build(deps): bump the minimum-runtime-dependencies group across 2 directories with 5 updates #398
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Updates the requirements on securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore], tuf, mypy, ruff and securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] to permit the latest version.
Updates
securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]
to 1.1.0Release notes
Sourced from securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]'s releases.
Changelog
Sourced from securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]'s changelog.
... (truncated)
Commits
c70d7be
Merge pull request #821 from jku/release-v1.1.09d4a99e
Prepare v1.108e64be
Merge pull request #819 from secure-systems-lab/dependabot/pip/dependencies-2...7058f55
Bump the dependencies group across 1 directory with 4 updates5e734e4
Merge pull request #813 from jku/upgrade-sigstorebc6f882
Merge pull request #814 from secure-systems-lab/dependabot/pip/test-and-lint-...f61cf1a
GCPSigner: Add exception for unsupported keys323d572
Merge pull request #816 from secure-systems-lab/dependabot/github_actions/act...3b7b7e6
---603b461
---Updates
tuf
to 5.0.0Release notes
Sourced from tuf's releases.
Changelog
Sourced from tuf's changelog.
... (truncated)
Commits
1b0c9f7
Merge pull request #2630 from lukpueh/release-v5d3d2ac1
Update docs/CHANGELOG.mdbce5039
Rlease v5.0.0c890b7e
Merge pull request #2628 from theupdateframework/dependabot/pip/test-and-lint...6e24f4d
Merge pull request #2629 from theupdateframework/dependabot/github_actions/ac...02464e9
build(deps): bump ossf/scorecard-action in the action-dependencies groupa5ba1a1
build(deps): bump ruff in the test-and-lint-dependencies group87e418c
Merge pull request #2627 from jku/finish-ruff-integration419bfe3
linting: Enable all Ruff rulesets by defaultd855d1c
Merge pull request #2626 from theupdateframework/dependabot/pip/test-and-lint...Updates
mypy
from 1.11.0 to 1.11.1Commits
570b90a
Bump version to 1.11b3a102e
FixRawExpressionType.accept
crash with--cache-fine-grained
(#17588)aec04c7
Fix PEP 604 isinstance caching (#17563)cb44e4d
Fixtyping.TypeAliasType
being undefined on python < 3.12 (#17558)6cf9180
Fix types.GenericAlias lookup crash (#17543)64c1ebf
Bump version to 1.11.1+devUpdates
ruff
from 0.5.4 to 0.5.7Release notes
Sourced from ruff's releases.
... (truncated)
Changelog
Sourced from ruff's changelog.
... (truncated)
Commits
221ea66
Bump version to 0.5.7 (#12756)d28c5af
[red-knot] Remove mentions of Ruff from the CLI help (#12752)f1de08c
[red-knot] Merge the semantic and module-resolver crates (#12751)33e9a6a
SIM110:any()
is ~3x slower than the code it replaces (#12746)f577e03
[ruff] Ignore empty tuples for `incorrectly-parenthesized-tuple-in-subscript ...f537335
Remove alluseEffect
usages (#12659)2daa914
Gracefully handle errors in CLI (#12747)6d9205e
[ruff_linter
] - Use LibCST inadjust_indentation
for mixed whitespace (#1...df7345e
Exit with an error if there are check failures (#12735)dc6aafe
Setup tracing and document tracing usage (#12730)Updates
tuf
to 5.0.0Release notes
Sourced from tuf's releases.
Changelog
Sourced from tuf's changelog.
... (truncated)
Commits
1b0c9f7
Merge pull request #2630 from lukpueh/release-v5d3d2ac1
Update docs/CHANGELOG.mdbce5039
Rlease v5.0.0c890b7e
Merge pull request #2628 from theupdateframework/dependabot/pip/test-and-lint...6e24f4d
Merge pull request #2629 from theupdateframework/dependabot/github_actions/ac...02464e9
build(deps): bump ossf/scorecard-action in the action-dependencies groupa5ba1a1
build(deps): bump ruff in the test-and-lint-dependencies group87e418c
Merge pull request #2627 from jku/finish-ruff-integration419bfe3
linting: Enable all Ruff rulesets by defaultd855d1c
Merge pull request #2626 from theupdateframework/dependabot/pip/test-and-lint...Updates
mypy
from 1.10.0 to 1.11.1Commits
570b90a
Bump version to 1.11b3a102e
FixRawExpressionType.accept
crash with--cache-fine-grained
(#17588)aec04c7
Fix PEP 604 isinstance caching (#17563)cb44e4d
Fixtyping.TypeAliasType
being undefined on python < 3.12 (#17558)6cf9180
Fix types.GenericAlias lookup crash (#17543)64c1ebf
Bump version to 1.11.1+devUpdates
ruff
from 0.4.4 to 0.5.7Release notes
Sourced from ruff's releases.
... (truncated)
Changelog
Sourced from ruff's changelog.
... (truncated)
Commits
221ea66
Bump version to 0.5.7 (#12756)d28c5af
[red-knot] Remove mentions of Ruff from the CLI help (#12752)f1de08c
[red-knot] Merge the semantic and module-resolver crates (#12751)33e9a6a
SIM110:any()
is ~3x slower than the code it replaces (#12746)f577e03
[ruff] Ignore empty tuples for `incorrectly-parenthesized-tuple-in-subscript ...f537335
Remove alluseEffect
usages (#12659)2daa914
Gracefully handle errors in CLI (#12747)6d9205e
[ruff_linter
] - Use LibCST inadjust_indentation
for mixed whitespace (#1...df7345e
Exit with an error if there are check failures (#12735)dc6aafe
Setup tracing and document tracing usage (#12730)Updates
securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]
to 1.1.0Release notes
Sourced from securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]'s releases.
Changelog
Sourced from securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]'s changelog.
... (truncated)
Commits
c70d7be
Merge pull request #821 from jku/release-v1.1.09d4a99e
Prepare v1.108e64be
Merge pull request #819 from secure-systems-lab/dependabot/pip/dependencies-2...7058f55
Bump the dependencies group across 1 directory with 4 updates5e734e4
Merge pull request #813 from jku/upgrade-sigstorebc6f882
Merge pull request #814 from secure-systems-lab/dependabot/pip/test-and-lint-...f61cf1a
GCPSigner: Add exception for unsupported keys323d572
Merge pull request #816 from secure-systems-lab/dependabot/github_actions/act...3b7b7e6
---603b461
---Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions