Skip to content

Bump the production-dependencies group across 1 directory with 2 updates#9

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/production-dependencies-3be9e66f34
Open

Bump the production-dependencies group across 1 directory with 2 updates#9
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/production-dependencies-3be9e66f34

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 5, 2026

Bumps the production-dependencies group with 2 updates in the / directory: deepagents and langchain-openai.

Updates deepagents from 0.4.1 to 0.4.3

Release notes

Sourced from deepagents's releases.

deepagents==0.4.3

Changes since deepagents==0.4.2 release(deepagents): 0.4.3 (#1465) fix(sdk): guard timeout forwarding for older backend packages (#1461) fix(sdk): correct imports and mock inheritance in filesystem middleware tests (#1464) fix(sdk): warn on virtual mode (#1462) chore(sdk): add more eval test cases (#1452) test(deepagents): add evaluation tests for skills (#1429) fix(deepagents): Fix Memory prompt guidelines that could lead to wrong actions (#1448) test(sdk): add smoke test for system prompt with memory and skills (#1430) chore(deepagents): bump min version for langchain-anthropic (#1431) feat(deepagents): add evaluation tests for agent memory (#1415) chore(sdk): adapt integration tests to evals framework (#1426) feat(sdk): add per-command timeout override to execute() (#1154) chore: auto-generate makefile help from target annotations (#1417) chore(sdk): add more evals (#1404) chore(sdk): minor updates to system message (#1367) chore(sdk): add model parameterization to evals (#1408) chore: revert SDK version following yank (#1407) chore(sdk): add simple eval scaffolding (#1400) refactor(sdk): add logging to silent path skips, rename validate_path (#1370) fix(cli,sdk): harden path hardening (#918) chore(sdk): add smoke tests for system message (#1363) feat(sdk): enable type checking in deepagents and resolve most linting issues (#991) chore(sdk): move some integration tests into unit tests (#1330) revert(sdk): reimplement skill loading via skill tool calling (#1328) fix(sdk): missing _validate_path() on Glob tool's path parameter allows directory traversal (#1320) fix: Path Traversal via Unsanitized Glob Pattern in glob_info() Bypasses Virtual Mode Sandbox (#1322) feat(sdk): add base agent prompt (#1314)

Thanks to our contributors: @​MuriloAndre2000, @​vtrivedy, @​sydney-runkle, @​app/corridor-security, @​app/copilot-swe-agent, @​ccurme, @​eyurtsev, @​mdrxy

deepagents==0.4.2

Changes since deepagents==0.4.1 release(sdk): 0.4.2 (#1312) feat(sdk): reimplement skill loading via skill tool calling (#1306)

Thanks to our contributors: @​sydney-runkle

Commits
  • 18ad5b7 chore(cli): bump SDK min bound (#1466)
  • 698e0fe release(deepagents): 0.4.3 (#1465)
  • 5fb4450 fix(sdk): guard timeout forwarding for older backend packages (#1461)
  • 2a5ed71 fix(sdk): correct imports and mock inheritance in filesystem middleware tests...
  • 7b3e05c fix(sdk): warn on virtual mode (#1462)
  • 9177515 fix(cli): duplicate paste issue (#1460)
  • c9b4275 fix(cli): remove model fallback to env variables (#1458)
  • 95c0b71 feat(cli): set openrouter headers, default to gemini-3.1-pro-preview (#1455)
  • 6d064ab chore: update README.md with packages table and architecture diagram [close...
  • 9390350 fix(infra): exclude bot accounts from release notes (#1453)
  • Additional commits viewable in compare view

Updates langchain-openai from 1.1.9 to 1.1.10

Release notes

Sourced from langchain-openai's releases.

langchain-openai==1.1.10

Changes since langchain-openai==1.1.9

release(openai): 1.1.10 (#35292) feat(openai): support automatic server-side compaction (#35212) fix(openai): add model property (#35284) fix(nomic,openai,perplexity): update pillow version to >= 12.1.1, <13.0.0 (#35254) docs(openai): more nits (#35277) docs(openai): clarify reasoning config for openai-compatible endpoints (#35202) fix(openai): gpt-5.2-pro Model Profile structured_output key fixed (#35216) chore(openai): extend model_token_mapping till gpt-5.2 for modelname_to_contextsize (#35214) fix(openai): enhance error message for non-OpenAI embedding providers (#35252) fix(openai): sanitize chat completions text content blocks (#35217) fix(openai): improve error message for null choices in OpenAI-compatible APIs (#35236) feat(openrouter): add langchain-openrouter provider package (#35211) chore: bump pillow from 11.3.0 to 12.1.1 in /libs/partners/openai (#35177) chore(deps): bump langsmith from 0.4.37 to 0.6.3 in /libs/partners/openai (#35151)

Commits
  • 6fe7845 release(openai): 1.1.10 (#35292)
  • ba3ad67 fix(core): preserve index and timestamp fields when merging (#34731)
  • 0a56124 docs(core): add security warnings and best practices for deserialization (#35...
  • f7dbdab docs: fix docstring inaccuracies and update outdated LangSmith URLs (#35283)
  • 8f1bc0d feat(openai): support automatic server-side compaction (#35212)
  • 32c6ab3 fix(openai): add model property (#35284)
  • 4150bb5 fix(mistralai): update test (#35270)
  • dba5266 chore: bump langchainhub from 0.1.18 to 0.1.21 in /libs/langchain in the lang...
  • 338fd02 chore: bump transformers from 5.1.0 to 5.2.0 in /libs/text-splitters in the o...
  • c997955 chore(infra): updates for openrouter/ollama (#35278)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group across 1 directory with 2 updates
50708b5 
Bumps the production-dependencies group with 2 updates in the / directory: [deepagents](https://github.com/langchain-ai/deepagents) and [langchain-openai](https://github.com/langchain-ai/langchain).


Updates `deepagents` from 0.4.1 to 0.4.3
- [Release notes](https://github.com/langchain-ai/deepagents/releases)
- [Commits](langchain-ai/deepagents@deepagents==0.4.1...deepagents==0.4.3)

Updates `langchain-openai` from 1.1.9 to 1.1.10
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain-openai==1.1.9...langchain-openai==1.1.10)

---
updated-dependencies:
- dependency-name: deepagents
  dependency-version: 0.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: langchain-openai
  dependency-version: 1.1.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 5, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants