From d5fa3094d8908345c2c9aec2e9b35b60c3ee0105 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 12:09:39 +0000
Subject: [PATCH 1/5] Bump coverage from 7.13.1 to 7.13.2 (#11997)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [coverage](https://github.com/coveragepy/coveragepy) from 7.13.1
to 7.13.2.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/coveragepy/coveragepy/blob/main/CHANGES.rst">coverage's
changelog</a>.</em></p>
<blockquote>
<h2>Version 7.13.2 — 2026-01-25</h2>
<ul>
<li>
<p>Fix: when Python is installed via symlinks, for example with
Homebrew, the
standard library files could be incorrectly included in coverage
reports.
This is now fixed, closing <code>issue 2115</code>_.</p>
</li>
<li>
<p>Fix: if a data file is created with no read permissions, the combine
step
would fail completely. Now a warning is issued and the file is skipped.
Closes <code>issue 2117</code>_.</p>
</li>
</ul>
<p>.. _issue 2115: <a
href="https://redirect.github.com/coveragepy/coveragepy/issues/2115">coveragepy/coveragepy#2115</a>
.. _issue 2117: <a
href="https://redirect.github.com/coveragepy/coveragepy/issues/2117">coveragepy/coveragepy#2117</a></p>
<p>.. _changes_7-13-1:</p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/513e97162536cb94aeb94ed3cbe487ca64d13e07"><code>513e971</code></a>
docs: sample HTML for 7.13.2</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/27a8230cf0ef73abca824d2a8622235d9ad8ab96"><code>27a8230</code></a>
docs: prep for 7.13.2</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/27d8daac216ffef80276515b22cf679f9fabc422"><code>27d8daa</code></a>
refactor: plural does more</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/a2f248cf095fc49d3599c39befdea6a5552ccd23"><code>a2f248c</code></a>
fix: stdlib might be through a symlink. <a
href="https://redirect.github.com/coveragepy/coveragepy/issues/2115">#2115</a></li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/bc52a22953759f71c291d31e7d17faf9903c0667"><code>bc52a22</code></a>
debug: re-organize Matchers to show more of what they do</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/f338d816ba7fcd23934a9397d15450593f0f20d9"><code>f338d81</code></a>
debug: build is a tuple, don't show it on two lines</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/92020e469ab6c80cbe24786d0250a571d5f569cf"><code>92020e4</code></a>
refactor(test): convert to parametrized</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/6387d0a60d80cb96231ad32fe81be47cddfe1c78"><code>6387d0a</code></a>
test: let (most) tests run with no network</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/1d31e33cfe0ccef7d87c1f0c6219f55a3d9b5eee"><code>1d31e33</code></a>
build: workflows sometimes need more than 10 min</li>
<li><a
href="https://github.com/coveragepy/coveragepy/commit/62949782b7810d8ffc228ba0e00f81c2ab81cda7"><code>6294978</code></a>
refactor: an error message is now uniform across versions</li>
<li>Additional commits viewable in <a
href="https://github.com/coveragepy/coveragepy/compare/7.13.1...7.13.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=coverage&package-manager=pip&previous-version=7.13.1&new-version=7.13.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index dd38b7d9553..ac3f95bb5e6 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -53,7 +53,7 @@ click==8.3.1
     #   slotscheck
     #   towncrier
     #   wait-for-it
-coverage==7.13.1
+coverage==7.13.2
     # via
     #   -r requirements/test-common.in
     #   pytest-cov
diff --git a/requirements/dev.txt b/requirements/dev.txt
index e13f962ceeb..ff11b9baf64 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -53,7 +53,7 @@ click==8.3.1
     #   slotscheck
     #   towncrier
     #   wait-for-it
-coverage==7.13.1
+coverage==7.13.2
     # via
     #   -r requirements/test-common.in
     #   pytest-cov
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index 4f89f509f5a..485e164818a 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -14,7 +14,7 @@ cffi==2.0.0
     #   pytest-codspeed
 click==8.3.1
     # via wait-for-it
-coverage==7.13.1
+coverage==7.13.2
     # via
     #   -r requirements/test-common.in
     #   pytest-cov
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 0519da73849..070bcb0e52a 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -27,7 +27,7 @@ cffi==2.0.0
     #   pytest-codspeed
 click==8.3.1
     # via wait-for-it
-coverage==7.13.1
+coverage==7.13.2
     # via
     #   -r requirements/test-common.in
     #   pytest-cov
diff --git a/requirements/test.txt b/requirements/test.txt
index 0578a54a9bc..1c9b6dde1f1 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -27,7 +27,7 @@ cffi==2.0.0
     #   pytest-codspeed
 click==8.3.1
     # via wait-for-it
-coverage==7.13.1
+coverage==7.13.2
     # via
     #   -r requirements/test-common.in
     #   pytest-cov

From 5d0350e2fb02403dd528306616dbaa371d3cd9f3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 12:22:27 +0000
Subject: [PATCH 2/5] Bump setuptools from 80.9.0 to 80.10.2 (#11996)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [setuptools](https://github.com/pypa/setuptools) from 80.9.0 to
80.10.2.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/setuptools/blob/main/NEWS.rst">setuptools's
changelog</a>.</em></p>
<blockquote>
<h1>v80.10.2</h1>
<h2>Bugfixes</h2>
<ul>
<li>Update vendored dependencies. (<a
href="https://redirect.github.com/pypa/setuptools/issues/5159">#5159</a>)</li>
</ul>
<h2>Misc</h2>
<ul>
<li><a
href="https://redirect.github.com/pypa/setuptools/issues/5115">#5115</a>,
<a
href="https://redirect.github.com/pypa/setuptools/issues/5128">#5128</a></li>
</ul>
<h1>v80.10.1</h1>
<h2>Misc</h2>
<ul>
<li><a
href="https://redirect.github.com/pypa/setuptools/issues/5152">#5152</a></li>
</ul>
<h1>v80.10.0</h1>
<h2>Features</h2>
<ul>
<li>Remove post-release tags on setuptools' own build. (<a
href="https://redirect.github.com/pypa/setuptools/issues/4530">#4530</a>)</li>
<li>Refreshed vendored dependencies. (<a
href="https://redirect.github.com/pypa/setuptools/issues/5139">#5139</a>)</li>
</ul>
<h2>Misc</h2>
<ul>
<li><a
href="https://redirect.github.com/pypa/setuptools/issues/5033">#5033</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/setuptools/commit/5cf2d085186f2c8053940076db99045b826ec22a"><code>5cf2d08</code></a>
Bump version: 80.10.1 → 80.10.2</li>
<li><a
href="https://github.com/pypa/setuptools/commit/852cd5e9fa507c91f5f6683425f157649715d268"><code>852cd5e</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/setuptools/issues/5166">#5166</a>
from pypa/bugfix/5159-vendor-bin-free</li>
<li><a
href="https://github.com/pypa/setuptools/commit/11115ee8e5b533c2cd948272b02f339f23b6d20a"><code>11115ee</code></a>
Suppress deprecation warning.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/5cf9185dc8f2b3fbf140ebf6558798ccc0ce1077"><code>5cf9185</code></a>
Update vendored dependencies.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/cf59f41400c75326d381f2d1989027b229b59a59"><code>cf59f41</code></a>
Delete all binaries generated by vendored package install.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/89a598167c614ebaf7da441389bce35534b7cd7f"><code>89a5981</code></a>
Add missing newsfragments</li>
<li><a
href="https://github.com/pypa/setuptools/commit/c0114af5484625c25e48cd85429445f9d6a1cfc0"><code>c0114af</code></a>
Postpone deprecation warnings related to PEP 639 to 2027-Feb-18 (<a
href="https://redirect.github.com/pypa/setuptools/issues/5115">#5115</a>)</li>
<li><a
href="https://github.com/pypa/setuptools/commit/de076038f164a3629c91e3f2bc88a7b9c4f5312d"><code>de07603</code></a>
Revert &quot;[CI] Constraint transient test dependency on pyobjc&quot;
(<a
href="https://redirect.github.com/pypa/setuptools/issues/5128">#5128</a>)</li>
<li><a
href="https://github.com/pypa/setuptools/commit/3afd5d66606c092131052e982266b322f0a0dd4b"><code>3afd5d6</code></a>
Revert &quot;[CI] Constraint transient test dependency on
pyobjc&quot;</li>
<li><a
href="https://github.com/pypa/setuptools/commit/adfb0c9e3d1789587d609228d9ea1d79272e4107"><code>adfb0c9</code></a>
Bump version: 80.10.0 → 80.10.1</li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/setuptools/compare/v80.9.0...v80.10.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=80.9.0&new-version=80.10.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index ac3f95bb5e6..34f3948799a 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -291,5 +291,5 @@ zlib-ng==1.0.0
 # The following packages are considered to be unsafe in a requirements file:
 pip==25.3
     # via pip-tools
-setuptools==80.9.0
+setuptools==80.10.2
     # via pip-tools
diff --git a/requirements/dev.txt b/requirements/dev.txt
index ff11b9baf64..46607d5c53d 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -281,5 +281,5 @@ zlib-ng==1.0.0
 # The following packages are considered to be unsafe in a requirements file:
 pip==25.3
     # via pip-tools
-setuptools==80.9.0
+setuptools==80.10.2
     # via pip-tools

From 052b8cb8a286e0fbc8bd16c69019c7219e6c57c8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 12:34:08 +0000
Subject: [PATCH 3/5] Bump gunicorn from 23.0.0 to 24.1.1 (#11999)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [gunicorn](https://github.com/benoitc/gunicorn) from 23.0.0 to
24.1.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/benoitc/gunicorn/releases">gunicorn's
releases</a>.</em></p>
<blockquote>
<h2>24.1.1</h2>
<h2>Bug Fixes</h2>
<ul>
<li>Fix <code>forwarded_allow_ips</code> and
<code>proxy_allow_ips</code> to remain as strings for backward
compatibility with external tools like uvicorn. Network validation now
uses strict
mode to detect invalid CIDR notation (e.g., <code>192.168.1.1/24</code>
where host bits are set)
(<a
href="https://redirect.github.com/benoitc/gunicorn/issues/3458">#3458</a>,
[PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3459">#3459</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3459">benoitc/gunicorn#3459</a>))</li>
</ul>
<hr />
<p><strong>Full Changelog</strong>: <a
href="https://github.com/benoitc/gunicorn/compare/24.1.0...24.1.1">https://github.com/benoitc/gunicorn/compare/24.1.0...24.1.1</a></p>
<h2>Gunicorn 24.1.0</h2>
<h2>New Features</h2>
<ul>
<li>
<p><strong>Official Docker Image</strong>: Gunicorn now publishes
official Docker images to GitHub Container Registry ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3454">#3454</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3454">benoitc/gunicorn#3454</a>))</p>
<ul>
<li>Available at <code>ghcr.io/benoitc/gunicorn</code></li>
<li>Based on Python 3.12 slim image</li>
<li>Uses recommended worker formula (2 × CPU + 1)</li>
<li>Configurable via environment variables</li>
</ul>
</li>
<li>
<p><strong>PROXY Protocol v2 Support</strong>: Extended PROXY protocol
implementation to support the binary v2 format in addition to the
existing text-based v1 format ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3451">#3451</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3451">benoitc/gunicorn#3451</a>))</p>
<ul>
<li>New <code>--proxy-protocol</code> modes: <code>off</code>,
<code>v1</code>, <code>v2</code>, <code>auto</code></li>
<li><code>auto</code> mode (default when enabled) detects v1 or v2
automatically</li>
<li>v2 binary format is more efficient and supports additional
metadata</li>
<li>Works with HAProxy, AWS NLB/ALB, and other PROXY protocol v2
sources</li>
</ul>
</li>
<li>
<p><strong>CIDR Network Support</strong>:
<code>--forwarded-allow-ips</code> and <code>--proxy-allow-from</code>
now accept CIDR notation (e.g., <code>192.168.0.0/16</code>) for
specifying trusted networks ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3449">#3449</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3449">benoitc/gunicorn#3449</a>))</p>
</li>
<li>
<p><strong>Socket Backlog Metric</strong>: New
<code>gunicorn.socket.backlog</code> gauge metric reports the current
socket backlog size on Linux systems ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3450">#3450</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3450">benoitc/gunicorn#3450</a>))</p>
</li>
<li>
<p><strong>InotifyReloader Enhancement</strong>: The inotify-based
reloader now watches newly imported modules, not just those loaded at
startup ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3447">#3447</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3447">benoitc/gunicorn#3447</a>))</p>
</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li>Fix signal handling regression where SIGCLD alias caused
&quot;Unhandled signal: cld&quot; errors on Linux when workers fail
during boot (<a
href="https://github.com/benoitc/gunicorn/discussions/3453">#3453</a>)</li>
<li>Fix socket blocking mode on keepalive connections preventing SSL
handshake failures with async workers ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3452">#3452</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3452">benoitc/gunicorn#3452</a>))</li>
<li>Use smaller buffer size in <code>finish_body()</code> for faster
timeout detection on slow or abandoned connections ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3453">#3453</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3453">benoitc/gunicorn#3453</a>))</li>
<li>Handle <code>SSLWantReadError</code> in <code>finish_body()</code>
to prevent worker hangs during SSL renegotiation ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3448">#3448</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3448">benoitc/gunicorn#3448</a>))</li>
<li>Log SIGTERM as info level instead of warning to reduce noise in
orchestrated environments ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3446">#3446</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3446">benoitc/gunicorn#3446</a>))</li>
<li>Print exception details to stderr when worker fails to boot ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3443">#3443</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3443">benoitc/gunicorn#3443</a>))</li>
<li>Fix <code>unreader.unread()</code> to prepend data to buffer instead
of appending ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3442">#3442</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3442">benoitc/gunicorn#3442</a>))</li>
<li>Prevent <code>RecursionError</code> when pickling Config objects
([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3441">#3441</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3441">benoitc/gunicorn#3441</a>))</li>
<li>Use proper exception chaining with <code>raise from</code> in
glogging.py ([PR <a
href="https://redirect.github.com/benoitc/gunicorn/issues/3440">#3440</a>](<a
href="https://redirect.github.com/benoitc/gunicorn/pull/3440">benoitc/gunicorn#3440</a>))</li>
</ul>
<h2>Installation</h2>
<pre lang="bash"><code>pip install gunicorn==24.1.0
&lt;/tr&gt;&lt;/table&gt;
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/benoitc/gunicorn/commit/375e79e95b78f81b70af0c1ae8e32b7f4beee273"><code>375e79e</code></a>
release: bump version to 24.1.1</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/ad0c12de9813e1616574dd029517f9b58f4b7c3b"><code>ad0c12d</code></a>
docs: add sponsors section to README</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/70200eef468735002b88f3a1ec0e12e9e03c9190"><code>70200ee</code></a>
chore: add GitHub Sponsors funding configuration</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/684180411695af8d7e19f71314888c51a021609b"><code>6841804</code></a>
docs: remove incorrect PR reference from Docker changelog entry</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/abce0ca9cb873a55c28a42714cf3c636d7244b06"><code>abce0ca</code></a>
docs: add 24.1.1 changelog entry for forwarded_allow_ips fix</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/e9a3f30a0f2e4d91a39afa51ffc8f22a76d9c776"><code>e9a3f30</code></a>
fix: keep forwarded_allow_ips as strings for backward compatibility (<a
href="https://redirect.github.com/benoitc/gunicorn/issues/3459">#3459</a>)</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/d73ff4b1d84cdd4637b914415ad8065c9cf6143c"><code>d73ff4b</code></a>
docs: update main changelog with 24.1.0</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/53f2c310123f727d5b0711e9220c3847a9730890"><code>53f2c31</code></a>
ci: allow docs deploy on workflow_dispatch</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/eab5f0b1a5fd2c9e8b334bfd735b1017adaff131"><code>eab5f0b</code></a>
ci: trigger Docker publish on tags with or without v prefix</li>
<li><a
href="https://github.com/benoitc/gunicorn/commit/a20d3fb2206d785ce73b2503ad9a51e7a1a10238"><code>a20d3fb</code></a>
docs: add Docker image to 24.1.0 changelog</li>
<li>Additional commits viewable in <a
href="https://github.com/benoitc/gunicorn/compare/23.0.0...24.1.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gunicorn&package-manager=pip&previous-version=23.0.0&new-version=24.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/base-ft.txt     | 2 +-
 requirements/base.txt        | 2 +-
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/base-ft.txt b/requirements/base-ft.txt
index cd8a5142ac9..7792e3aefca 100644
--- a/requirements/base-ft.txt
+++ b/requirements/base-ft.txt
@@ -22,7 +22,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base-ft.in
 idna==3.7
     # via yarl
diff --git a/requirements/base.txt b/requirements/base.txt
index c7d9210a7fd..8e0f7add447 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -22,7 +22,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base.in
 idna==3.7
     # via yarl
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 34f3948799a..d693b6013a1 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -81,7 +81,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base.in
 identify==2.6.16
     # via pre-commit
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 46607d5c53d..bc7a38df611 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -79,7 +79,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base.in
 identify==2.6.16
     # via pre-commit
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 070bcb0e52a..930b311c6f4 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -45,7 +45,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base-ft.in
 idna==3.7
     # via
diff --git a/requirements/test.txt b/requirements/test.txt
index 1c9b6dde1f1..3799a55dcf7 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -45,7 +45,7 @@ frozenlist==1.8.0
     # via
     #   -r requirements/runtime-deps.in
     #   aiosignal
-gunicorn==23.0.0
+gunicorn==24.1.1
     # via -r requirements/base.in
 idna==3.7
     # via

From 3a343720710de4ad7a4d3094e875cc10a12ee7ac Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 12:43:15 +0000
Subject: [PATCH 4/5] Bump multidict from 6.7.0 to 6.7.1 (#11998)

Bumps [multidict](https://github.com/aio-libs/multidict) from 6.7.0 to
6.7.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aio-libs/multidict/releases">multidict's
releases</a>.</em></p>
<blockquote>
<h2>6.7.1</h2>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed slow memory leak caused by identity by adding
<code>Py_DECREF</code> to identity value before leaving
<code>md_pop_one</code> on success
-- by :user:<code>Vizonex</code>.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a
href="https://redirect.github.com/aio-libs/multidict/issues/1284">#1284</a>.</p>
</li>
</ul>
<hr />
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aio-libs/multidict/blob/master/CHANGES.rst">multidict's
changelog</a>.</em></p>
<blockquote>
<h1>6.7.1</h1>
<p><em>(2026-01-25)</em></p>
<h2>Bug fixes</h2>
<ul>
<li>
<p>Fixed slow memory leak caused by identity by adding
<code>Py_DECREF</code> to identity value before leaving
<code>md_pop_one</code> on success
-- by :user:<code>Vizonex</code>.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>1284</code>.</p>
</li>
</ul>
<hr />
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/aio-libs/multidict/commit/39d3c322f6a9e824beee9b6f178e3166205f0f59"><code>39d3c32</code></a>
Release 6.7.1 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1289">#1289</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/77bb95e83c226c3557015d055a1ce4a29889d49e"><code>77bb95e</code></a>
Fix memory leak caused by identity when default value is inplace (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1284">#1284</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/87dd4a49a5e8d5b01a8d801cac0c92984726f411"><code>87dd4a4</code></a>
Bump dependabot/fetch-metadata from 2.4.0 to 2.5.0 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1287">#1287</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/6c764124a79da8f700faa1e3638311c58828947e"><code>6c76412</code></a>
Bump actions/cache from 4 to 5 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1275">#1275</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/b91a033a29f360e76a8a24b92d50120d9cd08065"><code>b91a033</code></a>
Bump actions/upload-artifact from 4 to 6 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1277">#1277</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/84bf82c0e2ec68919e7f3b7c5c7388a82f4737ee"><code>84bf82c</code></a>
Bump psutil from 7.1.3 to 7.2.1 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1279">#1279</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/3f7b3cec6a5c23a100d972a667e7f67b84809bb3"><code>3f7b3ce</code></a>
Bump pypa/cibuildwheel from 3.3.0 to 3.3.1 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1280">#1280</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/bbae9027cc99e23fc1ab98d97ed0adcd644c32c8"><code>bbae902</code></a>
Bump sigstore/gh-action-sigstore-python from 3.1.0 to 3.2.0 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1274">#1274</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/000b5b0d25b3fc672c4226615f52a7d0cd6c2c96"><code>000b5b0</code></a>
Remove follow_untyped_imports for mypy-sphinx (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1286">#1286</a>)</li>
<li><a
href="https://github.com/aio-libs/multidict/commit/3d2d63044c98c8ede9204e8a9685921763cc0d4e"><code>3d2d630</code></a>
Bump actions/download-artifact from 6 to 7 (<a
href="https://redirect.github.com/aio-libs/multidict/issues/1276">#1276</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/aio-libs/multidict/compare/v6.7.0...v6.7.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=multidict&package-manager=pip&previous-version=6.7.0&new-version=6.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/base-ft.txt      | 2 +-
 requirements/base.txt         | 2 +-
 requirements/constraints.txt  | 2 +-
 requirements/cython.txt       | 2 +-
 requirements/dev.txt          | 2 +-
 requirements/multidict.txt    | 2 +-
 requirements/runtime-deps.txt | 2 +-
 requirements/test-ft.txt      | 2 +-
 requirements/test.txt         | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/requirements/base-ft.txt b/requirements/base-ft.txt
index 7792e3aefca..6f1fa115ed7 100644
--- a/requirements/base-ft.txt
+++ b/requirements/base-ft.txt
@@ -26,7 +26,7 @@ gunicorn==24.1.1
     # via -r requirements/base-ft.in
 idna==3.7
     # via yarl
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/base.txt b/requirements/base.txt
index 8e0f7add447..c0138159c20 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -26,7 +26,7 @@ gunicorn==24.1.1
     # via -r requirements/base.in
 idna==3.7
     # via yarl
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index d693b6013a1..0a73676cb53 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -110,7 +110,7 @@ markupsafe==3.0.3
     # via jinja2
 mdurl==0.1.2
     # via markdown-it-py
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/multidict.in
     #   -r requirements/runtime-deps.in
diff --git a/requirements/cython.txt b/requirements/cython.txt
index 03fa291992c..193a2299871 100644
--- a/requirements/cython.txt
+++ b/requirements/cython.txt
@@ -6,7 +6,7 @@
 #
 cython==3.2.4
     # via -r requirements/cython.in
-multidict==6.7.0
+multidict==6.7.1
     # via -r requirements/multidict.in
 typing-extensions==4.15.0
     # via multidict
diff --git a/requirements/dev.txt b/requirements/dev.txt
index bc7a38df611..a9ed25e7ef5 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -108,7 +108,7 @@ markupsafe==3.0.3
     # via jinja2
 mdurl==0.1.2
     # via markdown-it-py
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/multidict.txt b/requirements/multidict.txt
index 39d1c2a3c8e..144a7966d26 100644
--- a/requirements/multidict.txt
+++ b/requirements/multidict.txt
@@ -4,7 +4,7 @@
 #
 #    pip-compile --allow-unsafe --output-file=requirements/multidict.txt --resolver=backtracking --strip-extras requirements/multidict.in
 #
-multidict==6.7.0
+multidict==6.7.1
     # via -r requirements/multidict.in
 typing-extensions==4.15.0
     # via multidict
diff --git a/requirements/runtime-deps.txt b/requirements/runtime-deps.txt
index 66d6192dbf3..159abc261c4 100644
--- a/requirements/runtime-deps.txt
+++ b/requirements/runtime-deps.txt
@@ -24,7 +24,7 @@ frozenlist==1.8.0
     #   aiosignal
 idna==3.7
     # via yarl
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 930b311c6f4..95fd3943430 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -61,7 +61,7 @@ markdown-it-py==4.0.0
     # via rich
 mdurl==0.1.2
     # via markdown-it-py
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/test.txt b/requirements/test.txt
index 3799a55dcf7..6c3eeb4c0c6 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -61,7 +61,7 @@ markdown-it-py==4.0.0
     # via rich
 mdurl==0.1.2
     # via markdown-it-py
-multidict==6.7.0
+multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl

From 447440bacc02d26dfd5afae435cd2e1e3e8f1c4d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 13:02:48 +0000
Subject: [PATCH 5/5] Bump rich from 14.2.0 to 14.3.1 (#11995)

Bumps [rich](https://github.com/Textualize/rich) from 14.2.0 to 14.3.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/Textualize/rich/releases">rich's
releases</a>.</em></p>
<blockquote>
<h2>The Nerdy Fix release</h2>
<p>Fixed issue with characters outside of unicode range reporting 0 cell
size</p>
<h2>[14.3.1] - 2026-01-24</h2>
<h3>Fixed</h3>
<ul>
<li>Fixed characters out of unicode range reporting a cell size if 0 <a
href="https://redirect.github.com/Textualize/rich/pull/3944">Textualize/rich#3944</a></li>
</ul>
<h2>The more emojis release</h2>
<p>Rich now has support for multi-codepoint emojis. There have also been
some Markdown improvements, and a number of fixes. See the release notes
below for details.</p>
<h2>[14.3.0] - 2026-01-24</h2>
<h3>Fixed</h3>
<ul>
<li>IPython now respects when a <code>Console</code> instance is passed
to <code>pretty.install</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3915">Textualize/rich#3915</a></li>
<li>Fixed extraneous blank line on non-interactive disabled
<code>Progress</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3905">Textualize/rich#3905</a></li>
<li>Fixed extra padding on first cell in columns <a
href="https://redirect.github.com/Textualize/rich/pull/3935">Textualize/rich#3935</a></li>
<li>Fixed trailing whitespace removed when soft_wrap=True <a
href="https://redirect.github.com/Textualize/rich/pull/3937">Textualize/rich#3937</a></li>
<li>Fixed style new-lines when soft_wrap = True and a print style is set
<a
href="https://redirect.github.com/Textualize/rich/pull/3938">Textualize/rich#3938</a></li>
</ul>
<h3>Added</h3>
<ul>
<li>Added support for some multi-codepopint glyphs (will fix alignment
issues for these characters) <a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Added support for <code>UNICODE_VERSION</code> environment variable
<a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Added <code>last_render_height</code> property to LiveRender <a
href="https://redirect.github.com/Textualize/rich/pull/3934">Textualize/rich#3934</a></li>
<li>Expose locals_max_depth and locals_overflow in traceback.install <a
href="https://redirect.github.com/Textualize/rich/pull/3906/">Textualize/rich#3906</a></li>
<li>Added <code>Segment.split_lines_terminator</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3938">Textualize/rich#3938</a></li>
</ul>
<h3>Changed</h3>
<ul>
<li><code>cells.cell_len</code> now has a <code>unicode_version</code>
parameter (that you probably should never change) <a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Live will not write a new line if there was nothing rendered <a
href="https://redirect.github.com/Textualize/rich/pull/3934">Textualize/rich#3934</a></li>
<li>Changed style of Markdown headers <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
<li>Changed style of Markdown tables, added
<code>markdown.table.header</code> and
<code>markdown.table.border</code> styles <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
<li>Changed style of Markdown rules <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/Textualize/rich/blob/master/CHANGELOG.md">rich's
changelog</a>.</em></p>
<blockquote>
<h2>[14.3.1] - 2026-01-24</h2>
<h3>Fixed</h3>
<ul>
<li>Fixed characters out of unicode range reporting a cell size if 0 <a
href="https://redirect.github.com/Textualize/rich/pull/3944">Textualize/rich#3944</a></li>
</ul>
<h2>[14.3.0] - 2026-01-24</h2>
<h3>Fixed</h3>
<ul>
<li>IPython now respects when a <code>Console</code> instance is passed
to <code>pretty.install</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3915">Textualize/rich#3915</a></li>
<li>Fixed extraneous blank line on non-interactive disabled
<code>Progress</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3905">Textualize/rich#3905</a></li>
<li>Fixed extra padding on first cell in columns <a
href="https://redirect.github.com/Textualize/rich/pull/3935">Textualize/rich#3935</a></li>
<li>Fixed trailing whitespace removed when soft_wrap=True <a
href="https://redirect.github.com/Textualize/rich/pull/3937">Textualize/rich#3937</a></li>
<li>Fixed style new-lines when soft_wrap = True and a print style is set
<a
href="https://redirect.github.com/Textualize/rich/pull/3938">Textualize/rich#3938</a></li>
</ul>
<h3>Added</h3>
<ul>
<li>Added support for some multi-codepopint glyphs (will fix alignment
issues for these characters) <a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Added support for <code>UNICODE_VERSION</code> environment variable
<a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Added <code>last_render_height</code> property to LiveRender <a
href="https://redirect.github.com/Textualize/rich/pull/3934">Textualize/rich#3934</a></li>
<li>Expose locals_max_depth and locals_overflow in traceback.install <a
href="https://redirect.github.com/Textualize/rich/pull/3906/">Textualize/rich#3906</a></li>
<li>Added <code>Segment.split_lines_terminator</code> <a
href="https://redirect.github.com/Textualize/rich/pull/3938">Textualize/rich#3938</a></li>
</ul>
<h3>Changed</h3>
<ul>
<li><code>cells.cell_len</code> now has a <code>unicode_version</code>
parameter (that you probably should never change) <a
href="https://redirect.github.com/Textualize/rich/pull/3930">Textualize/rich#3930</a></li>
<li>Live will not write a new line if there was nothing rendered <a
href="https://redirect.github.com/Textualize/rich/pull/3934">Textualize/rich#3934</a></li>
<li>Changed style of Markdown headers <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
<li>Changed style of Markdown tables, added
<code>markdown.table.header</code> and
<code>markdown.table.border</code> styles <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
<li>Changed style of Markdown rules <a
href="https://redirect.github.com/Textualize/rich/pull/3942">Textualize/rich#3942</a></li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/Textualize/rich/commit/f2a1c3b8a8f7edc41b1954cc3fb66bae32293a5e"><code>f2a1c3b</code></a>
Merge pull request <a
href="https://redirect.github.com/Textualize/rich/issues/3944">#3944</a>
from Textualize/nerf-fonts</li>
<li><a
href="https://github.com/Textualize/rich/commit/2e5a5dad304b59d75aa4b4ed6cae031693e3615e"><code>2e5a5da</code></a>
changelog</li>
<li><a
href="https://github.com/Textualize/rich/commit/73ee8232e7ea72a90130ccf67d8ffefd4122e9f4"><code>73ee823</code></a>
fix fonts</li>
<li><a
href="https://github.com/Textualize/rich/commit/36fe3f7ca9becca4777861d5e6e625f5a4a37545"><code>36fe3f7</code></a>
docstring</li>
<li><a
href="https://github.com/Textualize/rich/commit/9a99acc97d26d7832200a271ed8e95dd59df10c7"><code>9a99acc</code></a>
Merge pull request <a
href="https://redirect.github.com/Textualize/rich/issues/3828">#3828</a>
from RyanSharafuddin/master</li>
<li><a
href="https://github.com/Textualize/rich/commit/2f56d4d1d22d901b444cfc731230e0f715498256"><code>2f56d4d</code></a>
Merge pull request <a
href="https://redirect.github.com/Textualize/rich/issues/3942">#3942</a>
from Textualize/markdown-style</li>
<li><a
href="https://github.com/Textualize/rich/commit/97b5beacc3d9c1336d4bc6a3d69fec363bfe5d2c"><code>97b5bea</code></a>
typo</li>
<li><a
href="https://github.com/Textualize/rich/commit/9303d77e8d41c6f43c090420f921dd3fc66ebfd1"><code>9303d77</code></a>
markdown test</li>
<li><a
href="https://github.com/Textualize/rich/commit/900052cd5a67d43be8a484703c17599de6f88dea"><code>900052c</code></a>
bump</li>
<li><a
href="https://github.com/Textualize/rich/commit/e9b0e19158034a49f2d7048cdf82d7146e59715f"><code>e9b0e19</code></a>
Update to markdown styles</li>
<li>Additional commits viewable in <a
href="https://github.com/Textualize/rich/compare/v14.2.0...v14.3.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rich&package-manager=pip&previous-version=14.2.0&new-version=14.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 0a73676cb53..9ae58557c42 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -203,7 +203,7 @@ requests==2.32.5
     # via
     #   sphinx
     #   sphinxcontrib-spelling
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/dev.txt b/requirements/dev.txt
index a9ed25e7ef5..96cf1896808 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -196,7 +196,7 @@ pyyaml==6.0.3
     # via pre-commit
 requests==2.32.5
     # via sphinx
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 9d6c98962bc..9e99484aca0 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -94,7 +94,7 @@ python-on-whales==0.80.0
     # via -r requirements/lint.in
 pyyaml==6.0.3
     # via pre-commit
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 six==1.17.0
     # via python-dateutil
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index 485e164818a..2c5cc95e0d8 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -85,7 +85,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 95fd3943430..3608d8b0a1c 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -118,7 +118,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in
diff --git a/requirements/test.txt b/requirements/test.txt
index 6c3eeb4c0c6..e78f9898210 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -118,7 +118,7 @@ python-dateutil==2.9.0.post0
     # via freezegun
 python-on-whales==0.80.0
     # via -r requirements/test-common.in
-rich==14.2.0
+rich==14.3.1
     # via pytest-codspeed
 setuptools-git==1.2
     # via -r requirements/test-common.in