Skip to content

Bump coverage from 7.14.1 to 7.14.3#162

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/pip/coverage-7.14.3
Jul 14, 2026
Merged

Bump coverage from 7.14.1 to 7.14.3#162
github-actions[bot] merged 1 commit into
mainfrom
dependabot/pip/coverage-7.14.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 14, 2026

Copy link
Copy Markdown
Contributor

Bumps coverage from 7.14.1 to 7.14.3.

Changelog

Sourced from coverage's changelog.

Version 7.14.3 — 2026-06-22

  • Fix: the default ... exclusion rule now also matches function bodies whose closing return-type bracket is on its own line (for example, after a long -> dict[ ... ] annotation that a formatter has split over multiple lines). Closes issue 2185, thanks Mengjia Shang <pull 2196_>.

  • Fix: On 3.13t, we incorrectly issued Couldn't import C tracer errors. We can't import the C tracer because in 7.14.2 we stopped shipping compiled wheels for 3.13t. Thanks, Hugo van Kemenade <pull 2203_>_.

.. _issue 2185: coveragepy/coveragepy#2185 .. _pull 2196: coveragepy/coveragepy#2196 .. _pull 2203: coveragepy/coveragepy#2203

.. _changes_7-14-2:

Version 7.14.2 — 2026-06-20

  • Fix: some messages were being written to stdout, making coverage json -o - useless for capturing JSON output. Now messages are written to stderr, fixing issue 2197_.

  • Fix: CoverageData kept one SQLite connection per thread that recorded coverage, but never closed them when those threads terminated. On long runs with many short-lived threads this leaked one file descriptor per dead thread, eventually failing with OSError: [Errno 24] Too many open files. Connections belonging to terminated threads are now closed and dropped. Fixes issue 2192. Thanks, Matthew Lloyd <pull 2193_>.

  • Fix: when using sys.monitoring, we were assuming we could use the COVERAGE_ID tool id. But other tools might also assume they could use that id. Pre-allocated ids don't really make sense, so now we search for a usable one instead. Fixes issue 2187_.

  • Following the advice of cibuildwheel <no-13t_>_, we no longer distribute wheels for Python 3.13 free-threaded.

.. _issue 2187: coveragepy/coveragepy#2187 .. _issue 2192: coveragepy/coveragepy#2192 .. _pull 2193: coveragepy/coveragepy#2193 .. _issue 2197: coveragepy/coveragepy#2197 .. _no-13t: https://py-free-threading.github.io/ci/#building-free-threaded-wheels-with-cibuildwheel

.. _changes_7-14-1:

Commits
  • 22f13ea docs: sample HTML for 7.14.3
  • 2ca4e5f docs: prep for 7.14.3
  • 01d714e docs: add changelog entry for #2203
  • f36248d fix: don't emit 'Couldn't import C tracer' warning for 3.13t (#2203)
  • 86d73d1 docs: thanks, Mengjia Shang
  • 3d4ae3c docs: add the #2196 pr link to CHANGES
  • f4b2b4d fix: exclude ... bodies after multi-line return-type annotations (#2185) (#...
  • 1980ed0 chore: bump sigstore/gh-action-sigstore-python (#2201)
  • bca3217 build: since we don't ship 3.13t, don't test it
  • 77550d8 docs: oops, mismatched pull requests
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [coverage](https://github.com/coveragepy/coveragepy) from 7.14.1 to 7.14.3.
- [Release notes](https://github.com/coveragepy/coveragepy/releases)
- [Changelog](https://github.com/coveragepy/coveragepy/blob/main/CHANGES.rst)
- [Commits](coveragepy/coveragepy@7.14.1...7.14.3)

---
updated-dependencies:
- dependency-name: coverage
  dependency-version: 7.14.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jul 14, 2026
@dependabot
dependabot Bot requested a review from a team as a code owner July 14, 2026 13:12
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jul 14, 2026

@senzingdevops senzingdevops left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automated: approving this pull request because it includes a patch update

@github-actions
github-actions Bot enabled auto-merge (squash) July 14, 2026 13:12
@github-actions
github-actions Bot merged commit 00ac2ce into main Jul 14, 2026
12 checks passed
@github-actions
github-actions Bot deleted the dependabot/pip/coverage-7.14.3 branch July 14, 2026 13:13
@github-actions

Copy link
Copy Markdown

🤖 Claude Code Review

Senzing Code Review

Diff scope: Single-line dependency bump — coverage 7.14.1 → 7.14.3 in development-requirements.txt:4 (a Dependabot-style version bump, consistent with recent commit history).

Code Quality

  • Style conventionsdevelopment-requirements.txt:4. Pinned == version format is preserved, consistent with every other line in the file (black==26.5.1, build==1.5.0, etc.). Alphabetical ordering is maintained.
  • No commented-out code — N/A, diff is a version bump only.
  • Meaningful variable names — N/A, no code changed.
  • DRY principle — N/A.
  • Defects/bugs/security — No logic changed. coverage 7.14.1→7.14.3 is a patch-level bump (per SemVer, no breaking API changes expected). No code paths are affected.
  • .claude/CLAUDE.md review — This repo (mapper-npi) doesn't have its own .claude/CLAUDE.md; only the vendored build-resources/.claude/CLAUDE.md exists, which documents the build-resources repo itself and is appropriately generic (no local-machine-specific paths, credentials, or environment assumptions). Not applicable to this diff.

Testing

  • N/A — No production code or new functions touched. A dev-tool dependency bump doesn't require new unit/integration tests.
  • Edge cases / coverage % — Not verifiable from the diff alone; recommend confirming CI passes with the new coverage version (patch bumps to coverage tooling occasionally change reporting behavior, e.g. branch-coverage edge cases), but this is a low-risk, low-priority check for a patch version bump.

Documentation

  • README — Not applicable; no user-facing change.
  • API docs — Not applicable.
  • Inline comments — Not applicable, no complex logic introduced.
  • CHANGELOG.md not updatedCHANGELOG.md still shows ## [Unreleased] with placeholder entries ("Thing 5", "Thing 4") and dates as yyyy-mm-dd. Per the Senzing standard (CHANGELOG.md should be updated for all changes), this dependency bump isn't reflected. However, this project's existing history shows dependency bumps (pytest, virtualenv, cryptography, checkout action) are consistently not added to CHANGELOG.md in prior merges either — this appears to be established practice for dependabot PRs in this repo, so likely low priority/non-blocking.
  • N/A Markdown/CommonMark formatting — No markdown files changed in this diff.

Security

  • No hardcoded credentials — None present.
  • Input validation — N/A.
  • Error handling — N/A.
  • No sensitive data in logs — N/A.
  • .lic files / AQAAAD strings — Checked the full working tree (excluding vendored build-resources/): no .lic files found, and no AQAAAD-prefixed strings in tracked repository content. (Note: AQAAAD appears in two untracked scratch files, prompt-temp.md and prompt-header.md, in the repo root — but those are only the literal checklist instruction text itself, not an actual secret, and aren't part of this PR's diff.)

Summary

This is a routine, low-risk Dependabot patch-version bump with no functional changes. Nothing blocking. Only soft note: CHANGELOG.md isn't updated, but that matches this repo's established pattern for dependency-bump PRs.

Automated code review analyzing defects and coding standards

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant