Skip to content

fix(deps): update all patch dependencies#2736

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all-patch
Open

fix(deps): update all patch dependencies#2736
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/all-patch

Conversation

@renovate

@renovate renovate Bot commented Dec 13, 2025

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
Werkzeug (changelog) 3.1.63.1.8 age confidence
fido2 2.2.02.2.1 age confidence
jsonwebtoken 9.0.29.0.3 age confidence
mailparser 3.9.33.9.12 age confidence
psycopg2-binary (source, changelog) 2.9.112.9.12 age confidence
psycopg2-binary (source, changelog) ==2.9.11==2.9.12 age confidence
types-python-dateutil (changelog) 2.9.0.202511152.9.0.20260518 age confidence

Review

  • Updates have been tested and work
  • If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

Release Notes

pallets/werkzeug (Werkzeug)

v3.1.8

Compare Source

Released 2026-04-02

  • Request.host and get_host return the empty string if the header is
    missing or has invalid characters. :issue:3142

v3.1.7

Compare Source

Released 2026-03-23

  • parse_list_header preserves partially quoted items, discards empty
    items, and returns empty for unclosed quoted values. :pr:3128
  • WWWAuthenticate.to_header does not produce a trailing space when there
    are no parameters. :issue:3127
  • Transfer-Encoding is parsed as a set. :pr:3134
  • Request.host, get_host, and host_is_trusted validate the
    characters of the value. An empty value is no longer allowed. A Unix socket
    server address is ignored. The trusted_list argument to
    host_is_trusted is optional. :pr:3113
  • Fix multipart form parser handling of newline at boundary. :issue:3088
  • Response.make_conditional sets the Accept-Ranges header even if it
    is not a satisfiable range request. :issue:3108
  • merge_slashes merges any number of consecutive slashes. :issue:3121
Yubico/python-fido2 (fido2)

v2.2.1: python-fido2 2.2.1

Compare Source

Version 2.2.1 (released 2026-06-29)

  • Server example: Migrate build tool from poetry to uv.
  • Fix: Correctly format att_obj in previewSign.
auth0/node-jsonwebtoken (jsonwebtoken)

v9.0.3

Compare Source

  • updates jws version to 4.0.1.
nodemailer/mailparser (mailparser)

v3.9.12

Compare Source

Bug Fixes
  • decode iso-8859-8-i and iso-8859-8-e charsets as iso-8859-8 (3e4b7fc)

v3.9.11

Compare Source

Bug Fixes
  • bump nodemailer to 9.0.1 (020f140)

v3.9.10

Compare Source

Bug Fixes
  • bump dependencies (nodemailer 9, eslint 10.5, prettier 3.8.4) (262ecff)

v3.9.9

Compare Source

Bug Fixes

v3.9.8

Compare Source

Bug Fixes

v3.9.7

Compare Source

Bug Fixes

v3.9.6

Compare Source

Bug Fixes
  • bump nodemailer to 8.0.4 (b2d7f77)

v3.9.5

Compare Source

Bug Fixes

v3.9.4

Compare Source

Bug Fixes
  • bump nodemailer to 8.0.2 for unquoted comma-in-display-name parsing (dd71f08)
  • filter false values from empty References headers (9884e5d), closes #​385
  • prevent RFC 2047 encoded-word address fabrication in decodeAddresses (08b800c)
psycopg/psycopg2 (psycopg2-binary)

v2.9.12

Compare Source


Configuration

📅 Schedule: (in timezone America/Montreal)

  • Branch creation
    • "every weekend"
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added dependencies Pull requests that update a dependency file Renovate labels Dec 13, 2025
@renovate renovate Bot requested a review from jimleroyer as a code owner December 13, 2025 06:50
@renovate renovate Bot added dependencies Pull requests that update a dependency file Renovate labels Dec 13, 2025
@renovate renovate Bot force-pushed the renovate/all-patch branch 3 times, most recently from efc3430 to 0712de8 Compare December 18, 2025 07:00
@renovate renovate Bot changed the title chore(deps): update dependency jsonwebtoken to v9.0.3 chore(deps): update all patch dependencies Dec 18, 2025
@renovate renovate Bot force-pushed the renovate/all-patch branch 6 times, most recently from 630e721 to b8fe08f Compare January 12, 2026 15:52
@renovate renovate Bot force-pushed the renovate/all-patch branch from b8fe08f to d8cfd20 Compare January 19, 2026 17:06
@renovate renovate Bot force-pushed the renovate/all-patch branch 6 times, most recently from 7e618fb to d18ab2f Compare February 2, 2026 14:36
@renovate renovate Bot force-pushed the renovate/all-patch branch 2 times, most recently from 64c7ccb to 0958d79 Compare February 9, 2026 17:23
@renovate renovate Bot force-pushed the renovate/all-patch branch 6 times, most recently from 57e1957 to 9239236 Compare February 17, 2026 22:08
@renovate renovate Bot force-pushed the renovate/all-patch branch 9 times, most recently from b371ce7 to beea657 Compare March 5, 2026 16:40
@renovate renovate Bot force-pushed the renovate/all-patch branch 7 times, most recently from 6c8245c to 0711f8c Compare March 13, 2026 20:34
@renovate renovate Bot force-pushed the renovate/all-patch branch 8 times, most recently from a2edae6 to 8de9586 Compare March 23, 2026 19:33
@renovate renovate Bot changed the title chore(deps): update all patch dependencies fix(deps): update all patch dependencies Mar 23, 2026
@renovate renovate Bot force-pushed the renovate/all-patch branch 3 times, most recently from ae2b157 to 9953d34 Compare March 25, 2026 16:29
@renovate

renovate Bot commented Jul 7, 2026

Copy link
Copy Markdown
Contributor Author

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: poetry.lock
Updating dependencies
Resolving dependencies...


Because notifications-utils (53.2.27) @ git+https://github.com/cds-snc/notifier-utils.git@53.2.27 depends on both werkzeug (3.1.6) and werkzeug (3.1.6), werkzeug is required.
So, because notification-api depends on Werkzeug (3.1.8), version solving failed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file Renovate

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants