chore: Updating Python Requirements

edx · Apr 15, 2024 · f8b0681 · f8b0681
1 parent 32fc557
commit f8b0681
Show file tree

Hide file tree

Showing 12 changed files with 391 additions and 301 deletions.
diff --git a/requirements/base.txt b/requirements/base.txt
@@ -4,15 +4,15 @@
 #
 #    make upgrade
 #
-anki==23.12.1
+anki==24.4
     # via -r requirements/base.in
 annotated-types==0.6.0
     # via pydantic
 anyio==4.3.0
     # via
     #   httpx
     #   openai
-asgiref==3.7.2
+asgiref==3.8.1
     # via
     #   django
     #   django-cors-headers
@@ -52,9 +52,12 @@ defusedxml==0.8.0rc2
     #   python3-openid
     #   social-auth-core
 distro==1.9.0
-    # via openai
-django==4.2.10
     # via
+    #   anki
+    #   openai
+django==4.2.11
+    # via
+    #   -c requirements/common_constraints.txt
     #   -r requirements/base.in
     #   django-cors-headers
     #   django-crum
@@ -80,81 +83,83 @@ django-waffle==4.1.0
     #   -r requirements/base.in
     #   edx-django-utils
     #   edx-drf-extensions
-djangorestframework==3.14.0
+djangorestframework==3.15.1
     # via
     #   -r requirements/base.in
     #   django-rest-swagger
     #   drf-jwt
     #   edx-drf-extensions
 drf-jwt==1.19.2
     # via edx-drf-extensions
-edx-auth-backends==4.2.0
+edx-auth-backends==4.3.0
     # via -r requirements/base.in
-edx-django-release-util==1.3.0
+edx-django-release-util==1.4.0
     # via -r requirements/base.in
-edx-django-utils==5.10.1
+edx-django-utils==5.12.0
     # via
     #   -r requirements/base.in
     #   edx-drf-extensions
     #   edx-rest-api-client
-edx-drf-extensions==10.2.0
+edx-drf-extensions==10.3.0
     # via -r requirements/base.in
 edx-opaque-keys==2.5.1
     # via edx-drf-extensions
-edx-rest-api-client==5.6.1
+edx-rest-api-client==5.7.0
     # via -r requirements/base.in
 exceptiongroup==1.2.0
     # via anyio
-frozendict==2.4.0
+frozendict==2.4.2
     # via genanki
 genanki==0.13.1
     # via -r requirements/base.in
 h11==0.14.0
     # via httpcore
-httpcore==1.0.4
+httpcore==1.0.5
     # via httpx
 httpx==0.27.0
     # via openai
-idna==3.6
+idna==3.7
     # via
     #   anyio
     #   httpx
     #   requests
-importlib-metadata==7.0.1
-    # via markdown
+importlib-metadata==6.11.0
+    # via
+    #   -c requirements/common_constraints.txt
+    #   markdown
 itypes==1.2.0
     # via coreapi
 jinja2==3.1.3
     # via coreschema
-markdown==3.5.2
+markdown==3.6
     # via anki
 markupsafe==2.1.5
     # via jinja2
 mysqlclient==2.2.4
     # via -r requirements/base.in
-newrelic==9.7.0
+newrelic==9.8.0
     # via edx-django-utils
 oauthlib==3.2.2
     # via
     #   requests-oauthlib
     #   social-auth-core
-openai==1.12.0
+openai==1.17.1
     # via -r requirements/base.in
 openapi-codec==1.3.2
     # via django-rest-swagger
-orjson==3.9.15
+orjson==3.10.0
     # via anki
 pbr==6.0.0
     # via stevedore
-protobuf==4.25.3
+protobuf==5.26.1
     # via anki
 psutil==5.9.8
     # via edx-django-utils
-pycparser==2.21
+pycparser==2.22
     # via cffi
-pydantic==2.6.2
+pydantic==2.7.0
     # via openai
-pydantic-core==2.16.3
+pydantic-core==2.18.1
     # via pydantic
 pyjwt[crypto]==2.8.0
     # via
@@ -172,9 +177,7 @@ pysocks==1.7.1
 python3-openid==3.2.0
     # via social-auth-core
 pytz==2024.1
-    # via
-    #   -r requirements/base.in
-    #   djangorestframework
+    # via -r requirements/base.in
 pyyaml==6.0.1
     # via
     #   edx-django-release-util
@@ -188,7 +191,7 @@ requests[socks]==2.31.0
     #   requests-oauthlib
     #   slumber
     #   social-auth-core
-requests-oauthlib==1.3.1
+requests-oauthlib==2.0.0
     # via social-auth-core
 semantic-version==2.10.0
     # via edx-drf-extensions
@@ -213,15 +216,15 @@ social-auth-core==4.5.3
     #   social-auth-app-django
 soupsieve==2.5
     # via beautifulsoup4
-sqlparse==0.4.4
+sqlparse==0.5.0
     # via django
 stevedore==5.2.0
     # via
     #   edx-django-utils
     #   edx-opaque-keys
 tqdm==4.66.2
     # via openai
-typing-extensions==4.10.0
+typing-extensions==4.11.0
     # via
     #   anyio
     #   asgiref
@@ -233,9 +236,9 @@ uritemplate==4.1.1
     # via coreapi
 urllib3==2.2.1
     # via requests
-zipp==3.17.0
+zipp==3.18.1
     # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:
-setuptools==69.1.1
+setuptools==69.5.1
     # via -r requirements/base.in
diff --git a/requirements/ci.txt b/requirements/ci.txt
@@ -6,11 +6,11 @@
 #
 distlib==0.3.8
     # via virtualenv
-filelock==3.13.1
+filelock==3.13.4
     # via
     #   tox
     #   virtualenv
-packaging==23.2
+packaging==24.0
     # via
     #   pyproject-api
     #   tox

diff --git a/requirements/common_constraints.txt b/requirements/common_constraints.txt
@@ -1,5 +1,4 @@
 
-
 # A central location for most common version constraints
 # (across edx repos) for pip-installation.
 #
@@ -15,11 +14,20 @@
 
 
 # using LTS django version
-
+Django<5.0
 
 # elasticsearch>=7.14.0 includes breaking changes in it which caused issues in discovery upgrade process.
 # elastic search changelog: https://www.elastic.co/guide/en/enterprise-search/master/release-notes-7.14.0.html
 elasticsearch<7.14.0
 
 # django-simple-history>3.0.0 adds indexing and causes a lot of migrations to be affected
 django-simple-history==3.0.0
+
+# opentelemetry requires version 6.x at the moment:
+# https://github.com/open-telemetry/opentelemetry-python/issues/3570
+# Normally this could be added as a constraint in edx-django-utils, where we're
+# adding the opentelemetry dependency. However, when we compile pip-tools.txt,
+# that uses version 7.x, and then there's no undoing that when compiling base.txt.
+# So we need to pin it globally, for now.
+# Ticket for unpinning: https://github.com/openedx/edx-lint/issues/407
+importlib-metadata<7