Skip to content

Bump copier from 9.11.3 to 9.14.1#29

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/copier-9.14.1
Open

Bump copier from 9.11.3 to 9.14.1#29
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/copier-9.14.1

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 2, 2026

Bumps copier from 9.11.3 to 9.14.1.

Release notes

Sourced from copier's releases.

v9.14.1 (2026-03-31)

Refactor

  • make YieldExtension self-contained

Security

  • require --trust for _external_data paths outside subproject root
  • disallow _subdirectory path outside template root

v9.14.0 (2026-03-13)

Feat

  • cli: add --answers-file flag to check-update command

Fix

  • only warn about dirty template when checking out HEAD
  • cli: show only supported flags in check-update command help output

v9.13.1 (2026-03-09)

Fix

  • vcs: make Git version parsing robust to vendor-suffixed patch versions

v9.13.0 (2026-03-05)

Feat

  • add CLI subcommand check-update to check for new template version (#2463)

Refactor

  • cli: call public run_* functions instead of internal Worker.run_* methods

v9.12.0 (2026-02-21)

Feat

  • add new settings API with minimal surface
  • re-export Phase enum at package level

Fix

  • updating: apply skip-if-exists patterns as gitignore-style at subproject root in update algorithm
  • updating: anchor removed file paths to project root in update algorithm
  • updating: normalize user-deleted paths before skip-if-exists pattern matching during updates

Refactor

... (truncated)

Changelog

Sourced from copier's changelog.

v9.14.1 (2026-03-31)

Refactor

  • make YieldExtension self-contained

Security

  • require --trust for _external_data paths outside subproject root
  • disallow _subdirectory path outside template root

v9.14.0 (2026-03-13)

Feat

  • cli: add --answers-file flag to check-update command

Fix

  • only warn about dirty template when checking out HEAD
  • cli: show only supported flags in check-update command help output

v9.13.1 (2026-03-09)

Fix

  • vcs: make Git version parsing robust to vendor-suffixed patch versions

v9.13.0 (2026-03-05)

Feat

  • add CLI subcommand check-update to check for new template version (#2463)

Refactor

  • cli: call public run_* functions instead of internal Worker.run_* methods

v9.12.0 (2026-02-21)

Feat

  • add new settings API with minimal surface
  • re-export Phase enum at package level

Fix

  • updating: apply skip-if-exists patterns as gitignore-style at subproject root in update algorithm
  • updating: anchor removed file paths to project root in update algorithm

... (truncated)

Commits
  • f6ac946 bump: version 9.14.0 → 9.14.1
  • 5413062 fix: require --trust for _external_data paths outside subproject root
  • cb80a3f fix: disallow _subdirectory path outside template root
  • 7aa7021 build(deps): update dependency requests to 2.33.0
  • 4798d0c build(deps): lock file maintenance
  • d01628d build(deps): update dependency uv to v0.10.12
  • a3d15dc build(deps): update jetify-com/devbox-install-action action to v0.15.0
  • ee3f817 build(deps): update dependency difftastic to v0.68.0
  • e87afd4 build(deps): update dependency rumdl to v0.1.59
  • a73777b build(deps): update dependency pytest-cov to v7.1.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump copier from 9.11.3 to 9.14.1
5206675 
Bumps [copier](https://github.com/copier-org/copier) from 9.11.3 to 9.14.1.
- [Release notes](https://github.com/copier-org/copier/releases)
- [Changelog](https://github.com/copier-org/copier/blob/master/CHANGELOG.md)
- [Commits](copier-org/copier@v9.11.3...v9.14.1)

---
updated-dependencies:
- dependency-name: copier
  dependency-version: 9.14.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Apr 2, 2026
@dependabot dependabot bot requested review from albireox and havok2063 as code owners April 2, 2026 03:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@havok2063 havok2063 Awaiting requested review from havok2063 havok2063 is a code owner

@albireox albireox Awaiting requested review from albireox albireox is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants