Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⬆️ Bump gitpython from 3.1.27 to 3.1.30 #81

Merged
merged 4 commits into from
Jan 12, 2023
Merged

⬆️ Bump gitpython from 3.1.27 to 3.1.30 #81

merged 4 commits into from
Jan 12, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 11, 2023

Bumps gitpython from 3.1.27 to 3.1.30.

Release notes

Sourced from gitpython's releases.

v3.1.30 - with important security fixes

See gitpython-developers/GitPython#1515 for details.

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
⬆️ Bump gitpython from 3.1.27 to 3.1.30
f57fa36 
Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.27 to 3.1.30.
- [Release notes](https://github.com/gitpython-developers/GitPython/releases)
- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)
- [Commits](gitpython-developers/GitPython@3.1.27...3.1.30)

---
updated-dependencies:
- dependency-name: gitpython
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 11, 2023
@weiji14
🩹 Relock with poetry 1.3.0
2110a6f 
Use new poetry lock file format (version 2.0).
@weiji14
📌 Temporarily pin jupyter_server<2 to prevent jsonschema error
73614b3 
The latest jupyter_server=2.0.6 version installed via readthedocs requires a version of jsonschema which is incompatible with jupyter-book=0.13, resulting in an error like `pkg_resources.UnknownExtra: jsonschema 3.2.0 has no such extra feature 'format-nongpl'`, see also ProjectPythia/cookbook-template#100 (comment) for details. Applying the workaround from ProjectPythia/cookbook-template#101 for now.

Also remove the ipython!=8.7.0 pin added in d29b4bd, since ipython=8.8.0 is released now.
@weiji14
💚 Use jupyter_server==1.* pinning
1d358ae 
Prevent the ` /bin/sh: 1: cannot open 2: No such file` error in readthedocs build due to `<2` not being escaped properly.
@weiji14 weiji14 added the skip-changelog Skip adding Pull Request to changelog label Jan 12, 2023
@weiji14 weiji14 merged commit 9c8fda9 into main Jan 12, 2023
@weiji14 weiji14 deleted the dependabot/pip/gitpython-3.1.30 branch January 12, 2023 03:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file skip-changelog Skip adding Pull Request to changelog
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@weiji14