Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deps: Bump the python-packages group with 5 updates #1080

Merged
merged 2 commits into from
Jan 29, 2024
Merged

Deps: Bump the python-packages group with 5 updates #1080

merged 2 commits into from
Jan 29, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 29, 2024

Bumps the python-packages group with 5 updates:

Package From To
autohooks 23.10.0 24.1.0
autohooks-plugin-ruff 23.11.0 24.1.0
coverage 7.4.0 7.4.1
black 23.12.1 24.1.1
cryptography 41.0.7 42.0.1

Updates autohooks from 23.10.0 to 24.1.0

Release notes

Sourced from autohooks's releases.

autohooks 24.1.0

24.1.0 - 2024-01-26

Added

  • Ignore ruff_cache from git 7542c15

Removed

  • Remove unused settings file for pylint 6faf4d1
  • Replace isort with ruff b6fcbed

Changed

  • Update headers of all Python files f03fc7b
  • Update formatting with black 24.1.0 73f48bc
  • Unify release workflow (file) name 64a1d24
  • Merge coverage config into pyproject.toml 0e70f9b
  • Make ruff more prominent in the README 4fe01c5
  • Use trusted publisher upload for PyPI d2f2c7d

Bug Fixes

  • Fix README and package meta data for supported Python versions b4d92f6

Dependencies

  • Bump the dependencies group with 7 updates a52e2f7
  • Bump the dependencies group with 10 updates e7c1165
  • Bump jinja2 from 3.1.2 to 3.1.3 8055e30
  • Bump the dependencies group with 5 updates 90c623e
  • Bump the dependencies group with 8 updates 3022f81
  • Bump the dependencies group with 1 update c2d5c35
  • Bump the dependencies group with 8 updates bc4d28a
  • Bump the dependencies group with 6 updates 61c0201
  • Bump the dependencies group with 2 updates 8bdb3bd
  • Bump the dependencies group with 7 updates 863cd39
  • Bump the dependencies group with 7 updates 2cea7c7
  • Bump the dependencies group with 6 updates 86411da
  • Bump the dependencies group with 6 updates aa4e1e0
  • Bump the dependencies group with 4 updates c930d52
  • Bump the dependencies group with 4 updates (#620) 4ca79cf
Commits
  • bff00fe Automatic release to 24.1.0
  • f03fc7b Change: Update headers of all Python files
  • 73f48bc Change: Update formatting with black 24.1.0
  • 64a1d24 Change: Unify release workflow (file) name
  • 7542c15 Add: Ignore ruff_cache from git
  • 0e70f9b Change: Merge coverage config into pyproject.toml
  • 6faf4d1 Remove: Remove unused settings file for pylint
  • b6fcbed Remove: Replace isort with ruff
  • ae201e7 Update copyright in README for 2024
  • b4d92f6 Fix: Fix README and package meta data for supported Python versions
  • Additional commits viewable in compare view

Updates autohooks-plugin-ruff from 23.11.0 to 24.1.0

Release notes

Sourced from autohooks-plugin-ruff's releases.

autohooks-plugin-ruff 24.1.0

24.1.0 - 2024-01-25

Changed

  • Don't use reusable workflow for PyPI upload 3ec2090
  • Use trusted publisher upload for PyPI 03d0d5d

Dependencies

  • Bump the python-packages group with 2 updates e4bacd3
  • Bump the python-packages group with 3 updates 7f5b927
  • Bump the python-packages group with 4 updates a4c195b
  • Bump the python-packages group with 6 updates 5860945
  • Bump the github-actions group with 1 update d5022fd
  • Bump the python-packages group with 9 updates 5ad0fb0
  • Bump pip from 23.3.1 to 23.3.2 39769ef
  • Bump the python-packages group with 6 updates 5ef743f
  • Bump the python-packages group with 1 update 667d5c3
  • Bump the python-packages group with 5 updates f332fbc
  • Bump the python-packages group with 6 updates e6c5e90
  • Bump the python-packages group with 5 updates 97e0018
  • Bump the python-packages group with 3 updates 52d34eb
Commits
  • c1ea2f0 Automatic release to 24.1.0
  • 3ec2090 Change: Don't use reusable workflow for PyPI upload
  • d3c37d1 Update README.md (#63)
  • 03d0d5d Change: Use trusted publisher upload for PyPI
  • e4bacd3 Deps: Bump the python-packages group with 2 updates
  • 7f5b927 Deps: Bump the python-packages group with 3 updates
  • a4c195b Deps: Bump the python-packages group with 4 updates
  • 5860945 Deps: Bump the python-packages group with 6 updates
  • d5022fd Deps: Bump the github-actions group with 1 update
  • 5ad0fb0 Deps: Bump the python-packages group with 9 updates
  • Additional commits viewable in compare view

Updates coverage from 7.4.0 to 7.4.1

Changelog

Sourced from coverage's changelog.

Version 7.4.1 — 2024-01-26

  • Python 3.13.0a3 is supported.

  • Fix: the JSON report now includes an explicit format version number, closing issue 1732_.

.. _issue 1732: nedbat/coveragepy#1732

.. _changes_7-4-0:

Commits
  • 07588ea test: give hypothesis a little more time
  • 2c96518 build: tags should be signed
  • 8d1857f docs: sample HTML for 7.4.1
  • ddc88f7 docs: prep for 7.4.1
  • 98cd671 docs: correct two library urls
  • 498b8c9 build: coverage runs have to skip windows pypy too
  • 75b22f0 test: ignore color in tracebacks
  • b7c41a2 build: show action environment variables for debugging
  • f8be865 build: run actions on 3.13 since a3 came out.
  • de60a6d build(deps): bump actions/dependency-review-action from 3 to 4
  • Additional commits viewable in compare view

Updates black from 23.12.1 to 24.1.1

Release notes

Sourced from black's releases.

24.1.1

Bugfix release to fix a bug that made Black unusable on certain file systems with strict limits on path length.

Preview style

  • Consistently add trailing comma on typed parameters (#4164)

Configuration

  • Shorten the length of the name of the cache file to fix crashes on file systems that do not support long paths (#4176)

24.1.0

Highlights

This release introduces the new 2024 stable style (#4106), stabilizing the following changes:

  • Add parentheses around if-else expressions (#2278)
  • Dummy class and function implementations consisting only of ... are formatted more compactly (#3796)
  • If an assignment statement is too long, we now prefer splitting on the right-hand side (#3368)
  • Hex codes in Unicode escape sequences are now standardized to lowercase (#2916)
  • Allow empty first lines at the beginning of most blocks (#3967, #4061)
  • Add parentheses around long type annotations (#3899)
  • Enforce newline after module docstrings (#3932, #4028)
  • Fix incorrect magic trailing comma handling in return types (#3916)
  • Remove blank lines before class docstrings (#3692)
  • Wrap multiple context managers in parentheses if combined in a single with statement (#3489)
  • Fix bug in line length calculations for power operations (#3942)
  • Add trailing commas to collection literals even if there's a comment after the last entry (#3393)
  • When using --skip-magic-trailing-comma or -C, trailing commas are stripped from subscript expressions with more than 1 element (#3209)
  • Add extra blank lines in stubs in a few cases (#3564, #3862)
  • Accept raw strings as docstrings (#3947)
  • Split long lines in case blocks (#4024)
  • Stop removing spaces from walrus operators within subscripts (#3823)
  • Fix incorrect formatting of certain async statements (#3609)
  • Allow combining # fmt: skip with other comments (#3959)

There are already a few improvements in the --preview style, which are slated for the 2025 stable style. Try them out and share your feedback. In the past, the preview style has included some features that we were not able to stabilize. This year, we're

... (truncated)

Changelog

Sourced from black's changelog.

24.1.1

Bugfix release to fix a bug that made Black unusable on certain file systems with strict limits on path length.

Preview style

  • Consistently add trailing comma on typed parameters (#4164)

Configuration

  • Shorten the length of the name of the cache file to fix crashes on file systems that do not support long paths (#4176)

24.1.0

Highlights

This release introduces the new 2024 stable style (#4106), stabilizing the following changes:

  • Add parentheses around if-else expressions (#2278)
  • Dummy class and function implementations consisting only of ... are formatted more compactly (#3796)
  • If an assignment statement is too long, we now prefer splitting on the right-hand side (#3368)
  • Hex codes in Unicode escape sequences are now standardized to lowercase (#2916)
  • Allow empty first lines at the beginning of most blocks (#3967, #4061)
  • Add parentheses around long type annotations (#3899)
  • Enforce newline after module docstrings (#3932, #4028)
  • Fix incorrect magic trailing comma handling in return types (#3916)
  • Remove blank lines before class docstrings (#3692)
  • Wrap multiple context managers in parentheses if combined in a single with statement (#3489)
  • Fix bug in line length calculations for power operations (#3942)
  • Add trailing commas to collection literals even if there's a comment after the last entry (#3393)
  • When using --skip-magic-trailing-comma or -C, trailing commas are stripped from subscript expressions with more than 1 element (#3209)
  • Add extra blank lines in stubs in a few cases (#3564, #3862)
  • Accept raw strings as docstrings (#3947)
  • Split long lines in case blocks (#4024)
  • Stop removing spaces from walrus operators within subscripts (#3823)
  • Fix incorrect formatting of certain async statements (#3609)
  • Allow combining # fmt: skip with other comments (#3959)

There are already a few improvements in the --preview style, which are slated for the 2025 stable style. Try them out and share your feedback. In the past, the preview style has included some features that we were not able to stabilize. This year, we're

... (truncated)

Commits

Updates cryptography from 41.0.7 to 42.0.1

Changelog

Sourced from cryptography's changelog.

42.0.1 - 2024-01-24


* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign`.
* Resolved compatibility issue with loading certain RSA public keys in
  :func:`~cryptography.hazmat.primitives.serialization.load_pem_public_key`.

.. _v42-0-0:


42.0.0 - 2024-01-22

  • BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.7.
  • BACKWARDS INCOMPATIBLE: Loading a PKCS7 with no content field using :func:~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates or :func:~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates will now raise a ValueError rather than return an empty list.
  • Parsing SSH certificates no longer permits malformed critical options with values, as documented in the 41.0.2 release notes.
  • Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0.
  • Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0.
  • We now publish both py37 and py39 abi3 wheels. This should resolve some errors relating to initializing a module multiple times per process.
  • Support :class:~cryptography.hazmat.primitives.asymmetric.padding.PSS for X.509 certificate signing requests and certificate revocation lists with the keyword-only argument rsa_padding on the sign methods for :class:~cryptography.x509.CertificateSigningRequestBuilder and :class:~cryptography.x509.CertificateRevocationListBuilder.
  • Added support for obtaining X.509 certificate signing request signature algorithm parameters (including PSS) via :meth:~cryptography.x509.CertificateSigningRequest.signature_algorithm_parameters.
  • Added support for obtaining X.509 certificate revocation list signature algorithm parameters (including PSS) via :meth:~cryptography.x509.CertificateRevocationList.signature_algorithm_parameters.
  • Added mgf property to :class:~cryptography.hazmat.primitives.asymmetric.padding.PSS.
  • Added algorithm and mgf properties to :class:~cryptography.hazmat.primitives.asymmetric.padding.OAEP.
  • Added the following properties that return timezone-aware datetime objects: :meth:~cryptography.x509.Certificate.not_valid_before_utc, :meth:~cryptography.x509.Certificate.not_valid_after_utc, :meth:~cryptography.x509.RevokedCertificate.revocation_date_utc, :meth:~cryptography.x509.CertificateRevocationList.next_update_utc, :meth:~cryptography.x509.CertificateRevocationList.last_update_utc. These are timezone-aware variants of existing properties that return naïve datetime objects.
  • Deprecated the following properties that return naïve datetime objects:

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Deps: Bump the python-packages group with 5 updates
72e2361 
Bumps the python-packages group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [autohooks](https://github.com/greenbone/autohooks) | `23.10.0` | `24.1.0` |
| [autohooks-plugin-ruff](https://github.com/greenbone/autohooks-plugin-ruff) | `23.11.0` | `24.1.0` |
| [coverage](https://github.com/nedbat/coveragepy) | `7.4.0` | `7.4.1` |
| [black](https://github.com/psf/black) | `23.12.1` | `24.1.1` |
| [cryptography](https://github.com/pyca/cryptography) | `41.0.7` | `42.0.1` |


Updates `autohooks` from 23.10.0 to 24.1.0
- [Release notes](https://github.com/greenbone/autohooks/releases)
- [Commits](greenbone/autohooks@v23.10.0...v24.1.0)

Updates `autohooks-plugin-ruff` from 23.11.0 to 24.1.0
- [Release notes](https://github.com/greenbone/autohooks-plugin-ruff/releases)
- [Commits](greenbone/autohooks-plugin-ruff@v23.11.0...v24.1.0)

Updates `coverage` from 7.4.0 to 7.4.1
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](nedbat/coveragepy@7.4.0...7.4.1)

Updates `black` from 23.12.1 to 24.1.1
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@23.12.1...24.1.1)

Updates `cryptography` from 41.0.7 to 42.0.1
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@41.0.7...42.0.1)

---
updated-dependencies:
- dependency-name: autohooks
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-packages
- dependency-name: autohooks-plugin-ruff
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: python-packages
- dependency-name: coverage
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-packages
- dependency-name: black
  dependency-type: indirect
  update-type: version-update:semver-major
  dependency-group: python-packages
- dependency-name: cryptography
  dependency-type: indirect
  update-type: version-update:semver-major
  dependency-group: python-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner January 29, 2024 04:35
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 29, 2024
@greenbonebot greenbonebot enabled auto-merge (rebase) January 29, 2024 04:35
@github-actions GitHub Actions
Copy link

Conventional Commits Report

Type Number
Dependencies 1

🚀 Conventional commits found.

@bjoernricks
Reformat files with black 24.1.1
6dde02e 
With black 24.1.0 some styles got changed.
@greenbonebot greenbonebot merged commit 7ae8f87 into main Jan 29, 2024
19 checks passed
@greenbonebot greenbonebot deleted the dependabot/pip/python-packages-90e9fd3052 branch January 29, 2024 07:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bjoernricks bjoernricks bjoernricks approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@bjoernricks @greenbonebot