Skip to content

pip(deps-dev): bump pip-licenses from 5.0.0 to 5.5.0#2594

Merged
sanjeeven-singh merged 1 commit intodevelopfrom
dependabot/pip/develop/pip-licenses-5.5.0
Oct 20, 2025
Merged

pip(deps-dev): bump pip-licenses from 5.0.0 to 5.5.0#2594
sanjeeven-singh merged 1 commit intodevelopfrom
dependabot/pip/develop/pip-licenses-5.5.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Oct 20, 2025

Bumps pip-licenses from 5.0.0 to 5.5.0.

Release notes

Sourced from pip-licenses's releases.

v-5.5.0

Patch Notes for v-5.5.0

  • Minor Security updates
  • Initial Implementation of PEP-639 support
  • Initial support for builtin tomllib for Python 3.11+ (reducing external dependencies by 1)
  • Fixes an edge case where packages are named with version info.
  • Declares support for Python 3.13 & 3.14

Impacted GHI:

  • Contributed to #236

Included and Superseded PRs

  • includes and supersedes #210
  • includes and supersedes #213
  • includes and supersedes #214
  • includes and supersedes #215
  • includes and supersedes #218
  • includes and supersedes #219
  • includes and supersedes #222
  • includes and supersedes #230
Changelog

Sourced from pip-licenses's changelog.

5.5.0

  • Replace dependency on tomli with builtin tomllib for Python 3.11
  • Added support for License-Expression metadata field, see PEP 639
  • Added --from=expression option
  • Breaking change: The --from=all output now includes the License-Expression value
  • Fixed KeyError with --partial and --allow-only if a license matches multiple allowed licenses.
  • Declare support for Python 3.13 and 3.14
Commits
  • 67e539e [FEATURE] Release Attestation
  • 72342f7 Minor refactor for duplicate ids
  • 363b272 Minor fix for continuous deployment setup logic
  • 2818ae4 [YANK] minor fixes to v-5.5.0rc1 -- bump to rc2
  • 5456cf7 [UPDATE] Improved CI/CD (and version 5.5 bump)
  • 99100d0 [MERGE] pull request #218 from cdce8p/python-313
  • 8980be4 Declare support for Python 3.13 and 3.14
  • 1bec845 [MERGE] pull request #238 from raimon49/patch-partial-matching-refactor-231
  • 379fce6 Add additional test case.
  • 863ccf2 [MERGE] pull request #219 from cdce8p/update-build-system
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
pip(deps-dev): bump pip-licenses from 5.0.0 to 5.5.0
aaba0da 
Bumps [pip-licenses](https://github.com/raimon49/pip-licenses) from 5.0.0 to 5.5.0.
- [Release notes](https://github.com/raimon49/pip-licenses/releases)
- [Changelog](https://github.com/raimon49/pip-licenses/blob/master/CHANGELOG.md)
- [Commits](raimon49/pip-licenses@v-5.0.0...v-5.5.0)

---
updated-dependencies:
- dependency-name: pip-licenses
  dependency-version: 5.5.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 20, 2025
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Oct 20, 2025
@dependabot dependabot Bot requested a review from kevinmason-nhs as a code owner October 20, 2025 00:05
@dependabot dependabot Bot added the python Pull requests that update Python code label Oct 20, 2025
@sanjeeven-singh sanjeeven-singh merged commit 8ccdc34 into develop Oct 20, 2025
4 checks passed
@dependabot dependabot Bot deleted the dependabot/pip/develop/pip-licenses-5.5.0 branch October 20, 2025 12:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@daniel-mcadam-nhs daniel-mcadam-nhs Awaiting requested review from daniel-mcadam-nhs daniel-mcadam-nhs is a code owner

@kevinmason-nhs kevinmason-nhs Awaiting requested review from kevinmason-nhs kevinmason-nhs is a code owner

@sudhanshu-arya1 sudhanshu-arya1 Awaiting requested review from sudhanshu-arya1

@nhsd-andrew-tuley nhsd-andrew-tuley Awaiting requested review from nhsd-andrew-tuley

1 more reviewer

@sanjeeven-singh sanjeeven-singh sanjeeven-singh approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sanjeeven-singh