From 82e3d17763c27265b10612ccf91bea3728705041 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 10 Jan 2024 20:42:55 +0000 Subject: [PATCH] build(deps-dev): bump bandit from 1.7.5 to 1.7.6 (#190) --- poetry.lock | 12 ++++++------ pyproject.toml | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/poetry.lock b/poetry.lock index 8196c75..5e44f17 100644 --- a/poetry.lock +++ b/poetry.lock @@ -2,18 +2,18 @@ [[package]] name = "bandit" -version = "1.7.5" +version = "1.7.6" description = "Security oriented static analyser for python code." optional = false -python-versions = ">=3.7" +python-versions = ">=3.8" files = [ - {file = "bandit-1.7.5-py3-none-any.whl", hash = "sha256:75665181dc1e0096369112541a056c59d1c5f66f9bb74a8d686c3c362b83f549"}, - {file = "bandit-1.7.5.tar.gz", hash = "sha256:bdfc739baa03b880c2d15d0431b31c658ffc348e907fe197e54e0389dd59e11e"}, + {file = "bandit-1.7.6-py3-none-any.whl", hash = "sha256:36da17c67fc87579a5d20c323c8d0b1643a890a2b93f00b3d1229966624694ff"}, + {file = "bandit-1.7.6.tar.gz", hash = "sha256:72ce7bc9741374d96fb2f1c9a8960829885f1243ffde743de70a19cee353e8f3"}, ] [package.dependencies] colorama = {version = ">=0.3.9", markers = "platform_system == \"Windows\""} -GitPython = ">=1.0.1" +GitPython = ">=3.1.30" PyYAML = ">=5.3.1" rich = "*" stevedore = ">=1.20.0" @@ -1212,4 +1212,4 @@ testing = ["func-timeout", "jaraco.itertools", "pytest (>=6)", "pytest-black (>= [metadata] lock-version = "2.0" python-versions = ">=3.8,<3.12" -content-hash = "66b441dc8cc4fc9adb6b674dcc6a8d321a32b443cf7b556a61834beddb5d8c05" +content-hash = "6b7dba7d7ea5558a40669a89c08ffdfdec5694a975d726d020e06f23d4f87c72" diff --git a/pyproject.toml b/pyproject.toml index ee022f6..db0afea 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -27,7 +27,7 @@ importlib-metadata = ">=5,<7" [tool.poetry.group.dev.dependencies] black = ">=22.10,<24.0" -bandit = "1.7.5" +bandit = "1.7.6" mypy = ">=0.982,<1.7" pre-commit = ">=2.19,<4.0" pre-commit-hooks = "^4.2.0"