Skip to content

Update/package versions 10 2022 – combined dependabot upgrades #789

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 48 commits into from
Closed

Update/package versions 10 2022 – combined dependabot upgrades #789

wants to merge 48 commits into from

Conversation

@sampsapenna
Copy link
Member

@sampsapenna sampsapenna commented Oct 28, 2022

Description

Aggregated dependabot upgrades, contains all that were opened before 2022-10-28.

Related issues

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update (this needs a follow up PR)

Changes Made

  • Update node packages, python packages, docker images
  • Deprecate .value from database queries, due to library changes

Testing

  • Unit Tests
  • Integration Tests
  • Tests do not apply
  • Needs testing (start an issue or do a follow up PR about it)

Mentions

dependabot bot and others added 30 commits July 1, 2022 21:01
@dependabot
Bump actions/setup-python from 3 to 4
7867c86 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](actions/setup-python@v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump asyncpg from 0.25.0 to 0.26.0
07765d3 
Bumps [asyncpg](https://github.com/MagicStack/asyncpg) from 0.25.0 to 0.26.0.
- [Release notes](https://github.com/MagicStack/asyncpg/releases)
- [Commits](MagicStack/asyncpg@v0.25.0...v0.26.0)

---
updated-dependencies:
- dependency-name: asyncpg
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump keystoneauth1 from 4.6.0 to 5.0.0
e9a4dc5 
Bumps [keystoneauth1](https://docs.openstack.org/keystoneauth/latest/) from 4.6.0 to 5.0.0.

---
updated-dependencies:
- dependency-name: keystoneauth1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump black from 22.3.0 to 22.8.0
764b25d 
Bumps [black](https://github.com/psf/black) from 22.3.0 to 22.8.0.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@22.3.0...22.8.0)

---
updated-dependencies:
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump flake8 from 4.0.1 to 5.0.4
c639edb 
Bumps [flake8](https://github.com/pycqa/flake8) from 4.0.1 to 5.0.4.
- [Release notes](https://github.com/pycqa/flake8/releases)
- [Commits](PyCQA/flake8@4.0.1...5.0.4)

---
updated-dependencies:
- dependency-name: flake8
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump rojopolis/spellcheck-github-actions from 0.24.0 to 0.27.0
d81b176 
Bumps [rojopolis/spellcheck-github-actions](https://github.com/rojopolis/spellcheck-github-actions) from 0.24.0 to 0.27.0.
- [Release notes](https://github.com/rojopolis/spellcheck-github-actions/releases)
- [Changelog](https://github.com/rojopolis/spellcheck-github-actions/blob/master/CHANGELOG.md)
- [Commits](rojopolis/spellcheck-github-actions@0.24.0...0.27.0)

---
updated-dependencies:
- dependency-name: rojopolis/spellcheck-github-actions
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump certifi from 2022.6.15 to 2022.9.24
4be4c41 
Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.6.15 to 2022.9.24.
- [Release notes](https://github.com/certifi/python-certifi/releases)
- [Commits](certifi/python-certifi@2022.06.15...2022.09.24)

---
updated-dependencies:
- dependency-name: certifi
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump tox from 3.25.0 to 3.26.0
d0cad12 
Bumps [tox](https://github.com/tox-dev/tox) from 3.25.0 to 3.26.0.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/master/docs/changelog.rst)
- [Commits](tox-dev/tox@3.25.0...3.26.0)

---
updated-dependencies:
- dependency-name: tox
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump coverage from 6.4.0 to 6.5.0
7e47ebe 
Bumps [coverage](https://github.com/nedbat/coveragepy) from 6.4.0 to 6.5.0.
- [Release notes](https://github.com/nedbat/coveragepy/releases)
- [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst)
- [Commits](coveragepy/coveragepy@6.4...6.5.0)

---
updated-dependencies:
- dependency-name: coverage
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump cryptography from 37.0.3 to 38.0.1
e17217f 
Bumps [cryptography](https://github.com/pyca/cryptography) from 37.0.3 to 38.0.1.
- [Release notes](https://github.com/pyca/cryptography/releases)
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@37.0.3...38.0.1)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump rxjs from 7.5.5 to 7.5.7 in /swift_browser_ui_frontend
28c556e 
Bumps [rxjs](https://github.com/reactivex/rxjs) from 7.5.5 to 7.5.7.
- [Release notes](https://github.com/reactivex/rxjs/releases)
- [Changelog](https://github.com/ReactiveX/rxjs/blob/master/CHANGELOG.md)
- [Commits](ReactiveX/rxjs@7.5.5...7.5.7)

---
updated-dependencies:
- dependency-name: rxjs
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump python-swiftclient from 4.0.0 to 4.1.0
eef2d98 
Bumps [python-swiftclient](https://github.com/openstack/swift) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/openstack/swift/releases)
- [Changelog](https://github.com/openstack/swift/blob/master/CHANGELOG)
- [Commits](https://github.com/openstack/swift/commits)

---
updated-dependencies:
- dependency-name: python-swiftclient
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump sphinx from 5.0.2 to 5.2.3
1866f3f 
Bumps [sphinx](https://github.com/sphinx-doc/sphinx) from 5.0.2 to 5.2.3.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases)
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/5.x/CHANGES)
- [Commits](sphinx-doc/sphinx@v5.0.2...v5.2.3)

---
updated-dependencies:
- dependency-name: sphinx
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @vue/composition-api in /swift_browser_ui_frontend
59e8027 
Bumps [@vue/composition-api](https://github.com/vuejs/composition-api) from 1.6.3 to 1.7.1.
- [Release notes](https://github.com/vuejs/composition-api/releases)
- [Changelog](https://github.com/vuejs/composition-api/blob/main/CHANGELOG.md)
- [Commits](vuejs/composition-api@v1.6.3...v1.7.1)

---
updated-dependencies:
- dependency-name: "@vue/composition-api"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @vueuse/rxjs from 8.7.5 to 9.3.0 in /swift_browser_ui_frontend
c21f0f1 
Bumps [@vueuse/rxjs](https://github.com/vueuse/vueuse/tree/HEAD/packages/rxjs) from 8.7.5 to 9.3.0.
- [Release notes](https://github.com/vueuse/vueuse/releases)
- [Commits](https://github.com/vueuse/vueuse/commits/v9.3.0/packages/rxjs)

---
updated-dependencies:
- dependency-name: "@vueuse/rxjs"
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @vue/cli-service from 5.0.6 to 5.0.8 in /swift_browser_ui_frontend
346491f 
Bumps [@vue/cli-service](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-service) from 5.0.6 to 5.0.8.
- [Release notes](https://github.com/vuejs/vue-cli/releases)
- [Changelog](https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md)
- [Commits](https://github.com/vuejs/vue-cli/commits/v5.0.8/packages/@vue/cli-service)

---
updated-dependencies:
- dependency-name: "@vue/cli-service"
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @vue/cli-plugin-eslint in /swift_browser_ui_frontend
81c2a4f 
Bumps [@vue/cli-plugin-eslint](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-eslint) from 5.0.6 to 5.0.8.
- [Release notes](https://github.com/vuejs/vue-cli/releases)
- [Changelog](https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md)
- [Commits](https://github.com/vuejs/vue-cli/commits/v5.0.8/packages/@vue/cli-plugin-eslint)

---
updated-dependencies:
- dependency-name: "@vue/cli-plugin-eslint"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump vue and vue-template-compiler in /swift_browser_ui_frontend
67236b9 
Bumps [vue](https://github.com/vuejs/core) and [vue-template-compiler](https://github.com/vuejs/vue). These dependencies needed to be updated together.

Updates `vue` from 2.6.14 to 2.7.13
- [Release notes](https://github.com/vuejs/core/releases)
- [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md)
- [Commits](https://github.com/vuejs/core/commits)

Updates `vue-template-compiler` from 2.6.14 to 2.7.13
- [Release notes](https://github.com/vuejs/vue/releases)
- [Changelog](https://github.com/vuejs/vue/blob/main/CHANGELOG.md)
- [Commits](vuejs/vue@v2.6.14...v2.7.13)

---
updated-dependencies:
- dependency-name: vue
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: vue-template-compiler
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump node from 16.15.1-alpine3.15 to 16.17.1-alpine3.15 in /dockerfiles
bd05ade 
Bumps node from 16.15.1-alpine3.15 to 16.17.1-alpine3.15.

---
updated-dependencies:
- dependency-name: node
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump eslint from 8.18.0 to 8.26.0 in /swift_browser_ui_frontend
bcf5f76 
Bumps [eslint](https://github.com/eslint/eslint) from 8.18.0 to 8.26.0.
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](eslint/eslint@v8.18.0...v8.26.0)

---
updated-dependencies:
- dependency-name: eslint
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump core-js from 3.23.3 to 3.26.0 in /swift_browser_ui_frontend
74e0e6d 
Bumps [core-js](https://github.com/zloirock/core-js/tree/HEAD/packages/core-js) from 3.23.3 to 3.26.0.
- [Release notes](https://github.com/zloirock/core-js/releases)
- [Changelog](https://github.com/zloirock/core-js/blob/master/CHANGELOG.md)
- [Commits](https://github.com/zloirock/core-js/commits/v3.26.0/packages/core-js)

---
updated-dependencies:
- dependency-name: core-js
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump @vue/cli-plugin-babel in /swift_browser_ui_frontend
a5e215b 
Bumps [@vue/cli-plugin-babel](https://github.com/vuejs/vue-cli/tree/HEAD/packages/@vue/cli-plugin-babel) from 5.0.6 to 5.0.8.
- [Release notes](https://github.com/vuejs/vue-cli/releases)
- [Changelog](https://github.com/vuejs/vue-cli/blob/dev/CHANGELOG.md)
- [Commits](https://github.com/vuejs/vue-cli/commits/v5.0.8/packages/@vue/cli-plugin-babel)

---
updated-dependencies:
- dependency-name: "@vue/cli-plugin-babel"
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump eslint-plugin-vue from 9.1.1 to 9.6.0 in /swift_browser_ui_frontend
4e44f67 
Bumps [eslint-plugin-vue](https://github.com/vuejs/eslint-plugin-vue) from 9.1.1 to 9.6.0.
- [Release notes](https://github.com/vuejs/eslint-plugin-vue/releases)
- [Commits](vuejs/eslint-plugin-vue@v9.1.1...v9.6.0)

---
updated-dependencies:
- dependency-name: eslint-plugin-vue
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/github_actions/devel/…
c1fd364 
…actions/setup-python-4' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
644eac1 
…owser_ui_frontend/devel/vue/cli-plugin-babel-5.0.8' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
834b23a 
…owser_ui_frontend/devel/vue/cli-plugin-eslint-5.0.8' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/asyncpg-0.2…
e7fdab3 
…6.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/keystoneaut…
4e7331b 
…h1-5.0.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
dbb652b 
…owser_ui_frontend/devel/vue/cli-service-5.0.8' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/black-22.8.…
537057e 
…0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/coverage-6.…
c03f57c 
…5.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/cryptograph…
2c95b5d 
…y-38.0.1' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
bd2ffb9 
…owser_ui_frontend/devel/rxjs-7.5.7' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/python-swif…
4d1f0d1 
…tclient-4.1.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/pip/devel/sphinx-5.2.…
313184c 
…3' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
119571e 
…owser_ui_frontend/devel/vue/composition-api-1.7.1' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
2d62458 
…owser_ui_frontend/devel/vueuse/rxjs-9.3.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/docker/dockerfiles/de…
6baf9f4 
…vel/node-16.17.1-alpine3.15' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
fcfcf05 
…owser_ui_frontend/devel/eslint-plugin-vue-9.6.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
da8438a 
…owser_ui_frontend/devel/vue-and-vue-template-compiler-2.7.13' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
1ce378a 
…owser_ui_frontend/devel/eslint-8.26.0' into update/package-versions-10-2022
@sampsapenna
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/swift_br…
fa641e3 
…owser_ui_frontend/devel/core-js-3.26.0' into update/package-versions-10-2022
@sampsapenna
deprecate vue-composition-api as unnecessary
13088b4
@sampsapenna sampsapenna added dependencies Pull requests that update a dependency file debt Technical debt labels Oct 28, 2022
@sampsapenna sampsapenna requested a review from hannyle October 28, 2022 11:07
@sampsapenna sampsapenna self-assigned this Oct 28, 2022
@hannyle
Copy link
Contributor

hannyle commented Oct 28, 2022

@sampsapenna I think the errors for Spelling Errors and Vue Unit Test could be fixed in this case.

@sampsapenna
Copy link
Member Author

sampsapenna commented Oct 28, 2022

@sampsapenna I think the errors for Spelling Errors and Vue Unit Test could be fixed in this case.

@hannyle Yep, I'll check those out and see what's breaking 👍🏼

@sampsapenna sampsapenna force-pushed the update/package-versions-10-2022 branch 2 times, most recently from 8a36b11 to 124d04b Compare October 28, 2022 12:18
@sampsapenna sampsapenna force-pushed the update/package-versions-10-2022 branch from 124d04b to 13e1d14 Compare October 28, 2022 12:23
@blankdots
Copy link
Contributor

blankdots commented Oct 28, 2022

btw there is also #750, which might help streamline the dependency update

@sampsapenna
Copy link
Member Author

sampsapenna commented Oct 31, 2022

btw there is also #750, which might help streamline the dependency update

@blankdots I'm aware, it's getting merged after this one 👍🏼 There were some breaking changes in a couple of npm updates, so I decided to merge them this way first. But it seems a real improvement for the future

blankdots
blankdots reviewed Oct 31, 2022
View reviewed changes
dockerfiles/Dockerfile-build-crypt

# Build UI with encryption
FROM node:16.15.1-alpine3.15 as FRONTEND
FROM node:19.0.0-alpine3.15 as FRONTEND
Copy link
Contributor

@blankdots blankdots Oct 31, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

are you sure you want to go node:19.0.0 ?

Copy link
Member Author

@sampsapenna sampsapenna Oct 31, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good catch, managed to miss that somehow 😅 We most definitely don't, but I'll see if 18 (current LTS) builds

@csc-felipe
Copy link
Contributor

csc-felipe commented Nov 11, 2022
edited
Loading

Rebasing should solve the python tests, fixed on #825

@sampsapenna sampsapenna mentioned this pull request Nov 14, 2022
Merged
8 tasks
@blankdots blankdots deleted the update/package-versions-10-2022 branch July 4, 2023 09:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hannyle hannyle Awaiting requested review from hannyle

1 more reviewer

@blankdots blankdots blankdots left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@sampsapenna sampsapenna

Labels

debt Technical debt dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@sampsapenna @hannyle @blankdots @csc-felipe