Bumps the actions group with 3 updates: pypa/cibuildwheel, scientific-python/circleci-artifacts-redirector-action and github/codeql-action.
Updates pypa/cibuildwheel
from 3.0.1 to 3.1.3
Release notes
Sourced from pypa/cibuildwheel's releases.
v3.1.3
- 🐛 Fix bug where "latest" dependencies couldn't update to pip 25.2 on Windows (#2537)
- 🛠 Use pytest-rerunfailures to improve some of our iOS/Android tests (#2527, #2539)
- 🛠 Remove some GraalPy Windows workarounds in our tests (#2501)
v3.1.2
- ⚠️ Add an error if
CIBW_FREE_THREADING_SUPPORT
is set; you are likely missing 3.13t wheels, please use the enable
/CIBW_ENABLE
(#2520)
- 🛠
riscv64
now enabled if you target that architecture, it's now supported on PyPI (#2509)
- 🛠 Add warning when using
cpython-experimental-riscv64
(no longer needed) (#2526, #2528)
- 🛠 iOS versions bumped, fixing issues with 3.14 (now RC 1) (#2530)
- 🐛 Fix bug in Android running wheel from our GitHub Action (#2517)
- 🐛 Fix warning when using
test-skip
of "*-macosx_universal2:arm64"
(#2522)
- 🐛 Fix incorrect number of wheels reported in logs, again (#2517)
- 📚 We welcome our Android platform maintainer (#2516)
v3.1.1
- 🐛 Fix a bug showing an incorrect wheel count at the end of execution, and misrepresenting test-only runs in the GitHub Action summary (#2512)
- 📚 Docs fix (#2510)
v3.1.0
- 🌟 CPython 3.14 wheels are now built by default - without the
"cpython-prerelease"
enable
set. It's time to build and upload these wheels to PyPI! This release includes CPython 3.14.0rc1, which is guaranteed to be ABI compatible with the final release. (#2507) Free-threading is no longer experimental in 3.14, so you have to skip it explicitly with 'cp31?t-*'
if you don't support it yet. (#2503)
- 🌟 Adds the ability to build wheels for Android! Set the
platform
option to android
on Linux or macOS to try it out! (#2349)
- 🌟 Adds Pyodide 0.28, which builds 3.13 wheels (#2487)
- ✨ Support for 32-bit
manylinux_2_28
(now a consistent default) and manylinux_2_34
added (#2500)
- 🛠 Improved summary, will also use markdown summary output on GHA (#2469)
- 🛠 The riscv64 images now have a working default (as they are now part of pypy/manylinux), but are still experimental (and behind an
enable
) since you can't push them to PyPI yet (#2506)
- 🛠 Fixed a typo in the 3.9 MUSL riscv64 identifier (
cp39-musllinux_ricv64
-> cp39-musllinux_riscv64
) (#2490)
- 🛠 Mistyping
--only
now shows the correct possibilities, and even suggests near matches on Python 3.14+ (#2499)
- 🛠 Only support one output from the repair step on linux like other platforms; auditwheel fixed this over four years ago! (#2478)
- 🛠 We now use pattern matching extensively (#2434)
- 📚 We now have platform maintainers for our special platforms and interpreters! (#2481)
Changelog
Sourced from pypa/cibuildwheel's changelog.
title: Changelog
Changelog
v3.1.3
1 August 2025
- 🐛 Fix bug where "latest" dependencies couldn't update to pip 25.2 on Windows (#2537)
- 🛠 Use pytest-rerunfailures to improve some of our iOS/Android tests (#2527, #2539)
- 🛠 Remove some GraalPy Windows workarounds in our tests (#2501)
v3.1.2
29 July 2025
- ⚠️ Add an error if
CIBW_FREE_THREADING_SUPPORT
is set; you are likely missing 3.13t wheels, please use the enable
/CIBW_ENABLE
(#2520)
- 🛠
riscv64
now enabled if you target that architecture, it's now supported on PyPI (#2509)
- 🛠 Add warning when using
cpython-experimental-riscv64
(no longer needed) (#2526, #2528)
- 🛠 iOS versions bumped, fixing issues with 3.14 (now RC 1) (#2530)
- 🐛 Fix bug in Android running wheel from our GitHub Action (#2517)
- 🐛 Fix warning when using
test-skip
of "*-macosx_universal2:arm64"
(#2522)
- 🐛 Fix incorrect number of wheels reported in logs, again (#2517)
- 📚 We welcome our Android platform maintainer (#2516)
v3.1.1
24 July 2025
- 🐛 Fix a bug showing an incorrect wheel count at the end of execution, and misrepresenting test-only runs in the GitHub Action summary (#2512)
- 📚 Docs fix (#2510)
v3.1.0
23 July 2025
- 🌟 CPython 3.14 wheels are now built by default - without the
"cpython-prerelease"
enable
set. It's time to build and upload these wheels to PyPI! This release includes CPython 3.14.0rc1, which is guaranteed to be ABI compatible with the final release. (#2507) Free-threading is no longer experimental in 3.14, so you have to skip it explicitly with 'cp31?t-*'
if you don't support it yet. (#2503)
- 🌟 Adds the ability to build wheels for Android! Set the
platform
option to android
on Linux or macOS to try it out! (#2349)
- 🌟 Adds Pyodide 0.28, which builds 3.13 wheels (#2487)
- ✨ Support for 32-bit
manylinux_2_28
(now a consistent default) and manylinux_2_34
added (#2500)
- 🛠 Improved summary, will also use markdown summary output on GHA (#2469)
- 🛠 The riscv64 images now have a working default (as they are now part of pypy/manylinux), but are still experimental (and behind an
enable
) since you can't push them to PyPI yet (#2506)
- 🛠 Fixed a typo in the 3.9 MUSL riscv64 identifier (
cp39-musllinux_ricv64
-> cp39-musllinux_riscv64
) (#2490)
- 🛠 Mistyping
--only
now shows the correct possibilities, and even suggests near matches on Python 3.14+ (#2499)
... (truncated)
Commits
Updates scientific-python/circleci-artifacts-redirector-action
from 1.1.0 to 1.2.0
Release notes
Sourced from scientific-python/circleci-artifacts-redirector-action's releases.
v1.2.0
What's Changed
New Contributors
Full Changelog: scientific-python/circleci-artifacts-redirector-action@v1.1.0...v1.2.0
Commits
8396314
Build(deps-dev): Bump form-data from 3.0.1 to 3.0.4 (#79)
6b0ee99
Add option to set CircleCI domain (#78)
054fea2
Update LICENSE (#77)
f8165a7
Build(deps): Bump autofix-ci/action from 1.3.1 to 1.3.2 in /.github/workflows...
- See full diff in compare view
Updates github/codeql-action
from 3.29.3 to 3.29.5
Release notes
Sourced from github/codeql-action's releases.
v3.29.5
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.29.5 - 29 Jul 2025
- Update default CodeQL bundle version to 2.22.2. #2986
See the full CHANGELOG.md for more information.
v3.29.4
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.29.4 - 23 Jul 2025
No user facing changes.
See the full CHANGELOG.md for more information.
Changelog
Sourced from github/codeql-action's changelog.
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
[UNRELEASED]
No user facing changes.
3.29.5 - 29 Jul 2025
- Update default CodeQL bundle version to 2.22.2. #2986
3.29.4 - 23 Jul 2025
No user facing changes.
3.29.3 - 21 Jul 2025
No user facing changes.
3.29.2 - 30 Jun 2025
- Experimental: When the
quality-queries
input for the init
action is provided with an argument, separate .quality.sarif
files are produced and uploaded for each language with the results of the specified queries. Do not use this in production as it is part of an internal experiment and subject to change at any time. #2935
3.29.1 - 27 Jun 2025
- Fix bug in PR analysis where user-provided
include
query filter fails to exclude non-included queries. #2938
- Update default CodeQL bundle version to 2.22.1. #2950
3.29.0 - 11 Jun 2025
- Update default CodeQL bundle version to 2.22.0. #2925
- Bump minimum CodeQL bundle version to 2.16.6. #2912
3.28.21 - 28 July 2025
No user facing changes.
3.28.20 - 21 July 2025
3.28.19 - 03 Jun 2025
- The CodeQL Action no longer includes its own copy of the extractor for the
actions
language, which is currently in public preview.
The actions
extractor has been included in the CodeQL CLI since v2.20.6. If your workflow has enabled the actions
language and you have pinned
your tools:
property to a specific version of the CodeQL CLI earlier than v2.20.6, you will need to update to at least CodeQL v2.20.6 or disable
actions
analysis.
- Update default CodeQL bundle version to 2.21.4. #2910
... (truncated)
Commits
51f7732
Merge pull request #2997 from github/update-v3.29.5-80a09d7b0
8e90243
Update changelog for v3.29.5
80a09d7
Merge pull request #2996 from github/dependabot/npm_and_yarn/npm-240ab9fad0
8388115
Merge pull request #2994 from github/mergeback/changelog/v3.28.21
401ecaf
Merge branch 'main' into mergeback/changelog/v3.28.21
ab5c0c5
Merge branch 'main' into dependabot/npm_and_yarn/npm-240ab9fad0
cd264d4
Merge pull request #2986 from github/update-bundle/codeql-bundle-v2.22.2
4599055
Merge branch 'main' into update-bundle/codeql-bundle-v2.22.2
fd7ad51
Merge pull request #2971 from github/update-supported-enterprise-server-versions
ac0c9bf
Merge branch 'main' into update-supported-enterprise-server-versions
- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it
@dependabot merge
will merge this PR after your CI passes on it
@dependabot squash and merge
will squash and merge this PR after your CI passes on it
@dependabot cancel merge
will cancel a previously requested merge and block automerging
@dependabot reopen
will reopen this PR if it is closed
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions
Uh oh!
There was an error while loading. Please reload this page.
Bumps the actions group with 3 updates: pypa/cibuildwheel, scientific-python/circleci-artifacts-redirector-action and github/codeql-action.
Updates
pypa/cibuildwheel
from 3.0.1 to 3.1.3Release notes
Sourced from pypa/cibuildwheel's releases.
Changelog
Sourced from pypa/cibuildwheel's changelog.
... (truncated)
Commits
352e013
Bump version: v3.1.3c463e56
tests: another iOS flaky spot (#2539)8c5c738
docs(project): add Falcon to working examples (#2538)feeb399
tests: add flaky test handling (#2527)60b9cc9
fix: never call pip directly (#2537)e2c7102
chore: remove some GraalPy Windows workarounds. (#2501)9e4e50b
Bump version: v3.1.28ef9414
[pre-commit.ci] pre-commit autoupdate (#2532)1953c04
Adding@mhsmith
as platform maintainer for Android (#2516)46a6d27
Bump iOS support package versions. (#2530)Updates
scientific-python/circleci-artifacts-redirector-action
from 1.1.0 to 1.2.0Release notes
Sourced from scientific-python/circleci-artifacts-redirector-action's releases.
Commits
8396314
Build(deps-dev): Bump form-data from 3.0.1 to 3.0.4 (#79)6b0ee99
Add option to set CircleCI domain (#78)054fea2
Update LICENSE (#77)f8165a7
Build(deps): Bump autofix-ci/action from 1.3.1 to 1.3.2 in /.github/workflows...Updates
github/codeql-action
from 3.29.3 to 3.29.5Release notes
Sourced from github/codeql-action's releases.
Changelog
Sourced from github/codeql-action's changelog.
... (truncated)
Commits
51f7732
Merge pull request #2997 from github/update-v3.29.5-80a09d7b08e90243
Update changelog for v3.29.580a09d7
Merge pull request #2996 from github/dependabot/npm_and_yarn/npm-240ab9fad08388115
Merge pull request #2994 from github/mergeback/changelog/v3.28.21401ecaf
Merge branch 'main' into mergeback/changelog/v3.28.21ab5c0c5
Merge branch 'main' into dependabot/npm_and_yarn/npm-240ab9fad0cd264d4
Merge pull request #2986 from github/update-bundle/codeql-bundle-v2.22.24599055
Merge branch 'main' into update-bundle/codeql-bundle-v2.22.2fd7ad51
Merge pull request #2971 from github/update-supported-enterprise-server-versionsac0c9bf
Merge branch 'main' into update-supported-enterprise-server-versionsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions