chore(deps)(deps): bump fastapi from 0.111.0 to 0.133.1

[dependabot]

Bumps fastapi from 0.111.0 to 0.133.1.

Release notes

Sourced from fastapi's releases.

0.133.1

Features

• 🔧 Add FastAPI Agent Skill. PR #14982 by @​tiangolo.
  • Read more about it in Library Agent Skills.

Internal

• ✅ Fix all tests are skipped on Windows. PR #14994 by @​YuriiMotov.

0.133.0

Upgrades

• ⬆️ Add support for Starlette 1.0.0+. PR #14987 by @​tiangolo.

0.132.1

Refactors

• ♻️ Refactor logic to handle OpenAPI and Swagger UI escaping data. PR #14986 by @​tiangolo.

Internal

• 👥 Update FastAPI People - Experts. PR #14972 by @​tiangolo.
• 👷 Allow skipping benchmark job in test workflow. PR #14974 by @​YuriiMotov.

0.132.0

Breaking Changes

• 🔒️ Add strict_content_type checking for JSON requests. PR #14978 by @​tiangolo.
  • Now FastAPI checks, by default, that JSON requests have a Content-Type header with a valid JSON value, like application/json, and rejects requests that don't.
  • If the clients for your app don't send a valid Content-Type header you can disable this with strict_content_type=False.
  • Check the new docs: Strict Content-Type Checking.

Internal

• ⬆ Bump flask from 3.1.2 to 3.1.3. PR #14949 by @​dependabot[bot].
• ⬆ Update all dependencies to use griffelib instead of griffe. PR #14973 by @​svlandeg.
• 🔨 Fix FastAPI People workflow. PR #14951 by @​YuriiMotov.
• 👷 Do not run codspeed with coverage as it's not tracked. PR #14966 by @​tiangolo.
• 👷 Do not include benchmark tests in coverage to speed up coverage processing. PR #14965 by @​tiangolo.

0.131.0

Breaking Changes

• 🗑️ Deprecate ORJSONResponse and UJSONResponse. PR #14964 by @​tiangolo.

0.130.0

Features

• ✨ Serialize JSON response with Pydantic (in Rust), when there's a Pydantic return type or response model. PR #14962 by @​tiangolo.

... (truncated)

Commits

• a4ad07b 📝 Update release notes
• 728b097 🔖 Release version 0.133.1
• 84a8760 📝 Update release notes
• 4d78ca6 📝 Update release notes
• 4fce9ce 🔧 Add FastAPI Agents Skill (#14982)
• 2b47673 📝 Update release notes
• 1fa1065 ✅ Fix all tests are skipped on Windows (#14994)
• daba0aa 🔖 Release version 0.133.0
• 0c3581d 📝 Update release notes
• c73bc94 ⬆️ Add support for Starlette 1.0.0+ (#14987)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: dependencies, python. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[ZeroPointSix]

总体结论：本轮巡检审查了 PR #21 当前 head 0295112。该 PR 将 requirements.txt 中 FastAPI 从当前基线的 0.131.0 升到 0.133.1，但对应 CI 测试 job 已失败，合并前需要先定位并修复测试失败或补充明确的兼容性说明。

关键发现：

• 阻塞：GitHub Actions CI #47 中 代码检查 job 通过，说明依赖安装和 Ruff 检查没有直接失败；但 测试（含集成） job 在 运行测试 步骤失败，后续 Docker 构建被跳过。测试日志接口当前返回 410，无法读取具体断言或异常，因此不能确认失败是否来自 FastAPI 0.133.1 的行为变化、测试环境问题或既有 flaky。
• 高：FastAPI 0.132.0 起引入默认 strict_content_type JSON 请求检查；如果项目或测试中存在 JSON body 但未正确设置 Content-Type: application/json 的请求，升级后可能从原本可接受变成 4xx。建议优先排查 API 测试中使用 client.post(..., data=...)、手写 body、或第三方回调模拟请求的场景。
• 中：PR 描述称从 0.111.0 升级，但当前 patch 显示实际基线是 fastapi==0.131.0 到 0.133.1。建议以 diff 为准更新验证说明，避免后续误判升级跨度和风险。

优先级建议：

• 阻塞：先重跑或本地复现 测试（含集成），拿到失败用例和错误信息；在测试通过前不要合并。
• 高：重点检查 FastAPI strict content type、OpenAPI/Swagger escaping、Starlette 1.0 支持相关变化是否影响现有接口和测试。
• 中：补充 PR 评论，说明实际升级跨度和验证结果。

后续建议：

• 如果失败来自请求 Content-Type，优先修测试/调用方，让它显式发送合法 JSON content type；只有在确有兼容旧客户端的产品需求时，再考虑通过 FastAPI 配置关闭严格检查。