chore(deps): bump the python-prod group across 1 directory with 30 updates by dependabot[bot] · Pull Request #17 · madhavcodez/agentary

dependabot · 2026-06-15T07:21:30Z

Updates the requirements on fastapi, uvicorn, sqlalchemy, alembic, psycopg2-binary, pydantic, pydantic-settings, google-genai, qdrant-client, apscheduler, pytz, beautifulsoup4, redis, python-multipart, python-jose, bcrypt, email-validator, slowapi, pybreaker, rapidfuzz, pipecat-ai, weasyprint, openpyxl, markdown2, pygments, matplotlib, celery, restrictedpython, twilio and phonenumbers to permit the latest version.
Updates fastapi from 0.115.12 to 0.138.0

Release notes

Sourced from fastapi's releases.

0.138.0

Features

✨ Add support for app.frontend("/", directory="dist") and router.frontend("/", directory="dist"). PR #15800 by @tiangolo.

Read the docs: Frontend.

Docs

📝 Fix typo in release notes. PR #15807 by @tiangolo.

📝 Add app.frontend() instructions to Agent Library Skill. PR #15805 by @tiangolo.

📝 Update release notes link. PR #15802 by @tiangolo.

✏️ Update white space characters in bigger apps. PR #15801 by @tiangolo.

✏️ Fix grammar, typos, and broken links in docs. PR #15694 by @YuriiMotov.

Translations

🌐 Enable Hindi docs translations. PR #15554 by @YuriiMotov.

Internal

🐛 Fix failing test, update format for raised errors. PR #15804 by @tiangolo.

👷 Fix test-alls-green. PR #15803 by @tiangolo.

🔧 Enable checking release-notes.md for typos. PR #15796 by @YuriiMotov.

📝 Tweak wording about deploying to FastAPI Cloud. PR #15793 by @tiangolo.

🔨 Use gpt-5.5 model in translate.py, specify -chat to avoid warnings. PR #15792 by @YuriiMotov.

0.137.2

Features

✨ Add iter_route_contexts() for advanced use cases that used to use router.routes (e.g. Jupyverse). PR #15785 by @tiangolo.

Translations

🌐 Fix broken Markdown in Korean custom response docs. PR #15774 by @kooqooo.

🌐 Update translations for fr (update-outdated). PR #15761 by @tiangolo.

🌐 Update translations for zh-hant (update-outdated). PR #15760 by @tiangolo.

🌐 Update translations for de (update-outdated). PR #15759 by @tiangolo.

🌐 Update translations for ko (update-outdated). PR #15757 by @tiangolo.

🌐 Update translations for uk (update-outdated). PR #15756 by @tiangolo.

🌐 Update translations for zh (update-outdated). PR #15755 by @tiangolo.

🌐 Update translations for tr (update-outdated). PR #15754 by @tiangolo.

🌐 Update translations for pt (update-outdated). PR #15753 by @tiangolo.

🌐 Update translations for es (update-outdated). PR #15752 by @tiangolo.

🌐 Update translations for ja (update-outdated). PR #15751 by @tiangolo.

🌐 Update translations for ru (update-outdated). PR #15758 by @tiangolo.

Internal

🔧 Update sponsors: add BairesDev. PR #15787 by @tiangolo.

🔨 Update sponsors script to simplify previews. PR #15786 by @tiangolo.

... (truncated)

Commits

4b83b0d 🔖 Release version 0.138.0 (#15808)
041cb0c 📝 Update release notes
1039384 📝 Fix typo in release notes (#15807)
0303491 📝 Update release notes
190f6e2 📝 Add Frontend instructions to Agent Library Skill (#15805)
17945e5 📝 Update release notes
2260afa 🐛 Fix failing test, update format for raised errors (#15804)
0cd5001 📝 Update release notes
7cb1ab6 👷 Fix test-alls-green (#15803)
9c7eceb 📝 Update release notes
Additional commits viewable in compare view

Updates uvicorn from 0.34.2 to 0.49.0

Release notes

Sourced from uvicorn's releases.

Version 0.49.0

What's Changed

Bump httptools minimum version to 0.8.0 by @Kludex in Kludex/uvicorn#2962

Consume duplicate forwarding headers in ProxyHeadersMiddleware (reverses the 0.48.0 behavior of ignoring them) by @Kludex in Kludex/uvicorn#2971

Full Changelog: Kludex/uvicorn@0.48.0...0.49.0

Version 0.48.0

What's Changed

Default ssl_ciphers to None and use OpenSSL defaults by @Kludex in Kludex/uvicorn#2940

Ignore duplicate forwarding headers in ProxyHeadersMiddleware by @Kludex in Kludex/uvicorn#2944

Full Changelog: Kludex/uvicorn@0.47.0...0.48.0

Version 0.47.0

What's Changed

Eagerly import the ASGI app in the parent process by @Kludex in Kludex/uvicorn#2919

Add ssl_context_factory for custom SSLContext configuration by @Kludex in Kludex/uvicorn#2920

Treat fd=0 as a valid file descriptor with reload/workers by @eltoder in Kludex/uvicorn#2927

Full Changelog: Kludex/uvicorn@0.46.0...0.47.0

Version 0.46.0

What's Changed

Support ws_max_size in wsproto implementation by @Kludex in Kludex/uvicorn#2915

Support ws_ping_interval and ws_ping_timeout in wsproto implementation by @Kludex in Kludex/uvicorn#2916

Use bytearray for incoming WebSocket message buffer in websockets-sansio by @Kludex in Kludex/uvicorn#2917

Full Changelog: Kludex/uvicorn@0.45.0...0.46.0

Version 0.45.0

What's Changed

Preserve forwarded client ports in proxy headers middleware by @Kludex in Kludex/uvicorn#2903

Accept os.PathLike for log_config by @Kludex in Kludex/uvicorn#2905

Accept log_level strings case-insensitively by @Kludex in Kludex/uvicorn#2907

Raise helpful ImportError when PyYAML is missing for YAML log config by @Kludex in Kludex/uvicorn#2906

Revert empty context for ASGI runs by @Kludex in Kludex/uvicorn#2911

Add --reset-contextvars flag to isolate ASGI request context by @Kludex in Kludex/uvicorn#2912

Revert "Emit http.disconnect on server shutdown for streaming responses" (#2829) by @Kludex in Kludex/uvicorn#2913

New Contributors

@Krishnachaitanyakc made their first contribution in Kludex/uvicorn#2870

Full Changelog: Kludex/uvicorn@0.44.0...0.45.0

Version 0.44.0

What's Changed

Implement websocket keepalive pings for websockets-sansio by @Kludex in Kludex/uvicorn#2888

... (truncated)

Changelog

Sourced from uvicorn's changelog.

0.49.0 (June 3, 2026)

Changed

Bump httptools minimum version to 0.8.0 (#2962)

Consume duplicate forwarding headers in ProxyHeadersMiddleware (reverses the 0.48.0 behavior of ignoring them) (#2971)

0.48.0 (May 24, 2026)

Changed

Default ssl_ciphers to None and use OpenSSL defaults (#2940)

Fixed

Ignore duplicate forwarding headers in ProxyHeadersMiddleware (#2944)

0.47.0 (May 14, 2026)

Added

Add ssl_context_factory for custom SSLContext configuration (#2920)

Changed

Eagerly import the ASGI app in the parent process (#2919)

Fixed

Treat fd=0 as a valid file descriptor with reload/workers (#2927)

0.46.0 (April 23, 2026)

Added

Support ws_max_size in wsproto implementation (#2915)

Support ws_ping_interval and ws_ping_timeout in wsproto implementation (#2916)

Changed

Use bytearray for incoming WebSocket message buffer in websockets-sansio (#2917)

0.45.0 (April 21, 2026)

Added

Add --reset-contextvars flag to isolate ASGI request context (#2912)

Accept os.PathLike for log_config (#2905)

Accept log_level strings case-insensitively (#2907)

... (truncated)

Commits

3ef2e3e Version 0.49.0 (#2973)
eeb64b1 Consume duplicate forwarding headers in ProxyHeadersMiddleware (#2971)
630f4ac Make the watchfiles reload tests deterministic (#2972)
9154922 chore(deps): bump the github-actions group across 1 directory with 6 updates ...
739727a Migrate docs deploy from Cloudflare Pages to Workers (#2967)
be4a240 Gate docs preview deploy on Cloudflare token presence (#2966)
c489d7e Bump httptools minimum version to 0.8.0 (#2962)
9f547bd Skip docs preview deploy for Dependabot PRs (#2961)
44446b8 Migrate documentation from MkDocs Material to Zensical (#2959)
cfd659c Bump pymdown-extensions to 10.21.3 (#2958)
Additional commits viewable in compare view

Updates sqlalchemy from 2.0.40 to 2.0.51

Release notes

Sourced from sqlalchemy's releases.

2.0.51

Released: June 15, 2026

orm

[orm] [bug] Fixed issue where _orm.subqueryload() combined with PropComparator.of_type() and PropComparator.and_() would silently drop the additional filter criteria, causing all related objects to be loaded instead of only those matching the filter. The LoaderCriteriaOption was being constructed against the base entity rather than the effective entity indicated by PropComparator.of_type(). Pull request courtesy Arya Rizky.

References: #13207

[orm] [bug] Fixed bug where a failure during tpc_prepare() within _orm.Session.commit() for a two-phase session would raise IllegalStateChangeError instead of the original database exception. The internal _prepare_impl() method's error handler was unable to invoke _orm.SessionTransaction.rollback() due to a state-change guard, preventing proper cleanup and masking the underlying error.

References: #13356

engine

[engine] [bug] Fixed issue where Result.freeze() would lose track of ambiguous column names present in the original CursorResult, causing key-based access on the thawed result to silently return a value instead of raising InvalidRequestError. The SimpleResultMetaData now accepts and propagates ambiguous key information so that frozen, thawed, and pickled results raise consistently for duplicate column names. Pull request courtesy Saurabh Kohli.

References: #9427

sql

[sql] [bug] Fixed issue where _sql.StatementLambdaElement would proxy attribute access through the cached "expected" expression rather than the resolved expression, causing stale closure-bound parameter values to be used when a lambda statement was extended with non-lambda criteria such as an additional .where() clause. Courtesy cjc0013.

References: #10827

... (truncated)

Commits

See full diff in compare view

Updates alembic from 1.15.2 to 1.18.4

Release notes

Sourced from alembic's releases.

1.18.4

Released: February 10, 2026

bug

[bug] [operations] Reverted the behavior of Operations.add_column() that would automatically render the "PRIMARY KEY" keyword inline when a Column with primary_key=True is added. The automatic behavior, added in version 1.18.2, is now opt-in via the new Operations.add_column.inline_primary_key parameter. This change restores the ability to render a PostgreSQL SERIAL column, which is required to be primary_key=True, while not impacting the ability to render a separate primary key constraint. This also provides consistency with the Operations.add_column.inline_references parameter and gives users explicit control over SQL generation.

To render PRIMARY KEY inline, use the Operations.add_column.inline_primary_key parameter set to True:

op.add_column( "my_table", Column("id", Integer, primary_key=True), inline_primary_key=True )References: #1232

1.18.3

Released: January 29, 2026

bug

[bug] [autogenerate] Fixed regression in version 1.18.0 due to #1771 where autogenerate would raise NoReferencedTableError when a foreign key constraint referenced a table that was not part of the initial table load, including tables filtered out by the EnvironmentContext.configure.include_name callable or tables in remote schemas that were not included in the initial reflection run.

The change in #1771 was a performance optimization that eliminated additional reflection queries for tables that were only referenced by foreign keys but not explicitly included in the main reflection run. However, this optimization inadvertently removed the creation of Table objects for these referenced tables, causing autogenerate to fail when processing foreign key constraints that pointed to them.

The fix creates placeholder Table objects for foreign key targets

... (truncated)

Commits

See full diff in compare view

Updates psycopg2-binary from 2.9.10 to 2.9.12

Changelog

Sourced from psycopg2-binary's changelog.

Current release

What's new in psycopg 2.9.12 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Fix infinite loop with malformed interval (:ticket:1835).

What's new in psycopg 2.9.11 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Add support for Python 3.14.

Avoid a segfault passing more arguments than placeholders if Python is built with assertions enabled (:ticket:[#1791](https://github.com/psycopg/psycopg2/issues/1791)).

Add riscv64 platform binary packages (:ticket:[#1813](https://github.com/psycopg/psycopg2/issues/1813)).

~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 18.

Drop support for Python 3.8.

What's new in psycopg 2.9.10 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Add support for Python 3.13.

Receive notifications on commit (:ticket:[#1728](https://github.com/psycopg/psycopg2/issues/1728)).

~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 17.

Drop support for Python 3.7.

What's new in psycopg 2.9.9 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

Add support for Python 3.12.

Drop support for Python 3.6.

What's new in psycopg 2.9.8 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

Wheel package bundled with PostgreSQL 16 libpq in order to add support for recent features, such as sslcertmode.

What's new in psycopg 2.9.7 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

Fix propagation of exceptions raised during module initialization (:ticket:[#1598](https://github.com/psycopg/psycopg2/issues/1598)).

... (truncated)

Commits

3a6d9d6 ci: include almalinux in whieel building
ebca6bf chore: bump to version 3.9.12
0196f02 build(deps): bump pypa/cibuildwheel from 3.3.1 to 3.4.0
d157bdc build(deps): bump docker/setup-qemu-action from 3 to 4
7fccc0f build(deps): bump actions/upload-artifact from 6 to 7
d52a61e chore: bump dependency libraries
b231d72 chore: fix building binary images
6d76e84 Merge pull request #1836 from psycopg/fix-1835
f7e314c fix: overflow in malformed interval
eb905c1 docs: replace bare except clause with except Exception
Additional commits viewable in compare view

Updates pydantic from 2.11.3 to 2.13.4

Release notes

Sourced from pydantic's releases.

v2.13.4 2026-05-06

v2.13.4 (2026-05-06)

What's Changed

Packaging

Bump libc from 0.2.155 to 0.2.185 by @Viicos in #13109

Adapt pydantic-core linker flags on macOS by @washingtoneg and @Viicos in #13147

Fixes

Preserve RootModel core metadata by @Viicos in #13129

Full Changelog: pydantic/pydantic@v2.13.3...v2.13.4

v2.13.3 2026-04-20

v2.13.3 (2026-04-20)

What's Changed

Fixes

Handle AttributeError subclasses with from_attributes by @Viicos in #13096

Full Changelog: pydantic/pydantic@v2.13.2...v2.13.3

v2.13.2 2026-04-17

v2.13.2 (2026-04-17)

What's Changed

Fixes

Fix ValidationInfo.field_name missing with model_validate_json() by @Viicos in #13084

Full Changelog: pydantic/pydantic@v2.13.1...v2.13.2

v2.13.1 2026-04-15

v2.13.1 (2026-04-15)

What's Changed

Fixes

Fix ValidationInfo.data missing with model_validate_json() by @davidhewitt in #13079

Full Changelog: pydantic/pydantic@v2.13.0...v2.13.1

v2.13.0 2026-04-13

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.13.4 (2026-05-06)

GitHub release

What's Changed

Packaging

Bump libc from 0.2.155 to 0.2.185 by @Viicos in #13109

Adapt pydantic-core linker flags on macOS by @washingtoneg and @Viicos in #13147

Fixes

Preserve RootModel core metadata by @Viicos in #13129

v2.13.3 (2026-04-20)

GitHub release

What's Changed

Fixes

Handle AttributeError subclasses with from_attributes by @Viicos in #13096

v2.13.2 (2026-04-17)

GitHub release

What's Changed

Fixes

Fix ValidationInfo.field_name missing with model_validate_json() by @Viicos in #13084

v2.13.1 (2026-04-15)

GitHub release

What's Changed

Fixes

Fix ValidationInfo.data missing with model_validate_json() by @davidhewitt in #13079

v2.13.0 (2026-04-13)

GitHub release

The highlights of the v2.13 release are available in the blog post.

... (truncated)

Commits

cf67d4b Fix linting
f0d8a21 Prepare release v2.13.4
5e3fe1d Check for pydantic tag pattern in CI
7f9edcc Document tagging conventions
b46a0c9 Adapt pydantic-core linker flags on macOS
50629c8 Update to PyPy 7.3.22
8522ebb Preserve RootModel core metadata
a37f3af Adapt MISSING sentinel test to work with unreleased typing_extensions ver...
909259a Remove Logfire example in documentation
2c4174c Bump libc from 0.2.155 to 0.2.185
Additional commits viewable in compare view

Updates pydantic-settings from 2.9.1 to 2.14.2

Release notes

Sourced from pydantic-settings's releases.

v2.14.2

What's Changed

This is a security patch release.

Prevent NestedSecretsSettingsSource from following symlinks outside secrets_dir by @hramezani in pydantic/pydantic-settings#889

Prepare release 2.14.2 by @hramezani in pydantic/pydantic-settings#890

Security

Fixes GHSA-4xgf-cpjx-pc3j: NestedSecretsSettingsSource with secrets_nested_subdir=True could follow a symbolic link inside secrets_dir pointing outside it, reading out-of-tree files into settings values and bypassing the secrets_dir_max_size cap. Affected versions: >= 2.12.0, < 2.14.2.

Full Changelog: pydantic/pydantic-settings@v2.14.1...v2.14.2

v2.14.1

What's Changed

Bump the python-packages group with 4 updates by @dependabot[bot] in pydantic/pydantic-settings#850

Bump the python-packages group with 5 updates by @dependabot[bot] in pydantic/pydantic-settings#854

Bump the github-actions group with 3 updates by @dependabot[bot] in pydantic/pydantic-settings#853

Bump the python-packages group with 2 updates by @dependabot[bot] in pydantic/pydantic-settings#856

Fix field named cls conflicting with classmethod parameter by @hramezani in pydantic/pydantic-settings#858

Prepare release 2.14.1 by @hramezani in pydantic/pydantic-settings#859

Full Changelog: pydantic/pydantic-settings@v2.14.0...v2.14.1

v2.14.0

What's Changed

Fix parsing env vars into Optional Strict types by @hramezani in pydantic/pydantic-settings#792

Fix RecursionError with mutually recursive models in CLI by @hramezani in pydantic/pydantic-settings#794

Fix env_file from model_config ignored in CliApp.run() (#795) by @hramezani in pydantic/pydantic-settings#796

Update dependencies by @hramezani in pydantic/pydantic-settings#798

Add Dependabot configuration by @hramezani in pydantic/pydantic-settings#801

Bump samuelcolvin/check-python-version from 4.1 to 5 by @dependabot[bot] in pydantic/pydantic-settings#802

Bump actions/upload-artifact from 4 to 7 by @dependabot[bot] in pydantic/pydantic-settings#803

Bump actions/checkout from 4 to 6 by @dependabot[bot] in pydantic/pydantic-settings#804

Bump astral-sh/setup-uv from 5 to 7 by @dependabot[bot] in pydantic/pydantic-settings#805

Bump actions/setup-python from 5 to 6 by @dependabot[bot] in pydantic/pydantic-settings#806

Ignore chardet and group GitHub Actions in Dependabot by @hramezani in pydantic/pydantic-settings#808

Bump actions/download-artifact from 4 to 8 in the github-actions group by @dependabot[bot] in pydantic/pydantic-settings#809

Bump the python-packages group with 2 updates by @dependabot[bot] in pydantic/pydantic-settings#810

Support reading .env files from FIFOs (e.g. 1Password Environments) by @JacobHayes in pydantic/pydantic-settings#776

Fix AliasChoices ignored when changing provider priority by @hramezani in pydantic/pydantic-settings#813

fix: resolve KeyError in run_subcommand for underscore field names by @bradykieffer in pydantic/pydantic-settings#799

Bump the python-packages group with 3 updates by @dependabot[bot] in pydantic/pydantic-settings#814

Fix Literal[numeric Enum] coercion for CLI and env vars by @m9810223 in pydantic/pydantic-settings#811

Fix nested discriminated unions not discovered by env/CLI providers by @hramezani in pydantic/pydantic-settings#816

Bump the python-packages group with 3 updates by @dependabot[bot] in pydantic/pydantic-settings#820

CLI ensure env nested max split internally. by @kschwab in pydantic/pydantic-settings#821

Bump the python-packages group with 4 updates by @dependabot[bot] in pydantic/pydantic-settings#824

... (truncated)

Commits

d703bd7 Prepare release 2.14.2 (#890)
e95c30b Prepare release 2.14.1 (#859)
0c87345 Fix field named cls conflicting with classmethod parameter (#858)
7bd0072 Bump the python-packages group with 2 updates (#856)
b03e573 Bump the github-actions group with 3 updates (#853)
eaa3b43 Bump the python-packages group with 5 updates (#854)
9f95615 Bump the python-packages group with 4 updates (#850)
8916bee Prepare release 2.14.0 (#848)
39e551c Fix CLI descriptions lost under python -OO by falling back to `json_schema_...
9ed7f48 Bump the python-packages group with 4 updates (#847)
Additional commits viewable in compare view

Updates google-genai to 2.9.0

Release notes

Sourced from google-genai's releases.

v2.9.0

2.9.0 (2026-06-19)

Major updates

The interactions implementation has been completely replaced. The public api surface is unchanged. (d830f16)

Features

Add audioOffset to VoiceActivity (fb785e4)

Add gemini-3-flash-preview (gemini-3.1, gemini-3.5, gemini-4 are already mapped) to the local tokenizer map. (749f8a1), closes #1972

Add interimInputTranscription to LiveServerContent (fb785e4)

Add LanguageAuto, LanguageHints, and adaptationPhrases to AudioTranscriptionConfig (fb785e4)

Broaden publisher model path check to support all publishers (5d282e6)

Add ServiceTier to UsageMetadata (45b4963)

Expose Computer Use API fields (420b5a7)

Gemma 4 local tokenizer support (ca97c58)

interaction-api: Add presence_penalty, frequency_penalty, and cached_content to models.proto (05f16fe)

interaction-api: Rename usage to total_usage in StreamMetadata. (7c331c6)

Bug Fixes

Add fallback for aiohttp.readline without max_line_length for backward compatibility because we still want to keep aiohttp as optional dependency (e99ab99), closes #2487

Fix header (f8f9749)

Keep live music API keys out of websocket urls (#2564) (c754ebf)

Make transformers an optional dependency for local tokenizers, also add other dependencies to local-tokenizer-extras. (528926b)

Use .model_copy() instead of deprecated .copy() (216369f)

Changelog

Sourced from google-genai's changelog.

2.9.0 (2026-06-19)

Major updates

The interactions implementation has been completely replaced. The public api surface is unchanged. (d830f16)

Features

Add audioOffset to VoiceActivity (fb785e4)

Add gemini-3-flash-preview (gemini-3.1, gemini-3.5, gemini-4 are already mapped) to the local tokenizer map. (749f8a1), closes #1972

Add interimInputTranscription to LiveServerContent (fb785e4)

Add LanguageAuto, LanguageHints, and adaptationPhrases to AudioTranscriptionConfig (fb785e4)

Broaden publisher model path check to support all publishers (5d282e6)

Add ServiceTier to UsageMetadata (45b4963)

Expose Computer Use API fields (420b5a7)

Gemma 4 local tokenizer support (ca97c58)

interaction-api: Add presence_penalty, frequency_penalty, and cached_content to models.proto (05f16fe)

interaction-api: Rename usage to total_usage in StreamMetadata. (7c331c6)

Bug Fixes

Add fallback for aiohttp.readline without max_line_length for backward compatibility because we still want to keep aiohttp as optional dependency (e99ab99), closes #2487

Fix header (f8f9749)

Keep live music API keys out of websocket urls (#2564) (c754ebf)

Make transformers an optional dependency for local tokenizers, also add other dependencies to local-tokenizer-extras. (528926b)

Use .model_copy() instead of deprecated .copy() (216369f)

2.9.0-rc1 (2026-06-17)

Features

Add audioOffset to VoiceActivity (fb785e4)

Add gemini-3-flash-preview (gemini-3.1, gemini-3.5, gemini-4 are already mapped) to the local tokenizer map. (749f8a1), closes #1972

Add interimInputTranscription to LiveServerContent (fb785e4)

Add LanguageAuto, LanguageHints, and adaptationPhrases to AudioTranscriptionConfig (fb785e4)

Broaden publisher model path check to support all publishers (5d282e6)

Miscellaneous Chores

Release 2.9.0-rc1 (b95f2a8)

2.9.0-rc0 (2026-06-16)

Major updates

... (truncated)

Commits

84aa3ae chore(main): release 2.9.0 (#2635)
6119dd3 feat: Interactions is no longer in preview.
02921e1 chore: Remove experimental warnings for interactions
f63d1dc chore: internal update
85fbda3 Copybara import of the project:
f91f359 Copybara import of the project:
eee7ddc chore: Update version.py (#2628)
04677a8 chore(main): release 2.9.0-rc1 (#2618)
b95f2a8 chore: release 2.9.0-rc1
749f8a1 feat: Add gemini-3-flash-preview (gemini-3.1, gemini-3.5, gemini-4 are alread...
Additional commits viewable in compare view

Updates qdrant-client from 1.14.2 to 1.18.0

Release notes

Sourced from qdrant-client's releases.

v1.18.0

Change Log

Features 🌊

#1176 - bump fastembed to v0.8.0 by @joein

#1173 - per request custom headers for tracing by @generall

#1201 - create/delete named vector API after creating a collection, turboquantization and more

Fixes 🧑‍🔧

#1191 - fix local mode inconsistency of values count with the server in case of iterables other than list by @joein

#1190 - fix local mode geo filter edge cases by @joein

Deprecations ⏲️

#1174 - python-client docs has been deprecated in favour of qdrant.tech documentation by @joein

#1169 - do not modify date filters in local mode by @jnMetaCode

#1168 - run server version check in a thread to avoid blocking async client by @joein

#1157 - fix type hint error in grpc_uploader with older versions of protobuf by @joein

Thanks to everyone who contributed to the current release! @jnMetaCode @Anush008 @joein

v1.17.1

Change Log

Features 🌊

#1162 - add a way to provide custom headers in http and grpc by @Anush008 @joein

#1166 - do not use fastembed for bm25 inference with hosted qdrant by @joein

Fixes 🔧

#1169 - do not modify date filters in local mode by @jnMetaCode

#1168...
Description has been truncated

dependabot · 2026-06-15T07:21:31Z

Labels

The following labels could not be found: dependencies, python. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

…dates Updates the requirements on [fastapi](https://github.com/fastapi/fastapi), [uvicorn](https://github.com/Kludex/uvicorn), [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy), [alembic](https://github.com/sqlalchemy/alembic), [psycopg2-binary](https://github.com/psycopg/psycopg2), [pydantic](https://github.com/pydantic/pydantic), [pydantic-settings](https://github.com/pydantic/pydantic-settings), [google-genai](https://github.com/googleapis/python-genai), [qdrant-client](https://github.com/qdrant/qdrant-client), [apscheduler](https://github.com/agronholm/apscheduler), [pytz](https://github.com/stub42/pytz), [beautifulsoup4](https://www.crummy.com/software/BeautifulSoup/bs4/), [redis](https://github.com/redis/redis-py), [python-multipart](https://github.com/Kludex/python-multipart), [python-jose](https://github.com/mpdavis/python-jose), [bcrypt](https://github.com/pyca/bcrypt), [email-validator](https://github.com/JoshData/python-email-validator), [slowapi](https://github.com/laurents/slowapi), [pybreaker](https://github.com/danielfm/pybreaker), [rapidfuzz](https://github.com/rapidfuzz/RapidFuzz), [pipecat-ai](https://github.com/pipecat-ai/pipecat), [weasyprint](https://github.com/Kozea/WeasyPrint), [openpyxl](https://openpyxl.readthedocs.io), [markdown2](https://github.com/trentm/python-markdown2), [pygments](https://github.com/pygments/pygments), [matplotlib](https://github.com/matplotlib/matplotlib), [celery](https://github.com/celery/celery), [restrictedpython](https://github.com/zopefoundation/RestrictedPython), [twilio](https://github.com/twilio/twilio-python) and [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) to permit the latest version. Updates `fastapi` from 0.115.12 to 0.138.0 - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.115.12...0.138.0) Updates `uvicorn` from 0.34.2 to 0.49.0 - [Release notes](https://github.com/Kludex/uvicorn/releases) - [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md) - [Commits](Kludex/uvicorn@0.34.2...0.49.0) Updates `sqlalchemy` from 2.0.40 to 2.0.51 - [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases) - [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst) - [Commits](https://github.com/sqlalchemy/sqlalchemy/commits) Updates `alembic` from 1.15.2 to 1.18.4 - [Release notes](https://github.com/sqlalchemy/alembic/releases) - [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES) - [Commits](https://github.com/sqlalchemy/alembic/commits) Updates `psycopg2-binary` from 2.9.10 to 2.9.12 - [Changelog](https://github.com/psycopg/psycopg2/blob/master/NEWS) - [Commits](psycopg/psycopg2@2.9.10...2.9.12) Updates `pydantic` from 2.11.3 to 2.13.4 - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](pydantic/pydantic@v2.11.3...v2.13.4) Updates `pydantic-settings` from 2.9.1 to 2.14.2 - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](pydantic/pydantic-settings@v2.9.1...v2.14.2) Updates `google-genai` to 2.9.0 - [Release notes](https://github.com/googleapis/python-genai/releases) - [Changelog](https://github.com/googleapis/python-genai/blob/main/CHANGELOG.md) - [Commits](googleapis/python-genai@v1.14.0...v2.9.0) Updates `qdrant-client` from 1.14.2 to 1.18.0 - [Release notes](https://github.com/qdrant/qdrant-client/releases) - [Commits](qdrant/qdrant-client@v1.14.2...v1.18.0) Updates `apscheduler` from 3.11.0 to 3.11.2 - [Release notes](https://github.com/agronholm/apscheduler/releases) - [Commits](agronholm/apscheduler@3.11.0...3.11.2) Updates `pytz` to 2026.2 - [Release notes](https://github.com/stub42/pytz/releases) - [Commits](stub42/pytz@release_2024.1...release_2026.2) Updates `beautifulsoup4` from 4.13.4 to 4.15.0 Updates `redis` from 5.3.0 to 8.0.0 - [Release notes](https://github.com/redis/redis-py/releases) - [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES) - [Commits](redis/redis-py@v5.3.0...v8.0.0) Updates `python-multipart` from 0.0.20 to 0.0.32 - [Release notes](https://github.com/Kludex/python-multipart/releases) - [Changelog](https://github.com/Kludex/python-multipart/blob/main/CHANGELOG.md) - [Commits](Kludex/python-multipart@0.0.20...0.0.32) Updates `python-jose` to 3.5.0 - [Release notes](https://github.com/mpdavis/python-jose/releases) - [Changelog](https://github.com/mpdavis/python-jose/blob/master/CHANGELOG.md) - [Commits](mpdavis/python-jose@3.3.0...3.5.0) Updates `bcrypt` to 5.0.0 - [Changelog](https://github.com/pyca/bcrypt/blob/main/CHANGELOG.rst) - [Commits](pyca/bcrypt@v1.0.0...5.0.0) Updates `email-validator` to 2.3.0 - [Release notes](https://github.com/JoshData/python-email-validator/releases) - [Changelog](https://github.com/JoshData/python-email-validator/blob/main/CHANGELOG.md) - [Commits](JoshData/python-email-validator@v2.0.0...v2.3.0) Updates `slowapi` to 0.1.10 - [Release notes](https://github.com/laurents/slowapi/releases) - [Changelog](https://github.com/laurentS/slowapi/blob/master/CHANGELOG.md) - [Commits](laurentS/slowapi@v0.1.9...v0.1.10) Updates `pybreaker` to 1.4.1 - [Release notes](https://github.com/danielfm/pybreaker/releases) - [Changelog](https://github.com/danielfm/pybreaker/blob/main/CHANGELOG) - [Commits](danielfm/pybreaker@1.2.0...v1.4.1) Updates `rapidfuzz` to 3.14.5 - [Release notes](https://github.com/rapidfuzz/RapidFuzz/releases) - [Changelog](https://github.com/rapidfuzz/RapidFuzz/blob/main/CHANGELOG.rst) - [Commits](rapidfuzz/RapidFuzz@v3.0.0...v3.14.5) Updates `pipecat-ai` to 1.4.0 - [Release notes](https://github.com/pipecat-ai/pipecat/releases) - [Changelog](https://github.com/pipecat-ai/pipecat/blob/main/CHANGELOG.md) - [Commits](pipecat-ai/pipecat@v0.0.106...v1.4.0) Updates `weasyprint` to 69.0 - [Release notes](https://github.com/Kozea/WeasyPrint/releases) - [Changelog](https://github.com/Kozea/WeasyPrint/blob/main/docs/changelog.rst) - [Commits](Kozea/WeasyPrint@v62.0...v69.0) Updates `openpyxl` to 3.1.5 Updates `markdown2` to 2.5.5 - [Changelog](https://github.com/trentm/python-markdown2/blob/master/CHANGES.md) - [Commits](trentm/python-markdown2@2.5.0...2.5.5) Updates `pygments` to 2.20.0 - [Release notes](https://github.com/pygments/pygments/releases) - [Changelog](https://github.com/pygments/pygments/blob/master/CHANGES) - [Commits](pygments/pygments@2.18.0...2.20.0) Updates `matplotlib` to 3.11.0 - [Release notes](https://github.com/matplotlib/matplotlib/releases) - [Commits](matplotlib/matplotlib@v3.9.0...v3.11.0) Updates `celery` from 5.4.0 to 5.6.3 - [Release notes](https://github.com/celery/celery/releases) - [Changelog](https://github.com/celery/celery/blob/v5.6.3/Changelog.rst) - [Commits](celery/celery@v5.4.0...v5.6.3) Updates `restrictedpython` to 8.3 - [Changelog](https://github.com/zopefoundation/RestrictedPython/blob/master/CHANGES.rst) - [Commits](zopefoundation/RestrictedPython@7.4...8.3) Updates `twilio` to 9.10.9 - [Release notes](https://github.com/twilio/twilio-python/releases) - [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md) - [Commits](twilio/twilio-python@9.0.0...9.10.9) Updates `phonenumbers` to 9.0.32 - [Commits](daviddrysdale/python-phonenumbers@v8.13.0...v9.0.32) --- updated-dependencies: - dependency-name: alembic dependency-version: 1.18.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: apscheduler dependency-version: 3.11.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-prod - dependency-name: bcrypt dependency-version: 5.0.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: beautifulsoup4 dependency-version: 4.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: celery dependency-version: 5.6.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: email-validator dependency-version: 2.3.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: fastapi dependency-version: 0.137.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: google-genai dependency-version: 2.8.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: markdown2 dependency-version: 2.5.5 dependency-type: direct:production dependency-group: python-prod - dependency-name: matplotlib dependency-version: 3.11.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: openpyxl dependency-version: 3.1.5 dependency-type: direct:production dependency-group: python-prod - dependency-name: phonenumbers dependency-version: 9.0.32 dependency-type: direct:production dependency-group: python-prod - dependency-name: pipecat-ai dependency-version: 1.3.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: psycopg2-binary dependency-version: 2.9.12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-prod - dependency-name: pybreaker dependency-version: 1.4.1 dependency-type: direct:production dependency-group: python-prod - dependency-name: pydantic dependency-version: 2.13.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: pydantic-settings dependency-version: 2.14.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: pygments dependency-version: 2.20.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: python-jose dependency-version: 3.5.0 dependency-type: direct:production dependency-group: python-prod - dependency-name: python-multipart dependency-version: 0.0.32 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-prod - dependency-name: pytz dependency-version: '2026.2' dependency-type: direct:production dependency-group: python-prod - dependency-name: qdrant-client dependency-version: 1.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: rapidfuzz dependency-version: 3.14.5 dependency-type: direct:production dependency-group: python-prod - dependency-name: redis dependency-version: 8.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: python-prod - dependency-name: restrictedpython dependency-version: '8.2' dependency-type: direct:production dependency-group: python-prod - dependency-name: slowapi dependency-version: 0.1.10 dependency-type: direct:production dependency-group: python-prod - dependency-name: sqlalchemy dependency-version: 2.0.50 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-prod - dependency-name: twilio dependency-version: 9.10.9 dependency-type: direct:production dependency-group: python-prod - dependency-name: uvicorn dependency-version: 0.49.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-prod - dependency-name: weasyprint dependency-version: '69.0' dependency-type: direct:production dependency-group: python-prod ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot force-pushed the dependabot/pip/backend/python-prod-b1f889f6d8 branch from 4628417 to c4680cc Compare June 22, 2026 05:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the python-prod group across 1 directory with 30 updates#17

chore(deps): bump the python-prod group across 1 directory with 30 updates#17
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/backend/python-prod-b1f889f6d8

dependabot Bot commented on behalf of github Jun 15, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Jun 15, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 15, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

0.138.0

Features

Docs

Translations

Internal

0.137.2

Features

Translations

Internal

Version 0.49.0

What's Changed

Version 0.48.0

What's Changed

Version 0.47.0

What's Changed

Version 0.46.0

What's Changed

Version 0.45.0

What's Changed

New Contributors

Version 0.44.0

What's Changed

0.49.0 (June 3, 2026)

Changed

0.48.0 (May 24, 2026)

Changed

Fixed

0.47.0 (May 14, 2026)

Added

Changed

Fixed

0.46.0 (April 23, 2026)

Added

Changed

0.45.0 (April 21, 2026)

Added

2.0.51

orm

engine

sql

1.18.4

bug

1.18.3

bug

Current release

v2.13.4 2026-05-06

v2.13.4 (2026-05-06)

What's Changed

Packaging

Fixes

v2.13.3 2026-04-20

v2.13.3 (2026-04-20)

What's Changed

Fixes

v2.13.2 2026-04-17

v2.13.2 (2026-04-17)

What's Changed

Fixes

v2.13.1 2026-04-15

v2.13.1 (2026-04-15)

What's Changed

Fixes

v2.13.0 2026-04-13

v2.13.4 (2026-05-06)

What's Changed

Packaging

Fixes

v2.13.3 (2026-04-20)

What's Changed

Fixes

v2.13.2 (2026-04-17)

What's Changed

Fixes

v2.13.1 (2026-04-15)

What's Changed

Fixes

v2.13.0 (2026-04-13)

dependabot Bot commented on behalf of github Jun 15, 2026 •

edited

Loading