Skip to content

chore: restore stable/1.86.x to 1.86.4 (revert premature 1.86.5 bump)#29644

Merged
mateo-berri merged 1 commit into
stable/1.86.xfrom
litellm_unbump_stable_1_86_x
Jun 4, 2026
Merged

chore: restore stable/1.86.x to 1.86.4 (revert premature 1.86.5 bump)#29644
mateo-berri merged 1 commit into
stable/1.86.xfrom
litellm_unbump_stable_1_86_x

Conversation

@mateo-berri

@mateo-berri mateo-berri commented Jun 4, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

What

stable/1.86.x should sit exactly one patch above the latest GitHub release for the line. The latest 1.86.x release is v1.86.3, so the patch-to-be is 1.86.4. The GHSA-q775 backport #29635 additionally bumped 1.86.4 -> 1.86.5, cutting a version ahead of release. This reverts just that version bump and its uv.lock refresh so the line tracks 1.86.4 again; the backported fix (#29612) and the session-token hardening stay in place.

Type

Infrastructure

Changes

pyproject.toml and uv.lock restored to 1.86.4; no code changes

@mateo-berri
chore: restore stable/1.86.x to 1.86.4 (revert premature 1.86.5 bump)
d1199b8 
The latest 1.86.x GitHub release is v1.86.3, so the branch should sit one patch
ahead at 1.86.4 as the patch-to-be. The GHSA-q775 backport (#29635) additionally
bumped 1.86.4 -> 1.86.5, cutting a version ahead of release. This reverts just the
version bump and its uv.lock refresh, keeping the backported fix and hardening
@mateo-berri mateo-berri requested review from a team and tin-berri June 4, 2026 02:39
@mateo-berri mateo-berri enabled auto-merge June 4, 2026 02:39
@mateo-berri mateo-berri disabled auto-merge June 4, 2026 02:39
@greptile-apps

greptile-apps Bot commented Jun 4, 2026

Copy link
Copy Markdown
Contributor

Greptile Summary

This PR reverts the version string in pyproject.toml and uv.lock from 1.86.5 back to 1.86.4 on the stable/1.86.x branch, correcting a premature bump introduced by the GHSA-q775 backport. The underlying security fix and session-token hardening are preserved; only the version number is changed.

  • pyproject.toml: both [project].version and [tool.commitizen].version restored to 1.86.4.
  • uv.lock: lock file entry for the litellm package updated to match 1.86.4; no transitive dependency changes.

Confidence Score: 5/5

Safe to merge — purely a version string revert with no code or dependency changes.

Only two fields change: the version string in pyproject.toml (in both the [project] and [tool.commitizen] sections) and the corresponding entry in uv.lock. No logic, tests, migrations, or dependencies are touched, and the description confirms the security fix and session-token hardening from the backport remain intact.

No files require special attention.

Important Files Changed
Filename Overview
pyproject.toml Version reverted from 1.86.5 to 1.86.4 in both [project].version and [tool.commitizen].version; no other changes.
uv.lock Lock file updated to reflect the litellm package version revert from 1.86.5 to 1.86.4; no dependency changes.

Reviews (1): Last reviewed commit: "chore: restore stable/1.86.x to 1.86.4 (..." | Re-trigger Greptile

@codecov

codecov Bot commented Jun 4, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

@mateo-berri mateo-berri merged commit f4596a2 into stable/1.86.x Jun 4, 2026
65 of 75 checks passed
@mateo-berri mateo-berri deleted the litellm_unbump_stable_1_86_x branch June 4, 2026 03:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tin-berri tin-berri tin-berri approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mateo-berri @tin-berri