build(deps): bump the safe group with 2 updates #67

dependabot · 2025-11-24T22:09:45Z

Bumps the safe group with 2 updates: fastapi and msgspec.

Updates fastapi from 0.121.3 to 0.122.0

Release notes

0.122.0

Fixes

🐛 Use 401 status code in security classes when credentials are missing. PR #13786 by @YuriiMotov.

If your code depended on these classes raising the old (less correct) 403 status code, check the new docs about how to override the classes, to use the same old behavior: Use Old 403 Authentication Error Status Codes.

Internal

🔧 Configure labeler to exclude files that start from underscore for lang-all label. PR #14213 by @YuriiMotov.

👷 Add pre-commit config with local script for permalinks. PR #14398 by @tiangolo.

💄 Use font Fira Code to fix display of Rich panels in docs in Windows. PR #14387 by @tiangolo.

👷 Add custom pre-commit CI. PR #14397 by @tiangolo.

⬆ Bump actions/checkout from 5 to 6. PR #14381 by @dependabot[bot].

👷 Upgrade latest-changes GitHub Action and pin actions/checkout@v5. PR #14403 by @svlandeg.

🛠️ Add add-permalinks and add-permalinks-page to scripts/docs.py. PR #14033 by @YuriiMotov.

🔧 Upgrade Material for MkDocs and remove insiders. PR #14375 by @tiangolo.

Commits

5b0625d 🔖 Release version 0.122.0
8732c53 📝 Updates release notes
a4ef97a 📝 Update release notes
51ad909 🐛 Use 401 status code in security classes when credentials are missing (#13...
e2354a0 📝 Update release notes
cc66dee 📝 Update release notes
ecfb752 📝 Update release notes
8b18522 📝 Update release notes
a2395e0 📝 Update release notes
c7d05a9 📝 Update release notes
Additional commits viewable in compare view

Updates msgspec from 0.19.0 to 0.20.0

Release notes

Sourced from msgspec's releases.

Version 0.20.0

Support Python 3.14, including freethreaded mode (#852, #877).

Expose the StructMeta metaclass (#890, #927, #928, #940, #945).

Add msgspec.inspect.is_struct and msgspec.inspect.is_struct_type functions for checking whether an object is a msgspec.Struct-like instance or class (#950).

Support Windows arm64 builds (#943).

Enable ThinLTO on macOS aarch64 builds (#937).

Fix leaks of re.Pattern objects when using pattern constraints of msgspec.Meta (#899).

Fixed memoryview support for msgspec.msgpack (#836).

Fix crash when typing.TypedDict contains incorrect metadata (#853, #947).

Add setuptools-scm as a build dependency instead of vendoring versioneer (#905).

Remove support for legacy packaging builds (#907).

Improved the developer experience by adding the just command runner and Dev Container support (#918).

Changelog

Sourced from msgspec's changelog.

Version 0.20.0 (2025-11-23)

Support Python 3.14, including freethreaded mode ({pr}852, {pr}877).

Expose the StructMeta metaclass ({pr}890, {pr}927, {pr}928, {pr}940, {pr}945).

Add msgspec.inspect.is_struct and msgspec.inspect.is_struct_type functions for checking whether an object is a msgspec.Struct-like instance or class ({pr}950).

Support Windows arm64 builds ({pr}943).

Enable ThinLTO on macOS aarch64 builds ({pr}937).

Fix leaks of re.Pattern objects when using pattern constraints of msgspec.Meta ({pr}899).

Fixed memoryview support for msgspec.msgpack ({pr}836).

Fix crash when typing.TypedDict contains incorrect metadata ({pr}853, {pr}947).

Add setuptools-scm as a build dependency instead of vendoring versioneer ({pr}905).

Remove support for legacy packaging builds ({pr}907).

Improved the developer experience by adding the just command runner and Dev Container support ({pr}918).

Commits

a46a2c6 Make GitHub action resilient to release runs (#953)
a235d0c Prepare GitHub release (#952)
27afa70 Fix typos (#951)
40b62da [docs] fix two typos in benchmarks & structs section (#802)
f78a1e7 Add utilities for Struct-like checks (#950)
cda7e24 Update changelog (#949)
233d916 Fix refcount leak to re.Pattern when using Meta(pattern=...) (#899)
2eafc17 Standardize format of the downstream user docs (#948)
eff6a7c Add Meltano to "Used By" in the docs (#914)
242ec07 Add django-modern-rest to "Used by" docs section (#913)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the safe group with 2 updates: [fastapi](https://github.com/fastapi/fastapi) and [msgspec](https://github.com/jcrist/msgspec). Updates `fastapi` from 0.121.3 to 0.122.0 - [Release notes](https://github.com/fastapi/fastapi/releases) - [Commits](fastapi/fastapi@0.121.3...0.122.0) Updates `msgspec` from 0.19.0 to 0.20.0 - [Release notes](https://github.com/jcrist/msgspec/releases) - [Changelog](https://github.com/jcrist/msgspec/blob/main/docs/changelog.md) - [Commits](jcrist/msgspec@0.19.0...0.20.0) --- updated-dependencies: - dependency-name: fastapi dependency-version: 0.122.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: safe - dependency-name: msgspec dependency-version: 0.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: safe ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Nov 24, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

build(deps): bump the safe group with 2 updates #67

build(deps): bump the safe group with 2 updates #67

Uh oh!

dependabot bot commented on behalf of github Nov 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

build(deps): bump the safe group with 2 updates #67

Are you sure you want to change the base?

build(deps): bump the safe group with 2 updates #67

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 24, 2025

0.122.0

Fixes

Internal

Version 0.20.0

Version 0.20.0 (2025-11-23)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant