Bump newrelic from 11.2.0 to 12.0.0

[dependabot]

Bumps newrelic from 11.2.0 to 12.0.0.

Release notes

Sourced from newrelic's releases.

v12.0.0

Notes

This release of the Python agent removes support for Cross Application Tracing (CAT), Python 3.8, and the bundled SSL certificates. It also updates all vendored packages to their latest versions, and adds support for free-threaded CPython, Windows operating systems, and improved instrumentation for Microsoft AG2 (Autogen). Additionally, this release includes a new optional extra for installing SSL certificates through certifi. This release also fixes a bug in Strands Agents instrumentation which caused duplicate exceptions to be reported.

Install the agent using easy_install/pip/distribute via the Python Package Index, using conda via the Conda-Forge Package Index, or download it directly from the New Relic download site.

Removed features

• Cross Application Tracing (CAT) has been removed in favor of Distributed Tracing (DT).

  • Cross Application Tracing (CAT) was deprecated in agent version 7.0.0.166, and has been removed in this release. If you are still using Cross Application Tracing (CAT), we recommend migrating to Distributed Tracing (DT) as soon as possible to avoid disruption.

• The bundled SSL certificates have been removed.

  • If you require certificates for your environment, you can either install them via your operating system's package manager or install the agent with the optional newrelic[certificates] extra.

• Python 3.8 support has been removed.

  • Python 3.8 reached End-of-Life on 2024-10-07 and is no longer supported by the agent. Please consider upgrading your application to a supported version of Python in order to continue to receive updates to the Python Agent.

Security

• All internal packages updated to their latest versions.

  • urllib3 updated to v2.6.3
    • This fixes all open CVEs on urllib3 as of the date of this release.
  • opentelemetry_proto updated to v1.40.0
  • wrapt updated to v2.1.2
  • asgiref updated to v3.11.1

New features

• New newrelic[certificates] extra for installing SSL certificates through certifi.

  • The agent now provides an optional newrelic[certificates] extra which can be used to install the bundled SSL certificates. This is intended for users who require certificates but are unable to install them via their operating system's package manager.

• Free-Threaded CPython support

  • Starting with Python 3.13, CPython releases builds of Python with the Global Interpreter Lock (GIL) disabled, allowing for true multi-threading.
  • This release adds support for this behavior, allowing the agent to safely run in a free-threaded environment.
  • This release also includes pre-built binaries for free-threaded CPython on Linux and Windows, allowing for easy installation in these environments.

• Windows Support

  • This release includes pre-built binaries for CPython 3.13 or higher on Windows.
  • Note that Python 3.12 or lower is not officially supported on Windows due to large variances in the resolution of timers. It's still possible to install and use the agent from source, but users may experience issues with inaccurate timing data and should upgrade to Python 3.13 or higher for the best experience.

• Improved instrumentation for Microsoft AG2 (Autogen)

... (truncated)

Commits

• 0aeec05 Add certifi to deployment test (#1687)
• 1e3b645 Enable release of Windows wheels (#1686)
• 22cc27a Autogen LLMStreamProxy Updates (#1671)
• f851564 Merge Changes for v12.0.0 (#1684)
• 28a0b39 Update packages (#1683)
• 062f6b1 Remove Bundled Certificates (#1675)
• cb31afb Remove CAT (#1489)
• 7f49570 Merge pull request #1680 from newrelic/merge-main-develop-v12
• aeb73c1 Set tox verbosity down a level
• 9298e6c Drop incompatible py314t test suites (no wheels)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 82.11%. Comparing base (8251c76) to head (3e463e1).
⚠️ Report is 18 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #9298   +/-   ##
=======================================
  Coverage   82.11%   82.11%           
=======================================
  Files         615      615           
  Lines       34659    34659           
  Branches     3288     3307   +19     
=======================================
  Hits        28460    28460           
  Misses       5849     5849           
  Partials      350      350           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[dependabot]

Superseded by #9348.