Skip to content

requirement: bump iniconfig from 2.1.0 to 2.3.0

Import Userrequested to merge
dependabot/pip/iniconfig-2.3.0 into master

Bumps iniconfig from 2.1.0 to 2.3.0.

Release notes

Sourced from iniconfig's releases.

Version 2.3.0

What's Changed

Full Changelog: https://github.com/pytest-dev/iniconfig/compare/v2.2.0...v2.3.0

Version 2.2.0

No release notes provided.

Changelog

Sourced from iniconfig's changelog.

2.3.0

  • add IniConfig.parse() classmethod with strip_inline_comments parameter (fixes #55)
    • by default (strip_inline_comments=True), inline comments are properly stripped from values
    • set strip_inline_comments=False to preserve old behavior if needed
  • IniConfig() constructor maintains backward compatibility (does not strip inline comments)
  • users should migrate to IniConfig.parse() for correct comment handling
  • add strip_section_whitespace parameter to IniConfig.parse() (regarding #4)
    • opt-in parameter to strip Unicode whitespace from section names
    • when True, strips Unicode whitespace (U+00A0, U+2000, U+3000, etc.) from section names
    • when False (default), preserves existing behavior for backward compatibility
  • clarify Unicode whitespace handling (regarding #4)
    • since iniconfig 2.0.0 (Python 3 only), all strings are Unicode by default
    • Python 3's str.strip() has handled Unicode whitespace since Python 3.0 (2008)
    • iniconfig automatically benefits from this in all supported versions (Python >= 3.10)
    • key names and values have Unicode whitespace properly stripped using Python's built-in methods

2.2.0

  • drop Python 3.8 and 3.9 support (now requires Python >= 3.10)
  • add Python 3.14 classifier
  • migrate from hatchling to setuptools 77 with setuptools_scm
  • adopt PEP 639 license specifiers and PEP 740 build attestations
  • migrate from black + pyupgrade to ruff
  • migrate CI to uv and unified test workflow
  • automate GitHub releases and PyPI publishing via Trusted Publishing
  • include tests in sdist
  • modernize code for Python 3.10+ (remove future annotations, TYPE_CHECKING guards)
  • rename _ParsedLine to ParsedLine
Commits
  • 7faed13 Merge pull request #70 from RonnyPfannschmidt/comments
  • 58c0869 Refactor: Simplify IniConfig constructor and parse() method
  • 6d0af45 Add strip_section_whitespace parameter to address issue #4
  • e2d89f5 Add IniConfig.parse() classmethod to fix inline comment handling
  • 57b7ed9 Merge pull request #66 from killiandesse/pep639
  • 27ac49f Merge pull request #69 from RonnyPfannschmidt/limit-attestation
  • 3402322 Disable build attestations for PRs from forks
  • 27e6a7b Merge branch 'main' into pep639
  • 6522881 Merge pull request #68 from pytest-dev/fix-build
  • 8b2bccb Update CHANGELOG and automate releases
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Merge request reports