Skip to content

Bump the repo-config group with 2 updates#50

Open
dependabot[bot] wants to merge 1 commit into
v0.x.xfrom
dependabot/pip/repo-config-d273c61b51
Open

Bump the repo-config group with 2 updates#50
dependabot[bot] wants to merge 1 commit into
v0.x.xfrom
dependabot/pip/repo-config-d273c61b51

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Mar 1, 2026

Bumps the repo-config group with 2 updates: frequenz-repo-config[lib] and frequenz-repo-config[extra-lint-examples].

Updates frequenz-repo-config[lib] from 0.13.8 to 0.14.0

Release notes

Sourced from frequenz-repo-config[lib]'s releases.

v0.14.0

Frequenz Repository Configuration Release Notes

Summary

This release adds a new workflow for Dependabot auto-merge and updates mkdocstrings to v2.

Upgrading

Cookiecutter template

All upgrading should be done via the migration script or regenerating the templates.

curl -sSL https://raw.githubusercontent.com/frequenz-floss/frequenz-repo-config-python/v0.14.0/cookiecutter/migrate.py | python3

But you might still need to adapt your code, just have a look at the script output for further instructions.

New Features

  • mkdocsstrings-python v2 is now supported.

Cookiecutter template

  • Dependencies have been updated.
  • New warning ignores for protobuf gencode versions in pytest.
  • Added Dependabot auto-merge workflow using frequenz-floss/dependabot-auto-approve action.

Bug Fixes

Cookiecutter template

  • mkdocstrings: Move paths key to the right section in mkdocs.yml.
  • Fix invalid YAML syntax in Dependabot workflow template.

What's Changed

... (truncated)

Changelog

Sourced from frequenz-repo-config[lib]'s changelog.

Frequenz Repository Configuration Release Notes

Summary

This release migrates lightweight GitHub Actions workflow jobs to use the new cost-effective ubuntu-slim runner. It also updates cookiecutter pyproject license metadata to SPDX expressions to avoid setuptools deprecation warnings. The auto-dependabot workflow now uses a GitHub App installation token instead of GITHUB_TOKEN to fix merge queue and auto-merge failures.

Upgrading

Cookiecutter template

All upgrading should be done via the migration script or regenerating the templates.

curl -sSL https://raw.githubusercontent.com/frequenz-floss/frequenz-repo-config-python/v0.14.0/cookiecutter/migrate.py | python3

But you might still need to adapt your code:

New Features

Cookiecutter template

  • Migrated lightweight workflow jobs to use the new ubuntu-slim runner for cost savings. The following jobs now use ubuntu-slim:

    • ci.yaml: protolint, nox-all, test-installation-all, create-github-release, publish-to-pypi
    • ci-pr.yaml: protolint
    • auto-dependabot.yaml: auto-merge
    • release-notes-check.yml: check-release-notes
    • dco-merge-queue.yml: DCO
    • labeler.yml: Label

  • Added the flake8-datetimez plugin to the flake8 session. This plugin prevents accidental use of naive datetime objects by flagging calls that create or return datetimes without timezone information.

  • The CI workflow now uses a simpler matrix.

Bug Fixes

Cookiecutter template

  • Switched project.license to SPDX expressions and added project.license-files. This removes deprecated setuptools license metadata and avoids build warnings.

... (truncated)

Commits
  • a72bd53 Update mypy-protobuf requirement from <4,>=3.0.0 to >=3.0.0,<5 (#489)
  • 10341d6 template: Bump protobuf and grpcio to latest versions
  • af44767 Update mypy-protobuf requirement from <4,>=3.0.0 to >=3.0.0,<5
  • 8a4e067 Prepare for release v0.14.0 (#490)
  • 73dc4ef Prepare for release v0.14.0
  • 3d86e08 Bump actions/download-artifact from 5 to 6 (#460)
  • 5894e50 Bump pydoclint from 0.7.3 to 0.8.3 (#477)
  • 4a81cbb Bump frequenz-floss/gh-action-nox from 1.0.1 to 1.1.0 in the compatible group...
  • 41b3a2c Bump pytest from 9.0.1 to 9.0.2 in the patch group (#487)
  • c2bbc77 Bump the minor group with 7 updates (#488)
  • Additional commits viewable in compare view

Updates frequenz-repo-config[extra-lint-examples] from 0.13.8 to 0.14.0

Release notes

Sourced from frequenz-repo-config[extra-lint-examples]'s releases.

v0.14.0

Frequenz Repository Configuration Release Notes

Summary

This release adds a new workflow for Dependabot auto-merge and updates mkdocstrings to v2.

Upgrading

Cookiecutter template

All upgrading should be done via the migration script or regenerating the templates.

curl -sSL https://raw.githubusercontent.com/frequenz-floss/frequenz-repo-config-python/v0.14.0/cookiecutter/migrate.py | python3

But you might still need to adapt your code, just have a look at the script output for further instructions.

New Features

  • mkdocsstrings-python v2 is now supported.

Cookiecutter template

  • Dependencies have been updated.
  • New warning ignores for protobuf gencode versions in pytest.
  • Added Dependabot auto-merge workflow using frequenz-floss/dependabot-auto-approve action.

Bug Fixes

Cookiecutter template

  • mkdocstrings: Move paths key to the right section in mkdocs.yml.
  • Fix invalid YAML syntax in Dependabot workflow template.

What's Changed

... (truncated)

Changelog

Sourced from frequenz-repo-config[extra-lint-examples]'s changelog.

Frequenz Repository Configuration Release Notes

Summary

This release migrates lightweight GitHub Actions workflow jobs to use the new cost-effective ubuntu-slim runner. It also updates cookiecutter pyproject license metadata to SPDX expressions to avoid setuptools deprecation warnings. The auto-dependabot workflow now uses a GitHub App installation token instead of GITHUB_TOKEN to fix merge queue and auto-merge failures.

Upgrading

Cookiecutter template

All upgrading should be done via the migration script or regenerating the templates.

curl -sSL https://raw.githubusercontent.com/frequenz-floss/frequenz-repo-config-python/v0.14.0/cookiecutter/migrate.py | python3

But you might still need to adapt your code:

New Features

Cookiecutter template

  • Migrated lightweight workflow jobs to use the new ubuntu-slim runner for cost savings. The following jobs now use ubuntu-slim:

    • ci.yaml: protolint, nox-all, test-installation-all, create-github-release, publish-to-pypi
    • ci-pr.yaml: protolint
    • auto-dependabot.yaml: auto-merge
    • release-notes-check.yml: check-release-notes
    • dco-merge-queue.yml: DCO
    • labeler.yml: Label

  • Added the flake8-datetimez plugin to the flake8 session. This plugin prevents accidental use of naive datetime objects by flagging calls that create or return datetimes without timezone information.

  • The CI workflow now uses a simpler matrix.

Bug Fixes

Cookiecutter template

  • Switched project.license to SPDX expressions and added project.license-files. This removes deprecated setuptools license metadata and avoids build warnings.

... (truncated)

Commits
  • a72bd53 Update mypy-protobuf requirement from <4,>=3.0.0 to >=3.0.0,<5 (#489)
  • 10341d6 template: Bump protobuf and grpcio to latest versions
  • af44767 Update mypy-protobuf requirement from <4,>=3.0.0 to >=3.0.0,<5
  • 8a4e067 Prepare for release v0.14.0 (#490)
  • 73dc4ef Prepare for release v0.14.0
  • 3d86e08 Bump actions/download-artifact from 5 to 6 (#460)
  • 5894e50 Bump pydoclint from 0.7.3 to 0.8.3 (#477)
  • 4a81cbb Bump frequenz-floss/gh-action-nox from 1.0.1 to 1.1.0 in the compatible group...
  • 41b3a2c Bump pytest from 9.0.1 to 9.0.2 in the patch group (#487)
  • c2bbc77 Bump the minor group with 7 updates (#488)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the repo-config group with 2 updates
f249ec0 
Bumps the repo-config group with 2 updates: [frequenz-repo-config[lib]](https://github.com/frequenz-floss/frequenz-repo-config-python) and [frequenz-repo-config[extra-lint-examples]](https://github.com/frequenz-floss/frequenz-repo-config-python).


Updates `frequenz-repo-config[lib]` from 0.13.8 to 0.14.0
- [Release notes](https://github.com/frequenz-floss/frequenz-repo-config-python/releases)
- [Changelog](https://github.com/frequenz-floss/frequenz-repo-config-python/blob/v0.x.x/RELEASE_NOTES.md)
- [Commits](frequenz-floss/frequenz-repo-config-python@v0.13.8...v0.14.0)

Updates `frequenz-repo-config[extra-lint-examples]` from 0.13.8 to 0.14.0
- [Release notes](https://github.com/frequenz-floss/frequenz-repo-config-python/releases)
- [Changelog](https://github.com/frequenz-floss/frequenz-repo-config-python/blob/v0.x.x/RELEASE_NOTES.md)
- [Commits](frequenz-floss/frequenz-repo-config-python@v0.13.8...v0.14.0)

---
updated-dependencies:
- dependency-name: frequenz-repo-config[lib]
  dependency-version: 0.14.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: repo-config
- dependency-name: frequenz-repo-config[extra-lint-examples]
  dependency-version: 0.14.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: repo-config
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Mar 1, 2026

Labels

The following labels could not be found: type:tech-debt. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

part:tooling

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants