Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
24.4.0
->24.8.0
v3.15.2
->v3.17.0
v1.26.0
->v1.31.0
==1.9.0
->==1.11.2
v1.9.0
->v1.11.2
7.0.0
->7.1.1
Note: The
pre-commit
manager in Renovate is not supported by thepre-commit
maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.Release Notes
ambv/black (ambv/black)
v24.8.0
Compare Source
Stable style
# fmt: off
is used before a closing parenthesis or bracket. (#4363)Packaging
linked. This improves the PyPI listing for Black. (#4345)
Parser
multiline string (#4339)
(#4401)
\{
inside f-strings very well (#4422)(#4423)
Performance
.gitignore
(#4415)Blackd
v24.4.2
Compare Source
This is a bugfix release to fix two regressions in the new f-string parser introduced in
24.4.1.
Parser
Performance
v24.4.1
Compare Source
Highlights
Stable style
Parser
by PEP 696 (#4327)
Integrations
git archive
is skipped (#4313)asottile/pyupgrade (asottile/pyupgrade)
v3.17.0
Compare Source
v3.16.0
Compare Source
gitguardian/gg-shield (gitguardian/gg-shield)
v1.31.0
: 1.31.0Compare Source
Added
Fixed
v1.30.2
: 1.30.2Compare Source
Security
ggshield secret scan archive
could be passed a maliciously crafted tar archive to overwrite user files.v1.30.1
: 1.30.1Compare Source
Added
ggshield secret scan
commands can now output results in SARIF format, using the new--format sarif
option (#869).ggshield sca scan ci
andggshield sca scan all
now support theMALICIOUS
value for--minimum-severity
Changed
/metadata
endpoint of the API. If no messages are set up on the platform, default remediation messages will be displayed as before.v1.30.0
Compare Source
v1.29.0
: 1.29.0Compare Source
Removed
--all
option of theggshield sca scan ci
andggshield iac scan ci
commands has been removed.Added
ggshield secret scan path
now provides a--use-gitignore
option to honor.gitignore
and related files (#801).A new secret scan command,
ggshield secret scan changes
, has been added to scan changes between the current state of a repository checkout and its default branch.GGShield is now available as a standalone executable on Windows.
Changed
ggshield sca scan ci
andggshield iac scan ci
commands have changed. These commands are now expected to run in merge-request CI pipelines only, and will compute the diff exactly associated with the merge request.Deprecated
ggshield sca scan ci
orggshield iac scan ci
outside of a merge request CI pipeline is now deprecated.Fixed
GGShield now consumes less memory when scanning large repositories.
Errors thrown during
ggshield auth login
flow with an invalid instance URL are handled and the stack trace is no longer displayed on the console.Patch symbols at the start of lines are now always displayed, even for single line secrets.
The
ggshield auth login
command now respects the--allow-self-signed
flag.GGShield now exits with a proper error message instead of crashing when it receives an HTTP response without
Content-Type
header.v1.28.0
: 1.28.0Compare Source
Added
ignored_vulnerabilities
option now supports taking a CVE id as identifier.v1.27.0
: 1.27.0Compare Source
Removed
This feature is still in beta, its behavior may change in future versions
warning is no longer displayed for sca commands.Added
It is now possible to customize the remediation message printed by GGShield pre-receive hook. This can be done by setting the message in the
secret.prereceive_remediation_message
configuration key. Thanks a lot to @Renizmy for this feature.We now provide signed .pkg files for macOS.
Add
This feature is still in beta, its behavior may change in future versions
warning to iac scan allChanged
Deprecated
show-secrets
should becomeshow_secrets
. GGShield still supports reading from dash-separate configuration keys, but it prints a warning when it finds one.Fixed
GGShield commands working with commits no longer fail when parsing a commit without any author.
Configuration keys defined in the global configuration file are no longer ignored if a local configuration file exists.
The option
--exclude PATTERN
is no longer ignored by the commandggshield secret scan repo
.python/mypy (mypy)
v1.11.2
Compare Source
v1.11.1
Compare Source
v1.11.0
Compare Source
v1.10.1
Compare Source
v1.10.0
Compare Source
pre-commit/mirrors-mypy (pre-commit/mirrors-mypy)
v1.11.2
Compare Source
v1.11.1
Compare Source
v1.11.0
Compare Source
v1.10.1
Compare Source
v1.10.0
Compare Source
pycqa/flake8 (pycqa/flake8)
v7.1.1
Compare Source
v7.1.0
Compare Source
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.