Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump lxml from 4.9.1 to 5.3.0 in /requirements #34983

Merged
merged 4 commits into from
Oct 4, 2024
Merged

Bump lxml from 4.9.1 to 5.3.0 in /requirements #34983

merged 4 commits into from
Oct 4, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 15, 2024
edited
Loading

Bumps lxml from 4.9.1 to 5.3.0.

Release notes

Sourced from lxml's releases.

lxml-5.3.0

No release notes provided.

lxml-5.2.2

5.2.2 (2024-05-12)

Bugs fixed

  • GH#417: The test_feed_parser test could fail if lxml_html_clean was not installed. It is now skipped in that case.

  • LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to "core2", without SSE 4.2.

  • If libxml2 uses iconv, the compile time version is available as etree.ICONV_COMPILED_VERSION.

lxml-5.2.1

No release notes provided.

lxml-5.2.0

No release notes provided.

lxml-5.1.1

No release notes provided.

lxml-5.1.0-2

No release notes provided.

lxml-5.1.0

No release notes provided.

lxml-5.0.2

No release notes provided.

lxml-5.0.1-1

No release notes provided.

lxml-5.0.1

No release notes provided.

lxml-5.0.0-1

No release notes provided.

lxml-5.0.0

No release notes provided.

lxml-4.9.4

No release notes provided.

... (truncated)

Changelog

Sourced from lxml's changelog.

5.3.0 (2024-08-10)

Features added

  • GH#421: Nested CDATA sections are no longer rejected but split on output to represent ]]> correctly. Patch by Gertjan Klein.

Bugs fixed

  • LP#2060160: Attribute values serialised differently in xmlfile.element() and xmlfile.write().

  • LP#2058177: The ISO-Schematron implementation could fail on unknown prefixes. Patch by David Lakin.

Other changes

  • LP#2067707: The strip_cdata option in HTMLParser() turned out to be useless and is now deprecated.

  • Binary wheels use the library versions libxml2 2.12.9 and libxslt 1.1.42.

  • Windows binary wheels use the library versions libxml2 2.11.8 and libxslt 1.1.39.

  • Built with Cython 3.0.11.

5.2.2 (2024-05-12)

Bugs fixed

  • GH#417: The test_feed_parser test could fail if lxml_html_clean was not installed. It is now skipped in that case.

  • LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to "core2", without SSE 4.2.

  • If libxml2 uses iconv, the compile time version is available as etree.ICONV_COMPILED_VERSION.

5.2.1 (2024-04-02)

Bugs fixed

... (truncated)

Commits
  • 475f4ab Update release date.
  • e356a1e Build: Add some debug output.
  • 8345680 Build: Retry library downloads on failures.
  • 2fe6c90 CI: Test oldest officially supported library versions again (the slightly new...
  • 00335a1 Build: Improve download regexes.
  • f3da47d Prepare release of lxml 5.3.0.
  • 3119703 Add missing global name to "all" in lxml.etree.
  • 9de6180 Build: Upgrade cibuildwheel version also for the matrix setup.
  • 54e36cb Build: Upgrade libxslt to latest (1.1.42).
  • d4f56ee Build: Slightly increase the oldest libxslt version that we test against to w...
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot requested a review from a team as a code owner August 15, 2024 10:26
@dependabot dependabot bot added the product/invisible Change has no end-user visible impact label Aug 15, 2024
@dependabot dependabot bot mentioned this pull request Aug 15, 2024
Closed
@dimagimon dimagimon added the dependencies Pull requests that update a dependency file label Aug 15, 2024
@orangejenny orangejenny force-pushed the dependabot/pip/requirements/lxml-5.3.0 branch 3 times, most recently from fdf5766 to a007782 Compare September 17, 2024 14:33
dependabot bot and others added 2 commits September 17, 2024 10:34
@dependabot @orangejenny
Bump lxml from 4.9.1 to 5.3.0 in /requirements
7f2b591 
Bumps [lxml](https://github.com/lxml/lxml) from 4.9.1 to 5.3.0.
- [Release notes](https://github.com/lxml/lxml/releases)
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt)
- [Commits](lxml/lxml@lxml-4.9.1...lxml-5.3.0)

---
updated-dependencies:
- dependency-name: lxml
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@orangejenny
Updated warnings
12ad4c0
@orangejenny orangejenny force-pushed the dependabot/pip/requirements/lxml-5.3.0 branch from a007782 to 12ad4c0 Compare September 17, 2024 14:34
@orangejenny orangejenny added the awaiting QA QA in progress. Do not merge label Sep 17, 2024
@orangejenny orangejenny self-assigned this Sep 17, 2024
@orangejenny
Copy link
Contributor

orangejenny commented Sep 17, 2024
edited
Loading

QA ticket: https://dimagi.atlassian.net/browse/QA-7115

There's also reasonable test coverage for a number of the areas that use lxml (form processor, suite generation).

@orangejenny orangejenny added QA Passed and removed awaiting QA QA in progress. Do not merge labels Oct 4, 2024
@orangejenny orangejenny merged commit 8135cd5 into master Oct 4, 2024
13 checks passed
@orangejenny orangejenny deleted the dependabot/pip/requirements/lxml-5.3.0 branch October 4, 2024 15:00
@esoergel
Copy link
Contributor

esoergel commented Oct 4, 2024

great timing - I was just looking to see how hard it'd be to get on 5.x!

@orangejenny
Copy link
Contributor

@esoergel excellent - what's your interest in 5.x?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@orangejenny orangejenny orangejenny approved these changes

@AmitPhulera AmitPhulera AmitPhulera approved these changes

@millerdev millerdev Awaiting requested review from millerdev millerdev is a code owner

Assignees

@orangejenny orangejenny

Labels
dependencies Pull requests that update a dependency file product/invisible Change has no end-user visible impact QA Passed
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@orangejenny @esoergel @AmitPhulera @dimagimon