Skip to content

Commit

Permalink
Bump sqlalchemy[asyncio] from 2.0.20 to 2.0.23 (#283)
Browse files Browse the repository at this point in the history
Bumps [sqlalchemy[asyncio]](https://github.com/sqlalchemy/sqlalchemy)
from 2.0.20 to 2.0.23.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/sqlalchemy/sqlalchemy/releases">sqlalchemy[asyncio]'s
releases</a>.</em></p>
<blockquote>
<h1>2.0.23</h1>
<p>Released: November 2, 2023</p>
<h2>orm</h2>
<ul>
<li>
<p><strong>[orm] [usecase]</strong> Implemented the
<code>_orm.Session.bulk_insert_mappings.render_nulls</code>
parameter for new style bulk ORM inserts, allowing
<code>render_nulls=True</code> as
an execution option. This allows for bulk ORM inserts with a mixture of
<code>None</code> values in the parameter dictionaries to use a single
batch of rows
for a given set of dicationary keys, rather than breaking up into
batches
that omit the NULL columns from each INSERT.</p>
<p>References: <a
href="https://www.sqlalchemy.org/trac/ticket/10575">#10575</a></p>
</li>
<li>
<p><strong>[orm] [bug]</strong> Fixed issue where the
<code>__allow_unmapped__</code> directive failed to allow for
legacy <code>Column</code> / <code>deferred()</code> mappings that
nonetheless had
annotations such as <code>Any</code> or a specific type without
<code>Mapped[]</code> as
their type, without errors related to locating the attribute name.</p>
<p>References: <a
href="https://www.sqlalchemy.org/trac/ticket/10516">#10516</a></p>
</li>
<li>
<p><strong>[orm] [bug]</strong> Fixed caching bug where using the
<code>_orm.with_expression()</code> construct in
conjunction with loader options <code>_orm.selectinload()</code>,
<code>_orm.lazyload()</code> would fail to substitute bound parameter
values
correctly on subsequent caching runs.</p>
<p>References: <a
href="https://www.sqlalchemy.org/trac/ticket/10570">#10570</a></p>
</li>
<li>
<p><strong>[orm] [bug]</strong> Fixed bug in ORM annotated declarative
where using a <code>ClassVar</code> that
nonetheless referred in some way to an ORM mapped class name would fail
to
be interpreted as a <code>ClassVar</code> that's not mapped.</p>
<p>References: <a
href="https://www.sqlalchemy.org/trac/ticket/10472">#10472</a></p>
</li>
</ul>
<h2>sql</h2>
<ul>
<li>
<p><strong>[sql] [usecase]</strong> Implemented &quot;literal value
processing&quot; for the <code>Interval</code> datatype
for both the PostgreSQL and Oracle dialects, allowing literal rendering
of
interval values.  Pull request courtesy Indivar Mishra.</p>
<p>References: <a
href="https://www.sqlalchemy.org/trac/ticket/9737">#9737</a></p>
</li>
<li>
<p><strong>[sql] [bug]</strong> Fixed issue where using the same bound
parameter more than once with
<code>literal_execute=True</code> in some combinations with other
literal rendering
parameters would cause the wrong values to render due to an iteration
issue.</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li>See full diff in <a
href="https://github.com/sqlalchemy/sqlalchemy/commits">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sqlalchemy[asyncio]&package-manager=pip&previous-version=2.0.20&new-version=2.0.23)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
dependabot[bot] authored Nov 6, 2023
1 parent e48fe12 commit b7f1ed1
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion requirements.txt
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ bcrypt==4.0.1 # password hashing
python-dotenv==1.0.0 # load environment variables from .env file
python-jose[cryptography]==3.3.0 # generate and verify the JWT tokens
python-multipart==0.0.6 # a form data parser, as oauth flow requires form-data parameters
SQLAlchemy[asyncio]==2.0.20 # [asyncio] allows greenlet to be installed on Apple M1 devices. The my[py] plugin is required in devellopment but Dependabot fails to manage two versions of the same module.
SQLAlchemy[asyncio]==2.0.23 # [asyncio] allows greenlet to be installed on Apple M1 devices. The my[py] plugin is required in devellopment but Dependabot fails to manage two versions of the same module.
rapidfuzz==3.4.0 # Fuzzy String Matching
requests==2.31.0
unidecode==1.3.7
Expand Down

0 comments on commit b7f1ed1

Please sign in to comment.