Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump sqlalchemy from 1.3.24 to 1.4.46 #502

Merged
merged 9 commits into from
Jan 27, 2023
Merged

Bump sqlalchemy from 1.3.24 to 1.4.46 #502

merged 9 commits into from
Jan 27, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 5, 2023
edited
Loading

Bumps sqlalchemy from 1.3.24 to 1.4.46.

Release notes

Sourced from sqlalchemy's releases.

1.4.46

Released: January 3, 2023

general

  • [general] [change] A new deprecation "uber warning" is now emitted at runtime the first time any SQLAlchemy 2.0 deprecation warning would normally be emitted, but the SQLALCHEMY_WARN_20 environment variable is not set. The warning emits only once at most, before setting a boolean to prevent it from emitting a second time.

    This deprecation warning intends to notify users who may not have set an appropriate constraint in their requirements files to block against a surprise SQLAlchemy 2.0 upgrade and also alert that the SQLAlchemy 2.0 upgrade process is available, as the first full 2.0 release is expected very soon. The deprecation warning can be silenced by setting the environment variable SQLALCHEMY_SILENCE_UBER_WARNING to "1".

    References: #8983

  • [general] [bug] Fixed regression where the base compat module was calling upon platform.architecture() in order to detect some system properties, which results in an over-broad system call against the system-level file call that is unavailable under some circumstances, including within some secure environment configurations.

    References: #8995

orm

  • [orm] [bug] Fixed issue in the internal SQL traversal for DML statements like _dml.Update and _dml.Delete which would cause among other potential issues, a specific issue using lambda statements with the ORM update/delete feature.

    References: #9033

engine

  • [engine] [bug] Fixed a long-standing race condition in the connection pool which could occur under eventlet/gevent monkeypatching schemes in conjunction with the use of eventlet/gevent Timeout conditions, where a connection pool checkout that's interrupted due to the timeout would fail to clean up the failed state, causing the underlying connection record and sometimes the database connection itself to "leak", leaving the pool in an invalid state with unreachable entries. This issue was first identified and fixed in

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested a review from a team as a code owner January 5, 2023 23:26
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 5, 2023
@dependabot dependabot bot mentioned this pull request Jan 5, 2023
Closed
@dependabot dependabot bot force-pushed the dependabot/pip/sqlalchemy-1.4.46 branch 2 times, most recently from 326863e to f37b0fe Compare January 10, 2023 16:06
@dependabot dependabot bot force-pushed the dependabot/pip/sqlalchemy-1.4.46 branch 3 times, most recently from b35d3fe to 0e5a31b Compare January 13, 2023 15:29
@dependabot dependabot bot force-pushed the dependabot/pip/sqlalchemy-1.4.46 branch 7 times, most recently from 865e4f0 to 2ffa8a9 Compare January 23, 2023 13:52
@grahamalama grahamalama self-assigned this Jan 24, 2023
@grahamalama
Copy link
Contributor

I'll investigate why these tests are failing and push updates to this PR

dependabot bot and others added 7 commits January 24, 2023 16:39
@dependabot @grahamalama
Bump sqlalchemy from 1.3.24 to 1.4.46
eb0e12e 
Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 1.3.24 to 1.4.46.
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

---
updated-dependencies:
- dependency-name: sqlalchemy
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@grahamalama
Import declarative_base from ORM
8782d4b
@grahamalama
Remove comment about SqlAlchemy 1.4 upgrade
af32bb7
@grahamalama
Move database access to globals
84cb066 
Since create_engine and sessionmaker return factories, there's no need
to initialize them on app startup -- we can just store them in the global
scope of the database module
@grahamalama
Update scripts to use new db access methods
e7d2a6e
@grahamalama
Modify database fixtures
63b1e78 
After the SqlAlchemy 1.4 update, the way we wrote our database test
fixutres stopped working. These changes are adapted from
https://docs.sqlalchemy.org/en/14/orm/session_transaction.html#joining-a-session-into-an-external-transaction-such-as-for-test-suites

In modifying these fixtures, we could also remove instances where we
included both the dbsession and anon_client, since the former is
included in the later.
@grahamalama
Update .secrets.baseline
53c9228
@grahamalama grahamalama force-pushed the dependabot/pip/sqlalchemy-1.4.46 branch from 2ffa8a9 to 53c9228 Compare January 25, 2023 23:00
leplatrem
leplatrem approved these changes Jan 26, 2023
View reviewed changes
ctms/bin/ingest_stripe_data.py Show resolved Hide resolved
tests/unit/conftest.py Show resolved Hide resolved
tests/unit/conftest.py Show resolved Hide resolved
@grahamalama grahamalama merged commit 7ffc71b into main Jan 27, 2023
@grahamalama grahamalama deleted the dependabot/pip/sqlalchemy-1.4.46 branch January 27, 2023 00:45
@grahamalama grahamalama mentioned this pull request Jan 27, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@grahamalama grahamalama grahamalama left review comments

@leplatrem leplatrem leplatrem approved these changes

Assignees

@grahamalama grahamalama

Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@grahamalama @leplatrem