scheme</li>
<li><a
href="d845d855de"><code>d845d85</code></a>
[Tests] migrate from travis to github actions</li>
<li>Additional commits viewable in <a
href="https://github.com/crypto-browserify/browserify-sign/compare/v4.2.1...v4.2.2">compare
view</a></li>
</ul>
</details>
<details>
<summary>Maintainer changes</summary>
<p>This version was pushed to npm by <a
href="https://www.npmjs.com/~ljharb">ljharb</a>, a new releaser for
browserify-sign since your current version.</p>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Because
* We were referencing the megazord correctly for the top level
dockerfile but not for integration tests
~This commit~
* ~`tox.ini` (for integration tests) was referencing the wrong place for
AS: `application-services/components/nimbus/src` instead of
`application-services/megazord`~
* ~in the top level dockerfile, we needed to copy the AS megazord
`--from=dev`~
* ~[according to
this](https://docs.docker.com/compose/environment-variables/envvars-precedence/),
we weren't correctly setting the precedence for the env variable
`PYTHONPATH` -- added `PYTHONPATH` to the `.env` files and the rust
image dockerfile for integration tests~
* ~the rust image dockerfile was also referencing `PYTHON_PATH` instead
of `PYTHONPATH`~
See comment below.
Because
- We want to configure Liveness and Readiness probes for the Cirrus
container
This commit
- Add two API endpoints and return status 200
```
/__lbheartbeat__
/__heartbeat__
```
fixes#9609
Because
* As we add a wider variety of elements to the Nimbus project including
binary packages it becomes increasingly important to have a consistent
environment for each of our modules
* Using Docker allows us to control the environment each module runs in
and use a consistent base layer
* Dockerizing the schemas package will allow us to use identical Python,
Node, and Rust environments as the other modules in Nimbus
This commit
* Wraps the schemas module in a Dockerfile that is consistent with the
other modules in Nimbus
Because
* We've been seeing consistent intermittent failures with pulling images
from dockerhub
* An alternative is to use the Google Container Registry instead of
Dockerhub
* If we have better luck with Google Container Registry then we can use
that and deprecate Dockerhub
This commit
* Pushes to Google Container Registry in addition to Dockerhub
Bumps [pytest-mock](https://github.com/pytest-dev/pytest-mock) from
3.11.1 to 3.12.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pytest-dev/pytest-mock/releases">pytest-mock's
releases</a>.</em></p>
<blockquote>
<h2>v3.12.0</h2>
<ul>
<li>Added support for Python 3.12.</li>
<li>Dropped support for EOL Python 3.7.</li>
<li><code>mocker.resetall()</code> now also resets mocks created by
<code>mocker.create_autospec</code> (<a
href="https://redirect.github.com/pytest-dev/pytest-mock/pull/390">#390</a>).</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pytest-dev/pytest-mock/blob/main/CHANGELOG.rst">pytest-mock's
changelog</a>.</em></p>
<blockquote>
<h2>3.12.0 (2023-10-19)</h2>
<ul>
<li>Added support for Python 3.12.</li>
<li>Dropped support for EOL Python 3.7.</li>
<li><code>mocker.resetall()</code> now also resets mocks created by
<code>mocker.create_autospec</code>
(<code>[#390](https://github.com/pytest-dev/pytest-mock/issues/390)</code>_).</li>
</ul>
<p>.. _<a
href="https://redirect.github.com/pytest-dev/pytest-mock/issues/390">#390</a>:
<a
href="https://redirect.github.com/pytest-dev/pytest-mock/pull/390">pytest-dev/pytest-mock#390</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="69adc6f76c"><code>69adc6f</code></a>
Re-add norewrite tests</li>
<li><a
href="b905823ba6"><code>b905823</code></a>
Drop Python 3.7 and add Python 3.12</li>
<li><a
href="2a71a0d6ab"><code>2a71a0d</code></a>
mocker.resetall now also resets mockers created by
<code>create_autospec</code> (<a
href="https://redirect.github.com/pytest-dev/pytest-mock/issues/390">#390</a>)</li>
<li><a
href="e84f885011"><code>e84f885</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest-mock/issues/391">#391</a>
from pytest-dev/pre-commit-ci-update-config</li>
<li><a
href="e0372217cd"><code>e037221</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li><a
href="f019696e44"><code>f019696</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest-mock/issues/387">#387</a>
from pytest-dev/where-to-patch-link</li>
<li><a
href="09f18148a5"><code>09f1814</code></a>
Merge pull request <a
href="https://redirect.github.com/pytest-dev/pytest-mock/issues/388">#388</a>
from pytest-dev/pre-commit-ci-update-config</li>
<li><a
href="f55f17e73b"><code>f55f17e</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li><a
href="cec59a0b44"><code>cec59a0</code></a>
Update usage.rst</li>
<li><a
href="53cc0a550f"><code>53cc0a5</code></a>
Update usage.rst</li>
<li>Additional commits viewable in <a
href="https://github.com/pytest-dev/pytest-mock/compare/v3.11.1...v3.12.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[eslint-plugin-import](https://github.com/import-js/eslint-plugin-import)
from 2.28.0 to 2.29.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/import-js/eslint-plugin-import/releases">eslint-plugin-import's
releases</a>.</em></p>
<blockquote>
<h2>v2.29.0</h2>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/import-js/eslint-plugin-import/compare/v2.28.1...v2.29.0">https://github.com/import-js/eslint-plugin-import/compare/v2.28.1...v2.29.0</a></p>
<h2>v2.28.1</h2>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/import-js/eslint-plugin-import/compare/v2.28.0...v2.28.1">https://github.com/import-js/eslint-plugin-import/compare/v2.28.0...v2.28.1</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/import-js/eslint-plugin-import/blob/main/CHANGELOG.md">eslint-plugin-import's
changelog</a>.</em></p>
<blockquote>
<h2>[2.29.0] - 2023-10-22</h2>
<h3>Added</h3>
<ul>
<li>TypeScript config: add .cts and .mts extensions (<a
href="https://redirect.github.com/import-js/eslint-plugin-import/issues/2851">#2851</a>,
thanks [<a
href="https://github.com/Zamiell"><code>@Zamiell</code></a>])</li>
<li>[<code>newline-after-import</code>]: new option
<code>exactCount</code> and docs update (<a
href="https://redirect.github.com/import-js/eslint-plugin-import/issues/1933">#1933</a>,
thanks [<a
href="https://github.com/anikethsaha"><code>@anikethsaha</code></a>]
and [<a
href="https://github.com/reosarevok"><code>@reosarevok</code></a>])</li>
<li>[<code>newline-after-import</code>]: fix <code>exactCount</code>
with <code>considerComments</code> false positive, when there is a
leading comment (<a
href="https://redirect.github.com/import-js/eslint-plugin-import/issues/2884">#2884</a>,
thanks [<a
href="https://github.com/kinland"><code>@kinland</code></a>])</li>
</ul>
<h2>[2.28.1] - 2023-08-18</h2>
<h3>Fixed</h3>
<ul>
<li>[<code>order</code>]: revert breaking change to single nested group
(<a
href="https://redirect.github.com/import-js/eslint-plugin-import/issues/2854">#2854</a>,
thanks [<a
href="https://github.com/yndajas"><code>@yndajas</code></a>])</li>
</ul>
<h3>Changed</h3>
<ul>
<li>[Docs] remove duplicate fixable notices in docs (<a
href="https://redirect.github.com/import-js/eslint-plugin-import/issues/2850">#2850</a>,
thanks [<a
href="https://github.com/bmish"><code>@bmish</code></a>])</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="6d34c88a91"><code>6d34c88</code></a>
Bump to 2.29.0</li>
<li><a
href="ec6a8ea3c3"><code>ec6a8ea</code></a>
[Refactor] use <code>hasown</code> instead of <code>has</code></li>
<li><a
href="78f50b852a"><code>78f50b8</code></a>
[Deps] update <code>array-includes</code>,
<code>array.prototype.findlastindex</code>, `array.proto...</li>
<li><a
href="6d2540f2ee"><code>6d2540f</code></a>
[resolvers/webpack] v0.13.8</li>
<li><a
href="30d61b6dc4"><code>30d61b6</code></a>
[resolvers/webpack] [deps] update <code>array.prototype.find</code>,
<code>is-core-module</code>, `...</li>
<li><a
href="2c281d15d0"><code>2c281d1</code></a>
[resolvers/webpack] [refactor] use <code>hasown</code> instead of
<code>has</code></li>
<li><a
href="66cb10f302"><code>66cb10f</code></a>
[Fix] <code>newline-after-import</code>: fix <code>exactCount</code>
with <code>considerComments</code> false ...</li>
<li><a
href="8705121230"><code>8705121</code></a>
[New] <code>newline-after-import</code>: new option
<code>exactCount</code> and docs update</li>
<li><a
href="6b95a02193"><code>6b95a02</code></a>
[resolvers/webpack] v0.13.7</li>
<li><a
href="04e68a2179"><code>04e68a2</code></a>
[resolvers/webpack] [fix] use the <code>dirname</code> of the
<code>configPath</code> as <code>basedir</code></li>
<li>Additional commits viewable in <a
href="https://github.com/import-js/eslint-plugin-import/compare/v2.28.0...v2.29.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Because
- a single fetch failure currently breaks the entire fetch task; and
- we are about to drastically increase the number of fetches per task
This commit
- makes fetch failures not cause the tool to exit; and
- reports a summary of all successes and failures at the end of the
task.
Because
- we want to support fetching mozilla-central with manifest-tool
This commit
- adds support for hg.mozilla.org repositories to manifest-tool;
- adds support for legacy experimenter.yaml-based apps to manifest-tool;
- adds Firefox Desktop to apps.yaml; and
- updates make feature_manifests to fetch Firefox Desktop manifests.
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [black](https://github.com/psf/black) from 23.9.1 to 23.10.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/releases">black's
releases</a>.</em></p>
<blockquote>
<h2>23.10.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix comments getting removed from inside parenthesized strings (<a
href="https://redirect.github.com/psf/black/issues/3909">#3909</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Fix long lines with power operators getting split before the line
length (<a
href="https://redirect.github.com/psf/black/issues/3942">#3942</a>)</li>
<li>Long type hints are now wrapped in parentheses and properly indented
when split across
multiple lines (<a
href="https://redirect.github.com/psf/black/issues/3899">#3899</a>)</li>
<li>Magic trailing commas are now respected in return types. (<a
href="https://redirect.github.com/psf/black/issues/3916">#3916</a>)</li>
<li>Require one empty line after module-level docstrings. (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li>Treat raw triple-quoted strings as docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Fix cache versioning logic when <code>BLACK_CACHE_DIR</code> is set
(<a
href="https://redirect.github.com/psf/black/issues/3937">#3937</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Fix bug where attributes named <code>type</code> were not acccepted
inside <code>match</code> statements
(<a
href="https://redirect.github.com/psf/black/issues/3950">#3950</a>)</li>
<li>Add support for PEP 695 type aliases containing lambdas and other
unusual expressions
(<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
</ul>
<h3>Output</h3>
<ul>
<li>Black no longer attempts to provide special errors for attempting to
format Python 2
code (<a
href="https://redirect.github.com/psf/black/issues/3933">#3933</a>)</li>
<li>Black will more consistently print stacktraces on internal errors in
verbose mode
(<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>The action output displayed in the job summary is now wrapped in
Markdown (<a
href="https://redirect.github.com/psf/black/issues/3914">#3914</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/blob/main/CHANGES.md">black's
changelog</a>.</em></p>
<blockquote>
<h2>23.10.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix comments getting removed from inside parenthesized strings (<a
href="https://redirect.github.com/psf/black/issues/3909">#3909</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Fix long lines with power operators getting split before the line
length (<a
href="https://redirect.github.com/psf/black/issues/3942">#3942</a>)</li>
<li>Long type hints are now wrapped in parentheses and properly indented
when split across
multiple lines (<a
href="https://redirect.github.com/psf/black/issues/3899">#3899</a>)</li>
<li>Magic trailing commas are now respected in return types. (<a
href="https://redirect.github.com/psf/black/issues/3916">#3916</a>)</li>
<li>Require one empty line after module-level docstrings. (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li>Treat raw triple-quoted strings as docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Fix cache versioning logic when <code>BLACK_CACHE_DIR</code> is set
(<a
href="https://redirect.github.com/psf/black/issues/3937">#3937</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Fix bug where attributes named <code>type</code> were not acccepted
inside <code>match</code> statements
(<a
href="https://redirect.github.com/psf/black/issues/3950">#3950</a>)</li>
<li>Add support for PEP 695 type aliases containing lambdas and other
unusual expressions
(<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
</ul>
<h3>Output</h3>
<ul>
<li>Black no longer attempts to provide special errors for attempting to
format Python 2
code (<a
href="https://redirect.github.com/psf/black/issues/3933">#3933</a>)</li>
<li>Black will more consistently print stacktraces on internal errors in
verbose mode
(<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>The action output displayed in the job summary is now wrapped in
Markdown (<a
href="https://redirect.github.com/psf/black/issues/3914">#3914</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9edba85f71"><code>9edba85</code></a>
Prepare release 23.10.0 (<a
href="https://redirect.github.com/psf/black/issues/3951">#3951</a>)</li>
<li><a
href="bb588073ab"><code>bb58807</code></a>
Fix parser bug where "type" was misinterpreted as a keyword
inside a match (#...</li>
<li><a
href="722735d20e"><code>722735d</code></a>
Fix grammar for type alias support (<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
<li><a
href="abe57e3d92"><code>abe57e3</code></a>
Treat raw strings like other docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
<li><a
href="1648ac5180"><code>1648ac5</code></a>
Fix long lines with power operator(s) getting splitted before line
length (<a
href="https://redirect.github.com/psf/black/issues/3">#3</a>...</li>
<li><a
href="6f84f65285"><code>6f84f65</code></a>
Migrate mypy config to pyproject.toml (<a
href="https://redirect.github.com/psf/black/issues/3936">#3936</a>)</li>
<li><a
href="3bb92146f5"><code>3bb9214</code></a>
CI Test: Deprecating 'Healthcheck.all()' from Hypothesis in fuzz.py (<a
href="https://redirect.github.com/psf/black/issues/3945">#3945</a>)</li>
<li><a
href="935f303a0a"><code>935f303</code></a>
Fix test that was not being run (<a
href="https://redirect.github.com/psf/black/issues/3939">#3939</a>)</li>
<li><a
href="b7717c3f1e"><code>b7717c3</code></a>
Standardise newlines after module-level docstrings (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li><a
href="7aa37ea0ad"><code>7aa37ea</code></a>
Report all stacktraces in verbose mode (<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/psf/black/compare/23.9.1...23.10.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps [black](https://github.com/psf/black) from 23.9.1 to 23.10.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/releases">black's
releases</a>.</em></p>
<blockquote>
<h2>23.10.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix comments getting removed from inside parenthesized strings (<a
href="https://redirect.github.com/psf/black/issues/3909">#3909</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Fix long lines with power operators getting split before the line
length (<a
href="https://redirect.github.com/psf/black/issues/3942">#3942</a>)</li>
<li>Long type hints are now wrapped in parentheses and properly indented
when split across
multiple lines (<a
href="https://redirect.github.com/psf/black/issues/3899">#3899</a>)</li>
<li>Magic trailing commas are now respected in return types. (<a
href="https://redirect.github.com/psf/black/issues/3916">#3916</a>)</li>
<li>Require one empty line after module-level docstrings. (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li>Treat raw triple-quoted strings as docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Fix cache versioning logic when <code>BLACK_CACHE_DIR</code> is set
(<a
href="https://redirect.github.com/psf/black/issues/3937">#3937</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Fix bug where attributes named <code>type</code> were not acccepted
inside <code>match</code> statements
(<a
href="https://redirect.github.com/psf/black/issues/3950">#3950</a>)</li>
<li>Add support for PEP 695 type aliases containing lambdas and other
unusual expressions
(<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
</ul>
<h3>Output</h3>
<ul>
<li>Black no longer attempts to provide special errors for attempting to
format Python 2
code (<a
href="https://redirect.github.com/psf/black/issues/3933">#3933</a>)</li>
<li>Black will more consistently print stacktraces on internal errors in
verbose mode
(<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>The action output displayed in the job summary is now wrapped in
Markdown (<a
href="https://redirect.github.com/psf/black/issues/3914">#3914</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/psf/black/blob/main/CHANGES.md">black's
changelog</a>.</em></p>
<blockquote>
<h2>23.10.0</h2>
<h3>Stable style</h3>
<ul>
<li>Fix comments getting removed from inside parenthesized strings (<a
href="https://redirect.github.com/psf/black/issues/3909">#3909</a>)</li>
</ul>
<h3>Preview style</h3>
<ul>
<li>Fix long lines with power operators getting split before the line
length (<a
href="https://redirect.github.com/psf/black/issues/3942">#3942</a>)</li>
<li>Long type hints are now wrapped in parentheses and properly indented
when split across
multiple lines (<a
href="https://redirect.github.com/psf/black/issues/3899">#3899</a>)</li>
<li>Magic trailing commas are now respected in return types. (<a
href="https://redirect.github.com/psf/black/issues/3916">#3916</a>)</li>
<li>Require one empty line after module-level docstrings. (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li>Treat raw triple-quoted strings as docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
</ul>
<h3>Configuration</h3>
<ul>
<li>Fix cache versioning logic when <code>BLACK_CACHE_DIR</code> is set
(<a
href="https://redirect.github.com/psf/black/issues/3937">#3937</a>)</li>
</ul>
<h3>Parser</h3>
<ul>
<li>Fix bug where attributes named <code>type</code> were not acccepted
inside <code>match</code> statements
(<a
href="https://redirect.github.com/psf/black/issues/3950">#3950</a>)</li>
<li>Add support for PEP 695 type aliases containing lambdas and other
unusual expressions
(<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
</ul>
<h3>Output</h3>
<ul>
<li>Black no longer attempts to provide special errors for attempting to
format Python 2
code (<a
href="https://redirect.github.com/psf/black/issues/3933">#3933</a>)</li>
<li>Black will more consistently print stacktraces on internal errors in
verbose mode
(<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
</ul>
<h3>Integrations</h3>
<ul>
<li>The action output displayed in the job summary is now wrapped in
Markdown (<a
href="https://redirect.github.com/psf/black/issues/3914">#3914</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9edba85f71"><code>9edba85</code></a>
Prepare release 23.10.0 (<a
href="https://redirect.github.com/psf/black/issues/3951">#3951</a>)</li>
<li><a
href="bb588073ab"><code>bb58807</code></a>
Fix parser bug where "type" was misinterpreted as a keyword
inside a match (#...</li>
<li><a
href="722735d20e"><code>722735d</code></a>
Fix grammar for type alias support (<a
href="https://redirect.github.com/psf/black/issues/3949">#3949</a>)</li>
<li><a
href="abe57e3d92"><code>abe57e3</code></a>
Treat raw strings like other docstrings (<a
href="https://redirect.github.com/psf/black/issues/3947">#3947</a>)</li>
<li><a
href="1648ac5180"><code>1648ac5</code></a>
Fix long lines with power operator(s) getting splitted before line
length (<a
href="https://redirect.github.com/psf/black/issues/3">#3</a>...</li>
<li><a
href="6f84f65285"><code>6f84f65</code></a>
Migrate mypy config to pyproject.toml (<a
href="https://redirect.github.com/psf/black/issues/3936">#3936</a>)</li>
<li><a
href="3bb92146f5"><code>3bb9214</code></a>
CI Test: Deprecating 'Healthcheck.all()' from Hypothesis in fuzz.py (<a
href="https://redirect.github.com/psf/black/issues/3945">#3945</a>)</li>
<li><a
href="935f303a0a"><code>935f303</code></a>
Fix test that was not being run (<a
href="https://redirect.github.com/psf/black/issues/3939">#3939</a>)</li>
<li><a
href="b7717c3f1e"><code>b7717c3</code></a>
Standardise newlines after module-level docstrings (<a
href="https://redirect.github.com/psf/black/issues/3932">#3932</a>)</li>
<li><a
href="7aa37ea0ad"><code>7aa37ea</code></a>
Report all stacktraces in verbose mode (<a
href="https://redirect.github.com/psf/black/issues/3938">#3938</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/psf/black/compare/23.9.1...23.10.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once it's up-to-date and CI passes on it,
as requested by @jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.17 to
1.26.18.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/releases">urllib3's
releases</a>.</em></p>
<blockquote>
<h2>1.26.18</h2>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.
(GHSA-g4mx-q9vg-27p4)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/blob/main/CHANGES.rst">urllib3's
changelog</a>.</em></p>
<blockquote>
<h1>1.26.18 (2023-10-17)</h1>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9c2c2307dd"><code>9c2c230</code></a>
Release 1.26.18 (<a
href="https://redirect.github.com/urllib3/urllib3/issues/3159">#3159</a>)</li>
<li><a
href="b594c5ceac"><code>b594c5c</code></a>
Merge pull request from GHSA-g4mx-q9vg-27p4</li>
<li><a
href="944f0eb134"><code>944f0eb</code></a>
[1.26] Use vendored six in urllib3.contrib.securetransport</li>
<li>See full diff in <a
href="https://github.com/urllib3/urllib3/compare/1.26.17...1.26.18">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/releases">urllib3's
releases</a>.</em></p>
<blockquote>
<h2>2.0.7</h2>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.
(GHSA-g4mx-q9vg-27p4)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/blob/main/CHANGES.rst">urllib3's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.7 (2023-10-17)</h1>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="56f01e088d"><code>56f01e0</code></a>
Release 2.0.7</li>
<li><a
href="4e50fbc5db"><code>4e50fbc</code></a>
Merge pull request from GHSA-g4mx-q9vg-27p4</li>
<li><a
href="80808b04bf"><code>80808b0</code></a>
Fix docs build on Python 3.12 (<a
href="https://redirect.github.com/urllib3/urllib3/issues/3144">#3144</a>)</li>
<li><a
href="f28deff1cf"><code>f28deff</code></a>
Add 1.26.17 to the current changelog</li>
<li>See full diff in <a
href="https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/releases">urllib3's
releases</a>.</em></p>
<blockquote>
<h2>2.0.7</h2>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.
(GHSA-g4mx-q9vg-27p4)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/urllib3/urllib3/blob/main/CHANGES.rst">urllib3's
changelog</a>.</em></p>
<blockquote>
<h1>2.0.7 (2023-10-17)</h1>
<ul>
<li>Made body stripped from HTTP requests changing the request method to
GET after HTTP 303 "See Other" redirect responses.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="56f01e088d"><code>56f01e0</code></a>
Release 2.0.7</li>
<li><a
href="4e50fbc5db"><code>4e50fbc</code></a>
Merge pull request from GHSA-g4mx-q9vg-27p4</li>
<li><a
href="80808b04bf"><code>80808b0</code></a>
Fix docs build on Python 3.12 (<a
href="https://redirect.github.com/urllib3/urllib3/issues/3144">#3144</a>)</li>
<li><a
href="f28deff1cf"><code>f28deff</code></a>
Add 1.26.17 to the current changelog</li>
<li>See full diff in <a
href="https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from
1.9.0 to 1.32.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/sentry-python/releases">sentry-sdk's
releases</a>.</em></p>
<blockquote>
<h2>1.32.0</h2>
<h3>Various fixes & improvements</h3>
<ul>
<li><strong>New:</strong> Error monitoring for some of the most popular
Python GraphQL libraries:
<ul>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/gql/">GQL
GraphQL integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2368">#2368</a>)
by <a
href="https://github.com/szokeasaurusrex"><code>@szokeasaurusrex</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.gql import GQLIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GQLIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/graphene/">Graphene
GraphQL error integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2389">#2389</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.graphene import GrapheneIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GrapheneIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/strawberry/">Strawberry
GraphQL error & tracing integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.strawberry import StrawberryIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
# make sure to set async_execution to False if you're executing
# GraphQL queries synchronously
StrawberryIntegration(async_execution=True),
</code></pre></p>
</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md">sentry-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>1.32.0</h2>
<h3>Various fixes & improvements</h3>
<ul>
<li><strong>New:</strong> Error monitoring for some of the most popular
Python GraphQL libraries:
<ul>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/gql/">GQL
GraphQL integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2368">#2368</a>)
by <a
href="https://github.com/szokeasaurusrex"><code>@szokeasaurusrex</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.gql import GQLIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GQLIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/graphene/">Graphene
GraphQL error integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2389">#2389</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.graphene import GrapheneIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GrapheneIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/strawberry/">Strawberry
GraphQL error & tracing integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.strawberry import StrawberryIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
# make sure to set async_execution to False if you're executing
# GraphQL queries synchronously
</code></pre></p>
</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="805fcf1d37"><code>805fcf1</code></a>
Tweak changelog</li>
<li><a
href="c515aae289"><code>c515aae</code></a>
release: 1.32.0</li>
<li><a
href="53a67e0bfc"><code>53a67e0</code></a>
Fix mypy errors (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2433">#2433</a>)</li>
<li><a
href="f067af2982"><code>f067af2</code></a>
Capture multiple named groups again (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2432">#2432</a>)</li>
<li><a
href="b873a31fb4"><code>b873a31</code></a>
Add Strawberry GraphQL integration (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)</li>
<li><a
href="1b445c61d1"><code>1b445c6</code></a>
feat(metrics): Make a consistent noop flush behavior (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2428">#2428</a>)</li>
<li><a
href="44ae06e052"><code>44ae06e</code></a>
lint: fix pre-commit issues (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2424">#2424</a>)</li>
<li><a
href="62dfec9a64"><code>62dfec9</code></a>
feat(metrics): Stronger recursion protection (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2426">#2426</a>)</li>
<li><a
href="99aea337e0"><code>99aea33</code></a>
Remove utcnow, utcfromtimestamp deprecated in Python 3.12 (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2415">#2415</a>)</li>
<li><a
href="59a67d3294"><code>59a67d3</code></a>
Update CONTRIBUTING.md (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2411">#2411</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/getsentry/sentry-python/compare/1.9.0...1.32.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [django-types](https://github.com/sbdchd/django-types) from 0.18.0
to 0.19.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/sbdchd/django-types/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Because
The targeting config for "Firefox Suggest sponsored suggestions enabled"
doesn't work properly
This commit
Changes the targeting expression to the following (in English):
1. `browser.urlbar.suggest.quicksuggest.sponsored` is either not set on
the user branch, or
2. it's true.
Nitty gritty details:
This pref is exposed to the user in about:preferences. In addition,
there are two unique things about it:
* Its default value is false in firefox.js. For users in the Firefox
Suggest audience (currently U.S. users), Firefox programmatically sets
it to true on the default branch shortly after startup as part of
Firefox Suggest initialization.
* It's sticky, so once the user changes the value at all, it will always
have a user-branch value even when that value is the same as the value
on the default branch.
So each part of this new targeting expression matches the following
users:
1. `browser.urlbar.suggest.quicksuggest.sponsored` is not set on the
user branch: Users who didn't touch the pref at all.
2. `browser.urlbar.suggest.quicksuggest.sponsored` is true: Users who
changed the pref and left it on. (Or possibly, considering that on
startup Nimbus initialization races Firefox Suggest initialization, this
will also match users who didn't touch the pref if Suggest init finishes
first, which is fine.)
The first part will also match users who are not in the Suggest audience
at all (non-U.S. users), so it's important for experiments to target
U.S. users when they use this targeting expression.
Bumps
[@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse)
from 7.23.0 to 7.23.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/releases"><code>@babel/traverse</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v7.23.2 (2023-10-11)</h2>
<p><strong>NOTE</strong>: This release also re-publishes
<code>@babel/core</code>, even if it does not appear in the linked
release commit.</p>
<p>Thanks <a
href="https://github.com/jimmydief"><code>@jimmydief</code></a> for
your first PR!</p>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16033">#16033</a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16022">#16022</a>
Rewrite <code>.tsx</code> extension when using
<code>rewriteImportExtensions</code> (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16017">#16017</a>
Fix: fallback to typeof when toString is applied to incompatible object
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16025">#16025</a>
Avoid override mistake in namespace imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h4>Committers: 5</h4>
<ul>
<li>Babel Bot (<a
href="https://github.com/babel-bot"><code>@babel-bot</code></a>)</li>
<li>Huáng Jùnliàng (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
<li>James Diefenderfer (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
<li>Nicolò Ribaudo (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
<li><a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a></li>
</ul>
<h2>v7.23.1 (2023-09-25)</h2>
<p>Re-publishing <code>@babel/helpers</code> due to a publishing error
in 7.23.0.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/blob/main/CHANGELOG.md"><code>@babel/traverse</code>'s
changelog</a>.</em></p>
<blockquote>
<h2>v7.23.2 (2023-10-11)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16033">#16033</a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16022">#16022</a>
Rewrite <code>.tsx</code> extension when using
<code>rewriteImportExtensions</code> (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16017">#16017</a>
Fix: fallback to typeof when toString is applied to incompatible object
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16025">#16025</a>
Avoid override mistake in namespace imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b4b9942a6c"><code>b4b9942</code></a>
v7.23.2</li>
<li><a
href="b13376b346"><code>b13376b</code></a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16033">#16033</a>)</li>
<li>See full diff in <a
href="https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Because:
- the feature schema was causing superfluous errors that weren't really
errors (e.g., complaining that has_exposure must be true/false) when
running into real errors; and
- the hasExposure field is required by desktop;
This commit:
- adds a new Feature type which is a discriminated union, which will
prevent these errors; and
- marks the hasExposure field as a required field.
Bumps
[@babel/traverse](https://github.com/babel/babel/tree/HEAD/packages/babel-traverse)
from 7.22.10 to 7.23.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/releases"><code>@babel/traverse</code>'s
releases</a>.</em></p>
<blockquote>
<h2>v7.23.2 (2023-10-11)</h2>
<p><strong>NOTE</strong>: This release also re-publishes
<code>@babel/core</code>, even if it does not appear in the linked
release commit.</p>
<p>Thanks <a
href="https://github.com/jimmydief"><code>@jimmydief</code></a> for
your first PR!</p>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16033">#16033</a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16022">#16022</a>
Rewrite <code>.tsx</code> extension when using
<code>rewriteImportExtensions</code> (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16017">#16017</a>
Fix: fallback to typeof when toString is applied to incompatible object
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16025">#16025</a>
Avoid override mistake in namespace imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h4>Committers: 5</h4>
<ul>
<li>Babel Bot (<a
href="https://github.com/babel-bot"><code>@babel-bot</code></a>)</li>
<li>Huáng Jùnliàng (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
<li>James Diefenderfer (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
<li>Nicolò Ribaudo (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
<li><a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a></li>
</ul>
<h2>v7.23.1 (2023-09-25)</h2>
<p>Re-publishing <code>@babel/helpers</code> due to a publishing error
in 7.23.0.</p>
<h2>v7.23.0 (2023-09-25)</h2>
<p>Thanks <a
href="https://github.com/lorenzoferre"><code>@lorenzoferre</code></a>
and <a
href="https://github.com/RajShukla1"><code>@RajShukla1</code></a> for
your first PRs!</p>
<h4>🚀 New Feature</h4>
<ul>
<li><code>babel-plugin-proposal-import-wasm-source</code>,
<code>babel-plugin-syntax-import-source</code>,
<code>babel-plugin-transform-dynamic-import</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15870">#15870</a>
Support transforming <code>import source</code> for wasm (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-module-transforms</code>,
<code>babel-helpers</code>,
<code>babel-plugin-proposal-import-defer</code>,
<code>babel-plugin-syntax-import-defer</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>, <code>babel-standalone</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15878">#15878</a>
Implement <code>import defer</code> proposal transform support (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-generator</code>, <code>babel-parser</code>,
<code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15845">#15845</a>
Implement <code>import defer</code> parsing support (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
<li><a
href="https://redirect.github.com/babel/babel/pull/15829">#15829</a> Add
parsing support for the "source phase imports" proposal (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-generator</code>,
<code>babel-helper-module-transforms</code>, <code>babel-parser</code>,
<code>babel-plugin-transform-dynamic-import</code>,
<code>babel-plugin-transform-modules-amd</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-plugin-transform-modules-systemjs</code>,
<code>babel-traverse</code>, <code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15682">#15682</a> Add
<code>createImportExpressions</code> parser option (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-standalone</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15671">#15671</a>
Pass through nonce to the transformed script element (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-function-name</code>,
<code>babel-helper-member-expression-to-functions</code>,
<code>babel-helpers</code>, <code>babel-parser</code>,
<code>babel-plugin-proposal-destructuring-private</code>,
<code>babel-plugin-proposal-optional-chaining-assign</code>,
<code>babel-plugin-syntax-optional-chaining-assign</code>,
<code>babel-plugin-transform-destructuring</code>,
<code>babel-plugin-transform-optional-chaining</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>, <code>babel-standalone</code>,
<code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15751">#15751</a> Add
support for optional chain in assignments (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15895">#15895</a>
Implement the "decorator metadata" proposal (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-traverse</code>, <code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15893">#15893</a> Add
<code>t.buildUndefinedNode</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/babel/babel/blob/main/CHANGELOG.md"><code>@babel/traverse</code>'s
changelog</a>.</em></p>
<blockquote>
<h2>v7.23.2 (2023-10-11)</h2>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16033">#16033</a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16022">#16022</a>
Rewrite <code>.tsx</code> extension when using
<code>rewriteImportExtensions</code> (<a
href="https://github.com/jimmydief"><code>@jimmydief</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16017">#16017</a>
Fix: fallback to typeof when toString is applied to incompatible object
(<a href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/16025">#16025</a>
Avoid override mistake in namespace imports (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h2>v7.23.0 (2023-09-25)</h2>
<h4>🚀 New Feature</h4>
<ul>
<li><code>babel-plugin-proposal-import-wasm-source</code>,
<code>babel-plugin-syntax-import-source</code>,
<code>babel-plugin-transform-dynamic-import</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15870">#15870</a>
Support transforming <code>import source</code> for wasm (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-module-transforms</code>,
<code>babel-helpers</code>,
<code>babel-plugin-proposal-import-defer</code>,
<code>babel-plugin-syntax-import-defer</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>, <code>babel-standalone</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15878">#15878</a>
Implement <code>import defer</code> proposal transform support (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-generator</code>, <code>babel-parser</code>,
<code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15845">#15845</a>
Implement <code>import defer</code> parsing support (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
<li><a
href="https://redirect.github.com/babel/babel/pull/15829">#15829</a> Add
parsing support for the "source phase imports" proposal (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-generator</code>,
<code>babel-helper-module-transforms</code>, <code>babel-parser</code>,
<code>babel-plugin-transform-dynamic-import</code>,
<code>babel-plugin-transform-modules-amd</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-plugin-transform-modules-systemjs</code>,
<code>babel-traverse</code>, <code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15682">#15682</a> Add
<code>createImportExpressions</code> parser option (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-standalone</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15671">#15671</a>
Pass through nonce to the transformed script element (<a
href="https://github.com/JLHwung"><code>@JLHwung</code></a>)</li>
</ul>
</li>
<li><code>babel-helper-function-name</code>,
<code>babel-helper-member-expression-to-functions</code>,
<code>babel-helpers</code>, <code>babel-parser</code>,
<code>babel-plugin-proposal-destructuring-private</code>,
<code>babel-plugin-proposal-optional-chaining-assign</code>,
<code>babel-plugin-syntax-optional-chaining-assign</code>,
<code>babel-plugin-transform-destructuring</code>,
<code>babel-plugin-transform-optional-chaining</code>,
<code>babel-runtime-corejs2</code>, <code>babel-runtime-corejs3</code>,
<code>babel-runtime</code>, <code>babel-standalone</code>,
<code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15751">#15751</a> Add
support for optional chain in assignments (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-helpers</code>,
<code>babel-plugin-proposal-decorators</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15895">#15895</a>
Implement the "decorator metadata" proposal (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-traverse</code>, <code>babel-types</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15893">#15893</a> Add
<code>t.buildUndefinedNode</code> (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
<li><code>babel-preset-typescript</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15913">#15913</a> Add
<code>rewriteImportExtensions</code> option to TS preset (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
<li><code>babel-parser</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15896">#15896</a>
Allow TS tuples to have both labeled and unlabeled elements (<a
href="https://github.com/yukukotani"><code>@yukukotani</code></a>)</li>
</ul>
</li>
</ul>
<h4>🐛 Bug Fix</h4>
<ul>
<li><code>babel-plugin-transform-block-scoping</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15962">#15962</a>
fix: <code>transform-block-scoping</code> captures the variables of the
method in the loop (<a
href="https://github.com/liuxingbaoyu"><code>@liuxingbaoyu</code></a>)</li>
</ul>
</li>
</ul>
<h4>💅 Polish</h4>
<ul>
<li><code>babel-traverse</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15797">#15797</a>
Expand evaluation of global built-ins in <code>@babel/traverse</code>
(<a
href="https://github.com/lorenzoferre"><code>@lorenzoferre</code></a>)</li>
</ul>
</li>
<li><code>babel-plugin-proposal-explicit-resource-management</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15985">#15985</a>
Improve source maps for blocks with <code>using</code> declarations (<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h4>🔬 Output optimization</h4>
<ul>
<li><code>babel-core</code>,
<code>babel-helper-module-transforms</code>,
<code>babel-plugin-transform-async-to-generator</code>,
<code>babel-plugin-transform-classes</code>,
<code>babel-plugin-transform-dynamic-import</code>,
<code>babel-plugin-transform-function-name</code>,
<code>babel-plugin-transform-modules-amd</code>,
<code>babel-plugin-transform-modules-commonjs</code>,
<code>babel-plugin-transform-modules-umd</code>,
<code>babel-plugin-transform-parameters</code>,
<code>babel-plugin-transform-react-constant-elements</code>,
<code>babel-plugin-transform-react-inline-elements</code>,
<code>babel-plugin-transform-runtime</code>,
<code>babel-plugin-transform-typescript</code>,
<code>babel-preset-env</code>
<ul>
<li><a
href="https://redirect.github.com/babel/babel/pull/15984">#15984</a>
Inline <code>exports.XXX =</code> update in simple variable declarations
(<a
href="https://github.com/nicolo-ribaudo"><code>@nicolo-ribaudo</code></a>)</li>
</ul>
</li>
</ul>
<h2>v7.22.20 (2023-09-16)</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b4b9942a6c"><code>b4b9942</code></a>
v7.23.2</li>
<li><a
href="b13376b346"><code>b13376b</code></a>
Only evaluate own String/Number/Math methods (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/16033">#16033</a>)</li>
<li><a
href="ca58ec15cb"><code>ca58ec1</code></a>
v7.23.0</li>
<li><a
href="0f333dafcf"><code>0f333da</code></a>
Add <code>createImportExpressions</code> parser option (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/15682">#15682</a>)</li>
<li><a
href="3744545649"><code>3744545</code></a>
Fix linting</li>
<li><a
href="c7e6806e21"><code>c7e6806</code></a>
Add <code>t.buildUndefinedNode</code> (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/15893">#15893</a>)</li>
<li><a
href="38ee8b4dd6"><code>38ee8b4</code></a>
Expand evaluation of global built-ins in <code>@babel/traverse</code>
(<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/15797">#15797</a>)</li>
<li><a
href="9f3dfd9021"><code>9f3dfd9</code></a>
v7.22.20</li>
<li><a
href="3ed28b29c1"><code>3ed28b2</code></a>
Fully support <code>||</code> and <code>&&</code> in
<code>pluginToggleBooleanFlag</code> (<a
href="https://github.com/babel/babel/tree/HEAD/packages/babel-traverse/issues/15961">#15961</a>)</li>
<li><a
href="77b0d73599"><code>77b0d73</code></a>
v7.22.19</li>
<li>Additional commits viewable in <a
href="https://github.com/babel/babel/commits/v7.23.2/packages/babel-traverse">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/mozilla/experimenter/network/alerts).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Yashika Khurana <yashikakhuranayashika@gmail.com>
Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from
1.31.0 to 1.32.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/sentry-python/releases">sentry-sdk's
releases</a>.</em></p>
<blockquote>
<h2>1.32.0</h2>
<h3>Various fixes & improvements</h3>
<ul>
<li><strong>New:</strong> Error monitoring for some of the most popular
Python GraphQL libraries:
<ul>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/gql/">GQL
GraphQL integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2368">#2368</a>)
by <a
href="https://github.com/szokeasaurusrex"><code>@szokeasaurusrex</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.gql import GQLIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GQLIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/graphene/">Graphene
GraphQL error integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2389">#2389</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.graphene import GrapheneIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GrapheneIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/strawberry/">Strawberry
GraphQL error & tracing integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.strawberry import StrawberryIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
# make sure to set async_execution to False if you're executing
# GraphQL queries synchronously
StrawberryIntegration(async_execution=True),
</code></pre></p>
</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md">sentry-sdk's
changelog</a>.</em></p>
<blockquote>
<h2>1.32.0</h2>
<h3>Various fixes & improvements</h3>
<ul>
<li><strong>New:</strong> Error monitoring for some of the most popular
Python GraphQL libraries:
<ul>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/gql/">GQL
GraphQL integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2368">#2368</a>)
by <a
href="https://github.com/szokeasaurusrex"><code>@szokeasaurusrex</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.gql import GQLIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GQLIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/graphene/">Graphene
GraphQL error integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2389">#2389</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.graphene import GrapheneIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
GrapheneIntegration(),
],
)
</code></pre></p>
</li>
<li>
<p>Add <a
href="https://docs.sentry.io/platforms/python/integrations/strawberry/">Strawberry
GraphQL error & tracing integration</a> (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)
by <a
href="https://github.com/sentrivana"><code>@sentrivana</code></a></p>
<p>Usage:</p>
<pre lang="python"><code> import sentry_sdk
from sentry_sdk.integrations.strawberry import StrawberryIntegration
<p>sentry_sdk.init(
dsn='<em><strong>PUBLIC_DSN</strong></em>',
integrations=[
# make sure to set async_execution to False if you're executing
# GraphQL queries synchronously
</code></pre></p>
</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="805fcf1d37"><code>805fcf1</code></a>
Tweak changelog</li>
<li><a
href="c515aae289"><code>c515aae</code></a>
release: 1.32.0</li>
<li><a
href="53a67e0bfc"><code>53a67e0</code></a>
Fix mypy errors (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2433">#2433</a>)</li>
<li><a
href="f067af2982"><code>f067af2</code></a>
Capture multiple named groups again (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2432">#2432</a>)</li>
<li><a
href="b873a31fb4"><code>b873a31</code></a>
Add Strawberry GraphQL integration (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2393">#2393</a>)</li>
<li><a
href="1b445c61d1"><code>1b445c6</code></a>
feat(metrics): Make a consistent noop flush behavior (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2428">#2428</a>)</li>
<li><a
href="44ae06e052"><code>44ae06e</code></a>
lint: fix pre-commit issues (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2424">#2424</a>)</li>
<li><a
href="62dfec9a64"><code>62dfec9</code></a>
feat(metrics): Stronger recursion protection (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2426">#2426</a>)</li>
<li><a
href="99aea337e0"><code>99aea33</code></a>
Remove utcnow, utcfromtimestamp deprecated in Python 3.12 (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2415">#2415</a>)</li>
<li><a
href="59a67d3294"><code>59a67d3</code></a>
Update CONTRIBUTING.md (<a
href="https://redirect.github.com/getsentry/sentry-python/issues/2411">#2411</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/getsentry/sentry-python/compare/1.31.0...1.32.0">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Yashika Khurana <yashikakhuranayashika@gmail.com>
Bumps [mozilla-nimbus-schemas]() from 2023.9.1 to 2023.10.1.
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [@mozilla/nimbus-schemas](https://github.com/mozilla/experimenter)
from 2023.9.2 to 2023.10.1.
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/mozilla/experimenter/commits">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
Dependabot will merge this PR once CI passes on it, as requested by
@jaredlockhart.
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
dependabot[bot]
Barret Rennie
Mike Williams
dataops-ci-bot
Chris Bellini
Elise Richards
Charlie Humphreys
Yashika Khurana
Jared Lockhart
Drew