feat: update python version to 3.14 (#36)

* feat: update python version to 3.14

* ci: update the release please version

Author: allisson

.github/workflows/lint-and-tests.yml

@@ -13,15 +13,15 @@ jobs:
     steps:
       - name: Install system dependencies
         run: sudo apt update && sudo apt install --no-install-recommends -y make git
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - uses: actions/cache@v4
         with:
           path: ~/.cache
-          key: self-runner-${{ runner.os }}-python-3.13-${{ hashFiles('uv.lock') }}-precommit-${{ hashFiles('.pre-commit-config.yaml') }}
-      - name: Set up Python 3.13
-        uses: actions/setup-python@v5
+          key: self-runner-${{ runner.os }}-python-3.14-${{ hashFiles('uv.lock') }}-precommit-${{ hashFiles('.pre-commit-config.yaml') }}
+      - name: Set up Python 3.14
+        uses: actions/setup-python@v6
         with:
-          python-version: "3.13"
+          python-version: "3.14"
       - name: Install dependencies
         run: |
           python -m pip install --upgrade pip

.github/workflows/release.yml

@@ -16,7 +16,7 @@ jobs:
     needs: build
     runs-on: ubuntu-latest
     steps:
-      - uses: GoogleCloudPlatform/release-please-action@v3
+      - uses: googleapis/release-please-action@v4
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           release-type: simple

.pre-commit-config.yaml

@@ -1,6 +1,6 @@
 repos:
   - repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v5.0.0
+    rev: v6.0.0
     hooks:
       - id: check-ast
       - id: fix-byte-order-marker
@@ -18,7 +18,7 @@ repos:
       - id: trailing-whitespace
 
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.11.4
+    rev: v0.14.1
     hooks:
       - id: ruff
       - id: ruff-format

Dockerfile

@@ -1,5 +1,5 @@
 ##### Base Stage #####
-FROM python:3.13-slim-bookworm AS base
+FROM python:3.14-slim-bookworm AS base
 
 # Set default path
 ENV PATH="/app/.venv/bin:${PATH}"
@@ -22,6 +22,9 @@ COPY secure_qrcode ./secure_qrcode
 COPY templates ./templates
 COPY static ./static
 
+# Compile all Python source files to bytecode
+RUN python -m compileall -f .
+
 ##### Final Stage #####
 FROM base
 

pyproject.toml

@@ -3,24 +3,24 @@ name = "secure-qrcode"
 version = "0.1.0"
 description = "Encrypt your data using the modern ChaCha20-Poly1305 cipher and export it into a secure QR code"
 readme = "README.md"
-requires-python = ">=3.13,<3.14"
+requires-python = ">=3.14,<3.15"
 dependencies = [
-    "cryptography>=44.0.2",
-    "fastapi>=0.114.2",
-    "jinja2>=3.1.4",
-    "pydantic-settings>=2.5.2",
-    "qrcode[pil]>=7.4.2",
-    "uvicorn[standard]>=0.30.6",
+    "cryptography>=46.0.3,<47",
+    "fastapi>=0.119.0,<1",
+    "jinja2>=3.1.6,<4",
+    "pydantic-settings>=2.11.0,<3",
+    "qrcode[pil]>=8.2,<9",
+    "uvicorn[standard]>=0.37.0,<1",
 ]
 
-[tool.uv]
-dev-dependencies = [
-    "httpx>=0.27.2",
-    "pre-commit>=3.8.0",
-    "pytest-cov>=5.0.0",
-    "pytest>=8.3.3",
+[dependency-groups]
+dev = [
+    "httpx>=0.28.1",
+    "pre-commit>=4.3.0",
+    "pytest-cov>=7.0.0",
+    "pytest>=8.4.2",
 ]
 
 [tool.pytest.ini_options]
-minversion = "8.2"
+minversion = "8.4"
 addopts = "-vvv --cov=secure_qrcode --cov-report=term-missing"

ruff.toml

@@ -21,8 +21,9 @@ line-ending = "auto"
 # "F": Pyflakes https://docs.astral.sh/ruff/rules/#pyflakes-f
 # "E", "W": pycodestyle https://docs.astral.sh/ruff/rules/#pycodestyle-e-w
 # "I": isort https://docs.astral.sh/ruff/rules/#isort-i
+# "B": bugbear https://docs.astral.sh/ruff/rules/#flake8-bugbear-b
 [lint]
-select = ["UP", "F", "E", "W", "I"]
+select = ["UP", "F", "E", "W", "I", "B"]
 ignore = ["E203", "E501"]
 
 # Isort config.

secure_qrcode/crypto.py

@@ -49,9 +49,9 @@ def decrypt(encrypted_data: EncryptedData, key: str) -> str:
 
     try:
         plaintext = chacha.decrypt(nonce, ciphertext, associated_data)
-    except InvalidTag:
-        raise DecryptError("Incorrect decryption, exc=Invalid Tag")
+    except InvalidTag as exc:
+        raise DecryptError("Incorrect decryption, exc=Invalid Tag") from exc
     except Exception as exc:
-        raise DecryptError(f"Incorrect decryption, exc={exc}")
+        raise DecryptError(f"Incorrect decryption, exc={exc}") from exc
 
     return plaintext.decode("utf-8")