openedx-unsupported · edx-requirements-bot · Apr 3, 2024
diff --git a/requirements/ci.txt b/requirements/ci.txt
@@ -16,17 +16,17 @@ codecov==2.1.13
     # via -r requirements/ci.in
 colorama==0.4.6
     # via tox
-coverage==7.4.3
+coverage==7.4.4
     # via codecov
 distlib==0.3.8
     # via virtualenv
-filelock==3.13.1
+filelock==3.13.3
     # via
     #   tox
     #   virtualenv
 idna==3.6
     # via requests
-packaging==23.2
+packaging==24.0
     # via
     #   pyproject-api
     #   tox
@@ -44,7 +44,7 @@ tomli==2.0.1
     # via
     #   pyproject-api
     #   tox
-tox==4.13.0
+tox==4.14.2
     # via -r requirements/ci.in
 urllib3==2.2.1
     # via requests

diff --git a/requirements/common_constraints.txt b/requirements/common_constraints.txt
@@ -13,11 +13,20 @@
 
 
 # using LTS django version
-Django<4.0
+Django<5.0
 
 # elasticsearch>=7.14.0 includes breaking changes in it which caused issues in discovery upgrade process.
 # elastic search changelog: https://www.elastic.co/guide/en/enterprise-search/master/release-notes-7.14.0.html
 elasticsearch<7.14.0
 
 # django-simple-history>3.0.0 adds indexing and causes a lot of migrations to be affected
 django-simple-history==3.0.0
+
+# opentelemetry requires version 6.x at the moment:
+# https://github.com/open-telemetry/opentelemetry-python/issues/3570
+# Normally this could be added as a constraint in edx-django-utils, where we're
+# adding the opentelemetry dependency. However, when we compile pip-tools.txt,
+# that uses version 7.x, and then there's no undoing that when compiling base.txt.
+# So we need to pin it globally, for now.
+# Ticket for unpinning: https://github.com/openedx/edx-lint/issues/407
+importlib-metadata<7
diff --git a/requirements/dev.txt b/requirements/dev.txt
@@ -4,12 +4,16 @@
 #
 #    make upgrade
 #
-asgiref==3.7.2
+asgiref==3.8.1
     # via django
 astroid==3.1.0
     # via
     #   pylint
     #   pylint-celery
+backports-zoneinfo==0.2.1
+    # via
+    #   django
+    #   djangorestframework
 cachetools==5.3.3
     # via tox
 certifi==2024.2.2
@@ -32,7 +36,7 @@ click==8.1.7
     #   edx-lint
 click-log==0.4.0
     # via edx-lint
-code-annotations==1.6.0
+code-annotations==1.7.0
     # via edx-lint
 colorama==0.4.6
     # via tox
@@ -44,7 +48,7 @@ dill==0.3.8
     # via pylint
 distlib==0.3.8
     # via virtualenv
-django==3.2.24
+django==4.2.11
     # via
     #   -c requirements/common_constraints.txt
     #   -r requirements/base.in
@@ -54,41 +58,46 @@ django==3.2.24
     #   djangorestframework
     #   edx-django-utils
     #   edx-i18n-tools
-django-config-models==2.5.1
+django-config-models==2.6.0
     # via -r requirements/base.in
 django-crum==0.7.9
     # via edx-django-utils
 django-waffle==4.1.0
     # via edx-django-utils
-djangorestframework==3.14.0
+djangorestframework==3.15.1
     # via django-config-models
 docutils==0.20.1
     # via readme-renderer
-edx-django-utils==5.10.1
+edx-django-utils==5.12.0
     # via django-config-models
 edx-i18n-tools==1.3.0
     # via -r requirements/dev.in
 edx-lint==5.3.6
     # via
     #   -r requirements/dev.in
     #   -r requirements/quality.in
-filelock==3.13.1
+filelock==3.13.3
     # via
     #   tox
     #   virtualenv
 idna==3.6
     # via requests
-importlib-metadata==7.0.1
+importlib-metadata==6.11.0
     # via
+    #   -c requirements/common_constraints.txt
     #   keyring
     #   twine
-importlib-resources==6.1.2
+importlib-resources==6.4.0
     # via keyring
 isort==5.13.2
     # via
     #   -r requirements/quality.in
     #   pylint
-jaraco-classes==3.3.1
+jaraco-classes==3.4.0
+    # via keyring
+jaraco-context==4.3.0
+    # via keyring
+jaraco-functools==4.0.0
     # via keyring
 jeepney==0.8.0
     # via
@@ -98,9 +107,9 @@ jinja2==3.1.3
     # via
     #   code-annotations
     #   diff-cover
-keyring==24.3.1
+keyring==25.1.0
     # via twine
-lxml==5.1.0
+lxml==5.2.1
     # via edx-i18n-tools
 markdown-it-py==3.0.0
     # via rich
@@ -111,20 +120,22 @@ mccabe==0.7.0
 mdurl==0.1.2
     # via markdown-it-py
 more-itertools==10.2.0
-    # via jaraco-classes
-newrelic==9.7.0
+    # via
+    #   jaraco-classes
+    #   jaraco-functools
+newrelic==9.8.0
     # via edx-django-utils
-nh3==0.2.15
+nh3==0.2.17
     # via readme-renderer
-packaging==23.2
+packaging==24.0
     # via
     #   pyproject-api
     #   tox
 path==16.10.0
     # via edx-i18n-tools
 pbr==6.0.0
     # via stevedore
-pkginfo==1.9.6
+pkginfo==1.10.0
     # via twine
 platformdirs==4.2.0
     # via
@@ -141,7 +152,7 @@ psutil==5.9.8
     # via edx-django-utils
 pycodestyle==2.11.1
     # via -r requirements/quality.in
-pycparser==2.21
+pycparser==2.22
     # via cffi
 pydocstyle==6.3.0
     # via -r requirements/quality.in
@@ -170,10 +181,6 @@ pyproject-api==1.6.1
     # via tox
 python-slugify==8.0.4
     # via code-annotations
-pytz==2024.1
-    # via
-    #   django
-    #   djangorestframework
 pyyaml==6.0.1
     # via
     #   code-annotations
@@ -188,7 +195,7 @@ requests-toolbelt==1.0.0
     # via twine
 rfc3986==2.0.0
     # via twine
-rich==13.7.0
+rich==13.7.1
     # via twine
 secretstorage==3.3.3
     # via keyring
@@ -211,7 +218,7 @@ tomli==2.0.1
     #   tox
 tomlkit==0.12.4
     # via pylint
-tox==4.13.0
+tox==4.14.2
     # via -r requirements/dev.in
 twine==5.0.0
     # via -r requirements/dev.in
@@ -227,9 +234,14 @@ urllib3==2.2.1
     #   twine
 virtualenv==20.25.1
     # via tox
-wheel==0.42.0
-    # via -r requirements/dev.in
-zipp==3.17.0
+wheel==0.43.0
+    # via
+    #   -r requirements/dev.in
+    #   django-config-models
+zipp==3.18.1
     # via
     #   importlib-metadata
     #   importlib-resources
+
+# The following packages are considered to be unsafe in a requirements file:
+# setuptools
diff --git a/requirements/pip-tools.txt b/requirements/pip-tools.txt
@@ -4,15 +4,17 @@
 #
 #    make upgrade
 #
-build==1.0.3
+build==1.2.1
     # via pip-tools
 click==8.1.7
     # via pip-tools
-importlib-metadata==7.0.1
-    # via build
-packaging==23.2
+importlib-metadata==6.11.0
+    # via
+    #   -c requirements/common_constraints.txt
+    #   build
+packaging==24.0
     # via build
-pip-tools==7.4.0
+pip-tools==7.4.1
     # via -r requirements/pip-tools.in
 pyproject-hooks==1.0.0
     # via
@@ -23,9 +25,9 @@ tomli==2.0.1
     #   build
     #   pip-tools
     #   pyproject-hooks
-wheel==0.42.0
+wheel==0.43.0
     # via pip-tools
-zipp==3.17.0
+zipp==3.18.1
     # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:

diff --git a/requirements/pip.txt b/requirements/pip.txt
@@ -4,11 +4,11 @@
 #
 #    make upgrade
 #
-wheel==0.42.0
+wheel==0.43.0
     # via -r requirements/pip.in
 
 # The following packages are considered to be unsafe in a requirements file:
 pip==24.0
     # via -r requirements/pip.in
-setuptools==69.1.1
+setuptools==69.2.0
     # via -r requirements/pip.in
diff --git a/requirements/quality.txt b/requirements/quality.txt
@@ -15,7 +15,7 @@ click==8.1.7
     #   edx-lint
 click-log==0.4.0
     # via edx-lint
-code-annotations==1.6.0
+code-annotations==1.7.0
     # via edx-lint
 dill==0.3.8
     # via pylint

diff --git a/requirements/test.txt b/requirements/test.txt
@@ -4,13 +4,17 @@
 #
 #    make upgrade
 #
-asgiref==3.7.2
+asgiref==3.8.1
     # via django
+backports-zoneinfo==0.2.1
+    # via
+    #   django
+    #   djangorestframework
 cffi==1.16.0
     # via pynacl
 click==8.1.7
     # via edx-django-utils
-coverage[toml]==7.4.3
+coverage[toml]==7.4.4
     # via pytest-cov
     # via
     #   -c requirements/common_constraints.txt
@@ -20,46 +24,42 @@ coverage[toml]==7.4.3
     #   django-waffle
     #   djangorestframework
     #   edx-django-utils
-django-config-models==2.5.1
+django-config-models==2.6.0
     # via -r requirements/base.in
 django-crum==0.7.9
     # via edx-django-utils
 django-waffle==4.1.0
     # via edx-django-utils
-djangorestframework==3.14.0
+djangorestframework==3.15.1
     # via django-config-models
-edx-django-utils==5.10.1
+edx-django-utils==5.12.0
     # via django-config-models
 exceptiongroup==1.2.0
     # via pytest
 iniconfig==2.0.0
     # via pytest
-newrelic==9.7.0
+newrelic==9.8.0
     # via edx-django-utils
-packaging==23.2
+packaging==24.0
     # via pytest
 pbr==6.0.0
     # via stevedore
 pluggy==1.4.0
     # via pytest
 psutil==5.9.8
     # via edx-django-utils
-pycparser==2.21
+pycparser==2.22
     # via cffi
 pynacl==1.5.0
     # via edx-django-utils
-pytest==8.0.2
+pytest==8.1.1
     # via
     #   pytest-cov
     #   pytest-django
-pytest-cov==4.1.0
+pytest-cov==5.0.0
     # via -r requirements/test.in
 pytest-django==4.8.0
     # via -r requirements/test.in
-pytz==2024.1
-    # via
-    #   django
-    #   djangorestframework
 sqlparse==0.4.4
     # via django
 stevedore==5.2.0
@@ -70,3 +70,8 @@ tomli==2.0.1
     #   pytest
 typing-extensions==4.10.0
     # via asgiref
+wheel==0.43.0
+    # via django-config-models
+
+# The following packages are considered to be unsafe in a requirements file:
+# setuptools