python-tuf

mirror of https://github.com/theupdateframework/python-tuf synced 2026-05-24 10:08:28 +00:00

Author	SHA1	Message	Date
dependabot[bot]	3f9bcd2ac9	build(deps): bump the test-and-lint-dependencies group across 1 directory with 2 updates (#2667 ) Bumps the test-and-lint-dependencies group with 2 updates in the / directory: [ruff](https://github.com/astral-sh/ruff) and [mypy](https://github.com/python/mypy). Updates `ruff` from 0.4.10 to 0.5.1 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.10...0.5.1) Updates `mypy` from 1.10.0 to 1.10.1 - [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md) - [Commits](https://github.com/python/mypy/compare/v1.10.0...v1.10.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies - dependency-name: mypy dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 09:20:23 +03:00
dependabot[bot]	74667373aa	build(deps): bump certifi in the dependencies group (#2668 ) Bumps the dependencies group with 1 update: [certifi](https://github.com/certifi/python-certifi). Updates `certifi` from 2024.6.2 to 2024.7.4 - [Commits](https://github.com/certifi/python-certifi/compare/2024.06.02...2024.07.04) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-07-09 09:16:12 +03:00
dependabot[bot]	aa2b7547d6	build(deps): bump the test-and-lint-dependencies group with 2 updates (#2663 ) Bumps the test-and-lint-dependencies group with 2 updates: [coverage](https://github.com/nedbat/coveragepy) and [ruff](https://github.com/astral-sh/ruff). Updates `coverage` from 7.5.3 to 7.5.4 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.3...7.5.4) Updates `ruff` from 0.4.9 to 0.4.10 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.9...v0.4.10) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-25 09:40:26 +03:00
dependabot[bot]	e84be5e138	build(deps): bump hatchling in the build-and-release-dependencies group (#2662 ) Bumps the build-and-release-dependencies group with 1 update: [hatchling](https://github.com/pypa/hatch). Updates `hatchling` from 1.24.2 to 1.25.0 - [Release notes](https://github.com/pypa/hatch/releases) - [Commits](https://github.com/pypa/hatch/compare/hatchling-v1.24.2...hatchling-v1.25.0) --- updated-dependencies: - dependency-name: hatchling dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-25 09:38:50 +03:00
dependabot[bot]	74f0947aa2	build(deps): bump ruff in the test-and-lint-dependencies group (#2658 ) Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.4.8 to 0.4.9 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.8...v0.4.9) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 10:57:08 +03:00
dependabot[bot]	4f1012aeff	build(deps): bump urllib3 from 2.2.1 to 2.2.2 in the dependencies group (#2659 ) Bumps the dependencies group with 1 update: [urllib3](https://github.com/urllib3/urllib3). Updates `urllib3` from 2.2.1 to 2.2.2 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.2.1...2.2.2) --- updated-dependencies: - dependency-name: urllib3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-18 10:56:41 +03:00
Lukas Pühringer	20840450ef	Merge pull request #2656 from theupdateframework/dependabot/pip/test-and-lint-dependencies-4921451a6f build(deps): bump ruff from 0.4.7 to 0.4.8 in the test-and-lint-dependencies group	2024-06-17 11:27:18 +02:00
dependabot[bot]	ad87322b6f	build(deps): bump the dependencies group with 2 updates (#2657 ) Bumps the dependencies group with 2 updates: [cryptography](https://github.com/pyca/cryptography) and [securesystemslib[crypto,pynacl]](https://github.com/secure-systems-lab/securesystemslib). Updates `cryptography` from 42.0.7 to 42.0.8 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.7...42.0.8) Updates `securesystemslib[crypto,pynacl]` from 1.0.0 to 1.1.0 - [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases) - [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md) - [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v1.0.0...v1.1.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: securesystemslib[crypto,pynacl] dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-06-17 11:29:00 +03:00
dependabot[bot]	e109834221	build(deps): bump ruff in the test-and-lint-dependencies group Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.4.7 to 0.4.8 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.7...v0.4.8) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-10 21:37:15 +00:00
Lukas Pühringer	d2afc09dcd	Merge pull request #2652 from theupdateframework/dependabot/pip/test-and-lint-dependencies-1e4dbd611a build(deps): bump the test-and-lint-dependencies group with 2 updates	2024-06-04 08:39:47 +02:00
dependabot[bot]	1b064dd11c	build(deps): bump the dependencies group with 2 updates Bumps the dependencies group with 2 updates: [requests](https://github.com/psf/requests) and [certifi](https://github.com/certifi/python-certifi). Updates `requests` from 2.32.2 to 2.32.3 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.32.2...v2.32.3) Updates `certifi` from 2024.2.2 to 2024.6.2 - [Commits](https://github.com/certifi/python-certifi/compare/2024.02.02...2024.06.02) --- updated-dependencies: - dependency-name: requests dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-03 21:32:39 +00:00
dependabot[bot]	52625bfe8a	build(deps): bump the test-and-lint-dependencies group with 2 updates Bumps the test-and-lint-dependencies group with 2 updates: [coverage](https://github.com/nedbat/coveragepy) and [ruff](https://github.com/astral-sh/ruff). Updates `coverage` from 7.5.2 to 7.5.3 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.2...7.5.3) Updates `ruff` from 0.4.5 to 0.4.7 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.5...v0.4.7) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-06-03 21:29:20 +00:00
Jussi Kukkonen	c81eefd9e3	Merge pull request #2645 from theupdateframework/dependabot/pip/test-and-lint-dependencies-92388a58c4 build(deps): bump the test-and-lint-dependencies group with 2 updates	2024-05-28 09:21:24 +03:00
dependabot[bot]	41b13fd8f4	build(deps): bump requests in the dependencies group Bumps the dependencies group with 1 update: [requests](https://github.com/psf/requests). Updates `requests` from 2.32.0 to 2.32.2 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.32.0...v2.32.2) --- updated-dependencies: - dependency-name: requests dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-27 22:06:50 +00:00
dependabot[bot]	23b9e65bef	build(deps): bump the test-and-lint-dependencies group with 2 updates Bumps the test-and-lint-dependencies group with 2 updates: [coverage](https://github.com/nedbat/coveragepy) and [ruff](https://github.com/astral-sh/ruff). Updates `coverage` from 7.5.1 to 7.5.2 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.1...7.5.2) Updates `ruff` from 0.4.4 to 0.4.5 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.4...v0.4.5) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-27 22:05:31 +00:00
dependabot[bot]	18d036cf3d	--- updated-dependencies: - dependency-name: requests dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-20 21:51:36 +00:00
dependabot[bot]	a5ba1a1d1b	build(deps): bump ruff in the test-and-lint-dependencies group Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.4.3 to 0.4.4 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.3...v0.4.4) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-13 21:38:40 +00:00
dependabot[bot]	a214a80141	build(deps): bump the test-and-lint-dependencies group across 1 directory with 2 updates Bumps the test-and-lint-dependencies group with 2 updates in the / directory: [ruff](https://github.com/astral-sh/ruff) and [coverage](https://github.com/nedbat/coveragepy). Updates `ruff` from 0.4.2 to 0.4.3 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.2...v0.4.3) Updates `coverage` from 7.5.0 to 7.5.1 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.5.0...7.5.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-07 09:29:52 +00:00
dependabot[bot]	96d406cf9e	build(deps): bump the test-and-lint-dependencies group with 3 updates Bumps the test-and-lint-dependencies group with 3 updates: [coverage](https://github.com/nedbat/coveragepy), [ruff](https://github.com/astral-sh/ruff) and [mypy](https://github.com/python/mypy). Updates `coverage` from 7.4.4 to 7.5.0 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.4.4...7.5.0) Updates `ruff` from 0.4.1 to 0.4.2 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.1...v0.4.2) Updates `mypy` from 1.9.0 to 1.10.0 - [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md) - [Commits](https://github.com/python/mypy/compare/1.9.0...v1.10.0) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: mypy dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-07 11:11:08 +02:00
dependabot[bot]	baea7fa1bd	build(deps): bump cryptography in the dependencies group Bumps the dependencies group with 1 update: [cryptography](https://github.com/pyca/cryptography). Updates `cryptography` from 42.0.5 to 42.0.7 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.5...42.0.7) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-06 21:57:16 +00:00
Jussi Kukkonen	a7b832b88f	Use securesystemslib 1.0.0 Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>	2024-05-02 14:05:41 +03:00
Jussi Kukkonen	3d1b16cdfa	examples: Use Cryptosigner.private_bytes private_bytes was just added to CryptoSigner, use it. Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>	2024-04-25 14:44:18 +03:00
Jussi Kukkonen	38f309bbbf	WIP: Update to new securesystemslib API * API changes covered: * keys and interface modules removed * SSlibSigner removed * CryptoSigner added: this replaces the removed functionality * DSSE "signatures" container type changed * Currently pins a securesystemslib main branch commit: this shoudl be reverted before merging, when securesystemslib has made a release * tests/generated_data/generate_md.py was simplified * Encrypted test keys in tests/repository_data/keystore were replaced with the unencrypted PEM versions of the same keys * The public test keys in tests/repository_data/keystore were removed as they were not used anymore Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>	2024-04-25 14:27:54 +03:00
Jussi Kukkonen	8cfb484a23	Merge pull request #2615 from theupdateframework/dependabot/pip/build-and-release-dependencies-cdb6e24264 build(deps): bump hatchling from 1.23.0 to 1.24.2 in the build-and-release-dependencies group	2024-04-23 10:58:22 +03:00
dependabot[bot]	46e9ccae99	build(deps): bump ruff in the test-and-lint-dependencies group Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.3.7 to 0.4.1 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.3.7...v0.4.1) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-22 21:46:15 +00:00
dependabot[bot]	3a2c7b413a	build(deps): bump hatchling in the build-and-release-dependencies group Bumps the build-and-release-dependencies group with 1 update: [hatchling](https://github.com/pypa/hatch). Updates `hatchling` from 1.23.0 to 1.24.2 - [Release notes](https://github.com/pypa/hatch/releases) - [Commits](https://github.com/pypa/hatch/compare/hatchling-v1.23.0...hatchling-v1.24.2) --- updated-dependencies: - dependency-name: hatchling dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-22 21:44:58 +00:00
Jussi Kukkonen	c6256875f0	Merge pull request #2608 from theupdateframework/dependabot/pip/test-and-lint-dependencies-b976d329b1 build(deps): bump ruff from 0.3.5 to 0.3.7 in the test-and-lint-dependencies group	2024-04-16 09:29:08 +03:00
Jussi Kukkonen	67e00ce176	Merge pull request #2609 from theupdateframework/dependabot/pip/dependencies-a98e789dc2 build(deps): bump idna from 3.6 to 3.7 in the dependencies group	2024-04-16 09:28:07 +03:00
dependabot[bot]	c4404776e9	build(deps): bump idna from 3.6 to 3.7 in the dependencies group Bumps the dependencies group with 1 update: [idna](https://github.com/kjd/idna). Updates `idna` from 3.6 to 3.7 - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst) - [Commits](https://github.com/kjd/idna/compare/v3.6...v3.7) --- updated-dependencies: - dependency-name: idna dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-15 21:21:22 +00:00
dependabot[bot]	0321caae3d	build(deps): bump ruff in the test-and-lint-dependencies group Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.3.5 to 0.3.7 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.3.5...v0.3.7) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-15 21:20:07 +00:00
dependabot[bot]	c248dd9fbe	build(deps): bump hatchling in the build-and-release-dependencies group Bumps the build-and-release-dependencies group with 1 update: [hatchling](https://github.com/pypa/hatch). Updates `hatchling` from 1.22.4 to 1.23.0 - [Release notes](https://github.com/pypa/hatch/releases) - [Commits](https://github.com/pypa/hatch/compare/hatchling-v1.22.4...hatchling-v1.23.0) --- updated-dependencies: - dependency-name: hatchling dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-15 21:19:42 +00:00
Jussi Kukkonen	5947bd0155	Merge pull request #2594 from theupdateframework/dependabot/pip/build-and-release-dependencies-0bd4b864f7 build(deps): bump the build-and-release-dependencies group with 2 updates	2024-04-02 12:01:15 +03:00
Jussi Kukkonen	7c5cae36cb	Merge pull request #2595 from theupdateframework/dependabot/pip/test-and-lint-dependencies-87f5007267 build(deps): bump the test-and-lint-dependencies group with 1 update	2024-04-02 11:43:44 +03:00
dependabot[bot]	6cd2d22ad2	build(deps): bump the dependencies group with 1 update Bumps the dependencies group with 1 update: [pycparser](https://github.com/eliben/pycparser). Updates `pycparser` from 2.21 to 2.22 - [Release notes](https://github.com/eliben/pycparser/releases) - [Changelog](https://github.com/eliben/pycparser/blob/main/CHANGES) - [Commits](https://github.com/eliben/pycparser/compare/release_v2.21...release_v2.22) --- updated-dependencies: - dependency-name: pycparser dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-02 08:09:47 +00:00
dependabot[bot]	9f4906bbd1	build(deps): bump the test-and-lint-dependencies group with 1 update Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.3.3 to 0.3.5 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.3.3...v0.3.5) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-02 08:08:30 +00:00
dependabot[bot]	38aeadfe1a	build(deps): bump the build-and-release-dependencies group with 2 updates Bumps the build-and-release-dependencies group with 2 updates: [build](https://github.com/pypa/build) and [hatchling](https://github.com/pypa/hatch). Updates `build` from 1.1.1 to 1.2.1 - [Release notes](https://github.com/pypa/build/releases) - [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pypa/build/compare/1.1.1...1.2.1) Updates `hatchling` from 1.22.2 to 1.22.4 - [Release notes](https://github.com/pypa/hatch/releases) - [Commits](https://github.com/pypa/hatch/compare/hatchling-v1.22.2...hatchling-v1.22.4) --- updated-dependencies: - dependency-name: build dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies - dependency-name: hatchling dependency-type: direct:production update-type: version-update:semver-patch dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-04-02 08:02:39 +00:00
Jussi Kukkonen	73b48a67f3	Merge pull request #2586 from theupdateframework/dependabot/pip/test-and-lint-dependencies-3cdd2fbde4 build(deps): bump the test-and-lint-dependencies group with 2 updates	2024-03-19 13:57:48 +02:00
dependabot[bot]	0eb3c83202	build(deps): bump the test-and-lint-dependencies group with 2 updates Bumps the test-and-lint-dependencies group with 2 updates: [coverage](https://github.com/nedbat/coveragepy) and [ruff](https://github.com/astral-sh/ruff). Updates `coverage` from 7.4.3 to 7.4.4 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.4.3...7.4.4) Updates `ruff` from 0.3.2 to 0.3.3 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.3.2...v0.3.3) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-03-18 21:13:38 +00:00
dependabot[bot]	91c3b43344	build(deps): bump the build-and-release-dependencies group with 1 update Bumps the build-and-release-dependencies group with 1 update: [hatchling](https://github.com/pypa/hatch). Updates `hatchling` from 1.21.1 to 1.22.2 - [Release notes](https://github.com/pypa/hatch/releases) - [Commits](https://github.com/pypa/hatch/compare/hatchling-v1.21.1...hatchling-v1.22.2) --- updated-dependencies: - dependency-name: hatchling dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-03-18 21:13:02 +00:00
dependabot[bot]	eb1b56c925	build(deps): bump the test-and-lint-dependencies group with 2 updates Bumps the test-and-lint-dependencies group with 2 updates: [ruff](https://github.com/astral-sh/ruff) and [mypy](https://github.com/python/mypy). Updates `ruff` from 0.2.2 to 0.3.2 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.2.2...v0.3.2) Updates `mypy` from 1.8.0 to 1.9.0 - [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md) - [Commits](https://github.com/python/mypy/compare/v1.8.0...1.9.0) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies - dependency-name: mypy dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-03-12 09:43:24 +00:00
Lukas Pühringer	e1b52e7fd8	Merge pull request #2580 from theupdateframework/dependabot/pip/test-and-lint-dependencies-c17666fe2e build(deps): bump the test-and-lint-dependencies group with 1 update	2024-03-12 09:40:40 +01:00
dependabot[bot]	5c0b3ac104	build(deps): bump the test-and-lint-dependencies group with 1 update Bumps the test-and-lint-dependencies group with 1 update: [ruff](https://github.com/astral-sh/ruff). Updates `ruff` from 0.2.2 to 0.3.0 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.2.2...v0.3.0) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-03-04 21:05:59 +00:00
dependabot[bot]	c3517370e8	build(deps): bump the build-and-release-dependencies group with 1 update Bumps the build-and-release-dependencies group with 1 update: [build](https://github.com/pypa/build). Updates `build` from 1.0.3 to 1.1.1 - [Release notes](https://github.com/pypa/build/releases) - [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pypa/build/compare/1.0.3...1.1.1) --- updated-dependencies: - dependency-name: build dependency-type: direct:production update-type: version-update:semver-minor dependency-group: build-and-release-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-03-04 21:05:27 +00:00
Lukas Pühringer	331863e61d	Merge pull request #2571 from jku/more-lint lint: Start using ruff ruleset "flake8-bandit"	2024-02-27 09:11:40 +01:00
Lukas Pühringer	27842f79f4	Merge pull request #2574 from theupdateframework/dependabot/pip/test-and-lint-dependencies-cffe165f11 build(deps): bump the test-and-lint-dependencies group with 1 update	2024-02-27 08:58:45 +01:00
dependabot[bot]	bad80547fd	build(deps): bump the dependencies group with 1 update Bumps the dependencies group with 1 update: [cryptography](https://github.com/pyca/cryptography). Updates `cryptography` from 42.0.4 to 42.0.5 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.4...42.0.5) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-02-26 21:50:48 +00:00
dependabot[bot]	a98556f0a7	build(deps): bump the test-and-lint-dependencies group with 1 update Bumps the test-and-lint-dependencies group with 1 update: [coverage](https://github.com/nedbat/coveragepy). Updates `coverage` from 7.4.2 to 7.4.3 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.4.2...7.4.3) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-patch dependency-group: test-and-lint-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-02-26 21:40:03 +00:00
Jussi Kukkonen	009566aa23	lint: Start using ruff ruleset "flake8-bandit" * Remove bandit * Add ruff ruleset "flake8-bandit" * verify_release is now checked by bandit * Avoid some asserts as suggested * ignore a subprocess.run lint: it seems dumb * ignore all bandit rules for tests and examples (just like before) Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>	2024-02-23 18:27:29 +02:00
Jussi Kukkonen	d787c18f82	Merge pull request #2563 from theupdateframework/dependabot/pip/dependencies-9cb123f56e build(deps): bump the dependencies group with 1 update	2024-02-21 22:15:41 +02:00
dependabot[bot]	811767a5bd	build(deps): bump the dependencies group with 1 update Bumps the dependencies group with 1 update: [cryptography](https://github.com/pyca/cryptography). Updates `cryptography` from 42.0.3 to 42.0.4 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.3...42.0.4) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <support@github.com>	2024-02-21 15:03:52 +00:00

1 2 3 4

185 commits