-
Notifications
You must be signed in to change notification settings - Fork 42
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update dependencies #1017
Update dependencies #1017
Conversation
Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 8.0.1 to 8.0.2. - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](squidfunk/mkdocs-material@8.0.1...8.0.2) --- updated-dependencies: - dependency-name: mkdocs-material dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pymongo](https://github.com/mongodb/mongo-python-driver) from 3.12.1 to 4.0. - [Release notes](https://github.com/mongodb/mongo-python-driver/releases) - [Changelog](https://github.com/mongodb/mongo-python-driver/blob/master/doc/changelog.rst) - [Commits](mongodb/mongo-python-driver@3.12.1...4.0) --- updated-dependencies: - dependency-name: pymongo dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 2.15.0 to 2.16.0. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/master/CHANGELOG.md) - [Commits](pre-commit/pre-commit@v2.15.0...v2.16.0) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [ase](https://gitlab.com/ase/ase) from 3.22.0 to 3.22.1. - [Release notes](https://gitlab.com/ase/ase/tags) - [Changelog](https://gitlab.com/ase/ase/blob/master/CHANGELOG.rst) - [Commits](https://gitlab.com/ase/ase/compare/3.22.0...3.22.1) --- updated-dependencies: - dependency-name: ase dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 8.0.2 to 8.0.4. - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](squidfunk/mkdocs-material@8.0.2...8.0.4) --- updated-dependencies: - dependency-name: mkdocs-material dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pylint](https://github.com/PyCQA/pylint) from 2.12.1 to 2.12.2. - [Release notes](https://github.com/PyCQA/pylint/releases) - [Changelog](https://github.com/PyCQA/pylint/blob/main/ChangeLog) - [Commits](pylint-dev/pylint@v2.12.1...v2.12.2) --- updated-dependencies: - dependency-name: pylint dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Codecov Report
@@ Coverage Diff @@
## master #1017 +/- ##
==========================================
- Coverage 92.91% 92.89% -0.03%
==========================================
Files 67 67
Lines 3782 3784 +2
==========================================
+ Hits 3514 3515 +1
- Misses 268 269 +1
Flags with carried forward coverage won't be shown. Click here to find out more.
Continue to review full report at Codecov.
|
Note - The major change in these updates is the change from PyMongo v3 to v4. See changes here. |
I think we should keep support for Mongo v3 until the next minor version (and add a deprecation message here) - I am using Mongo v3.6 (which still gets updates) and migrating to newer versions requires some care. I imagine MP are using a more recent Mongo (maybe we could ask). |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The tests pass for me with the new dependency versions
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Can we add the following (or similar) to optimade/server/entry_collections/mongo.py?
from pymongo import version_tuple
if version_tuple[0] < 4:
LOGGER.warning(
"Support for pymongo<=3 (and thus MongoDB v3) is deprecated and will be removed in the next minor release."
)
Also, a side comment, do you think weekly dependency updates is still a suitable cadence? We don't have any "active" developments going on at the moment (and releases are less frequent than 1 per month), perhaps we could turn it down a notch? |
Sure. The frequency can be edited here:
|
Added. But only if I tried to look into |
Yeah that's where I imagined it would go.
Indeed, I'm not really sure why pymongo itself needs to drop support (beyond additional maintenance burden). |
I don't feel super strongly about it, just worry that we'll end up as project with multiple dep update PRs in a row without any new code :) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks @CasperWA !
Welp... it's better than nothing? :) |
Update dependencies
Automatically created PR from the
dependabot_updates
branch.For more information see the "Dependabot updates" workflow.
To-do
setup.py
need updating, keeping the version requirements as loose as possible.