Skip to content

Update pyyaml requirement from >=3.10 to >=6.0.3#2882

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pyyaml-gte-6.0.3
Open

Update pyyaml requirement from >=3.10 to >=6.0.3#2882
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/pyyaml-gte-6.0.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 22, 2026
edited
Loading

Updates the requirements on pyyaml to permit the latest version.

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

  • Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

  • yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)

6.0.2 (2024-08-06)

6.0.1 (2023-07-18)

6.0 (2021-10-13)

5.4.1 (2021-01-20)

  • yaml/pyyaml#480 -- Fix stub compat with older pyyaml versions that may unwittingly load it

5.4 (2021-01-19)

5.3.1 (2020-03-18)

  • yaml/pyyaml#386 -- Prevents arbitrary code execution during python/object/new constructor

5.3 (2020-01-06)

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python labels Apr 22, 2026
@gir-bot gir-bot added S: needs-review Needs to be reviewed and/or approved. C: infrastructure Related to project infrastructure. labels Apr 22, 2026
@gir-bot gir-bot removed the python label May 13, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/pyyaml-gte-6.0.3 branch from 1729f42 to 02c5b30 Compare May 13, 2026 12:52
@dependabot
Update pyyaml requirement from >=3.10 to >=6.0.3
c1d2262 
Updates the requirements on [pyyaml](https://github.com/yaml/pyyaml) to permit the latest version.
- [Release notes](https://github.com/yaml/pyyaml/releases)
- [Changelog](https://github.com/yaml/pyyaml/blob/6.0.3/CHANGES)
- [Commits](yaml/pyyaml@3.10...6.0.3)

---
updated-dependencies:
- dependency-name: pyyaml
  dependency-version: 6.0.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/pyyaml-gte-6.0.3 branch from 02c5b30 to c1d2262 Compare May 14, 2026 20:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

C: infrastructure Related to project infrastructure. dependencies Pull requests that update a dependency file S: needs-review Needs to be reviewed and/or approved.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@gir-bot