From d7c1e8c6e6d37a0eaa894667c32c53db4647b0d2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 25 Jun 2026 10:47:32 +0000
Subject: [PATCH] Bump cython from 3.2.5 to 3.2.6 (#12989)
Bumps [cython](https://github.com/cython/cython) from 3.2.5 to 3.2.6.
Changelog
Sourced from cython's
changelog.
3.2.6 (2026-06-24)
Bugs fixed
-
@functools.wraps() was broken in Py3.14+ for Cython
compiled functions.
(Github issue :issue:7675)
-
A double-free in the t-string code was fixed.
(Github issue :issue:7712)
-
The - operator declarations for iterators in
libcpp.vector we corrected.
Patch by Vadim Markovtsev. (Github issue :issue:7717)
-
The shared utility code module no longer uses a temporary file path
that
changed the C code on each generation.
(Github issue :issue:7723)
-
On 32 bit platforms, cached constants are no longer made immortal
during module import.
(Github issue :issue:7744)
Other changes
- Binary wheels are now built with
-DNDEBUG to discard
runtime assertions from CPython's
inline functions.
Commits
f49dd24
Disable failing test in Py3.8.e377190
Update changelog.98635e5
Fix functools.wraps on cyfunctions on 3.14+ by providing a basic
`_annotate...1d797c1
Update changelog.c57a7c7
pypy fails test_nocopy_star_args (#7711)c94acfe
Build: Compile with -DNDEBUG to discard asserts in CPython's inline
functions.3a75be0
Fix a deprecation warning in regex usage.56b4db9
Prepare release of 3.2.6.7ea9737
CI: Remove PyPy pin now that there is a bug fix release.fa7ef68
Update changelog.- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
requirements/constraints.txt | 2 +-
requirements/cython.txt | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 339ede7094b..b32c5644034 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -69,7 +69,7 @@ coverage==7.14.3
# pytest-cov
cryptography==49.0.0
# via trustme
-cython==3.2.5
+cython==3.2.6
# via -r requirements/cython.in
distlib==0.4.3
# via virtualenv
diff --git a/requirements/cython.txt b/requirements/cython.txt
index 71f942bbc7b..32d7aba8b16 100644
--- a/requirements/cython.txt
+++ b/requirements/cython.txt
@@ -4,7 +4,7 @@
#
# pip-compile --allow-unsafe --output-file=requirements/cython.txt --resolver=backtracking --strip-extras requirements/cython.in
#
-cython==3.2.5
+cython==3.2.6
# via -r requirements/cython.in
multidict==6.7.1
# via -r requirements/multidict.in