Skip to content

chore(deps): bump authlib from 1.6.6 to 1.6.9 in /packages/opentelemetry-instrumentation-weaviate#3810

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9
Open

chore(deps): bump authlib from 1.6.6 to 1.6.9 in /packages/opentelemetry-instrumentation-weaviate#3810
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 16, 2026
edited
Loading

Bumps authlib from 1.6.6 to 1.6.9.

Release notes

Sourced from authlib's releases.

v1.6.9

Full Changelog: authlib/authlib@v1.6.8...v1.6.9

Changes in jose module

  • Not using header's jwk automatically
  • Add ES256K into default jwt algorithms
  • Remove deprecated algorithm from default registry
  • Generate random cek when cek length doesn't match

v1.6.8

Full Changelog: authlib/authlib@v1.6.7...v1.6.8

  • Add EdDSA to default jwt instance.

v1.6.7

Full Changelog: authlib/authlib@v1.6.6...v1.6.7

Set supported algorithms for the default jwt instance.

Commits
  • 9266eaa chore: release 1.6.9
  • b9bb2b2 fix(oidc): fail close at validating c_hash and at_hash
  • 1b0a1d9 fix(jose): generate random cek when cek length doesn't match
  • 5be3c51 fix(jose): add ES256K into default jwt algorithms
  • 48b345f fix(jose): remove deprecated algorithm from default registry
  • a5d4b2d fix(jose): do not use header's jwk automatically
  • a769f34 chore: release 1.6.8
  • 84f3fa2 fix: add EdDSA to default jwt algorithms
  • 38e872a chore: release 1.6.7
  • b87c32e fix: remove "none" algorithm from default jwt instance
  • See full diff in compare view

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Mar 16, 2026
@dependabot dependabot Bot mentioned this pull request Mar 16, 2026
Closed
@dependabot dependabot Bot force-pushed the dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9 branch 3 times, most recently from 4f40c96 to 28dedf1 Compare March 19, 2026 16:47
@dependabot dependabot Bot force-pushed the dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9 branch 7 times, most recently from 0456391 to 4e03222 Compare March 30, 2026 15:58
@dependabot dependabot Bot force-pushed the dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9 branch 3 times, most recently from 8401829 to a338ff8 Compare April 13, 2026 05:58
@dependabot
chore(deps): bump authlib
9a966e0 
Bumps [authlib](https://github.com/authlib/authlib) from 1.6.6 to 1.6.9.
- [Release notes](https://github.com/authlib/authlib/releases)
- [Changelog](https://github.com/authlib/authlib/blob/main/docs/changelog.rst)
- [Commits](authlib/authlib@v1.6.6...v1.6.9)

---
updated-dependencies:
- dependency-name: authlib
  dependency-version: 1.6.9
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/uv/packages/opentelemetry-instrumentation-weaviate/authlib-1.6.9 branch from a338ff8 to 9a966e0 Compare April 15, 2026 11:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants