Chore(deps): Bump pytz from 2025.2 to 2026.1.post1#1037
Conversation
dependabot
Bot
added
dependencies
foxpatch-aleph
left a comment
foxpatch-aleph
left a comment
There was a problem hiding this comment.
This is a straightforward dependency version bump of pytz from 2025.2 to 2026.1.post1, updating to the latest IANA 2026a timezone database. The change is minimal and safe — pytz version bumps of this nature are routine maintenance with no API-breaking changes. The update includes improved resource access via importlib.resources which is a compatibility improvement for newer Python versions.
foxpatch-aleph
left a comment
foxpatch-aleph
left a comment
There was a problem hiding this comment.
This is a straightforward dependency bump of pytz from 2025.2 to 2026.1.post1, updating the IANA timezone database to the 2026a release. The change is minimal and low-risk: pytz is a well-maintained library, the version bump is purely a timezone data update with no breaking API changes, and the compatibility score from Dependabot indicates this is safe. No logic, security, or testing concerns.
foxpatch-aleph
left a comment
foxpatch-aleph
left a comment
There was a problem hiding this comment.
This is a straightforward dependency bump of pytz from 2025.2 to 2026.1.post1, updating the IANA timezone database to 2026a. The change is minimal and low-risk — pytz is a well-maintained library and this update brings the latest timezone data. No logic changes, no API breakage expected, and pytz maintains strong backwards compatibility.
dependabot
Bot
force-pushed
the
dependabot/pip/pytz-2026.1.post1
branch
from
138bdf6 to
ea61b88
Compare
foxpatch-aleph
left a comment
foxpatch-aleph
left a comment
There was a problem hiding this comment.
This is a straightforward dependency bump of pytz from 2025.2 to 2026.1.post1, updating the IANA timezone database to the 2026a release. The change is minimal and low-risk — pytz is a well-maintained library and this update includes timezone data updates and an importlib.resources compatibility fix. No logic changes, no security concerns, and no test coverage is needed for a pure dependency version bump.
Bumps [pytz](https://github.com/stub42/pytz) from 2025.2 to 2026.1.post1. - [Release notes](https://github.com/stub42/pytz/releases) - [Commits](stub42/pytz@release_2025.2...release_2026.1.post1) --- updated-dependencies: - dependency-name: pytz dependency-version: 2026.1.post1 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/pip/pytz-2026.1.post1
branch
from
ea61b88 to
342639d
Compare
foxpatch-aleph
left a comment
foxpatch-aleph
left a comment
There was a problem hiding this comment.
This is a straightforward dependency bump of pytz from 2025.2 to 2026.1.post1, updating to the IANA 2026a timezone database. The change is a single-line version pin update with no logic changes. The new version includes timezone data updates and a fix for resource access using importlib.resources. No security concerns, no breaking API changes in pytz between these versions, and no test changes are needed for a timezone database update.
|
Superseded by #1131. |
1 participant
Bumps pytz from 2025.2 to 2026.1.post1.
Commits
02509d0Update test runners for new Pythons and github actions43c1cb2Bump version number to 2026.1.post16ee7e56Try to access resource usingimportlib.resources95fe75dBump version number to 2026.1 (2026a)7034275Updates for upstream directory layout changes4dd79d3IANA 2026a08d7e76Squashed 'tz/' changes from 7e1145bfdb..e23c045f8fb07d947try to access resource usingimportlib.resourcesYou can trigger a rebase of this PR by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)