chore: Updating Python Requirements

edx · Apr 8, 2024 · e11bbc5 · e11bbc5
1 parent 0999877
commit e11bbc5
Show file tree

Hide file tree

Showing 12 changed files with 307 additions and 194 deletions.
diff --git a/requirements/base.txt b/requirements/base.txt
@@ -4,10 +4,12 @@
 #
 #    make upgrade
 #
-asgiref==3.7.2
+asgiref==3.8.1
     # via
     #   django
     #   django-cors-headers
+backports-zoneinfo==0.2.1
+    # via djangorestframework
 certifi==2024.2.2
     # via
     #   opsgenie-sdk
@@ -34,8 +36,9 @@ defusedxml==0.8.0rc2
     # via
     #   python3-openid
     #   social-auth-core
-django==3.2.24
+django==3.2.25
     # via
+    #   -c requirements/common_constraints.txt
     #   -c requirements/constraints.txt
     #   -r requirements/base.in
     #   django-cors-headers
@@ -66,28 +69,28 @@ django-waffle==4.1.0
     #   -r requirements/base.in
     #   edx-django-utils
     #   edx-drf-extensions
-djangorestframework==3.14.0
+djangorestframework==3.15.1
     # via
     #   -r requirements/base.in
     #   django-rest-swagger
     #   drf-jwt
     #   edx-drf-extensions
 drf-jwt==1.19.2
     # via edx-drf-extensions
-edx-auth-backends==4.2.0
+edx-auth-backends==4.3.0
     # via -r requirements/base.in
-edx-django-release-util==1.3.0
+edx-django-release-util==1.4.0
     # via -r requirements/base.in
-edx-django-utils==5.10.1
+edx-django-utils==5.12.0
     # via
     #   -r requirements/base.in
     #   edx-drf-extensions
     #   edx-rest-api-client
-edx-drf-extensions==10.2.0
+edx-drf-extensions==10.3.0
     # via -r requirements/base.in
 edx-opaque-keys==2.5.1
     # via edx-drf-extensions
-edx-rest-api-client==5.6.1
+edx-rest-api-client==5.7.0
     # via -r requirements/base.in
 idna==3.6
     # via requests
@@ -101,7 +104,7 @@ markupsafe==2.1.5
     # via jinja2
 mysqlclient==2.2.4
     # via -r requirements/base.in
-newrelic==9.7.0
+newrelic==9.8.0
     # via edx-django-utils
 oauthlib==3.2.2
     # via
@@ -117,7 +120,7 @@ psutil==5.9.8
     # via edx-django-utils
 pycountry==23.12.11
     # via -r requirements/base.in
-pycparser==2.21
+pycparser==2.22
     # via cffi
 pyjwt[crypto]==2.8.0
     # via
@@ -130,15 +133,14 @@ pymongo==3.13.0
     # via edx-opaque-keys
 pynacl==1.5.0
     # via edx-django-utils
-python-dateutil==2.8.2
+python-dateutil==2.9.0.post0
     # via opsgenie-sdk
 python3-openid==3.2.0
     # via social-auth-core
 pytz==2024.1
     # via
     #   -r requirements/base.in
     #   django
-    #   djangorestframework
 pyyaml==6.0.1
     # via
     #   edx-django-release-util
@@ -152,7 +154,7 @@ requests==2.31.0
     #   responses
     #   slumber
     #   social-auth-core
-requests-oauthlib==1.3.1
+requests-oauthlib==2.0.0
     # via social-auth-core
 responses==0.25.0
     # via -r requirements/base.in
@@ -182,9 +184,9 @@ stevedore==5.2.0
     #   edx-opaque-keys
 tenacity==8.2.3
     # via opsgenie-sdk
-testfixtures==8.0.0
+testfixtures==8.1.0
     # via -r requirements/base.in
-typing-extensions==4.10.0
+typing-extensions==4.11.0
     # via
     #   asgiref
     #   edx-opaque-keys
@@ -195,7 +197,7 @@ urllib3==2.2.1
     #   opsgenie-sdk
     #   requests
     #   responses
-zipp==3.17.0
+zipp==3.18.1
     # via importlib-resources
 
 # The following packages are considered to be unsafe in a requirements file:

diff --git a/requirements/ci.txt b/requirements/ci.txt
@@ -4,15 +4,15 @@
 #
 #    make upgrade
 #
-coverage==7.4.3
+coverage==7.4.4
     # via -r requirements/ci.in
 distlib==0.3.8
     # via virtualenv
-filelock==3.13.1
+filelock==3.13.3
     # via
     #   tox
     #   virtualenv
-packaging==23.2
+packaging==24.0
     # via
     #   pyproject-api
     #   tox

diff --git a/requirements/common_constraints.txt b/requirements/common_constraints.txt
@@ -14,11 +14,20 @@
 
 
 # using LTS django version
-
+Django<5.0
 
 # elasticsearch>=7.14.0 includes breaking changes in it which caused issues in discovery upgrade process.
 # elastic search changelog: https://www.elastic.co/guide/en/enterprise-search/master/release-notes-7.14.0.html
 elasticsearch<7.14.0
 
 # django-simple-history>3.0.0 adds indexing and causes a lot of migrations to be affected
 django-simple-history==3.0.0
+
+# opentelemetry requires version 6.x at the moment:
+# https://github.com/open-telemetry/opentelemetry-python/issues/3570
+# Normally this could be added as a constraint in edx-django-utils, where we're
+# adding the opentelemetry dependency. However, when we compile pip-tools.txt,
+# that uses version 7.x, and then there's no undoing that when compiling base.txt.
+# So we need to pin it globally, for now.
+# Ticket for unpinning: https://github.com/openedx/edx-lint/issues/407
+importlib-metadata<7