Skip to content

chore(deps): bump the production-dependencies group across 1 directory with 8 updates#142

Open
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/pip/staging/production-dependencies-09f3d6346b
Open

chore(deps): bump the production-dependencies group across 1 directory with 8 updates#142
dependabot[bot] wants to merge 1 commit intostagingfrom
dependabot/pip/staging/production-dependencies-09f3d6346b

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 30, 2026

Bumps the production-dependencies group with 8 updates in the / directory:

Package From To
fastapi 0.132.0 0.135.2
grpcio 1.78.1 1.80.0
grpcio-testing 1.78.1 1.80.0
grpcio-tools 1.78.1 1.80.0
phonenumbers 9.0.24 9.0.26
requests 2.32.5 2.33.1
sentry-sdk 2.53.0 2.56.0
twilio 9.10.2 9.10.4

Updates fastapi from 0.132.0 to 0.135.2

Release notes

Sourced from fastapi's releases.

0.135.2

Upgrades

  • ⬆️ Increase lower bound to pydantic >=2.9.0. and fix the test suite. PR #15139 by @​svlandeg.

Docs

Translations

Internal

... (truncated)

Commits
  • 25a3697 🔖 Release version 0.135.2
  • ab125da 📝 Update release notes
  • 122b6d4 📝 Add missing last release notes dates (#15202)
  • 68ac0ab 📝 Update release notes
  • ea6e287 📝 Update docs for contributors and team members regarding translation PRs (#1...
  • d0a6f20 📝 Update release notes
  • fd9e192 💄 Fix code blocks in reference docs overflowing table width (#15094)
  • fce9460 📝 Update release notes
  • 0227991 🔨 Exclude spam comments from statistics in scripts/people.py (#15088)
  • cbd64b0 📝 Update release notes
  • Additional commits viewable in compare view

Updates grpcio from 1.78.1 to 1.80.0

Release notes

Sourced from grpcio's releases.

Release v1.80.0

This is release 1.80.0 (glimmering) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [ssl] Implement TLS private key signer in Python. (#41701)
  • [TLS Credentials]: Private Key Offload Implementation. (#41606)
  • Fix max sockaddr struct size on OpenBSD. (#40454)
  • [core] Enable EventEngine for Python by default, and EventEngine fork support in Python and Ruby. (#41432)
  • [TLS Credentials]: Create InMemoryCertificateProvider to update certificates independently. (#41484)
  • [Ruby] Build/test ruby 4.0 and build native gems with Ruby 4.0 support. (#41324)
  • [EventEngine] Remove an incorrect std::move in DNSServiceResolver constructor. (#41502)
  • [RR and WRR] enable change to connect from a random index. (#41472)
  • [xds] Implement gRFC A101. (#41051)

C++

  • [C++] Add SNI override option to C++ channel credentials options API. (#41460)

C#

  • [C# tools] Option to append Async to server side method names #39010. (#39797)
  • [C# tools] Fix Grpc.Tools 2.69.0 stops working on ARM64 (#41543)

Objective-C

  • [Fix][Compiler] Plugins fall back to the edition 2023 for older protobuf. (#41357)

PHP

  • [PHP] Disable php infinite recursion check for callback from Core to PHP. (#41835)
  • [PHP] Fix runtime error with PHp8.5 alpha because zend_exception_get_defaul…. (#40337)

Python

  • [Python] Fix GRPC_TRACE not working when absl log initialized in cython. (#41814)
  • Revert "[Python] Align GRPC_ENABLE_FORK_SUPPORT env defaults in core and python (#41455)". (#41769)
  • [Python] Fix AsyncIO Server maximum_concurrent_rpcs enforcement preventing negative active_rpcs count. (#41532)
  • [Python] Docs: correct grpc.Compression references. (#41705)

... (truncated)

Commits
  • f5e2d6e [Release] Bump version to 1.80.0 (on v1.80.x branch) (#41857)
  • 938cfec [subchannel connection scaling] fix when we reset backoff (#41935)
  • 91778be [Backport][v1.80.x][Python] New _create method for aio.Metadata (#41888)
  • f10b9f2 [bzlmod] upgrade rules_swift to avoid BCR CI breakage on Windows with bazel 7...
  • be4c1c5 [subchannel] fix crash in connection scaling code (#41853)
  • a71df73 [Release] Bump version to 1.80.0-pre1 (on v1.80.x branch) (#41844)
  • 3ca09e4 [Python] Fix GRPC_TRACE and add test to check the GRPC_TRACE logs print (#41814)
  • 260c6fd [PHP] Disable php infinite recursion check for callback from Core to PHP (#41...
  • 50957c5 [Flakiness] Delete flaky iomgr fd_conservation_posix_test and create an Event...
  • e1e1d0a [Bzlmod] Turn off bzlmod for PSM python tests. (#41810)
  • Additional commits viewable in compare view

Updates grpcio-testing from 1.78.1 to 1.80.0

Updates grpcio-tools from 1.78.1 to 1.80.0

Release notes

Sourced from grpcio-tools's releases.

Release v1.80.0

This is release 1.80.0 (glimmering) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • [ssl] Implement TLS private key signer in Python. (#41701)
  • [TLS Credentials]: Private Key Offload Implementation. (#41606)
  • Fix max sockaddr struct size on OpenBSD. (#40454)
  • [core] Enable EventEngine for Python by default, and EventEngine fork support in Python and Ruby. (#41432)
  • [TLS Credentials]: Create InMemoryCertificateProvider to update certificates independently. (#41484)
  • [Ruby] Build/test ruby 4.0 and build native gems with Ruby 4.0 support. (#41324)
  • [EventEngine] Remove an incorrect std::move in DNSServiceResolver constructor. (#41502)
  • [RR and WRR] enable change to connect from a random index. (#41472)
  • [xds] Implement gRFC A101. (#41051)

C++

  • [C++] Add SNI override option to C++ channel credentials options API. (#41460)

C#

  • [C# tools] Option to append Async to server side method names #39010. (#39797)
  • [C# tools] Fix Grpc.Tools 2.69.0 stops working on ARM64 (#41543)

Objective-C

  • [Fix][Compiler] Plugins fall back to the edition 2023 for older protobuf. (#41357)

PHP

  • [PHP] Disable php infinite recursion check for callback from Core to PHP. (#41835)
  • [PHP] Fix runtime error with PHp8.5 alpha because zend_exception_get_defaul…. (#40337)

Python

  • [Python] Fix GRPC_TRACE not working when absl log initialized in cython. (#41814)
  • Revert "[Python] Align GRPC_ENABLE_FORK_SUPPORT env defaults in core and python (#41455)". (#41769)
  • [Python] Fix AsyncIO Server maximum_concurrent_rpcs enforcement preventing negative active_rpcs count. (#41532)
  • [Python] Docs: correct grpc.Compression references. (#41705)

... (truncated)

Commits
  • f5e2d6e [Release] Bump version to 1.80.0 (on v1.80.x branch) (#41857)
  • a71df73 [Release] Bump version to 1.80.0-pre1 (on v1.80.x branch) (#41844)
  • 1299baa [Python] Add language features to exported proto files (#41501)
  • 522dbbb [Release] Bump version to 1.79.0-dev (on master branch) (#41291)
  • See full diff in compare view

Updates phonenumbers from 9.0.24 to 9.0.26

Commits
  • 07e2c75 Prep for 9.0.26 release
  • 55522da Generated files for metadata
  • 8ca762b Merge metadata changes from upstream 9.0.26
  • c4d8bac Prep for 9.0.25 release
  • 17db646 Generated files for metadata
  • d08f6b4 Merge metadata changes from upstream 9.0.25
  • See full diff in compare view

Updates requests from 2.32.5 to 2.33.1

Release notes

Sourced from requests's releases.

v2.33.1

2.33.1 (2026-03-30)

Bugfixes

  • Fixed test cleanup for CVE-2026-25645 to avoid leaving unnecessary files in the tmp directory. (#7305)
  • Fixed Content-Type header parsing for malformed values. (#7309)
  • Improved error consistency for malformed header values. (#7308)

New Contributors

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2331-2026-03-30

v2.33.0

2.33.0 (2026-03-25)

Announcements

  • 📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣

Security

  • CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.

Improvements

  • Migrated to a PEP 517 build system using setuptools. (#7012)

Bugfixes

  • Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)

Deprecations

  • Dropped support for Python 3.9 following its end of support. (#7196)

Documentation

  • Various typo fixes and doc improvements.

New Contributors

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2330-2026-03-25

Changelog

Sourced from requests's changelog.

2.33.1 (2026-03-30)

Bugfixes

  • Fixed test cleanup for CVE-2026-25645 to avoid leaving unnecessary files in the tmp directory. (#7305)
  • Fixed Content-Type header parsing for malformed values. (#7309)
  • Improved error consistency for malformed header values. (#7308)

2.33.0 (2026-03-25)

Announcements

  • 📣 Requests is adding inline types. If you have a typed code base that uses Requests, please take a look at #7271. Give it a try, and report any gaps or feedback you may have in the issue. 📣

Security

  • CVE-2026-25645 requests.utils.extract_zipped_paths now extracts contents to a non-deterministic location to prevent malicious file replacement. This does not affect default usage of Requests, only applications calling the utility function directly.

Improvements

  • Migrated to a PEP 517 build system using setuptools. (#7012)

Bugfixes

  • Fixed an issue where an empty netrc entry could cause malformed authentication to be applied to Requests on Python 3.11+. (#7205)

Deprecations

  • Dropped support for Python 3.9 following its end of support. (#7196)

Documentation

  • Various typo fixes and doc improvements.
Commits

Updates sentry-sdk from 2.53.0 to 2.56.0

Release notes

Sourced from sentry-sdk's releases.

2.56.0

New Features ✨

Bug Fixes 🐛

Anthropic

Other

Documentation 📚

Internal Changes 🔧

Other

2.55.0

New Features ✨

Anthropic

Pydantic Ai

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.56.0

New Features ✨

Bug Fixes 🐛

Anthropic

Other

Documentation 📚

Internal Changes 🔧

Other

2.55.0

New Features ✨

Anthropic

Pydantic Ai

... (truncated)

Commits
  • f5e93ad release: 2.56.0
  • 4cd6752 chore: pin GitHub Actions to full-length commit SHAs (#5781)
  • c3eb19f test: fix flaky threading test (#5700)
  • b2b42df fix(starlette): Catch Jinja2Templates ImportError (#5741)
  • 48dc566 feat(asgi): Add option to disable suppressing chained exceptions (#5714)
  • f963475 tests: Add -latest alias for each integration test suite (#5706)
  • 715fd2b ci: Use date-based branch names for toxgen PRs (#5704)
  • 35fe9e4 ci: 🤖 Update test matrix with new releases (03/19) (#5703)
  • 8d56b30 fix(anthropic): Set exception info on streaming span when applicable (#5683)
  • e103926 feat: Make ASGI support span first (#5680)
  • Additional commits viewable in compare view

Updates twilio from 9.10.2 to 9.10.4

Release notes

Sourced from twilio's releases.

9.10.4

Release Notes

Data-ingress

  • API Changes

  • 2026-03-23

  • Added stage-us1 to supportedRealms for all endpoints

  • 2026-03-20

  • Content updates:
  • Removed estimatedCompletionTime from LongRunningOperationResponse
  • Moved operationId from LongRunningOperationResponse to headers

  • 2026-03-18

  • Added 1 new path(s):
  • /v1/ControlPlane/Operations/{OperationId} (GetControlPlaneOperationStatus)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-05

  • Initial release with 10 paths and 22 operations

Memory

  • 2026-03-19

  • Added 1 new path(s):
  • /v1/ControlPlane/Operations/{operationId} (FetchOperation)

  • 2026-03-11

  • Minor updates (formatting, metadata)

Docs

9.10.3

Release Notes

Twiml

  • Rename recording_configuration to recording_configuration_id attribute in <Conference>, <Dial>, <Record> verbs and <Recording> noun

Ace

  • ACE Signals API Changes

  • 2026-02-18

  • Initial release: POST /signals, GET/POST /signals/{signal_id}/results, GET /health
  • Enables OneAdmin integration for synchronous signal ingestion and policy result polling
  • Supports permission-based authorization for signal operations
  • Health endpoint available for monitoring without authentication

... (truncated)

Changelog

Sourced from twilio's changelog.

[2026-03-24] Version 9.10.4

Data-ingress

  • API Changes

  • 2026-03-23

  • Added stage-us1 to supportedRealms for all endpoints

  • 2026-03-20

  • Content updates:
  • Removed estimatedCompletionTime from LongRunningOperationResponse
  • Moved operationId from LongRunningOperationResponse to headers

  • 2026-03-18

  • Added 1 new path(s):
  • /v1/ControlPlane/Operations/{OperationId} (GetControlPlaneOperationStatus)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-11

  • Minor updates (formatting, metadata)

  • 2026-03-05

  • Initial release with 10 paths and 22 operations

Memory

  • 2026-03-19

  • Added 1 new path(s):
  • /v1/ControlPlane/Operations/{operationId} (FetchOperation)

  • 2026-03-11

  • Minor updates (formatting, metadata)

[2026-03-10] Version 9.10.3

Twiml

  • Rename recording_configuration to recording_configuration_id attribute in <Conference>, <Dial>, <Record> verbs and <Recording> noun

Ace

  • ACE Signals API Changes

  • 2026-02-18

  • Initial release: POST /signals, GET/POST /signals/{signal_id}/results, GET /health
  • Enables OneAdmin integration for synchronous signal ingestion and policy result polling
  • Supports permission-based authorization for signal operations
  • Health endpoint available for monitoring without authentication

Api

  • Added optional parameter Confirmation to Payments create endpoint to enable payment confirmation prompt before gateway submission
  • Added optional parameter RequireMatchingInputs to Payments create endpoint for input confirmation in agent-assisted payment flows

... (truncated)

Commits
  • a3ea20d Release 9.10.4
  • 09318f2 [Librarian] Regenerated @ 6e3b90a45885c596ade6b11ff7100254b15c9403 c02f66cc96...
  • 2e9d66f Release 9.10.3
  • 7319870 [Librarian] Regenerated @ 6e3b90a45885c596ade6b11ff7100254b15c9403 b84ee26554...
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group across 1 director…
e4af912 
…y with 8 updates

Bumps the production-dependencies group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [fastapi](https://github.com/fastapi/fastapi) | `0.132.0` | `0.135.2` |
| [grpcio](https://github.com/grpc/grpc) | `1.78.1` | `1.80.0` |
| [grpcio-testing](https://grpc.io) | `1.78.1` | `1.80.0` |
| [grpcio-tools](https://github.com/grpc/grpc) | `1.78.1` | `1.80.0` |
| [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) | `9.0.24` | `9.0.26` |
| [requests](https://github.com/psf/requests) | `2.32.5` | `2.33.1` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.53.0` | `2.56.0` |
| [twilio](https://github.com/twilio/twilio-python) | `9.10.2` | `9.10.4` |



Updates `fastapi` from 0.132.0 to 0.135.2
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.132.0...0.135.2)

Updates `grpcio` from 1.78.1 to 1.80.0
- [Release notes](https://github.com/grpc/grpc/releases)
- [Commits](grpc/grpc@v1.78.1...v1.80.0)

Updates `grpcio-testing` from 1.78.1 to 1.80.0

Updates `grpcio-tools` from 1.78.1 to 1.80.0
- [Release notes](https://github.com/grpc/grpc/releases)
- [Commits](grpc/grpc@v1.78.1...v1.80.0)

Updates `phonenumbers` from 9.0.24 to 9.0.26
- [Commits](daviddrysdale/python-phonenumbers@v9.0.24...v9.0.26)

Updates `requests` from 2.32.5 to 2.33.1
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](psf/requests@v2.32.5...v2.33.1)

Updates `sentry-sdk` from 2.53.0 to 2.56.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.53.0...2.56.0)

Updates `twilio` from 9.10.2 to 9.10.4
- [Release notes](https://github.com/twilio/twilio-python/releases)
- [Changelog](https://github.com/twilio/twilio-python/blob/main/CHANGES.md)
- [Commits](twilio/twilio-python@9.10.2...9.10.4)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-version: 0.135.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio-testing
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: grpcio-tools
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: phonenumbers
  dependency-version: 9.0.26
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: requests
  dependency-version: 2.33.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sentry-sdk
  dependency-version: 2.56.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: twilio
  dependency-version: 9.10.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Mar 30, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants