From 20f620ec54e94963706a51257ff376bbdc381012 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 6 Mar 2026 16:05:16 -0800 Subject: [PATCH] chore: bump packaging from 24.2 to 26.0 in /libs/langchain (#35591) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [packaging](https://github.com/pypa/packaging) from 24.2 to 26.0.
Release notes

Sourced from packaging's releases.

26.0

Read about the performance improvements here: https://iscinumpy.dev/post/packaging-faster.

What's Changed

Features:

Behavior adaptations:

Fixes:

Performance:

... (truncated)

Changelog

Sourced from packaging's changelog.

26.0 - 2026-01-20


Features:

    

  • PEP 751: support pylock (:pull:900)
    • 

  • PEP 794: import name metadata (:pull:948)
    • 

  • Support for writing metadata to a file (:pull:846)
    • 

  • Support __replace__ on Version
(:pull:1003)
    • 

  • Support positional pattern matching for Version and
SpecifierSet (:pull:1004)
    • 



Behavior adaptations:


    

  • PEP 440 handling of prereleases for Specifier.contains,
SpecifierSet.contains, and SpecifierSet.filter
(:pull:897)
    • 

  • Handle PEP 440 edge case in SpecifierSet.filter
(:pull:942)
    • 

  • Adjust arbitrary equality intersection preservation in
SpecifierSet (:pull:951)
    • 

  • Return False instead of raising for
.contains with invalid version
(:pull:932)
    • 

  • Support arbitrary equality on arbitrary strings for
Specifier and SpecifierSet's
filter and contains method.
(:pull:954)
    • 

  • Only try to parse as Version on certain marker keys,
return False on unequal ordered comparisons
(:pull:939)
    • 



Fixes:


    

  • Update _hash when unpickling Tag()
(:pull:860)
    • 

  • Correct comment and simplify implicit prerelease handling in
Specifier.prereleases (:pull:896)
    • 

  • Use explicit _GLibCVersion NamedTuple in
_manylinux (:pull:868)
    • 

  • Detect invalid license expressions containing ()
(:pull:879)
    • 

  • Correct regex for metadata 'name' format
(:pull:925)
    • 

  • Improve the message around expecting a semicolon
(:pull:833)
    • 

  • Support nested parens in license expressions
(:pull:931)
    • 

  • Add space before at symbol in Requirements string
(:pull:953)
    • 

  • A root logger use found, use a packaging logger instead
(:pull:965)
    • 

  • Better support for subclassing Marker and
Requirement (:pull:1022)
    • 

  • Normalize all extras, not just if it comes first
(:pull:1024)
    • 

  • Don't produce a broken repr if Marker fails to
construct (:pull:1033)
    • 



Performance:


    

  • Avoid recompiling regexes in the tokenizer for a 3x speedup
(:pull:1019)
    • 

  • Improve performance in _manylinux.py
(:pull:869)
    • 

  • Minor cleanups to Version (:pull:913)
    • 

  • Skip redundant creation of Version's in specifier
comparison (:pull:986)
    • 

  • Cache the Specifier's Version
(:pull:985)
    • 

  • Make Version a little faster
(:pull:987)
    • 

  • Minor Version regex cleanup
(:pull:990)
    • 

  • Faster regex on Python 3.11.5+ for Version
(:pull:988, :pull:1055)
    • 

  • Lazily calculate _key in Version
(:pull:989, :pull:1048)
    • 

  • Faster canonicalize_version
(:pull:993)
    • 

  • Use re.fullmatch in a couple more places
(:pull:992, :pull:1029)
    • 

  • Use map instead of generator
(:pull:996)
    • 

  • Deprecate ._version (_Version, a
NamedTuple) (:pull:995,
:pull:1062)
    
</tr></table>

... (truncated)

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=packaging&package-manager=uv&previous-version=24.2&new-version=26.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- libs/langchain/uv.lock | 13 ++++++------- 1 file changed, 6 insertions(+), 7 deletions(-) diff --git a/libs/langchain/uv.lock b/libs/langchain/uv.lock index d1c6c1e3c81..fbceb4ba520 100644 --- a/libs/langchain/uv.lock +++ b/libs/langchain/uv.lock @@ -2958,16 +2958,15 @@ wheels = [ [[package]] name = "langchainhub" -version = "0.1.21" +version = "0.1.18" source = { registry = "https://pypi.org/simple" } dependencies = [ - { name = "packaging" }, { name = "requests" }, { name = "types-requests" }, ] -sdist = { url = "https://files.pythonhosted.org/packages/71/50/76719d356d80b00761d9680e3eb5df0f5ca8587e79b60ae6dcb678828cdd/langchainhub-0.1.21.tar.gz", hash = "sha256:723383b3964a47dbaea6ad5d0ef728accefbc9d2c07480e800bdec43510a8c10", size = 4481, upload-time = "2024-08-11T20:21:42.305Z" } +sdist = { url = "https://files.pythonhosted.org/packages/62/19/77c02f66dba977154174d863d414652e5b612041d4ef62460b8d01688c01/langchainhub-0.1.18.tar.gz", hash = "sha256:f2d0d8bf3abe4ca5e70511d8220bdc9ccea28d5267bcfd0e5ef9c53bd5bd3bad", size = 4050, upload-time = "2024-06-07T17:25:32.997Z" } wheels = [ - { url = "https://files.pythonhosted.org/packages/35/63/40328157ddee807991f2f1992c2ad88f479b2472dc9e40d08ccf10700735/langchainhub-0.1.21-py3-none-any.whl", hash = "sha256:1cc002dc31e0d132a776afd044361e2b698743df5202618cf2bad399246b895f", size = 5203, upload-time = "2024-08-11T20:21:40.892Z" }, + { url = "https://files.pythonhosted.org/packages/34/2f/e6c64fc13d181c422a25642c358a50918b0c973946f9bd5aa2d835fd1963/langchainhub-0.1.18-py3-none-any.whl", hash = "sha256:11501f15e7f34715ecc8892587daa35c6f2a3005e1f2926c9bcabd31fc2c100c", size = 4780, upload-time = "2024-06-07T17:25:31.56Z" }, ] [[package]] @@ -3829,11 +3828,11 @@ wheels = [ [[package]] name = "packaging" -version = "24.2" +version = "26.0" source = { registry = "https://pypi.org/simple" } -sdist = { url = "https://files.pythonhosted.org/packages/d0/63/68dbb6eb2de9cb10ee4c9c14a0148804425e13c4fb20d61cce69f53106da/packaging-24.2.tar.gz", hash = "sha256:c228a6dc5e932d346bc5739379109d49e8853dd8223571c7c5b55260edc0b97f", size = 163950, upload-time = "2024-11-08T09:47:47.202Z" } +sdist = { url = "https://files.pythonhosted.org/packages/65/ee/299d360cdc32edc7d2cf530f3accf79c4fca01e96ffc950d8a52213bd8e4/packaging-26.0.tar.gz", hash = "sha256:00243ae351a257117b6a241061796684b084ed1c516a08c48a3f7e147a9d80b4", size = 143416, upload-time = "2026-01-21T20:50:39.064Z" } wheels = [ - { url = "https://files.pythonhosted.org/packages/88/ef/eb23f262cca3c0c4eb7ab1933c3b1f03d021f2c48f54763065b6f0e321be/packaging-24.2-py3-none-any.whl", hash = "sha256:09abb1bccd265c01f4a3aa3f7a7db064b36514d2cba19a2f694fe6150451a759", size = 65451, upload-time = "2024-11-08T09:47:44.722Z" }, + { url = "https://files.pythonhosted.org/packages/b7/b9/c538f279a4e237a006a2c98387d081e9eb060d203d8ed34467cc0f0b9b53/packaging-26.0-py3-none-any.whl", hash = "sha256:b36f1fef9334a5588b4166f8bcd26a14e521f2b55e6b9de3aaa80d3ff7a37529", size = 74366, upload-time = "2026-01-21T20:50:37.788Z" }, ] [[package]]