Skip to content

Bump the patch group with 3 updates#6130

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/uv/patch-c148557b09
Closed

Bump the patch group with 3 updates#6130
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/uv/patch-c148557b09

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the patch group with 3 updates: boto3, claude-agent-sdk and lmdb.

Updates boto3 from 1.43.19 to 1.43.23

Commits
  • f2106e0 Merge branch 'release-1.43.23'
  • d7e5b7c Bumping version to 1.43.23
  • 86efe86 Add changelog entries from botocore
  • 8384440 Merge branch 'release-1.43.22'
  • eea01a7 Merge branch 'release-1.43.22' into develop
  • eff8ee7 Bumping version to 1.43.22
  • 880860d Add changelog entries from botocore
  • 400e1f6 Add reference to post-quantum cryptography in security docs page (#4793)
  • 0df64b3 Merge branch 'release-1.43.21'
  • d3d327f Merge branch 'release-1.43.21' into develop
  • Additional commits viewable in compare view

Updates claude-agent-sdk from 0.2.87 to 0.2.90

Release notes

Sourced from claude-agent-sdk's releases.

v0.2.90

Internal/Other Changes

  • Updated bundled Claude CLI to version 2.1.163

PyPI: https://pypi.org/project/claude-agent-sdk/0.2.90/

pip install claude-agent-sdk==0.2.90

v0.2.89

Internal/Other Changes

  • Updated bundled Claude CLI to version 2.1.162

PyPI: https://pypi.org/project/claude-agent-sdk/0.2.89/

pip install claude-agent-sdk==0.2.89

v0.2.88

Bug Fixes

  • Trio compatibility for session stores: Ported session_store code paths (TranscriptMirrorBatcher, session_resume, sessions) from raw asyncio primitives to anyio, fixing a crash (TypeError: trio.run received unrecognized yield message) when passing session_store= to query() or ClaudeSDKClient under trio (#990)

Internal/Other Changes

  • Switched e2e CI jobs (test-e2e, test-e2e-docker, test-examples) from static API key to workload identity federation, using short-lived OIDC tokens with automatic refresh (#1018)
  • Updated bundled Claude CLI to version 2.1.161

PyPI: https://pypi.org/project/claude-agent-sdk/0.2.88/

pip install claude-agent-sdk==0.2.88
Changelog

Sourced from claude-agent-sdk's changelog.

0.2.90

Internal/Other Changes

  • Updated bundled Claude CLI to version 2.1.163

0.2.89

Internal/Other Changes

  • Updated bundled Claude CLI to version 2.1.162

0.2.88

Bug Fixes

  • Trio compatibility for session stores: Ported session_store code paths (TranscriptMirrorBatcher, session_resume, sessions) from raw asyncio primitives to anyio, fixing a crash (TypeError: trio.run received unrecognized yield message) when passing session_store= to query() or ClaudeSDKClient under trio (#990)

Internal/Other Changes

  • Switched e2e CI jobs (test-e2e, test-e2e-docker, test-examples) from static API key to workload identity federation, using short-lived OIDC tokens with automatic refresh (#1018)
  • Updated bundled Claude CLI to version 2.1.161
Commits
  • 7851d80 docs: update changelog for v0.2.90
  • 669574a chore: release v0.2.90
  • c9bc9cc chore: bump bundled CLI version to 2.1.163
  • f2fe254 docs: update changelog for v0.2.89
  • 4e0020b chore: release v0.2.89
  • 6772ffc chore: bump bundled CLI version to 2.1.162
  • bb0e62e docs: update changelog for v0.2.88
  • 9658055 chore: release v0.2.88
  • 8e11815 chore: bump bundled CLI version to 2.1.161
  • e68beb2 Switch e2e CI jobs to workload identity federation (#1018)
  • Additional commits viewable in compare view

Updates lmdb from 2.2.0 to 2.2.1

Changelog

Sourced from lmdb's changelog.

2026-06-03 2.2.1 #################

Improvements

  • lmdb.aio async wrapper methods (on AsyncEnvironment, AsyncTransaction, and AsyncCursor) are now real class attributes rather than synthesized by __getattr__, making them visible to dir(), inspect.signature(), help(), IPython, and stubtest. Non-callable attributes still proxy through. (#460, contributed by jorenham)

  • Added type stubs for the lmdb.aio module. (#455, contributed by jorenham)

Fixes

  • Fix a segmentation fault on Linux/aarch64 when an Environment is closed from a different thread than the one holding an active write transaction. Environment.close() now waits for the owning thread to release the write transaction before unmapping the lock file. (#465, reported by sdvillal)

  • Reject adversarial on-disk values that could overflow size arithmetic or cause implementation-defined narrowing of mv_size when reading crafted databases. (#462, #463)

  • Fix crashes on out-of-memory conditions in the CPython extension's error paths. (#453)

  • Fix and modernize the type stubs, including __all__ exports and the Cursor.iter* parameter defaults in __init__.pyi. (#454, #457, #459, contributed by jorenham)

Other

  • Remove remaining Python 2 compatibility code. (#456, contributed by jorenham)

  • Run the test suite natively on Linux/aarch64 in CI; previously aarch64 wheels were built but never tested. (#465)

Commits
  • ca9ad8e Bump version to 2.2.1 for release
  • e846b0e aio: use relative import for Cursor/Environment/Transaction
  • e8ea50a Make aio proxied methods runtime-introspectable (#460)
  • c866fd3 Fix aarch64 segfault when closing an env racing an active write txn (#465)
  • 030c333 Avoid impl-defined narrowing of adversarial mv_size in cpython.c (#463)
  • c191276 Guard size arithmetic on adversarial on-disk values in cpython.c (#462)
  • cd2a668 Fix parameter defaults for Cursor.iter* in __init__.pyi (#459)
  • ffa52d5 Add type stubs for aio (#455)
  • 78b770c Remove Python 2 remnants (#456)
  • 77876a1 Fix and modernize type stubs (#457)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the patch group with 3 updates
8ac82d0 
Bumps the patch group with 3 updates: [boto3](https://github.com/boto/boto3), [claude-agent-sdk](https://github.com/anthropics/claude-agent-sdk-python) and [lmdb](https://github.com/jnwatson/py-lmdb).


Updates `boto3` from 1.43.19 to 1.43.23
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.43.19...1.43.23)

Updates `claude-agent-sdk` from 0.2.87 to 0.2.90
- [Release notes](https://github.com/anthropics/claude-agent-sdk-python/releases)
- [Changelog](https://github.com/anthropics/claude-agent-sdk-python/blob/main/CHANGELOG.md)
- [Commits](anthropics/claude-agent-sdk-python@v0.2.87...v0.2.90)

Updates `lmdb` from 2.2.0 to 2.2.1
- [Changelog](https://github.com/jnwatson/py-lmdb/blob/master/ChangeLog)
- [Commits](jnwatson/py-lmdb@py-lmdb_2.2.0...py-lmdb_2.2.1)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.43.23
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: claude-agent-sdk
  dependency-version: 0.2.90
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
- dependency-name: lmdb
  dependency-version: 2.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Jun 8, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 8, 2026
@dependabot dependabot Bot deleted the dependabot/uv/patch-c148557b09 branch June 8, 2026 22:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants