v0.300.0

What's Changed

• Bump library/rust from 1.82.0-bookworm to 1.85.0-bookworm in /cargo by @dependabot in #11662
• use $.job.credentials-metadata if $.credentials isn't given by @brettfo in #11704
• Added sorbet type strict for the metadata_finder by @randhircs in #11660
• Simplify the "version already exists" check by using RubyGems v2 API by @jeffwidman in #11712
• Use Poetry v2 by @edgarrmondragon in #11642
• Add Generic Cooldown Filtering and Enable for Python Package Manager by @kbukum1 in #11693
• use different values for $(TargetPlatformVersion) for TFM and dependency discovery by @brettfo in #11718
• Bump pipenv from 2024.0.2 to 2024.4.1 in /python/helpers in the pipenv group across 1 directory by @dependabot in #11409
• Add strict typing for the elm update checker by @markhallen in #11716
• Document why bundler-cache: true isn't needed by @jeffwidman in #11711
• detect dependencies with restore property to work around NuGet bug by @brettfo in #11727
• Downgrade Rust Docker image from 1.85.0-bookworm to 1.84.0-bookworm to restore missing dependencies by @kbukum1 in #11738
• Fix passing cooldown options into Python Latest Version Finder by @kbukum1 in #11743
• Better: Prepend .gitconfig with random hash to allow concurrency by @ylecuyer in #9219
• Handle uv pyproject.toml without a requirements.txt lock file by @markhallen in #11735
• Remove FF and tests for npm6 deprecation and unsupported error by @amazimbe in #11622
• v0.300.0 by @dependabot-core-action-automation in #11744

New Contributors

• @edgarrmondragon made their first contribution in #11642

Full Changelog: v0.299.1...v0.300.0

v0.299.1

What's Changed

• Adding a success log to the go mod tidy command to ensure it runs before creating a version bump PR. by @thavaahariharangit in #11698
• Add the uv ecosystem by @markhallen in #11687
• v0.299.1 by @dependabot-core-action-automation in #11702

Full Changelog: v0.299.0...v0.299.1

v0.299.0

What's Changed

• Adding support for dockerfile_inline by @robaiken in #11652
• install all .NET targeting packs specified by the installed SDKs by @brettfo in #11653
• report specific missing file during discovery by @brettfo in #11654
• Remove sha256 from the source's digest by @robaiken in #11655
• Skip docker compose images with env param by @robaiken in #11656
• Bump regclient to v0.8.2 by @martincostello in #11624
• Bump terraform to 1.10.5 by @yeikel in #11435
• Support images wrapped in quotes by @robaiken in #11669
• ensure proper casing for NuGet.Config prior to any operations being performed by @brettfo in #11659
• report security_update_not_needed when security update can't be performed by @brettfo in #11672
• don't continue checking a non-existant feed for a package by @brettfo in #11252
• report full shape of job file by @brettfo in #11363
• Standardize Package Release Fetching Format and Implement JSON API for Python by @kbukum1 in #11630
• Remove duplicated Shared module by @robaiken in #11670
• Increase timeout for getting tags from 5 seconds to 60 seconds by @robaiken in #11678
• Release docker compose by @robaiken in #11676
• Capture errors on deps.get in Hex ecosystem by @TylerWitt in #11661
• include non-project files in pull request by @brettfo in #11673
• add error for missing sdk by @brettfo in #11674
• Implement a Generic Package Latest Version Finder by @kbukum1 in #11675
• Improve Docker tag component detection and comparison by @robaiken in #11679
• v0.299.0 by @dependabot-core-action-automation in #11684

Full Changelog: v0.298.0...v0.299.0

v0.298.0

What's Changed

• Add .NET 9 as a supported framework by @patrikwlund in #11619
• Adding Docker Compose to setup by @robaiken in #11647
• Add Bun image strategy to push the Bun updater image by @markhallen in #11648
• [New Nuget Runner] Validate that we preserve line endings in Nuget dependency updates by @Penguinwizzard in #11629
• v0.298.0 by @dependabot-core-action-automation in #11644

New Contributors

• @patrikwlund made their first contribution in #11619
• @Penguinwizzard made their first contribution in #11629

Full Changelog: v0.297.2...v0.298.0

v0.297.2

What's Changed

• Error handling of security updates for conflicting target dependencies by @thavaahariharangit in #11621
• Renaming docker compose image by @robaiken in #11637
• Remove extra python_version by @eggplants in #11601
• expand error patterns for missing packages by @brettfo in #11605
• Renaming docker-compose to docker_compose by @robaiken in #11640
• v0.297.2 by @dependabot-core-action-automation in #11641

Full Changelog: v0.297.1...v0.297.2

v0.297.1

What's Changed

• FromAsCasing error fixes. by @thavaahariharangit in #11582
• Add tests for the new bun ecosystem by @markhallen in #11585
• Update README to link to list of package managers. by @markdorison in #6575
• Adds various fixes for terraform and python exceptions by @sachin-sandhu in #11590
• [Feature Flag] - Remove enable_fix_for_pnpm_no_change_error Feature Flag by @kbukum1 in #11592
• Update Python and pyenv versions by @ulgens in #11530
• Fixes docker image fetch empty response issue by @sachin-sandhu in #11594
• Drop Python 3.8 support by @eggplants in #11529
• go_modules: replace deprecated ioutil library by @dmitris in #11541
• Make elm/version.rb sorbet typing strict by @amazimbe in #11598
• feat(PEP621) Add support for requires-python in pyproject.toml by @louis-jaris in #11426
• install openssh-client package for ssh command-line utilities by @dmitris in #11545
• Adding Cargo Rust to the Python Environment by @thavaahariharangit in #11599
• Remove the javascript folder by @markhallen in #11623
• Add support for docker-compose.yml files by @robaiken in #11492
• Remove python 3.8 deprecation / unsupported FFs and cleanup tests by @amazimbe in #11627
• v0.297.1 by @dependabot-core-action-automation in #11636

New Contributors

• @markdorison made their first contribution in #6575
• @eggplants made their first contribution in #11529
• @dmitris made their first contribution in #11541
• @louis-jaris made their first contribution in #11426

Special Acknowledgments

• @pedropombeiro for creating the initial Docker Compose implementation #11492
• @oceanBT for championing and reviving the Docker Compose integration #11492

Full Changelog: v0.297.0...v0.297.1

v0.297.0

What's Changed

• make helper function return deterministic by @brettfo in #11573
• Fixes [Pipfile] [Python] raise error on malformed pipfile contents by @sachin-sandhu in #11576
• v0.297.0 by @dependabot-core-action-automation in #11577

Full Changelog: v0.296.3...v0.297.0

v0.296.3

What's Changed

• don't unnecessarily require windows app ref package by @brettfo in #11540
• Use dependabot-common gem if available by @markhallen in #11555
• Fixes [part of 1.9k] [Python] Poetry errors by @sachin-sandhu in #11561
• Adds handlers for yarn001 errors by @sachin-sandhu in #11562
• Fixes [1.9k weekly] [terraform] exceptions by @sachin-sandhu in #11565
• Return nil when fetching the latest tag results in a JSON::ParserError by @amazimbe in #11552
• Separate bun from npm_and_yarn as an Independent Ecosystem by @kbukum1 in #11559
• v0.296.3 by @dependabot-core-action-automation in #11575

Full Changelog: v0.296.2...v0.296.3

v0.296.2

What's Changed

• Replace dependabot-javascript into dependabot-bun by @kbukum1 in #11550
• v0.296.2 by @dependabot-core-action-automation in #11551

Full Changelog: v0.296.1...v0.296.2

v0.296.1

What's Changed

• Handle import error when a package is referenced incorrectly by @amazimbe in #11503
• consider project target framework for package update eligibility by @brettfo in #11485
• Strict type Dependabot::Docker::UpdateChecker by @JamieMagee in #11509
• Add the bun ecosystem file parser by @markhallen in #11508
• Handle module does not contain package & missing go.sum entry errors by @amazimbe in #11517
• Add CI tests for bun ecosystem by @kbukum1 in #11514
• Sorbet type checking for gem_net_http_adapter by @thavaahariharangit in #11519
• Add bun ecosystem FileParser by @markhallen in #11521
• improve TFM discovery when targeting Windows by @brettfo in #11510
• Switch Hex erlang package provider by @TylerWitt in #11493
• add pr management message types to NuGet updater by @brettfo in #11513
• Adds handler to private registries timeout and socket errors by @sachin-sandhu in #11523
• Register the bun package manager by @markhallen in #11524
• adds experiment to exclude local and non updatable packages by @sachin-sandhu in #11527
• group update operations by dependency name by @brettfo in #11526
• Refactor Namespace Structure and Fix Abstractions for Lockfile and Fetcher by @kbukum1 in #11528
• v0.296.1 by @dependabot-core-action-automation in #11547

Full Changelog: v0.296.0...v0.296.1