Skip to content

deps(pip): update build requirement from >=1.2.2 to >=1.5.0#558

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/build-gte-1.5.0
Open

deps(pip): update build requirement from >=1.2.2 to >=1.5.0#558
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/build-gte-1.5.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 2, 2026

Copy link
Copy Markdown
Contributor

Updates the requirements on build to permit the latest version.

Release notes

Sourced from build's releases.

1.5.0

What's Changed

Full Changelog: pypa/build@1.4.4...1.5.0

Changelog

Sourced from build's changelog.

#################### 1.5.0 (2026-04-30) ####################

Features

  • Drop Python 3.9 support - by :user:henryiii (:issue:1036)

Bugfixes

  • Make --ignore-installed opt-in from the API via fresh=True - by :user:henryiii (:issue:1056)

Miscellaneous

  • :issue:1033

#################### 1.4.4 (2026-04-22) ####################

Bugfixes

  • Fix release pipeline generating CHANGELOG.rst entries with inconsistent heading levels, which broke sphinx -W and pinned Read the Docs stable at 1.4.0 - by :user:gaborbernat. (:issue:1031)
  • Revert :pr:1039 from build 1.4.3, no longer check direct_url (for now) - by :user:henryiii (:issue:1039)
  • Add --ignore-installed to pip install command to prevent issues with packages already present in the isolated build environment - by :user:henryiii (:issue:1037) (:issue:1040)
  • Partial revert of :pr:973, keeping log messages in one entry, multiple lines. (:issue:1044)

Miscellaneous

  • :issue:1048, :issue:1049

#################### 1.4.3 (2026-04-10) ####################

Features

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
deps(pip): update build requirement from >=1.2.2 to >=1.5.0
df01b53 
Updates the requirements on [build](https://github.com/pypa/build) to permit the latest version.
- [Release notes](https://github.com/pypa/build/releases)
- [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst)
- [Commits](pypa/build@1.2.2...1.5.0)

---
updated-dependencies:
- dependency-name: build
  dependency-version: 1.5.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Jun 2, 2026
@greptile-apps

greptile-apps Bot commented Jun 2, 2026

Copy link
Copy Markdown

Greptile Summary

This PR bumps the minimum version of the build package in the dev optional extras from >=1.2.2 to >=1.5.0, allowing use of the latest release. The change is dev-tooling only and has no impact on the published package or its runtime dependencies.

  • build>=1.5.0 drops Python 3.9 support and requires Python 3.10+; this project already declares requires-python = ">=3.10", so there is no compatibility concern.
  • The build package is listed only under [project.optional-dependencies].dev, meaning end-users and production installs are completely unaffected.

Confidence Score: 5/5

Safe to merge — a single-line change to a dev-only dependency with no runtime or published-package impact.

The only change is raising the lower bound on the build package inside the dev optional extras. Since build 1.5.0 requires Python 3.10+ and the project already enforces requires-python = ">=3.10", the new minimum is fully compatible. No runtime dependencies, published artifacts, or CI workflows are affected.

No files require special attention.

Important Files Changed

Filename Overview
pyproject.toml Bumps the build dev dependency minimum from >=1.2.2 to >=1.5.0; no runtime impact since build lives only in the dev optional extras.

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A[Developer installs dev extras] --> B{Resolve build package}
    B -->|Before PR| C["build >= 1.2.2"]
    B -->|After PR| D["build >= 1.5.0 - Python 3.10+ only"]
    D --> E["Compatible: project requires Python >= 3.10"]
    C --> F[Runtime and publish deps not affected]
    D --> F
Loading

Reviews (1): Last reviewed commit: "deps(pip): update build requirement from..." | Re-trigger Greptile

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants