Bump scylla-driver to 3.29.7

[dsill-ethyca]

Ticket [ENG-XXXX]

Description Of Changes

Restores scylla-driver to 3.29.7 after a prior revert. Updates pyproject.toml and uv.lock accordingly. The lockfile also picks up the newer geomet transitive dependency (1.1.0) required by scylla-driver 3.29.7.

Code Changes

• Bump scylla-driver from 3.26.8 to 3.29.7 in pyproject.toml
• Regenerate uv.lock with updated scylla-driver and geomet versions

Steps to Confirm

1. Verify CI passes
2. Confirm Scylla/Cassandra-related tests or integration (if any) still pass

Pre-Merge Checklist

• Issue requirements met
• All CI pipelines succeeded
• CHANGELOG.md updated
  • Add a db-migration This indicates that a change includes a database migration label to the entry if your change includes a DB migration
  • Add a high-risk This issue suggests changes that have a high-probability of breaking existing code label to the entry if your change includes a high-risk change (i.e. potential for performance impact or unexpected regression) that should be flagged
  • Updates unreleased work already in Changelog, no new entry necessary
• UX feedback:
  • All UX related changes have been reviewed by a designer
  • No UX review needed
• Followup issues:
  • Followup issues created
  • No followup issues
• Database migrations:
  • Ensure that your downrev is up to date with the latest revision on main
  • Ensure that your downgrade() migration is correct and works
    • If a downgrade migration is not possible for this change, please call this out in the PR description!
  • No migrations
• Documentation:
  • Documentation complete, PR opened in fidesdocs
  • Documentation issue created in fidesdocs
  • If there are any new client scopes created as part of the pull request, remember to update public-facing documentation that references our scope registry
  • No documentation updates required

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

2 Skipped Deployments

Project	Deployment	Actions	Updated (UTC)
fides-plus-nightly	Ignored	Preview	Feb 20, 2026 9:25pm
fides-privacy-center	Ignored		Feb 20, 2026 9:25pm

[NevilleS]

Thanks. I ran a prompt to analyze the migration for any other accidental downgrades, and it looks like this was the only one, so this is good to go.

---

Summary of the package version audit for PR #7328:

---

Package version audit: PR #7328 (pip → uv migration)

DOWNGRADED (1 package)

Package	Before (pip)	After (uv)
scylla-driver	3.29.7	3.26.8

scylla-driver was downgraded by 3 minor versions (3.29.7 → 3.26.8). This looks accidental.

Fix: In pyproject.toml line 97, change scylla-driver==3.26.8 to scylla-driver==3.29.7.

---

UPGRADED (4 packages)

Package	Before (pip)	After (uv)
PyJWT	2.4.0	~=2.10.0
pydash	6.0.2	~=8.0.2
okta	2.7.0	3.1.0
nox	2022.8.7	>=2025.11

---

MATCH EXACTLY (137 packages)

The rest of the packages (e.g. APScheduler, alembic, boto3, celery, fastapi, pydantic, sqlalchemy, redis) have identical or compatible version specifiers.

---

Structural changes (not version changes)

• Removed: versioneer (replaced by hatch-vcs)
• Added: uvicorn[standard]~=0.30.0 (explicitly pulled out)
• Moved: pyyaml from main deps to dev deps (version unchanged: 6.0.1)
• Relaxed: setuptools (== → ~=), ruff (== → >=)

[greptile-apps]

Greptile Summary

This PR restores scylla-driver to version 3.29.7 after a previous revert back to 3.26.8. The change updates both pyproject.toml and regenerates uv.lock, which also picks up the newer geomet transitive dependency (1.1.0 instead of 0.2.1.post1).

Key Changes:

• scylla-driver version bumped from 3.26.8 to 3.29.7
• geomet transitive dependency updated from 0.2.1.post1 to 1.1.0 (removes six dependency)
• Changelog entry added documenting the version bump

Analysis:
The scylla-driver upgrade appears safe. The codebase uses standard cassandra driver APIs (cassandra.cluster.Cluster, cassandra.auth.PlainTextAuthProvider, cassandra.util.* types) which are stable across these versions. The removal of the six dependency from geomet 1.1.0 is a positive change as six is a Python 2/3 compatibility library that's no longer needed for Python 3-only projects.

Confidence Score: 5/5

• Safe to merge - straightforward dependency version bump with no breaking changes
• This is a clean dependency version bump with minimal risk. The scylla-driver upgrade from 3.26.8 to 3.29.7 uses standard, stable APIs that haven't changed. The transitive dependency update (geomet 1.1.0) removes the six dependency which is a positive change. All changes are properly tracked in the changelog.
• No files require special attention

Important Files Changed

Filename	Overview
pyproject.toml	Bumped scylla-driver from 3.26.8 to 3.29.7
uv.lock	Updated lockfile with scylla-driver 3.29.7, geomet 1.1.0 (removes six dependency)
changelog/scylla-driver-version-bump.yaml	Added changelog entry documenting the version bump

_{Last reviewed commit: 72579c7}

[greptile-apps]

_{3 files reviewed, no comments}

_{Edit Code Review Agent Settings | Greptile}