Jussi Kukkonen
9fad786d4e
Merge pull request #2882 from theupdateframework/dependabot/pip/test-and-lint-dependencies-aac00a2214
...
build(deps): bump ruff from 0.14.4 to 0.14.5 in the test-and-lint-dependencies group
2025-11-25 11:05:40 +02:00
dependabot[bot]
209081e1b9
build(deps): bump ruff in the test-and-lint-dependencies group
...
Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff ).
Updates `ruff` from 0.14.4 to 0.14.5
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.14.4...0.14.5 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.14.5
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-11-24 21:01:32 +00:00
Lukas Pühringer
af9e0b84b0
Merge pull request #2881 from theupdateframework/dependabot/pip/test-and-lint-dependencies-7b4d468bc7
...
build(deps): bump the test-and-lint-dependencies group with 2 updates
2025-11-18 08:46:59 +01:00
dependabot[bot]
586d4cda6e
build(deps): bump the test-and-lint-dependencies group with 2 updates
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.14.3 to 0.14.4
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.14.3...0.14.4 )
Updates `zizmor` from 1.16.2 to 1.16.3
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.16.2...v1.16.3 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.14.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.16.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-11-17 21:01:55 +00:00
Jussi Kukkonen
f54248c61a
Merge pull request #2880 from theupdateframework/dependabot/pip/test-and-lint-dependencies-6187adf992
...
build(deps): bump the test-and-lint-dependencies group with 2 updates
2025-11-11 11:13:12 +02:00
dependabot[bot]
de72e7e7bc
build(deps): bump the test-and-lint-dependencies group with 2 updates
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.14.2 to 0.14.3
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.14.2...0.14.3 )
Updates `zizmor` from 1.16.0 to 1.16.2
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.16.0...v1.16.2 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.14.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.16.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-11-10 21:05:48 +00:00
Lukas Pühringer
0f7fcd8263
Merge pull request #2879 from jku/schedule-conformance-run
...
conformance: bump version and schedule a weekly run
2025-11-04 08:54:24 +01:00
Jussi Kukkonen
64cacfc553
conformance: Bump version and schedule a weekly run
...
This way there is always an up-to-date result for the conformance
report (https://theupdateframework.github.io/tuf-conformance/ )
to use
Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
2025-11-03 19:43:41 +02:00
Lukas Pühringer
d993961c80
Merge pull request #2876 from theupdateframework/dependabot/pip/test-and-lint-dependencies-6445124e3d
...
build(deps): bump the test-and-lint-dependencies group with 2 updates
2025-10-30 17:58:11 +01:00
Jussi Kukkonen
e8eecd6f9a
dependabot: Set default cooldown of 7 days
...
Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
2025-10-28 10:49:42 +02:00
Jussi Kukkonen
e3ed0aa886
Merge pull request #2878 from theupdateframework/dependabot/github_actions/action-dependencies-6bbbe96356
...
build(deps): bump the action-dependencies group with 2 updates
2025-10-28 10:46:38 +02:00
dependabot[bot]
be63d5bf42
build(deps): bump the test-and-lint-dependencies group with 2 updates
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.14.0 to 0.14.1
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.14.0...0.14.1 )
Updates `zizmor` from 1.14.2 to 1.15.2
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.14.2...v1.15.2 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.14.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.15.2
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-27 21:35:07 +00:00
dependabot[bot]
25cea25ec1
build(deps): bump the action-dependencies group with 2 updates
...
Bumps the action-dependencies group with 2 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact ) and [actions/download-artifact](https://github.com/actions/download-artifact ).
Updates `actions/upload-artifact` from 4.6.2 to 5.0.0
- [Release notes](https://github.com/actions/upload-artifact/releases )
- [Commits](ea165f8d65...330a01c490https://github.com/actions/download-artifact/releases )
- [Commits](634f93cb29...018cc2cf5b
2025-10-27 21:32:00 +00:00
Lukas Pühringer
701dbe2b46
Merge pull request #2877 from theupdateframework/dependabot/pip/dependencies-fea7ec2d62
...
build(deps): bump cryptography from 46.0.2 to 46.0.3 in the dependencies group
2025-10-21 10:07:07 +02:00
dependabot[bot]
da16ea9667
build(deps): bump cryptography in the dependencies group
...
Bumps the dependencies group with 1 update: [cryptography](https://github.com/pyca/cryptography ).
Updates `cryptography` from 46.0.2 to 46.0.3
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/46.0.2...46.0.3 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 46.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-20 21:02:09 +00:00
Jussi Kukkonen
70ea8d09f8
Merge pull request #2874 from theupdateframework/dependabot/pip/test-and-lint-dependencies-fe79184b30
...
build(deps): bump ruff from 0.13.3 to 0.14.0 in the test-and-lint-dependencies group
2025-10-14 10:30:02 +03:00
Jussi Kukkonen
56d394efa2
Merge pull request #2875 from theupdateframework/dependabot/github_actions/action-dependencies-1893dd32ff
...
build(deps): bump github/codeql-action from 3 to 4 in the action-dependencies group
2025-10-14 10:29:11 +03:00
dependabot[bot]
81124032cf
build(deps): bump github/codeql-action in the action-dependencies group
...
Bumps the action-dependencies group with 1 update: [github/codeql-action](https://github.com/github/codeql-action ).
Updates `github/codeql-action` from 3 to 4
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: '4'
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: action-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-13 21:02:11 +00:00
dependabot[bot]
fa67367cc2
build(deps): bump ruff in the test-and-lint-dependencies group
...
Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff ).
Updates `ruff` from 0.13.3 to 0.14.0
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.13.3...0.14.0 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.14.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-13 21:01:38 +00:00
Jussi Kukkonen
2b90d607de
Merge pull request #2873 from theupdateframework/dependabot/pip/dependencies-9d213c3ead
...
build(deps): bump cryptography from 46.0.1 to 46.0.2 in the dependencies group
2025-10-10 13:47:37 +03:00
Lukas Pühringer
298f7f53a1
Merge pull request #2871 from theupdateframework/dependabot/pip/test-and-lint-dependencies-8afd51e63f
...
build(deps): bump ruff from 0.13.2 to 0.13.3 in the test-and-lint-dependencies group
2025-10-07 09:43:14 +02:00
Lukas Pühringer
88202a5818
Merge pull request #2872 from theupdateframework/dependabot/github_actions/action-dependencies-6ca8c082f8
...
build(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 in the action-dependencies group
2025-10-07 09:43:00 +02:00
dependabot[bot]
8e641d75ca
build(deps): bump cryptography in the dependencies group
...
Bumps the dependencies group with 1 update: [cryptography](https://github.com/pyca/cryptography ).
Updates `cryptography` from 46.0.1 to 46.0.2
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/46.0.1...46.0.2 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 46.0.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-06 21:02:10 +00:00
dependabot[bot]
04f72053e4
build(deps): bump ossf/scorecard-action in the action-dependencies group
...
Bumps the action-dependencies group with 1 update: [ossf/scorecard-action](https://github.com/ossf/scorecard-action ).
Updates `ossf/scorecard-action` from 2.4.2 to 2.4.3
- [Release notes](https://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](05b42c6244...4eaacf0543
2025-10-06 21:02:01 +00:00
dependabot[bot]
bfdda138e2
build(deps): bump ruff in the test-and-lint-dependencies group
...
Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff ).
Updates `ruff` from 0.13.2 to 0.13.3
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.13.2...0.13.3 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.13.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-10-06 21:01:40 +00:00
Lukas Pühringer
5e4c5108cc
Merge pull request #2869 from theupdateframework/dependabot/pip/test-and-lint-dependencies-6a8176b16a
...
build(deps): bump the test-and-lint-dependencies group with 2 updates
2025-09-30 08:56:19 +02:00
Lukas Pühringer
8bb24f1a3d
Merge pull request #2870 from theupdateframework/dependabot/pip/dependencies-5ee3b89c4f
...
build(deps): bump securesystemslib from 1.3.0 to 1.3.1 in the dependencies group
2025-09-30 08:55:33 +02:00
dependabot[bot]
28b82996f8
build(deps): bump securesystemslib in the dependencies group
...
Bumps the dependencies group with 1 update: [securesystemslib](https://github.com/secure-systems-lab/securesystemslib ).
Updates `securesystemslib` from 1.3.0 to 1.3.1
- [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases )
- [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md )
- [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v1.3.0...v1.3.1 )
---
updated-dependencies:
- dependency-name: securesystemslib
dependency-version: 1.3.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-29 23:26:37 +00:00
dependabot[bot]
3b3e611fba
build(deps): bump the test-and-lint-dependencies group with 2 updates
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.13.1 to 0.13.2
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.13.1...0.13.2 )
Updates `zizmor` from 1.13.0 to 1.14.2
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.13.0...v1.14.2 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.13.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.14.2
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-29 22:20:07 +00:00
Lukas Pühringer
4ed7458546
Merge pull request #2867 from theupdateframework/dependabot/pip/test-and-lint-dependencies-88319d6f7e
...
build(deps): bump the test-and-lint-dependencies group with 2 updates
2025-09-23 08:24:24 +02:00
Lukas Pühringer
981f9d16bb
Merge pull request #2868 from theupdateframework/dependabot/pip/dependencies-3de2b54c71
...
build(deps): bump the dependencies group with 2 updates
2025-09-23 08:23:07 +02:00
dependabot[bot]
5a8f3ba239
build(deps): bump the dependencies group with 2 updates
...
Bumps the dependencies group with 2 updates: [cryptography](https://github.com/pyca/cryptography ) and [coverage[toml]](https://github.com/nedbat/coveragepy ).
Updates `cryptography` from 45.0.7 to 46.0.1
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/45.0.7...46.0.1 )
Updates `coverage[toml]` from 7.10.6 to 7.10.7
- [Release notes](https://github.com/nedbat/coveragepy/releases )
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst )
- [Commits](https://github.com/nedbat/coveragepy/compare/7.10.6...7.10.7 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 46.0.1
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: dependencies
- dependency-name: coverage[toml]
dependency-version: 7.10.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-22 21:04:39 +00:00
dependabot[bot]
9bd16d7416
build(deps): bump the test-and-lint-dependencies group with 2 updates
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [mypy](https://github.com/python/mypy ).
Updates `ruff` from 0.13.0 to 0.13.1
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.13.0...0.13.1 )
Updates `mypy` from 1.18.1 to 1.18.2
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md )
- [Commits](https://github.com/python/mypy/compare/v1.18.1...v1.18.2 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.13.1
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: mypy
dependency-version: 1.18.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-22 21:04:07 +00:00
Jussi Kukkonen
9d33a7d74b
Merge pull request #2865 from theupdateframework/dependabot/pip/test-and-lint-dependencies-2012793cec
...
build(deps): bump the test-and-lint-dependencies group with 3 updates
2025-09-16 10:30:37 +03:00
Lukas Puehringer
f1afc98c95
lint: change base tuple order in SimpleEnvelope
...
Latest ruff complains about Generic[T] not being the last base class in
the bases tuple of Simple Envelope (generic-not-last-base-class
(PYI059)).
This commit applies the default fix by changing the order of the bases.
While this can change the MRO, there shouldn't be a change of behavior
given the used bases.
See https://docs.astral.sh/ruff/rules/generic-not-last-base-class/ for
details.
Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
2025-09-16 09:10:50 +02:00
Lukas Pühringer
fb5c29edf2
Merge pull request #2866 from theupdateframework/dependabot/pip/dependencies-53671917a1
...
build(deps): bump the dependencies group with 2 updates
2025-09-16 08:47:12 +02:00
dependabot[bot]
5662633aa5
build(deps): bump the dependencies group with 2 updates
...
Bumps the dependencies group with 2 updates: [cffi](https://github.com/python-cffi/cffi ) and [pycparser](https://github.com/eliben/pycparser ).
Updates `cffi` from 1.17.1 to 2.0.0
- [Release notes](https://github.com/python-cffi/cffi/releases )
- [Commits](https://github.com/python-cffi/cffi/compare/v1.17.1...v2.0.0 )
Updates `pycparser` from 2.22 to 2.23
- [Release notes](https://github.com/eliben/pycparser/releases )
- [Changelog](https://github.com/eliben/pycparser/blob/main/CHANGES )
- [Commits](https://github.com/eliben/pycparser/compare/release_v2.22...release_v2.23 )
---
updated-dependencies:
- dependency-name: cffi
dependency-version: 2.0.0
dependency-type: direct:production
update-type: version-update:semver-major
dependency-group: dependencies
- dependency-name: pycparser
dependency-version: '2.23'
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-15 21:02:06 +00:00
dependabot[bot]
06cd6bb657
build(deps): bump the test-and-lint-dependencies group with 3 updates
...
Bumps the test-and-lint-dependencies group with 3 updates: [ruff](https://github.com/astral-sh/ruff ), [mypy](https://github.com/python/mypy ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.12.12 to 0.13.0
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.12.12...0.13.0 )
Updates `mypy` from 1.17.1 to 1.18.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md )
- [Commits](https://github.com/python/mypy/compare/v1.17.1...v1.18.1 )
Updates `zizmor` from 1.12.1 to 1.13.0
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.12.1...v1.13.0 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.13.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
- dependency-name: mypy
dependency-version: 1.18.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.13.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
2025-09-15 21:01:37 +00:00
dependabot[bot]
390fbea91b
build(deps): bump the dependencies group with 2 updates ( #2862 )
...
Bumps the dependencies group with 2 updates: [cryptography](https://github.com/pyca/cryptography ) and [coverage[toml]](https://github.com/nedbat/coveragepy ).
Updates `cryptography` from 45.0.6 to 45.0.7
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/45.0.6...45.0.7 )
Updates `coverage[toml]` from 7.10.5 to 7.10.6
- [Release notes](https://github.com/nedbat/coveragepy/releases )
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst )
- [Commits](https://github.com/nedbat/coveragepy/compare/7.10.5...7.10.6 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 45.0.7
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: coverage[toml]
dependency-version: 7.10.6
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-15 11:28:21 +03:00
dependabot[bot]
c737ac91e2
build(deps): bump ruff in the test-and-lint-dependencies group ( #2864 )
...
Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff ).
Updates `ruff` from 0.12.10 to 0.12.12
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.12.10...0.12.12 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.12.12
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-09-09 12:28:22 +03:00
dependabot[bot]
d3d7c46483
build(deps): bump the action-dependencies group with 3 updates ( #2863 )
...
Bumps the action-dependencies group with 3 updates: [actions/setup-python](https://github.com/actions/setup-python ), [actions/github-script](https://github.com/actions/github-script ) and [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish ).
Updates `actions/setup-python` from 5.6.0 to 6.0.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](a26af69be9...e797f83bcbhttps://github.com/actions/github-script/releases )
- [Commits](60a0d83039...ed597411d8https://github.com/pypa/gh-action-pypi-publish/releases )
- [Commits](76f52bc884...ed0c53931b
2025-09-09 12:28:11 +03:00
dependabot[bot]
7ad10ada92
build(deps): bump ruff in the test-and-lint-dependencies group ( #2860 )
...
Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff ).
Updates `ruff` from 0.12.9 to 0.12.10
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.12.9...0.12.10 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.12.10
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 18:33:38 +03:00
dependabot[bot]
92af46de06
build(deps): bump coverage[toml] in the dependencies group ( #2859 )
...
Bumps the dependencies group with 1 update: [coverage[toml]](https://github.com/nedbat/coveragepy ).
Updates `coverage[toml]` from 7.10.4 to 7.10.5
- [Release notes](https://github.com/nedbat/coveragepy/releases )
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst )
- [Commits](https://github.com/nedbat/coveragepy/compare/7.10.4...7.10.5 )
---
updated-dependencies:
- dependency-name: coverage[toml]
dependency-version: 7.10.5
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-26 18:27:45 +03:00
dependabot[bot]
e4e841ffd3
build(deps): bump the test-and-lint-dependencies group with 2 updates ( #2858 )
...
Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff ) and [zizmor](https://github.com/zizmorcore/zizmor ).
Updates `ruff` from 0.12.8 to 0.12.9
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.12.8...0.12.9 )
Updates `zizmor` from 1.11.0 to 1.12.1
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.11.0...v1.12.1 )
---
updated-dependencies:
- dependency-name: ruff
dependency-version: 0.12.9
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: test-and-lint-dependencies
- dependency-name: zizmor
dependency-version: 1.12.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: test-and-lint-dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-19 14:15:57 +03:00
dependabot[bot]
3c66266d69
build(deps): bump coverage[toml] in the dependencies group ( #2857 )
...
Bumps the dependencies group with 1 update: [coverage[toml]](https://github.com/nedbat/coveragepy ).
Updates `coverage[toml]` from 7.10.3 to 7.10.4
- [Release notes](https://github.com/nedbat/coveragepy/releases )
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst )
- [Commits](https://github.com/nedbat/coveragepy/compare/7.10.3...7.10.4 )
---
updated-dependencies:
- dependency-name: coverage[toml]
dependency-version: 7.10.4
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-08-19 14:15:48 +03:00
dependabot[bot]
ca979a6abc
build(deps): bump the dependencies group across 1 directory with 7 updates ( #2855 )
...
* build(deps): bump the dependencies group across 1 directory with 7 updates
Bumps the dependencies group with 7 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [cryptography](https://github.com/pyca/cryptography ) | `45.0.5` | `45.0.6` |
| [ruff](https://github.com/astral-sh/ruff ) | `0.12.0` | `0.12.8` |
| [mypy](https://github.com/python/mypy ) | `1.16.1` | `1.17.1` |
| [zizmor](https://github.com/zizmorcore/zizmor ) | `1.9.0` | `1.11.0` |
| [freezegun](https://github.com/spulec/freezegun ) | `1.5.3` | `1.5.5` |
| [build](https://github.com/pypa/build ) | `1.2.2.post1` | `1.3.0` |
| [coverage[toml]](https://github.com/nedbat/coveragepy ) | `7.9.2` | `7.10.3` |
Updates `cryptography` from 45.0.5 to 45.0.6
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pyca/cryptography/compare/45.0.5...45.0.6 )
Updates `ruff` from 0.12.0 to 0.12.8
- [Release notes](https://github.com/astral-sh/ruff/releases )
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md )
- [Commits](https://github.com/astral-sh/ruff/compare/0.12.0...0.12.8 )
Updates `mypy` from 1.16.1 to 1.17.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md )
- [Commits](https://github.com/python/mypy/compare/v1.16.1...v1.17.1 )
Updates `zizmor` from 1.9.0 to 1.11.0
- [Release notes](https://github.com/zizmorcore/zizmor/releases )
- [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md )
- [Commits](https://github.com/zizmorcore/zizmor/compare/v1.9.0...v1.11.0 )
Updates `freezegun` from 1.5.3 to 1.5.5
- [Release notes](https://github.com/spulec/freezegun/releases )
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG )
- [Commits](https://github.com/spulec/freezegun/compare/1.5.3...1.5.5 )
Updates `build` from 1.2.2.post1 to 1.3.0
- [Release notes](https://github.com/pypa/build/releases )
- [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pypa/build/compare/1.2.2.post1...1.3.0 )
Updates `coverage[toml]` from 7.9.2 to 7.10.3
- [Release notes](https://github.com/nedbat/coveragepy/releases )
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst )
- [Commits](https://github.com/nedbat/coveragepy/compare/7.9.2...7.10.3 )
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 45.0.6
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: ruff
dependency-version: 0.12.8
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: mypy
dependency-version: 1.17.1
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
- dependency-name: zizmor
dependency-version: 1.11.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
- dependency-name: freezegun
dependency-version: 1.5.5
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: build
dependency-version: 1.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
- dependency-name: coverage[toml]
dependency-version: 7.10.3
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
* lint: Set zizmor to lower pedantry level
pedantic means a little too much churn.
Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jussi Kukkonen <jkukkonen@google.com>
2025-08-15 12:24:08 +03:00
dependabot[bot]
5f60ee52e5
build(deps): bump the action-dependencies group with 2 updates ( #2856 )
...
Bumps the action-dependencies group with 2 updates: [actions/checkout](https://github.com/actions/checkout ) and [actions/download-artifact](https://github.com/actions/download-artifact ).
Updates `actions/checkout` from 4.2.2 to 5.0.0
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](11bd71901b...08c6903cd8https://github.com/actions/download-artifact/releases )
- [Commits](d3f86a106a...634f93cb29
2025-08-12 11:20:34 +03:00
dependabot[bot]
a01210b4ba
build(deps): bump freezegun in the dependencies group ( #2849 )
...
Bumps the dependencies group with 1 update: [freezegun](https://github.com/spulec/freezegun ).
Updates `freezegun` from 1.5.2 to 1.5.3
- [Release notes](https://github.com/spulec/freezegun/releases )
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG )
- [Commits](https://github.com/spulec/freezegun/compare/1.5.2...1.5.3 )
---
updated-dependencies:
- dependency-name: freezegun
dependency-version: 1.5.3
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-15 09:34:31 +03:00
dependabot[bot]
92dc2a28d4
build(deps): bump the dependencies group with 2 updates ( #2848 )
...
---
updated-dependencies:
- dependency-name: cryptography
dependency-version: 45.0.5
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
- dependency-name: coverage[toml]
dependency-version: 7.9.2
dependency-type: direct:production
update-type: version-update:semver-patch
dependency-group: dependencies
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-08 10:47:59 +03:00
Lukas Pühringer
961e6f5ed8
Merge pull request #2845 from theupdateframework/dependabot/pip/test-and-lint-dependencies-04bd18a988
...
build(deps): bump ruff from 0.11.13 to 0.12.0 in the test-and-lint-dependencies group
2025-06-24 10:41:55 +02:00
