-
-
Notifications
You must be signed in to change notification settings - Fork 513
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump python from 3.9-alpine to 3.11-alpine #409
Bump python from 3.9-alpine to 3.11-alpine #409
Conversation
No no that doesn't seem relevant to me: that's obvious that the app runs on python 3.11, but we have to support the minimal version in Docker don't we? |
0762a67
to
45a9e0a
Compare
@pseusys Right now we are using Python 3.9 and Dependabot is suggesting us to use 3.11 instead. We don't have to use the most minimal version because the actions run in the cloud and not on anyone's system locally. So we can keep upgrading based on our code so that we get access to all the improvements and bug fixes in newer versions. |
For some reason however, the workflows are failing as the secrets are not getting passed through. We need to figure out why that is happening an come up with a workaround. I also noticed the other day, secrets are not getting passed to pull requests from forks. I remember reading somewhere long ago that GitHub is doing this for security reasons. Right now, the workflows are only working for human made pull requests from this repository and not for bot made pull requests from this repository or human made pull requests from forks. |
b758cee
to
02f7ccb
Compare
Raised ticket with ID 2051168 to check with GitHub Support on this. |
02f7ccb
to
89ca152
Compare
Bumps python from 3.9-alpine to 3.11-alpine. --- updated-dependencies: - dependency-name: python dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
89ca152
to
1c92b5f
Compare
This comment has been minimized.
This comment has been minimized.
README stats current output: 🐱 My GitHub Data
I'm an Early 🐤
📅 I'm Most Productive on Sunday
📊 This Week I Spent My Time On
I Mostly Code in JavaScript
You can use this website to view the generated base64 image.
Last Updated on 12/03/2023 18:22:16 UTC |
Bumps python from 3.9-alpine to 3.11-alpine.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major version
will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor version
will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependency
will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)