Skip to content
This repository was archived by the owner on Oct 2, 2025. It is now read-only.

Bump tech.followthemoney:followthemoney from 3.8.5 to 4.2.2 #68

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump tech.followthemoney:followthemoney from 3.8.5 to 4.2.2 #68

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 1, 2025

Bumps tech.followthemoney:followthemoney from 3.8.5 to 4.2.2.

Release notes

Sourced from tech.followthemoney:followthemoney's releases.

v4.2.1

Full Changelog: opensanctions/followthemoney@v4.1.1...v4.2.1

v4.1.1

This release incorporates various follow-on bug fixes from the last major release.

What's Changed

New Contributors

Full Changelog: opensanctions/followthemoney@v4.0.0...v4.1.1

v4.0.0

  • BREAKING: Remove the Post and Assessment schemata, re-name UserAccount:number to UserAccount:phone, CryptoWallet:mangingExchange to CryptoWallet:managingExchange, and change the property type of Sanction:duration and License:area to number. Remove Company:ibcRuc, and add hidden Thing:programId. See opensanctions/followthemoney#5 for more context on type changes.
  • New properties: Interval:proof (see alephdata/followthemoney#1699), Thing:programId (for making sanctioned entities searchably by sanctions policy), LegalEntity:uscCode (hi China, opensanctions/opensanctions#2301).
  • BREAKING: The method signature for EntityProxy.from_dict() has changed: the first argument, model, is no longer needed. This is a consequence of the model singleton being more widely accessible inside the codebase as Model.instance().
  • BREAKING: The property type iban has been removed in favor of identifier with format iban.
  • Introduce a model for dataset metadata. This introduces a Dataset class, which has typical dataset metadata attributes like name, title, summary, coverage (nested), publisher (nested), version, datasets (list of references to child datasets), and a list of resources which describe individual files - often retrievable at a URL, that are underlying the dataset. Multiple datasets can be grouped into DataCatalog, which is essentially a JSON array of datasets.
  • Introduce a statement data model for entity data. In this model, the property values of entities are complex objects, which include metadata like lang (language), first_seen/last_seen (freshness), dataset (origin of the statement in the context of merged entities), and original_value (the value of before normalization/cleaning has been applied, e.g. the unparsed date value).
  • Introduce a stricter data model for number properties. Numbers now have a defined semantic (NNNN.DD UNIT), which is not fully enforced with this version of the library, but made available as parser functions.
  • Remove dependency on fingerprints library. The underlying idea of fingerprints was to make a one-shot attempt at simplifying a given name string into a form that is easy to compare. This has proven to be simplistic in places where we want to apply only some of the heuristics, or where knowing the entity type (person, company) is helpful. This has triggered a new evolution of the tool, which is inlined in rigour as rigour.names.
  • Refactor the handling of exports into the RDF format. This used to be spread out across the code base as a first-class concern, but given the relative obscurity of the use case, it made sense to move this into its own exporter module that handles the whole process.
  • We've tightened the type signature for various signatures, while keeping in place the code that handles existing inputs. The idea here is to force other Python applications using FtM to start producing more and more clean interface usage based on type hints, which will also result in less ambiguous outcomes and performance gains.
  • Remove followthemoney.offshore for tagging specific entities as corp.offshore.

What's Changed

... (truncated)

Commits
  • 2b07407 Bump version: 4.2.1 → 4.2.2
  • 9fea5e4 Merge pull request #122 from opensanctions/leonhandreke/docs
  • d9ee1f7 Merge pull request #125 from opensanctions/pudo/fix-caption
  • 319d036 Re-word
  • 672cee6 build model
  • 9479c37 Fix invalid break condition in loop
  • 01faae3 Better descriptions for some classifiers/identifier on companies
  • 2d3274b Bump version: 4.2.0 → 4.2.1
  • c5100f5 Merge pull request #120 from opensanctions/dependabot/github_actions/actions/...
  • 9fcfff2 Merge pull request #119 from opensanctions/dependabot/npm_and_yarn/js/rollup-...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump tech.followthemoney:followthemoney from 3.8.5 to 4.2.2
5219326 
Bumps [tech.followthemoney:followthemoney](https://github.com/opensanctions/followthemoney) from 3.8.5 to 4.2.2.
- [Release notes](https://github.com/opensanctions/followthemoney/releases)
- [Commits](opensanctions/followthemoney@v3.8.5...v4.2.2)

---
updated-dependencies:
- dependency-name: tech.followthemoney:followthemoney
  dependency-version: 4.2.2
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Oct 1, 2025
@dependabot dependabot bot mentioned this pull request Oct 1, 2025
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants