Skip to content

⬆️ Bump reuse from 5.1.1 to 6.0.0 in /cmake/requirements #4943

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

⬆️ Bump reuse from 5.1.1 to 6.0.0 in /cmake/requirements #4943

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 6, 2025

Bumps reuse from 5.1.1 to 6.0.0.

Release notes

Sourced from reuse's releases.

v6.0.0

This release contains a lot of refactoring regarding the parsing of files. The most impactful details are that reuse lint now searches every file in its entirety for REUSE information, tries to detect each file's encoding, and no longer breaks when invalid SPDX License Expressions are detected.

Because files are now read in their entireties instead of just the first 4 KiB, you may need to add REUSE-IgnoreStart and REUSE-IgnoreEnd tags to get rid of false positives that were previously too deep into files for reuse to detect.

For package maintainers: This release removes, adds, and changes dependencies. It merits running git diff v5.1.1..v6.0.0 pyproject.toml and reading the 'Changed' section of this change log to see what changed.

Added

  • Added new file extensions:
  • A new criterion 'Invalid SPDX License Expressions' has been added to reuse lint. Invalid expressions are SPDX License Expressions which are not valid according to the grammar of the SPDX specification. (#1240)

Changed

  • Python 3.9 support dropped. (#1219)
  • The Python requirement for reuse now no longer requires a lower major version than 4. The requirement is now >=3.10 instead of >=3.10,<4. (#1219)
  • Dependency changes:
    • Removed explicit dependency boolean.boolean. It is now an implicit dependency via license-expression. (#1240)
    • The dependency python-magic has been added, alongside the optional dependencies charset-normalizer and chardet. So long as at least one of these is installed, the program will work. (#1235)
    • The dependency binaryornot has been removed. (#1235)
    • The minimum requirements of several dependencies have been updated. (#1235, #1241)
  • reuse lint now always searches the entire file for REUSE information. Previously, it only searched the first 4 KiB under most circumstances. (#1229)
  • The encodings of files are now detected before they are read or altered. (#1235, #1218)
  • The 'Bad licenses' criterion in reuse lint previously searched for bad licenses in every single file. Now, only bad licenses in LICENSES/ are detected, which is more in line with the documentation. (#1240)
  • The behaviour of the --year option to reuse annotateis now different. Previously, you could define --year <year> multiple times. Now you can only do so once, but the value may be a string containing multiple years or a range of years. (#1145)
  • reuse annotate --merge-copyrights works more efficiently now, capable of

... (truncated)

Changelog

Sourced from reuse's changelog.

v6.0.0 - 2025-10-06

This release contains a lot of refactoring regarding the parsing of files. The most impactful details are that reuse lint now searches every file in its entirety for REUSE information, tries to detect each file's encoding, and no longer breaks when invalid SPDX License Expressions are detected.

Because files are now read in their entireties instead of just the first 4 KiB, you may need to add REUSE-IgnoreStart and REUSE-IgnoreEnd tags to get rid of false positives that were previously too deep into files for reuse to detect.

For package maintainers: This release removes, adds, and changes dependencies. It merits running git diff v5.1.1..v6.0.0 pyproject.toml and reading the 'Changed' section of this change log to see what changed.

Added

  • Added new file extensions:
  • A new criterion 'Invalid SPDX License Expressions' has been added to reuse lint. Invalid expressions are SPDX License Expressions which are not valid according to the grammar of the SPDX specification. (#1240)

Changed

  • Python 3.9 support dropped. (#1219)
  • The Python requirement for reuse now no longer requires a lower major version than 4. The requirement is now >=3.10 instead of >=3.10,<4. (#1219)
  • Dependency changes:
    • Removed explicit dependency boolean.boolean. It is now an implicit dependency via license-expression. (#1240)
    • The dependency python-magic has been added, alongside the optional dependencies charset-normalizer and chardet. So long as at least one of these is installed, the program will work. (#1235)
    • The dependency binaryornot has been removed. (#1235)
    • The minimum requirements of several dependencies have been updated. (#1235, #1241)
  • reuse lint now always searches the entire file for REUSE information. Previously, it only searched the first 4 KiB under most circumstances. (#1229)
  • The encodings of files are now detected before they are read or altered. (#1235, #1218)
  • The 'Bad licenses' criterion in reuse lint previously searched for bad licenses in every single file. Now, only bad licenses in LICENSES/ are detected, which is more in line with the documentation. (#1240)
  • The behaviour of the --year option to reuse annotateis now different. Previously, you could define --year <year> multiple times. Now you can only do so once, but the value may be a string containing multiple years or a range of years. (#1145)

... (truncated)

Commits
  • d057746 Update the date in the change log
  • fa02bd7 Remove superfluous line from the documentation
  • e66f291 Use existing global constant
  • b353464 Update minimum version of license-expression
  • ff327d3 Sort summaries
  • 15cf085 Remove superfluous line of code
  • 9165630 Display amount of invalid expressions in summary
  • 3fe25ae Correct the translation licensing
  • 0bae89b Improve the change log entry
  • 18c1c25 Double the performance by being smarter with regexes
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
⬆️ Bump reuse from 5.1.1 to 6.0.0 in /cmake/requirements
e1a1953 
Bumps [reuse](https://github.com/fsfe/reuse-tool) from 5.1.1 to 6.0.0.
- [Release notes](https://github.com/fsfe/reuse-tool/releases)
- [Changelog](https://github.com/fsfe/reuse-tool/blob/main/CHANGELOG.md)
- [Commits](fsfe/reuse-tool@v5.1.1...v6.0.0)

---
updated-dependencies:
- dependency-name: reuse
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 6, 2025
@dependabot dependabot bot requested a review from nlohmann as a code owner October 6, 2025 15:29
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 6, 2025
@coveralls
Copy link

Coverage Status

coverage: 99.191%. remained the same
when pulling e1a1953 on dependabot/pip/cmake/requirements/reuse-6.0.0
into 3ed64e5 on develop.

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 8, 2025

Superseded by #4948.

@dependabot dependabot bot closed this Oct 8, 2025
@dependabot dependabot bot deleted the dependabot/pip/cmake/requirements/reuse-6.0.0 branch October 8, 2025 15:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nlohmann nlohmann Awaiting requested review from nlohmann nlohmann is a code owner

Assignees

No one assigned

Labels

CMake dependencies Pull requests that update a dependency file python Pull requests that update Python code S

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@coveralls