Skip to content
This repository was archived by the owner on Oct 2, 2025. It is now read-only.

Bump tech.followthemoney:followthemoney from 3.8.5 to 4.1.1 #50

Closed
wants to merge 1 commit into from
Closed

Bump tech.followthemoney:followthemoney from 3.8.5 to 4.1.1 #50

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 2, 2025

Bumps tech.followthemoney:followthemoney from 3.8.5 to 4.1.1.

Release notes

Sourced from tech.followthemoney:followthemoney's releases.

v4.1.1

This release incorporates various follow-on bug fixes from the last major release.

What's Changed

New Contributors

Full Changelog: opensanctions/followthemoney@v4.0.0...v4.1.1

v4.0.0

  • BREAKING: Remove the Post and Assessment schemata, re-name UserAccount:number to UserAccount:phone, CryptoWallet:mangingExchange to CryptoWallet:managingExchange, and change the property type of Sanction:duration and License:area to number. Remove Company:ibcRuc, and add hidden Thing:programId. See opensanctions/followthemoney#5 for more context on type changes.
  • New properties: Interval:proof (see alephdata/followthemoney#1699), Thing:programId (for making sanctioned entities searchably by sanctions policy), LegalEntity:uscCode (hi China, opensanctions/opensanctions#2301).
  • BREAKING: The method signature for EntityProxy.from_dict() has changed: the first argument, model, is no longer needed. This is a consequence of the model singleton being more widely accessible inside the codebase as Model.instance().
  • BREAKING: The property type iban has been removed in favor of identifier with format iban.
  • Introduce a model for dataset metadata. This introduces a Dataset class, which has typical dataset metadata attributes like name, title, summary, coverage (nested), publisher (nested), version, datasets (list of references to child datasets), and a list of resources which describe individual files - often retrievable at a URL, that are underlying the dataset. Multiple datasets can be grouped into DataCatalog, which is essentially a JSON array of datasets.
  • Introduce a statement data model for entity data. In this model, the property values of entities are complex objects, which include metadata like lang (language), first_seen/last_seen (freshness), dataset (origin of the statement in the context of merged entities), and original_value (the value of before normalization/cleaning has been applied, e.g. the unparsed date value).
  • Introduce a stricter data model for number properties. Numbers now have a defined semantic (NNNN.DD UNIT), which is not fully enforced with this version of the library, but made available as parser functions.
  • Remove dependency on fingerprints library. The underlying idea of fingerprints was to make a one-shot attempt at simplifying a given name string into a form that is easy to compare. This has proven to be simplistic in places where we want to apply only some of the heuristics, or where knowing the entity type (person, company) is helpful. This has triggered a new evolution of the tool, which is inlined in rigour as rigour.names.
  • Refactor the handling of exports into the RDF format. This used to be spread out across the code base as a first-class concern, but given the relative obscurity of the use case, it made sense to move this into its own exporter module that handles the whole process.
  • We've tightened the type signature for various signatures, while keeping in place the code that handles existing inputs. The idea here is to force other Python applications using FtM to start producing more and more clean interface usage based on type hints, which will also result in less ambiguous outcomes and performance gains.
  • Remove followthemoney.offshore for tagging specific entities as corp.offshore.

What's Changed

New Contributors

... (truncated)

Commits
  • cf0bdb1 Bump version: 4.1.0 → 4.1.1
  • 364f849 bump requirements
  • 0a139b9 Add test for valueentity reading statement entities
  • 9c257b8 don't ask, don't tell - minimal perf gain for large exports
  • d08ec4e normality replacement
  • e7304cc fix up to normality 3.0.1
  • c2eef2a Bump version: 4.0.3 → 4.1.0
  • 9637e4a Merge pull request #36 from opensanctions/email-validation
  • 4565b01 One regex is enough for everybody
  • f5b52c4 Try less fixing, more checking and discarding
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump tech.followthemoney:followthemoney from 3.8.5 to 4.1.1
cf4442f 
Bumps [tech.followthemoney:followthemoney](https://github.com/opensanctions/followthemoney) from 3.8.5 to 4.1.1.
- [Release notes](https://github.com/opensanctions/followthemoney/releases)
- [Commits](opensanctions/followthemoney@v3.8.5...v4.1.1)

---
updated-dependencies:
- dependency-name: tech.followthemoney:followthemoney
  dependency-version: 4.1.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Aug 2, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 2, 2025

Superseded by #54.

@dependabot dependabot bot closed this Sep 2, 2025
@dependabot dependabot bot deleted the dependabot/maven/tech.followthemoney-followthemoney-4.1.1 branch September 2, 2025 17:00
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant