Skip to content

Update dependency matplotlib to v3.11.0#307

Open
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/matplotlib-3.x-lockfile
Open

Update dependency matplotlib to v3.11.0#307
renovate[bot] wants to merge 1 commit into
mainfrom
renovate/matplotlib-3.x-lockfile

Conversation

@renovate

@renovate renovate Bot commented Jul 14, 2026

Copy link
Copy Markdown
Contributor

This PR contains the following updates:

Package Change Age Confidence
matplotlib 3.10.93.11.0 age confidence

Release Notes

matplotlib/matplotlib (matplotlib)

v3.11.0

Compare Source


Configuration

📅 Schedule: (in timezone UTC)

  • Branch creation
    • At any time (no schedule defined)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@claude claude Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM — routine Renovate lockfile update, no code changes.

What was reviewed: the poetry.lock diff for chart_data_extractor, confirming the split into two matplotlib entries (3.10.9 for python<3.13, 3.11.0 for python>=3.13) is consistent with matplotlib 3.11's raised minimum Python requirement, and that hashes/dependency metadata are internally consistent.

Extended reasoning...

Overview

Single-file change to chart_data_extractor/poetry.lock, adding a new matplotlib 3.11.0 lock entry (for python_version >= 3.13) alongside the existing 3.10.9 entry (now marked python_version < 3.13). This is an automated Renovate dependency bump; no application source code is touched.

Security risks

None. This only updates a plotting library's lockfile metadata (hashes, wheel URLs, markers, dependency version constraints). Matplotlib is used for chart generation in a sandboxed code interpreter context, not for auth, crypto, or handling sensitive data.

Level of scrutiny

Low. This is a mechanical, bot-generated lockfile update with no logic changes. The added entry's dependency list (contourpy, cycler, fonttools, kiwisolver, numpy, packaging, pillow, pyparsing, python-dateutil) matches the existing entry's shape, and the version-marker split correctly reflects matplotlib 3.11 raising its minimum supported Python to 3.11.

Other factors

No prior review comments or discussion on this PR. No outstanding concerns to address.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants