Skip to content

bump pyo3 the latest version, 0.28.2#729

Merged
arvidn merged 2 commits intomainfrom
bump-pyo3
Mar 3, 2026
Merged

bump pyo3 the latest version, 0.28.2#729
arvidn merged 2 commits intomainfrom
bump-pyo3

Conversation

@arvidn
Copy link
Contributor

@arvidn arvidn commented Mar 3, 2026
edited
Loading

I think it would be best to remove the python bindings from this repository. But we still have some tests and benchmarks that use it, and possibly some other components.

Note

Cursor Bugbot is generating a summary for commit d0ee33d. Configure here.

@arvidn arvidn requested a review from Rigidity March 3, 2026 12:18
@socket-security
Copy link

socket-security bot commented Mar 3, 2026
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Updatedcargo/​pyo3@​0.22.6 ⏵ 0.28.282 +2100 +1100100100

View full report

@socket-security
Copy link

socket-security bot commented Mar 3, 2026
edited
Loading

Warning

Review the following alerts detected in dependencies.

According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Warn High
License policy violation: cargo target-lexicon

License: Apache-2.0 WITH LLVM-exception - the applicable license policy does not allow this license exception (target-lexicon-0.13.5/LICENSE)

From: ?cargo/pyo3@0.28.2cargo/target-lexicon@0.13.5

ℹ Read more on: This package | This alert | What is a license policy violation?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Find a package that does not violate your license policy or adjust your policy to allow this package's license.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore cargo/target-lexicon@0.13.5. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@coveralls-official
Copy link

coveralls-official bot commented Mar 3, 2026
edited
Loading

Pull Request Test Coverage Report for Build 22629878289

Details

  • 27 of 28 (96.43%) changed or added relevant lines in 3 files are covered.
  • 1 unchanged line in 1 file lost coverage.
  • Overall coverage decreased (-0.004%) to 88.172%
Changes Missing Coverage Covered Lines Changed/Added Lines %
wheel/src/adapt_response.rs 7 8 87.5%
Files with Coverage Reduction New Missed Lines %
wheel/src/lazy_node.rs 1 96.0%
Totals Coverage Status
Change from base Build 22629852404: -0.004%
Covered Lines: 6888
Relevant Lines: 7812
💛 - Coveralls

@arvidn arvidn changed the title bump pyo3 to a later, but compatible, version bump pyo3 the latest version Mar 3, 2026
@arvidn arvidn changed the title bump pyo3 the latest version bump pyo3 the latest version, 0.28.2 Mar 3, 2026
@arvidn arvidn enabled auto-merge March 3, 2026 15:24
@arvidn arvidn merged commit cf2959b into main Mar 3, 2026
31 checks passed
@arvidn arvidn deleted the bump-pyo3 branch March 3, 2026 15:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Rigidity Rigidity Rigidity approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@arvidn @Rigidity