Seth Michael Larson
|
a2baaaf862
|
Pin test requirements
|
2024-07-10 09:44:22 -05:00 |
Seth Michael Larson
|
4ff87e170e
|
Pin requirements to hashes
|
2024-07-10 09:29:30 -05:00 |
William Woodruff
|
4d020ff0a9
|
requirements: re-compile requirements with latest twine
Signed-off-by: William Woodruff <william@trailofbits.com>
|
2024-06-24 16:49:50 -04:00 |
dependabot[bot]
|
a54b9b8952
|
---
updated-dependencies:
- dependency-name: requests
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-05-21 05:26:31 +00:00 |
Sviatoslav Sydorenko
|
699cd6103f
|
⇪📦 Bump the runtime dep lockfile
|
2024-05-16 17:50:20 +02:00 |
dependabot[bot]
|
576aae3934
|
build(deps): bump idna from 3.6 to 3.7 in /requirements
Bumps [idna](https://github.com/kjd/idna) from 3.6 to 3.7.
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst)
- [Commits](https://github.com/kjd/idna/compare/v3.6...v3.7)
---
updated-dependencies:
- dependency-name: idna
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-04-12 04:51:56 +00:00 |
Sviatoslav Sydorenko
|
81e9d935c8
|
Bump `pip` to v24.0 in runtime prerequisites lock
|
2024-03-08 00:20:54 +01:00 |
Sviatoslav Sydorenko
|
91527c4583
|
Regenerate lockfiles with pip-tools v7.4.1
|
2024-03-08 00:19:54 +01:00 |
Sviatoslav Sydorenko
|
3a817c6dce
|
Bump action runtime to CPython 3.12
|
2024-03-08 00:15:38 +01:00 |
Sviatoslav Sydorenko
|
d7af439579
|
Mass-bump transitive dependencies of runtime
|
2024-03-07 23:08:31 +01:00 |
Sviatoslav Sydorenko
|
e90ddca975
|
Bump `readme-renderer` to v43.0
|
2024-03-07 23:07:33 +01:00 |
Sviatoslav Sydorenko
|
dae7fa3e8d
|
Bump Twine to v5.0.0
|
2024-03-07 23:05:40 +01:00 |
Sviatoslav Sydorenko
|
0fe04ae7d9
|
Bump `id` to v1.3.0
|
2024-03-07 23:04:40 +01:00 |
Sviatoslav Sydorenko
|
444e17980b
|
Bump cryptography to v42.0.5
|
2024-03-07 23:02:36 +01:00 |
Sviatoslav Sydorenko
|
820be4e5e3
|
Normalize pip-tools' header comment @ `runtime.txt`
It's currently not prefixed with `requirements/` in most places and
that what Dependabot keeps using.
|
2024-03-07 23:00:46 +01:00 |
SigureMo
|
b065889f7f
|
revert other bumps
|
2024-03-06 19:20:47 +08:00 |
SigureMo
|
00a7cd17a2
|
re-gen on Linux and run command in requirements/
|
2024-03-06 01:59:27 +00:00 |
SigureMo
|
2972d54cda
|
bump pkginfo only
|
2024-03-05 18:16:00 +08:00 |
SigureMo
|
f6a1bcf881
|
Revert "build(deps): re-generate requirements to support `Metadata-version=2.3`"
This reverts commit e6ed2a4dfb .
|
2024-03-05 18:07:49 +08:00 |
SigureMo
|
e6ed2a4dfb
|
build(deps): re-generate requirements to support `Metadata-version=2.3`
|
2024-03-05 12:56:14 +08:00 |
dependabot[bot]
|
c13b4aa8c5
|
build(deps): bump cryptography from 42.0.2 to 42.0.4 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.2 to 42.0.4.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/42.0.2...42.0.4)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-02-21 20:44:40 +00:00 |
dependabot[bot]
|
751e5b80a4
|
build(deps): bump cryptography from 42.0.0 to 42.0.2 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.0 to 42.0.2.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/42.0.0...42.0.2)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-02-17 00:58:14 +00:00 |
dependabot[bot]
|
a524841e7b
|
build(deps): bump cryptography from 41.0.6 to 42.0.0 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.6 to 42.0.0.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/41.0.6...42.0.0)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2024-02-06 03:03:07 +00:00 |
Sviatoslav Sydorenko
|
2fa448ab0c
|
Merge PRs #190, #184, #185, #189 and #194 into unstable/v1
|
2023-11-29 03:23:56 +01:00 |
dependabot[bot]
|
41f3f53c75
|
Bump cryptography from 41.0.3 to 41.0.6 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.3 to 41.0.6.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/41.0.3...41.0.6)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-11-28 23:56:20 +00:00 |
dependabot[bot]
|
70a33caeb9
|
Bump pip from 22.3.1 to 23.3 in /requirements
Bumps [pip](https://github.com/pypa/pip) from 22.3.1 to 23.3.
- [Changelog](https://github.com/pypa/pip/blob/main/NEWS.rst)
- [Commits](https://github.com/pypa/pip/compare/22.3.1...23.3)
---
updated-dependencies:
- dependency-name: pip
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-11-02 21:42:46 +00:00 |
dependabot[bot]
|
102f507b75
|
Bump urllib3 from 2.0.6 to 2.0.7 in /requirements
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7)
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-10-17 21:02:57 +00:00 |
dependabot[bot]
|
75ca4c1f12
|
Bump urllib3 from 2.0.3 to 2.0.6 in /requirements
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.3 to 2.0.6.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.0.3...2.0.6)
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-10-02 23:58:34 +00:00 |
dependabot[bot]
|
adef75a5a6
|
Bump cryptography from 41.0.2 to 41.0.3 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 41.0.2 to 41.0.3.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/41.0.2...41.0.3)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-08-02 02:15:59 +00:00 |
dependabot[bot]
|
c185b8ee4e
|
Bump certifi from 2023.5.7 to 2023.7.22 in /requirements
Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.5.7 to 2023.7.22.
- [Commits](https://github.com/certifi/python-certifi/compare/2023.05.07...2023.07.22)
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-07-25 23:36:57 +00:00 |
Quentin Pradet
|
a5d57af63c
|
Bump runtime dependencies
|
2023-07-11 09:31:13 +04:00 |
dependabot[bot]
|
5684530096
|
Bump cryptography from 39.0.1 to 41.0.0 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 39.0.1 to 41.0.0.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/39.0.1...41.0.0)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-06-02 20:16:33 +00:00 |
dependabot[bot]
|
c803c91ef0
|
Bump requests from 2.28.1 to 2.31.0 in /requirements
Bumps [requests](https://github.com/psf/requests) from 2.28.1 to 2.31.0.
- [Release notes](https://github.com/psf/requests/releases)
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md)
- [Commits](https://github.com/psf/requests/compare/v2.28.1...v2.31.0)
---
updated-dependencies:
- dependency-name: requests
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-05-23 05:16:54 +00:00 |
William Woodruff
|
2b46bad8cb
|
OIDC beta support
Co-authored-by: Sviatoslav Sydorenko <wk.cvs.github@sydorenko.org.ua>
|
2023-03-15 17:08:09 -04:00 |
dependabot[bot]
|
6a2da9bc3b
|
Bump cryptography from 38.0.4 to 39.0.1 in /requirements
Bumps [cryptography](https://github.com/pyca/cryptography) from 38.0.4 to 39.0.1.
- [Release notes](https://github.com/pyca/cryptography/releases)
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/38.0.4...39.0.1)
---
updated-dependencies:
- dependency-name: cryptography
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2023-02-08 04:41:02 +00:00 |
dependabot[bot]
|
5a2ea379cb
|
Bump certifi from 2022.9.24 to 2022.12.7 in /requirements
Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.9.24 to 2022.12.7.
- [Release notes](https://github.com/certifi/python-certifi/releases)
- [Commits](https://github.com/certifi/python-certifi/compare/2022.09.24...2022.12.07)
---
updated-dependencies:
- dependency-name: certifi
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
|
2022-12-09 09:36:08 +00:00 |
Sviatoslav Sydorenko
|
d2a2496a01
|
Switch the runtime from Python 3.9 to Python 3.11
|
2022-12-03 02:46:45 +01:00 |
Sviatoslav Sydorenko
|
0b69a8c2df
|
Document broken `pkginfo==1.9.0` transitive dep
Refs:
* https://github.com/pypa/gh-action-pypi-publish/issues/107
|
2022-11-30 10:32:45 +01:00 |
Sviatoslav Sydorenko
|
c54db9c2b7
|
Integrate pip-tools-generated constraint files
This patch adds constraint files with the dependency tree
generated by `pip-compile` under Python 3.9. They are now integrated
into the action container image.
Refs:
* https://github.com/pypa/gh-action-pypi-publish/issues/101
* https://github.com/pypa/gh-action-pypi-publish/issues/107
|
2022-11-30 10:17:33 +01:00 |