Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Deps: Bump the dependencies group in /helm-version-upgrade with 3 updates #886

Merged
merged 1 commit into from
Oct 17, 2023
Merged

Deps: Bump the dependencies group in /helm-version-upgrade with 3 updates #886

merged 1 commit into from
Oct 17, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 16, 2023

Bumps the dependencies group in /helm-version-upgrade with 3 updates: astroid, httpcore and pontos.

Updates astroid from 3.0.0 to 3.0.1

Changelog

Sourced from astroid's changelog.

What's New in astroid 3.0.1?

Release date: 2023-10-15

Commits
  • 0191f53 Bump astroid to 3.0.1, update changelog (#2322)
  • 12f3eb5 Add assigned_stmts() to PEP 695 nodes (#2320) (#2321)
  • 1f57444 Merge pull request #2311 from pylint-dev/fix-maintenance-branch
  • 958ce1e [doc]Fix following the release of 3.0.0
  • a19bd7c Revert "Bump astroid to 3.1.0-dev0, update changelog"
  • 0883b04 Merge release branch for astroid 3.0.0
  • 0ea6d86 Bump astroid to 3.1.0-dev0, update changelog
  • See full diff in compare view

Updates httpcore from 0.18.0 to 1.0.0

Release notes

Sourced from httpcore's releases.

Version 1.0.0

1.0.0 (6th Oct 2023)

From version 1.0 our async support is now optional, as the package has minimal dependencies by default.

For async support use either pip install 'httpcore[asyncio]' or pip install 'httpcore[trio]'.

The project versioning policy is now explicitly governed by SEMVER. See https://semver.org/.

  • Async support becomes fully optional. (#809)
  • Add support for Python 3.12. (#807)
Changelog

Sourced from httpcore's changelog.

1.0.0 (October 6th, 2023)

From version 1.0 our async support is now optional, as the package has minimal dependencies by default.

For async support use either pip install 'httpcore[asyncio]' or pip install 'httpcore[trio]'.

The project versioning policy is now explicitly governed by SEMVER. See https://semver.org/.

  • Async support becomes fully optional. (#809)
  • Add support for Python 3.12. (#807)
Commits

Updates pontos from 22.7.2 to 23.10.2

Release notes

Sourced from pontos's releases.

pontos 23.10.2

23.10.2 - 2023-10-16

Added

  • Add most important parts of the GitHub code scanning API 3ebc073
  • Add models for GitHub code scanning API 4124aab
  • Add tests for getting a single secret scanning alert 583af9d
  • Officially support Python 3.12 32734df

Changed

  • Improve Model class for invalid data while parsing child models (#904) 7394814
  • Ensure HTTP errors are raised on GitHub security API aaa084c
  • Improve secret scanning API usage examples 17d8436

Bug Fixes

  • Allow empty CPE match for CVE configuration nodes 470cf35

Dependencies

  • Bump the python-packages group with 3 updates (#906) 066169b

pontos 23.10.1

23.10.1 - 2023-10-09

Dependencies

  • Bump the python-packages group with 4 updates (#898) 1ab0119

pontos 23.10.0

[23.10.0] - 2023-10-06

Added

  • Allow to enforce uploading releases as GitHub pre-releases (#894) 710fb09
  • Implement GitHub API for secret scanning 9222594
  • Add models for implementing the GitHub secret scanning API 81e91d2
  • Add a GitHub API to handle dependabot alerts d297656
  • Add models for GitHub dependabot API d70ac2c
  • Auto-merge workflow, to enable squash auto-merge in open PRs e8610a0

Removed

  • greenbonebot token from update-header.yml (#896) 5c2f7cd

Changed

  • Update and rename release-pontos.yml to release.yml (#892) cf5b3ff
  • Move SortOrder to pontos.github.model.base 23c100b

Dependencies

... (truncated)

Commits
  • 99f0ef4 Automatic release to 23.10.2
  • 470cf35 Fix: Allow empty CPE match for CVE configuration nodes
  • 066169b Deps: Bump the python-packages group with 3 updates (#906)
  • 7394814 Change: Improve Model class for invalid data while parsing child models (#904)
  • aaa084c Change: Ensure HTTP errors are raised on GitHub security API
  • b734a69 Try to fix typing for Python 3.12
  • 3ebc073 Add: Add most important parts of the GitHub code scanning API
  • 4124aab Add: Add models for GitHub code scanning API
  • 583af9d Add: Add tests for getting a single secret scanning alert
  • cbf6b20 Fix copy and paste mistake for test case class name
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot requested a review from a team as a code owner October 16, 2023 15:42
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Oct 16, 2023
@greenbonebot greenbonebot enabled auto-merge (squash) October 16, 2023 15:42
@github-actions
Copy link

Conventional Commits Report

Type Number
Dependencies 1

🚀 Conventional commits found.

@dependabot @bjoernricks
Deps: Bump the dependencies group
c7cc498 
Bumps the dependencies group in /helm-version-upgrade with 3 updates: [astroid](https://github.com/pylint-dev/astroid), [httpcore](https://github.com/encode/httpcore) and [pontos](https://github.com/greenbone/pontos).


Updates `astroid` from 3.0.0 to 3.0.1
- [Release notes](https://github.com/pylint-dev/astroid/releases)
- [Changelog](https://github.com/pylint-dev/astroid/blob/main/ChangeLog)
- [Commits](pylint-dev/astroid@v3.0.0...v3.0.1)

Updates `httpcore` from 0.18.0 to 1.0.0
- [Release notes](https://github.com/encode/httpcore/releases)
- [Changelog](https://github.com/encode/httpcore/blob/master/CHANGELOG.md)
- [Commits](encode/httpcore@0.18.0...1.0.0)

Updates `pontos` from 22.7.2 to 23.10.2
- [Release notes](https://github.com/greenbone/pontos/releases)
- [Commits](greenbone/pontos@v22.7.2...v23.10.2)

---
updated-dependencies:
- dependency-name: astroid
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: httpcore
  dependency-type: indirect
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: pontos
  dependency-type: indirect
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@bjoernricks bjoernricks force-pushed the dependabot/pip/helm-version-upgrade/dependencies-3a15cba685 branch from 0bdb471 to c7cc498 Compare October 17, 2023 07:26
@greenbonebot greenbonebot merged commit f89d11f into main Oct 17, 2023
17 of 19 checks passed
@greenbonebot greenbonebot deleted the dependabot/pip/helm-version-upgrade/dependencies-3a15cba685 branch October 17, 2023 07:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bjoernricks bjoernricks bjoernricks approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@bjoernricks @greenbonebot