Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

:seedling: Bump lxml from 6.0.0 to 6.0.1

Merged
Number: #2159
Type: Pull Request
State: Merged
Author: dependabot[bot] dependabot[bot]
Association: Contributor
Comments: 3
Created: August 22, 2025 at 03:06 PM UTC
(10 months ago)
Updated: August 25, 2025 at 02:14 AM UTC
(10 months ago)
Merged: August 25, 2025 at 02:14 AM UTC
(10 months ago)
by openshift-merge-bot[bot]
Time to Close: 2 days
Labels:
lgtm approved dependencies python
Assignees:
camilamacedo86
Description:

Bumps lxml from 6.0.0 to 6.0.1.

Changelog

Sourced from lxml's changelog.

6.0.1 (2025-08-22)

Bugs fixed

  • LP#2116333: lxml.sax._getNsTag() could fail with an exception on malformed input.

  • GH#467: Some test adaptations were made for libxml2 2.15. Patch by Nick Wellnhofer.

  • LP2119510, GH#473: A Python compatibility test was fixed for Python 3.14+. Patch by Lumír Balhar.

  • GH#471: Wheels for "riscv64" on recent Python versions were added. Patch by ffgan.

  • GH#469: The wheel build no longer requires the wheel package unconditionally. Patch by Miro Hrončok.

  • Binary wheels use the library version libxml2 2.14.5.

  • Windows binary wheels continue to use a security patched library version libxml2 2.11.9.

Commits
  • 5aca07d Prepare release of lxml 6.0.1.
  • f0e555a Build: Add Py3.14 also to tox.ini.
  • afc745a Update changelog.
  • 25242c6 Build: Add "riscv64" wheels for Py3.12+.
  • 457c564 Build: Mark Py3.14 as officially supported.
  • 66a3cc3 Remove Py2 test code.
  • 6e88838 CI: Fix version usage in cache keys.
  • fe5df46 Build: bump the github-actions group across 1 directory with 3 updates (#476)
  • 9177121 CI: Configure library versions centrally in pyproject.toml to prevent build t...
  • 525c6b9 Build: Separate libs cache by CPU architecture.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request Statistics
Commits:
1
Files Changed:
1
Additions:
+1
Deletions:
-1
Package Dependencies
Package:
lxml
Ecosystem:
pip
Version Change:
6.0.0 → 6.0.1
Update Type:
Patch
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 5644327
UUID: 2766600761
Node ID: PR_kwDOHPC8B86k5vo5
Host: GitHub
Repository: operator-framework/operator-controller
Merge State: Unknown