Skip to content

chore(deps): update all dependencies#16110

Open
renovate-bot wants to merge 1 commit intogoogleapis:mainfrom
renovate-bot:renovate/all
Open

chore(deps): update all dependencies#16110
renovate-bot wants to merge 1 commit intogoogleapis:mainfrom
renovate-bot:renovate/all

Conversation

@renovate-bot
Copy link
Contributor

@renovate-bot renovate-bot commented Mar 16, 2026

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Type Update Change Age Confidence
actions/checkout action major v4v6 age confidence
actions/setup-python action major v5v6 age confidence
alembic (changelog) minor ==1.17.0==1.18.4 age confidence
cachetools patch ==7.0.2==7.0.5 age confidence
charset-normalizer (changelog) patch ==3.4.4==3.4.6 age confidence
deprecated minor ==1.2.18==1.3.1 age confidence
google-api-core minor ==2.26.0==2.30.0 age confidence
google-auth minor ==2.41.1==2.49.1 age confidence
google-auth minor ==2.48.0==2.49.1 age confidence
google-cloud-core minor ==2.4.3==2.5.0 age confidence
google-cloud-spanner minor ==3.58.0==3.63.0 age confidence
googleapis-common-protos (source) minor ==1.71.0==1.73.0 age confidence
grpcio minor ==1.75.1==1.78.0 age confidence
grpcio-status minor ==1.75.1==1.78.0 age confidence
ipython minor ==9.10.0==9.11.0 age confidence
pandas major ==2.3.3==3.0.1 age confidence
pyasn1 (changelog) patch ==0.6.1==0.6.2 age confidence
python uses-with minor 3.103.14 age confidence
python uses-with minor 3.123.14 age confidence
python uses-with minor 3.93.14 age confidence
python uses-with minor 3.83.14 age confidence
sphinx (changelog) major ==4.5.0==9.1.0 age confidence
sphinxcontrib-applehelp (changelog) major ==1.0.4==2.0.0 age confidence
sphinxcontrib-devhelp (changelog) major ==1.0.2==2.0.0 age confidence
sphinxcontrib-htmlhelp (changelog) minor ==2.0.1==2.1.0 age confidence
sphinxcontrib-qthelp (changelog) major ==1.0.3==2.0.0 age confidence
sphinxcontrib-serializinghtml (changelog) major ==1.1.5==2.0.0 age confidence
sqlparse (changelog) patch ==0.5.3==0.5.5 age confidence
urllib3 (changelog) minor ==2.5.0==2.6.3 age confidence
wheel (changelog) minor ==0.45.1==0.46.3 age confidence
wrapt (changelog) major ==1.17.3==2.1.2 age confidence

Release Notes

actions/checkout (actions/checkout)

v6

Compare Source

v5

Compare Source

actions/setup-python (actions/setup-python)

v6

Compare Source

jawah/charset_normalizer (charset-normalizer)

v3.4.6

Compare Source

Changed
  • Flattened the logic in charset_normalizer.md for higher performance. Removed eligible(..) and feed(...)
    in favor of feed_info(...).
  • Raised upper bound for mypy[c] to 1.20, for our optimized version.
  • Updated UNICODE_RANGES_COMBINED using Unicode blocks v17.
Fixed
  • Edge case where noise difference between two candidates can be almost insignificant. (#​672)
  • CLI --normalize writing to wrong path when passing multiple files in. (#​702)
Misc
  • Freethreaded pre-built wheels now shipped in PyPI starting with 3.14t. (#​616)

v3.4.5

Compare Source

Changed
  • Update setuptools constraint to setuptools>=68,<=82.
  • Raised upper bound of mypyc for the optional pre-built extension to v1.19.1
Fixed
  • Add explicit link to lib math in our optimized build. (#​692)
  • Logger level not restored correctly for empty byte sequences. (#​701)
  • TypeError when passing bytearray to from_bytes. (#​703)
Misc
  • Applied safe micro-optimizations in both our noise detector and language detector.
  • Rewrote the query_yes_no function (inside CLI) to avoid using ambiguous licensed code.
  • Added cd.py submodule into mypyc optional compilation to reduce further the performance impact.
laurent-laporte-pro/deprecated (deprecated)

v1.3.1

Compare Source

===================

Patch release: Packaging fix

Fixed

  • Restore missing source distribution (.tar.gz) that was not included in v1.3.0.

v1.3.0

Compare Source

===================

.. note::

This release was **yanked** on PyPI due to a missing source distribution (``.tar.gz``).
See issue #&#8203;94: https://github.com/laurent-laporte-pro/deprecated/issues/94
It has been replaced by version 1.3.1.

Minor release: Parameters deprecation

Added

  • Add compatibility tests and adjustments for Wrapt v2.0. See PR #​88 (musicinmybrain).

  • Add experimental @deprecated_params decorator to mark function parameters as deprecated at call-time; emits warnings when deprecated parameters are used with optional messages and configurable warning categories. See PR #​93.

Documentation

  • Update the Wrapt compatibility matrix to include Python 3.13 and 3.14. See PR #​91

Changed

  • Limit test coverage collection to the dedicated coverage tox environment to avoid collecting coverage across all test environments and reduce cross-environment coverage noise. See PR #​92.
googleapis/google-cloud-python (google-api-core)

v2.30.0: google-api-core: v2.30.0

Bug Fixes

v2.29.0

v2.28.1

v2.28.0

v2.27.0: google-cloud-texttospeech: v2.27.0

Features
  • Support markup input for Cloud TTS Chirp 3: HD voice synthesis (c423602)
  • Support pinyin/yomigana custom pronunciation encodings for cmn-cn/ja-jp (c423602)
googleapis/google-auth-library-python (google-auth)

v2.48.0

Compare Source

Features
Bug Fixes

v2.47.0

Compare Source

Features
Bug Fixes

v2.46.0

Compare Source

Documentation
Features
Bug Fixes

v2.45.0

Compare Source

Features

v2.44.0

Compare Source

Features
Bug Fixes

v2.43.0

Compare Source

Features
  • Add public wrapper for _mtls_helper.check_use_client_cert which enables mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, when the MWID/X.509 cert sources detected (#​1859) Add public wrapper for check_use_client_cert which enables mTLS if
    GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, when the MWID/X.509 cert
    sources detected. Also, fix check_use_client_cert to return boolean
    value.
    Change #​1848 added the check_use_client_cert method that helps know if
    client cert should be used for mTLS connection. However, that was in a
    private class, thus, created a public wrapper of the same function so
    that it can be used by python Client Libraries. Also, updated
    check_use_client_cert to return a boolean value instead of existing
    string value for better readability and future scope.
    --------- (1535eccbff0ad8f3fd6a9775316ac8b77dca66ba)
  • Enable mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set, if the MWID/X.509 cert sources detected (#​1848) The Python SDK will use a hybrid approach for mTLS enablement:
  • If the GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is set
    (either true or false), the SDK will respect that setting. This is
    necessary for test scenarios and users who need to explicitly control
    mTLS behavior.
  • If the GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is not
    set, the SDK will automatically enable mTLS only if it detects Managed
    Workload Identity (MWID) or X.509 Workforce Identity Federation (WIF)
    certificate sources. In other cases where the variable is not set, mTLS
    will remain disabled.
    ** This change also adds the helper method check_use_client_cert and
    it's unit test, which will be used for checking the criteria for setting
    the mTLS to true
    ** This change is only for Auth-Library, other changes will be created
    for Client-Library use-cases.
    --------- (395e405b64b56ddb82ee639958c2e8056ad2e82b)

v2.42.1

Compare Source

Bug Fixes

v2.42.0

Compare Source

Features
Bug Fixes
googleapis/python-cloud-core (google-cloud-core)

v2.5.0

Compare Source

Features
Bug Fixes
  • Remove setup.cfg configuration for creating universal wheels (#​332) (78ce8a6)
  • Resolve issue where pre-release versions of dependencies are installed (#​329) (ab9785d)
googleapis/python-spanner (google-cloud-spanner)

v3.63.0

Compare Source

Documentation
Features
Bug Fixes

v3.62.0

Compare Source

Features
Bug Fixes

v3.61.0

Compare Source

Features

v3.60.0

Compare Source

Documentation
Features
Bug Fixes

v3.59.0

Compare Source

Features
Bug Fixes
  • spanner: Resolve TypeError in metrics resource detection (#​1446) (7266686)
Documentation
  • Add snippet for Repeatable Read configuration at client and transaction (#​1326) (58e2406)
grpc/grpc (grpcio)

v1.78.0

Compare Source

This is release 1.78.0 (gutsy) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

C++

  • adding address_sorting dep in naming test build. (#​41045)

Objective-C

  • [Backport][v1.78.x][Fix][Compiler] Plugins fall back to the edition 2023 for older protobuf. (#​41358)

Python

  • [python] aio: fix race condition causing asyncio.run() to hang forever during the shutdown process. (#​40989)
  • [Python] Migrate to pyproject.toml build system from setup.py builds. (#​40833)
  • [Python] Log error details when ExecuteBatchError occurs (at DEBUG level). (#​40921)
  • [Python] Update setuptools min version to 77.0.1 . (#​40931)

Ruby

  • [ruby] Fix version comparison for the ruby_abi_version symbol for ruby 4 compatibility. (#​41061)

v1.76.0

Compare Source

This is release 1.76.0 (genuine) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

  • Prioritize system CA over bundled CA. (#​40583)
  • [event_engine] Introduce a event_engine_poller_for_python experiment. (#​40243)
  • [metrics] add grpc.lb.backend_service label. (#​40486)

C#

  • [csharp tools] #​39374 Grpc.Tools can't process file Suffix name with Upper character. (#​40072)

Python

  • [Python] gRPC AsyncIO: Improve CompletionQueue polling performance. (#​39993)
ipython/ipython (ipython)

v9.11.0

Compare Source

pandas-dev/pandas (pandas)

v3.0.1: pandas 3.0.1

Compare Source

We are pleased to announce the release of pandas 3.0.1.
This is a patch release in the 3.0.x series and includes some regression fixes and bug fixes. We recommend that all users of the 3.0.x series upgrade to this version.

See the full whatsnew for a list of all the changes.

Pandas 3.0.0 supports Python 3.11 and higher.
The release can be installed from PyPI:

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

v3.0.0: pandas 3.0.0

Compare Source

We are pleased to announce the release of pandas 3.0.0, a major release from the pandas 2.x series. This release includes some new features, bug fixes, and performance improvements, as well as possible breaking changes.

The pandas 3.0 release removed a functionality that was deprecated in previous releases. It is recommended to first upgrade to pandas 2.3 and to ensure your code is working without warnings, before upgrading to pandas 3.0.

Highlights include:

See the full whatsnew for a list of all the changes.

Pandas 3.0.0 supports Python 3.11 and higher.
The release can be installed from PyPI

python -m pip install --upgrade pandas==3.0.*

Or from conda-forge

conda install -c conda-forge pandas=3.0

Please report any issues with the release on the pandas issue tracker.

Thanks to all the contributors who made this release possible.

pyasn1/pyasn1 (pyasn1)

v0.6.2

Compare Source

actions/python-versions (python)

v3.14.3: 3.14.3

Compare Source

Python 3.14.3

v3.14.2: 3.14.2

Compare Source

Python 3.14.2

v3.14.1: 3.14.1

Compare Source

Python 3.14.1

v3.14.0: 3.14.0

Compare Source

Python 3.14.0

v3.13.12: 3.13.12

Compare Source

Python 3.13.12

v3.13.11: 3.13.11

Compare Source

Python 3.13.11

v3.13.10: 3.13.10

Compare Source

Python 3.13.10

v3.13.9: 3.13.9

Compare Source

Python 3.13.9

v3.13.8: 3.13.8

Compare Source

Python 3.13.8

v3.13.7: 3.13.7

Compare Source

Python 3.13.7

v3.13.6: 3.13.6

Compare Source

Python 3.13.6

v3.13.5: 3.13.5

Compare Source

Python 3.13.5

v3.13.4: 3.13.4

Compare Source

Python 3.13.4

v3.13.3: 3.13.3

Compare Source

Python 3.13.3

v3.13.2: 3.13.2

Compare Source

Python 3.13.2

v3.13.1: 3.13.1

Compare Source

Python 3.13.1

v3.13.0: 3.13.0

Compare Source

Python 3.13.0

v3.12.13: 3.12.13

Compare Source

Python 3.12.13

v3.12.12: 3.12.12

Compare Source

Python 3.12.12

v3.12.11: 3.12.11

Compare Source

Python 3.12.11

v3.12.10: 3.12.10

Compare Source

Python 3.12.10

v3.12.9: 3.12.9

Compare Source

Python 3.12.9

v3.12.8: 3.12.8

Compare Source

Python 3.12.8

v3.12.7: 3.12.7

Compare Source

Python 3.12.7

v3.12.6: 3.12.6

Compare Source

Python 3.12.6

v3.12.5: 3.12.5

Compare Source

Python 3.12.5

v3.12.4: 3.12.4

Compare Source

Python 3.12.4

v3.12.3: 3.12.3

Compare Source

Python 3.12.3

v3.12.2: 3.12.2

Compare Source

Python 3.12.2

v3.12.1: 3.12.1

Compare Source

Python 3.12.1

v3.12.0: 3.12.0

Compare Source

Python 3.12.0

v3.11.15: 3.11.15

Compare Source

Python 3.11.15

v3.11.14: 3.11.14

Compare Source

Python 3.11.14

v3.11.13: 3.11.13

Compare Source

Python 3.11.13

v3.11.12: 3.11.12

Compare Source

Python 3.11.12

v3.11.11: 3.11.11

Compare Source

Python 3.11.11

v3.11.10: 3.11.10

Compare Source

Python 3.11.10

v3.11.9: 3.11.9

Compare Source

Python 3.11.9

[v3.11.8](https://redirect.github.com/actions/python-vers

Configuration

📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate-bot renovate-bot requested review from a team as code owners March 16, 2026 02:11
@trusted-contributions-gcf trusted-contributions-gcf bot added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Mar 16, 2026
@gemini-code-assist
Copy link
Contributor

gemini-code-assist bot commented Mar 16, 2026

Summary of Changes

Hello, I'm Gemini Code Assist1! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request performs a comprehensive update of the project's dependencies, ensuring that the codebase benefits from the latest features, performance improvements, and security patches. It encompasses updates to core Python libraries, Google Cloud client libraries, and GitHub Actions, with several major version upgrades that reflect significant advancements in the underlying packages.

Highlights

  • Dependency Updates: Updated numerous Python dependencies across the project, including major version bumps for pandas, sphinx, sphinxcontrib-applehelp, sphinxcontrib-devhelp, sphinxcontrib-qthelp, sphinxcontrib-serializinghtml, and wrapt.
  • GitHub Actions Updates: Upgraded GitHub Actions for checkout from v4 to v6 and setup-python from v5 to v6. Also updated actions/python-versions to target Python 3.14 across various older Python versions (3.8, 3.9, 3.10, 3.12).
  • Google Cloud Client Library Updates: Updated several Google Cloud Python client libraries, including google-api-core, google-auth, google-cloud-core, google-cloud-spanner, and googleapis-common-protos, bringing in new features, bug fixes, and mTLS support enhancements.
  • Documentation Tooling Updates: Significantly updated documentation-related dependencies, specifically sphinx from 4.5.0 to 9.1.0 and its associated sphinxcontrib packages, which may require review for compatibility.
Changelog
  • actions/checkout
    • Updated to v6.
  • actions/python-versions
    • v3.14.3: Python 3.14.3.
    • v3.14.2: Python 3.14.2.
    • v3.14.1: Python 3.14.1.
    • v3.14.0: Python 3.14.0.
    • v3.13.12: Python 3.13.12.
    • v3.13.11: Python 3.13.11.
    • v3.13.10: Python 3.13.10.
    • v3.13.9: Python 3.13.9.
    • v3.13.8: Python 3.13.8.
    • v3.13.7: Python 3.13.7.
    • v3.13.6: Python 3.13.6.
    • v3.13.5: Python 3.13.5.
    • v3.13.4: Python 3.13.4.
    • v3.13.3: Python 3.13.3.
    • v3.13.2: Python 3.13.2.
    • v3.13.1: Python 3.13.1.
    • v3.13.0: Python 3.13.0.
    • v3.12.13: Python 3.12.13.
    • v3.12.12: Python 3.12.12.
    • v3.12.11: Python 3.12.11.
    • v3.12.10: Python 3.12.10.
    • v3.12.9: Python 3.12.9.
    • v3.12.8: Python 3.12.8.
    • v3.12.7: Python 3.12.7.
    • v3.12.6: Python 3.12.6.
    • v3.12.5: Python 3.12.5.
    • v3.12.4: Python 3.12.4.
    • v3.12.3: Python 3.12.3.
    • v3.12.2: Python 3.12.2.
    • v3.12.1: Python 3.12.1.
    • v3.12.0: Python 3.12.0.
    • v3.11.15: Python 3.11.15.
    • v3.11.14: Python 3.11.14.
    • v3.11.13: Python 3.11.13.
    • v3.11.12: Python 3.11.12.
    • v3.11.11: Python 3.11.11.
    • v3.11.10: Python 3.11.10.
    • v3.11.9: Python 3.11.9.
  • actions/setup-python
    • Updated to v6.
  • charset-normalizer
    • v3.4.6: Flattened logic for higher performance, raised mypyc upper bound, updated Unicode blocks, fixed edge cases in noise difference and CLI --normalize path, shipped freethreaded wheels.
    • v3.4.5: Updated setuptools constraint, raised mypyc upper bound, added explicit link to lib math, fixed logger level for empty byte sequences and TypeError with bytearray, applied micro-optimizations, rewrote query_yes_no, added cd.py to mypyc compilation.
  • deprecated
    • v1.3.1: Patch release for packaging fix, restored missing source distribution.
    • v1.3.0: Added compatibility tests for Wrapt v2.0, added experimental @deprecated_params decorator, updated Wrapt compatibility matrix, limited test coverage collection.
  • google-api-core
    • v2.30.0: Preserved exception cause, required Python >= 3.9 and protobuf >= 4.25.8.
    • v2.27.0: Supported markup input for Cloud TTS Chirp 3 and pinyin/yomigana custom pronunciation encodings.
  • google-auth
    • v2.48.0: Added cryptography as required dependency, supported mTLS IAM domain for Certificate based Access, added configurable GCE Metadata Server retries, honored NO_GCE_CHECK environment variable, resolved circular imports, removed content-header from AWS IMDS get request, detected correct auth when ADC env var is set but empty, replaced deprecated utcfromtimestamp, used user_verification=preferred for ReAuth WebAuthn challenge.
    • v2.47.0: Dropped cachetools dependency, fixed Python 3.8 support.
    • v2.46.0: Updated urllib3 docstrings for v2 compatibility, recognized workload certificate config for mTLS for Agentic Identities, added types to default and verify_token and Request init, fixed the document of secure_authorized_session, removed setup.cfg configuration for universal wheels, used .read() instead of .content.read() in aiohttp transport, raised RefreshError for missing token in impersonated credentials, fixed test coverage for mtls_helper.
    • v2.45.0: Added Agent Identity bound token support and handling certificate mismatches with retries.
    • v2.44.0: Supported Python 3.14, added ecdsa p-384 support, MDS connections use mTLS, implemented token revocation in STS client, added shlex to correctly parse executable commands with spaces, used public refresh method for source credentials in ImpersonatedCredentials, added temporary patch to workload cert logic for Cloud Run, delegated workload cert and key default lookup to helper function.
    • v2.43.0: Added public wrapper for _mtls_helper.check_use_client_cert, enabled mTLS if GOOGLE_API_USE_CLIENT_CERTIFICATE is not set and MWID/X.509 cert sources detected, onboarded google-auth to librarian.
    • v2.42.1: Fixed ValueError for json.loads().
    • v2.42.0: Added trust boundary support for external accounts, read scopes from ADC json for impersonated cred.
  • google-cloud-core
    • v2.5.0: Added Python 3.14 support, removed setup.cfg configuration for universal wheels, resolved issue where pre-release versions of dependencies are installed.
  • google-cloud-spanner
    • v3.63.0: Added snippet for setting read lock mode, added requestID info in error exceptions, prevented thread leak by ensuring singleton initialization.
    • v3.62.0: Added uuid support, handled errors during stream restart in snapshot, resolved pre-release dependency failures and sqlparse recursion, fixed transaction_tag on BeginTransactionRequest.
    • v3.61.0: Supported mTLS certificates when available.
    • v3.60.0: Updated description for BatchCreateSessionsRequest, Session, and IsolationLevel, made built-in metrics enabled by default, added Spanner location API, added Send and Ack mutations for Queues, added QueryAdvisorResult for query plan, added cloud.region, request_tag and transaction_tag in span attributes, exposed AutoscalingConfig in InstancePartition, enabled OpenTelemetry metrics and tracing by default, added support for experimental host, provided Spanner Option to disable metrics, deprecated credentials_file argument, configured keepAlive time for gRPC TCP connections.
    • v3.59.0: Added lazy decode to partitioned query, resolved TypeError in metrics resource detection, added snippet for Repeatable Read configuration.
  • grpcio
    • v1.78.0: Added address_sorting dep in naming test build (C++), fixed plugins fall back to edition 2023 for older protobuf (Objective-C), fixed race condition in asyncio.run() shutdown (Python), migrated to pyproject.toml build system (Python), logged error details for ExecuteBatchError (Python), updated setuptools min version (Python), fixed version comparison for ruby_abi_version (Ruby).
    • v1.76.0: Prioritized system CA over bundled CA, introduced event_engine_poller_for_python experiment, added grpc.lb.backend_service label, fixed Grpc.Tools not processing file suffix with upper character (C#), improved CompletionQueue polling performance (Python).
  • ipython
    • Updated to v9.11.0.
  • pandas
    • v3.0.1: Patch release with regression and bug fixes.
    • v3.0.0: Major release with dedicated string data type by default, consistent copy/view behavior with Copy-on-Write, new default resolution for datetime-like data, initial support for pd.col syntax. Requires Python 3.11+.
  • pyasn1
    • v0.6.2: Fixed CVE-2026-23490 (continuation octet limits in OID/RELATIVE-OID decoder), added Python 3.14 support, added SECURITY.md policy, fixed unit tests, migrated to pyproject.toml packaging.
  • sphinx
    • Updated to v9.1.0.
  • sphinxcontrib-applehelp
    • Updated to v2.0.0.
  • sphinxcontrib-devhelp
    • Updated to v2.0.0.
  • sphinxcontrib-htmlhelp
    • Updated to v2.1.0.
  • sphinxcontrib-qthelp
    • Updated to v2.0.0.
  • sphinxcontrib-serializinghtml
    • Updated to v2.0.0.
  • sqlparse
    • Updated to v0.5.5.
  • urllib3
    • Updated to v2.6.3.
  • wheel
    • Updated to v0.46.3.
  • wrapt
    • Updated to v2.1.2.
Ignored Files
  • Ignored by pattern: .github/workflows/** (26)
    • .github/workflows/django-spanner-django3.2_tests_against_emulator0.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator1.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator2.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator3.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator4.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator5.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator6.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator7.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator8.yml
    • .github/workflows/django-spanner-django3.2_tests_against_emulator9.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator0.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator1.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator2.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator3.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator4.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator5.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator6.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator7.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator8.yml
    • .github/workflows/django-spanner-django4.2_tests_against_emulator9.yml
    • .github/workflows/django-spanner-foreign_keys.yaml
    • .github/workflows/django-spanner-integration-tests-against-emulator-3.10.yml
    • .github/workflows/django-spanner-integration-tests-against-emulator-3.8.yml
    • .github/workflows/django-spanner-integration-tests-against-emulator-3.9.yml
    • .github/workflows/django-spanner-mockserver-tests.yml
    • .github/workflows/docs.yml
Activity
  • The pull request was opened by renovate-bot to update all dependencies.
  • A detailed table of updated packages, including their types, update types (major, minor, patch), and version changes, is provided.
  • Release notes for many of the updated packages are included, detailing new features, bug fixes, and breaking changes.
  • Automerge is currently disabled, requiring manual merging.
  • The PR is configured to be recreated if closed unmerged, ensuring dependencies remain up-to-date.
Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature Command Description
Code Review /gemini review Performs a code review for the current pull request in its current state.
Pull Request Summary /gemini summary Provides a summary of the current pull request in its current state.
Comment @gemini-code-assist Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help /gemini help Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

  1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution.

@yoshi-kokoro yoshi-kokoro removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Mar 16, 2026
gemini-code-assist[bot]
gemini-code-assist bot reviewed Mar 16, 2026
View reviewed changes
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates numerous dependencies. I've found a few issues related to these updates. In packages/google-auth/docs/requirements-docs.txt, a comment regarding Sphinx 4.x support is now outdated due to the Sphinx upgrade. More critically, in packages/sqlalchemy-spanner/requirements.txt, the update to google-api-core to version 2.30.0 raises the minimum required Python version to 3.9, which could be a breaking change if Python 3.8 support is still intended. I also noted an outdated dependency comment for cachetools in the same file. Please review the detailed comments.

packages/sqlalchemy-spanner/requirements.txt
Comment on lines +168 to +170
google-api-core[grpc]==2.30.0 \
--hash=sha256:02edfa9fab31e17fc0befb5f161b3bf93c9096d99aed584625f38065c511ad9b \
--hash=sha256:80be49ee937ff9aba0fd79a6eddfde35fe658b9953ab9b79c57dd7061afa8df5
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot Mar 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

critical

The update of google-api-core to version 2.30.0 introduces a minimum Python version requirement of 3.9, as stated in its release notes. If sqlalchemy-spanner needs to maintain support for Python 3.8, this update is a breaking change and should be carefully reviewed.

packages/google-auth/docs/requirements-docs.txt
Comment on lines +10 to +15
sphinxcontrib-applehelp==2.0.0
sphinxcontrib-devhelp==2.0.0
sphinxcontrib-htmlhelp==2.1.0
sphinxcontrib-qthelp==2.0.0
sphinxcontrib-serializinghtml==2.0.0
sphinx==9.1.0
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot Mar 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

The comment on lines 7-9 states that the pinned versions are to support Sphinx 4.x. With the update to Sphinx 9.1.0 in this pull request, this comment has become outdated. Please consider removing or updating it to avoid confusion.

packages/sqlalchemy-spanner/requirements.txt
Comment on lines +17 to +19
cachetools==7.0.5 \
--hash=sha256:0cd042c24377200c1dcd225f8b7b12b0ca53cc2c961b43757e774ebe190fd990 \
--hash=sha256:46bc8ebefbe485407621d0a4264b23c080cedd913921bad7ac3ed2f26c183114
Copy link
Contributor

@gemini-code-assist gemini-code-assist bot Mar 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

medium

The comment on the next line (# via google-auth) is no longer accurate. google-auth removed its dependency on cachetools in version 2.47.0 (this PR updates it to 2.49.1). The comment should be updated to reflect the correct dependent package, or if cachetools is no longer required by any package, it should be removed from this file.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@renovate-bot @yoshi-kokoro