deps(quantum-ml): update anyio requirement from >=4.14.1 to >=4.14.2 in /ai-projects/quantum-ml in the quantum-ml-deps group#1070
Conversation
Updates the requirements on [anyio](https://github.com/agronholm/anyio) to permit the latest version. Updates `anyio` to 4.14.2 - [Release notes](https://github.com/agronholm/anyio/releases) - [Commits](agronholm/anyio@4.14.1...4.14.2) --- updated-dependencies: - dependency-name: anyio dependency-version: 4.14.2 dependency-type: direct:production dependency-group: quantum-ml-deps ... Signed-off-by: dependabot[bot] <support@github.com>
Security Policy Alert: Harden Runner Policy ViolationThis workflow run has been blocked by StepSecurity's Harden Runner policy. This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk. Jobs not protected by Harden Runner:
Update the affected jobs so Harden Runner is initialized before any other action or command runs. For more information, see StepSecurity's Harden Runner documentation. |
Security Policy Alert: Harden Runner Policy ViolationThis workflow run has been blocked by StepSecurity's Harden Runner policy. This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk. Jobs not protected by Harden Runner:
Update the affected jobs so Harden Runner is initialized before any other action or command runs. For more information, see StepSecurity's Harden Runner documentation. |
|
Looks like anyio is updatable in another way, so this is no longer needed. |
🔐 CodeQL — Open Alerts on this PR
Copilot Autofix suggestions (if enabled) appear as inline review comments on the affected lines. |
Updates the requirements on anyio to permit the latest version.
Updates
anyioto 4.14.2Release notes
Sourced from anyio's releases.
Commits
c384f99Bumped up the versiondbba29dFixed 100% CPU spin on cancel scope misuse (#1217)6bbc6c3Fix CapacityLimiter over-granting tokens on asyncio (#1172)6f82b25Refactored TestTLSStream.test_receive_invalid_max_bytes() to be less flakybe24b04Relaxed timeouts to fix test flakiness8113506Fix test flakiness caused by slow callback duration logging1e988b6Fixed CapacityLimiter raising trio.WouldBlock instead of anyio.WouldBlock (#1...44713f3Pin setup-uv to a commit sha across downstream jobs (#1213)f1b7301Fixed stderr writes in a worker subprocess causing a deadlock (#1207)212be93Fix flaky test_tcp_listener_same_port using a hardcoded port (#1206)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions