Skip to content

v0.4.9

Choose a tag to compare

View all tags
@mateuszwalo mateuszwalo released this 29 May 08:55
· 112 commits to main since this release
v0.4.9
c1d81f1
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

[0.4.9] — 2026-05-29

Added

  • Dependabot (dependabot.yml): weekly pip, GitHub Actions, and dashboard_web npm groups.
  • Dependency Review workflow on pull requests to main.
  • CODEOWNERS and expanded MAINTAINER_SETUP (rulesets, Dependabot batch policy, review/bypass notes).
  • CI security: pip-audit (with documented allowlist) and bandit in quality-linux.

Changed

  • GitHub Actions: checkout@v6, setup-python@v6, upload-artifact@v7, download-artifact@v8, dependency-review-action@v5.
  • Dashboard toolchain: TypeScript 6, recharts 3, Vite 8 + @vitejs/plugin-react 6.
  • albumentations optional extra: >=1.3.0,<3.0.
  • Consolidated CodeQL quality fixes and closed superseded autofix Dependabot PRs (#59#103).
Assets 2
Loading