Skip to content

Bump tox from 4.44.0 to 4.47.0#485

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/tox-4.47.0
Open

Bump tox from 4.44.0 to 4.47.0#485
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/pip/tox-4.47.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 2, 2026

Bumps tox from 4.44.0 to 4.47.0.

Release notes

Sourced from tox's releases.

v4.47.0

What's Changed

Full Changelog: tox-dev/tox@4.46.3...4.47.0

v4.46.3

What's Changed

New Contributors

Full Changelog: tox-dev/tox@4.46.2...4.46.3

v4.46.2

What's Changed

Full Changelog: tox-dev/tox@4.46.1...4.46.2

v4.46.1

What's Changed

Full Changelog: tox-dev/tox@4.46.0...4.46.1

v4.46.0

... (truncated)

Changelog

Sourced from tox's changelog.

Features - 4.47.0

  • Show clean error messages instead of stack traces when TOML configuration contains type mismatches (e.g., deps = [1]), wrapping failures in HandledError with environment and key context - by :user:gaborbernat. (:issue:3831)
  • Add comprehensive tests asserting full error messages for every configurable field type when TOML config contains type mismatches - by :user:gaborbernat. (:issue:3840)

Bug fixes - 4.47.0

  • Fix type errors flagged by ty for virtualenv API changes (system_executable nullability and cached_py_info.PythonInfo removal), and correct the CI workflow matrix exclude for windows-2025 - by :user:gaborbernat. (:issue:3837)
  • base_python and default_base_python now accept a string value in TOML configuration (e.g., base_python = "python" is coerced to ["python"]) instead of raising TypeError - by :user:gaborbernat. (:issue:3839)
  • Pass stdin through to commands executed via tox exec so that piped input (e.g., echo "foo" | tox exec -- python -c 'import sys; print(sys.stdin.read())') reaches the subprocess instead of being discarded - by :user:gaborbernat. (:issue:3841)

v4.46.3 (2026-02-25)

Bug fixes - 4.46.3

  • Fix SchemaStore update workflow creating PRs with merge conflicts by branching from upstream master - by :user:gaborbernat. (:issue:3828)
  • Fixed the minimum version of virtualenv, to avoid incompatibility. (:issue:3829)

v4.46.2 (2026-02-25)

Bug fixes - 4.46.2

  • Fix SchemaStore update workflow authentication and PR creation for fork repositories - by :user:gaborbernat. (:issue:3826)

v4.46.1 (2026-02-25)

Bug fixes - 4.46.1

  • Allow glob patterns (*, ?) in depends configuration for ini files - by :user:gaborbernat.

... (truncated)

Commits
  • f3c5283 release 4.47.0
  • 4486ac7 🐛 fix(config): accept string for base_python in TOML (#3843)
  • 86bba07 🐛 fix(exec): pass stdin through to executed command (#3842)
  • f1083c0 🧪 test(config): assert full error messages for all config fields (#3840)
  • f7ecc1f ✨ feat(config): show clean errors for type mismatches (#3838)
  • ff2af88 build(deps): bump actions/upload-artifact from 6 to 7 (#3834)
  • ea82b0f build(deps): bump actions/download-artifact from 7 to 8 (#3833)
  • a9533f5 🐛 fix(ci): resolve ty type-check failures (#3837)
  • c6d745d Standardize .github files to .yaml suffix
  • 68d9a09 Move SECURITY.md to .github/SECURITY.md
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump tox from 4.44.0 to 4.47.0
b7f36d5 
Bumps [tox](https://github.com/tox-dev/tox) from 4.44.0 to 4.47.0.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.44.0...4.47.0)

---
updated-dependencies:
- dependency-name: tox
  dependency-version: 4.47.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants