Skip to content

Bump pyinstaller from 3.6 to 4.0

ENDERZOMBI102 requested to merge dependabot/pip/pyinstaller-4.0 into master

Created by: dependabot-preview[bot]

Bumps pyinstaller from 3.6 to 4.0.

Release notes

Sourced from pyinstaller's releases.

v4.0

Release 4.0 adds support for 3rd-party packages to provide PyInstaller hooks along with the package. This allows Maintainers of other Python packages to deliver up-to-date PyInstaller hooks as part of their package.See our sample project for more information.

PyInstaller uses this option itself to provide updated hooks much faster: Many hooks are moved into the new package pyinstaller-hooks-contrib which is updated monthly. This package is installed automatically when installing PyInstaller, but can also be updated independently.

Finally, this version drops support for Python 2.7, which is end-of-life since January 2020.. The minimum required version is now Python 3.5. The last version supporting Python 2.7 was PyInstaller 3.6.

You can find a detailed list of changes in this release in the change log section of the manual.

Changelog

Sourced from pyinstaller's changelog.

4.0 (2020-08-08)

Features

  • Provide setuptools entrypoints to enable other packages to provide PyInstaller hooks specific to that package, along with tests for these hooks.

    Maintainers of Python packages requiring hooks are invited to use this new feature and provide up-to-date PyInstaller support along with their package. This is quite easy, see our sample project__ for more information (#4232, #4301, #4582). Many thanks to Bryan A. Jones for implementing the important parts.

    __ https://github.com/pyinstaller/hooksample

  • A new package pyinstaller-hooks-contrib__ provides monthly updated hooks now. This package is installed automatically when installing PyInstaller, but can be updated independently. Many thanks to Legorooj for setting up the new package and moving the hooks there.

    __ https://github.com/pyinstaller/pyinstaller-hooks-contrib

  • Added the excludes and includes arguments to the hook utility function collect_data_files.

  • Change the hook collection order so that the hook-priority is command line, then entry-point, then PyInstaller builtins. (#4876)

Bugfix

  • (AIX) Include python-malloc labeled libraries in search for libpython. (#4738)
  • (win32) Fix Security Alerts caused by subtle implementation differences between posix anf windows in os.path.dirname(). (#4707)
  • (win32) Fix struct format strings for versioninfo. (#4861)
  • (Windows) cv2: bundle the opencv_videoio_ffmpeg*.dll, if available. (#4999)
  • (Windows) GLib: bundle the spawn helper executables for g_spawn* API. (#5000)
  • (Windows) PySide2.QtNetwork: search for SSL DLLs in PrefixPath in addition to BinariesPath. (#4998)
  • (Windows) When building with 32-bit python in onefile mode, set the requestedExecutionLevel manifest key every time and embed the manifest. (#4992)
  • * (AIX) Fix uninitialized variable. (#4728, #4734)
  • Allow building on a different drive than the source. (#4820)
  • Consider Python<version> as possible library binary path. Fixes issue where python is not found if Python3 is installed via brew on OSX (#4895)
  • Ensure shared dependencies from onefile packages can be opened in the bootloader.
  • Ensuring repeatable builds of base_library.zip. (#4654)
  • Fix FileNotFoundError showing up in utils/misc.py which occurs when a namespace was processed as an filename. (#4034)
  • Fix multipackaging. The MERGE class will now have the correct relative paths between shared dependencies which can correctly be opened by the bootloader. (#1527, #4303)
  • Fix regression when trying to avoid hard-coded paths in .spec files.
  • Fix SIGTSTP signal handling to allow typing Ctrl-Z from terminal. (#4244)
  • Update the base library to support encrypting Python bytecode (--key option) again. Many thanks to Matteo Bertini for finally fixing this. (#2365, #3093, #3133, #3160, #3198, #3316, #3619, #4241, #4652)
  • When stripping the leading parts of paths in compiled code objects, the longest possible import path will now be stripped. (#4922)

Incompatible Changes

  • Remove support for Python 2.7. The minimum required version is now Python 3.5. The last version supporting Python 2.7 was PyInstaller 3.6. (#4623)
  • Many hooks are now part of the new pyinstaller-hooks-contrib repository. See below for a detailed list.

Hooks

Commits
  • 19fb799 Release 4.0.
  • 018a713 Add special credits for major changes to the change log.
  • 3cf4d96 Readme: Update Donation link.
  • 4fcce2f Readme: Add section pointing to Changelog.
  • 717af17 setup: Fix long-description for PyPI.
  • 9c08b6b Requirements: Update changed package name.
  • 763b6f9 doc: Update "What's New This Release" section for release 4.0.
  • b38f6c3 doc: Rebuild man-pages for release 4.0.
  • 4cbd5d2 Update versions in README.
  • e6e2920 Update CREDITS for release 4.0.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Merge request reports