Skip to content

⬆️(deps): update tox requirement from >=4.53.0 to >=4.56.2#640

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/tox-gte-4.56.1
Open

⬆️(deps): update tox requirement from >=4.53.0 to >=4.56.2#640
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/tox-gte-4.56.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 29, 2026

Copy link
Copy Markdown
Contributor

Updates the requirements on tox to permit the latest version.

Release notes

Sourced from tox's releases.

v4.56.2

What's Changed

Full Changelog: tox-dev/tox@4.56.1...4.56.2

Changelog

Sourced from tox's changelog.

Bug fixes - 4.56.2

  • Fix a batch of latent defects found in a codebase audit:

    • stop duplicating --extra-index-url when a merged requirements line repeats an already-seen index;
    • render --no-binary/--only-binary as comma-joined strings instead of leaking the internal set into the pip command line;
    • report a clear error instead of IndexError for a bare one-argument flag (-c, -r, -f, -e) in deps or constraints;
    • canonicalize optional-dependencies keys and self-referential (recursive) extra names so non-canonical spellings no longer silently drop dependencies;
    • raise a clear error instead of KeyError when dependency_groups is requested without a [dependency-groups] table;
    • stop a native TOML { replace = "env" } reference from leaking its resolution chain into sibling list entries and tripping a spurious circular chain error;
    • expand the range that actually matched in a factor expression rather than the first identical digit-range substring;
    • strip the backslash from an escaped \; in set_env values;
    • skip option values during command auto-detection so an environment named like a subcommand (e.g. tox -e list) is no longer misread;
    • treat an empty list-typed environment variable (e.g. TOX_DISCOVER=) as an empty list rather than [""];
    • report an environment whose name is an empty string as present in Config membership tests;
    • fail evaluation gracefully instead of crashing the driver thread when tox p -p all is run with an empty selection;
    • avoid rebuilding a throwaway PEP 517 frontend against the previous root when a package environment's root is reassigned before a frontend exists;
    • avoid crashing create_session_view when the package and its session copy share no common path (e.g. different Windows drives);
    • close the pseudo-terminal file descriptors that leaked on every command run under a tty and on the terminal-attribute inheritance error path;
    • honor the stop signal in the Windows overlapped-I/O reader while a read is still pending, so shutdown no longer risks hanging on a child that holds its pipe open without producing output. (:issue:3974)

v4.56.1 (2026-06-25)


Bug fixes - 4.56.1

  • Fix { replace = "if" ... extend = true } corrupting the resulting list when then or else is a scalar string (e.g. then = "-v"): a non-empty scalar string is now appended as a single element instead of being iterated character-by-character, while a false if with no else (yielding "") contributes nothing rather than an empty element, and list/set results are still spread into the parent. (:issue:3969)

v4.56.0 (2026-06-23)


Features - 4.56.0

... (truncated)

Commits
  • 5458a28 release 4.56.2
  • d3dc2d1 Fix 17 bugs found in a deep codebase sweep (#3974)
  • b55fe2f [pre-commit.ci] pre-commit autoupdate (#3973)
  • 7ba0f81 💰 Surface GitHub Sponsors + thanks.dev
  • 03c2d58 build(deps): bump actions/cache from 5.0.5 to 6.1.0 (#3972)
  • 34962f1 [pre-commit.ci] pre-commit autoupdate (#3971)
  • 0df25f4 🔧 chore(type): drop stale ty invalid-assignment ignores (#3970)
  • 4bb6421 release 4.56.1
  • ca2f561 treat scalar string then/else as a single item in if-replace extend (#3969)
  • f933bd2 build(deps): bump actions/checkout from 6.0.3 to 7.0.0 (#3968)
  • Additional commits viewable in compare view

@dependabot dependabot Bot requested a review from ramseymcgrath as a code owner June 29, 2026 06:05
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python labels Jun 29, 2026
@datadog-official

datadog-official Bot commented Jun 29, 2026

Copy link
Copy Markdown

Pipelines

⚠️ Warnings

🚦 5 Pipeline jobs failed

Consolidated CI | CI Summary   View in Datadog   GitHub Actions

Consolidated CI | Unit Tests (Python 3.11)   View in Datadog   GitHub Actions

Consolidated CI | Unit Tests (Python 3.12)   View in Datadog   GitHub Actions

View all 5 failed jobs.

This comment will be updated automatically if new data arrives.
🔗 Commit SHA: e53cac7 | Docs | Give us feedback!

@github-actions github-actions Bot added the build label Jun 29, 2026
@codecov

codecov Bot commented Jun 29, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

Updates the requirements on [tox](https://github.com/tox-dev/tox) to permit the latest version.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.53.0...4.56.2)

---
updated-dependencies:
- dependency-name: tox
  dependency-version: 4.56.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title ⬆️(deps): update tox requirement from >=4.53.0 to >=4.56.1 ⬆️(deps): update tox requirement from >=4.53.0 to >=4.56.2 Jul 7, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/tox-gte-4.56.1 branch from a836518 to e53cac7 Compare July 7, 2026 06:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

build dependencies Pull requests that update a dependency file python

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant