Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade dependencies Aug'24 #274

Merged
merged 12 commits into from
Aug 11, 2024
Merged

Upgrade dependencies Aug'24 #274

merged 12 commits into from
Aug 11, 2024

Conversation

hotenov
Copy link
Owner

@hotenov hotenov commented Aug 11, 2024

No description provided.

hotenov added 12 commits August 11, 2024 10:56
@hotenov
⬆️ chore(deps): Upgrade Python to ^3.11 and Update deps in 'main' group
bc1f61f 
	Update a dependency constraints in 'pyproject.toml'
	  click (8.0.4 -> 8.1.7)
	  requests (2.31.0 -> 2.32.3)
	  beautifulsoup4 (4.9.3 -> 4.12.3)

	Also upgrade dependencies:
	  lxml (4.9.4 -> 5.3.0)
	  loguru (0.6.0 -> 0.7.2)
	  single-source (0.2.0 -> 0.4.0)
@hotenov
🔧 chore(nox): Update Python version to 3.11 for Nox sessions
03a1b4e
@hotenov
🔧 chore(nox): Ignore dispute CVE ID=70612 (in jinja2) in 'safety' ses…
4127a6d 
…sion

CVE-2019-8341 marked as **DISPUTE**
https://data.safetycli.com/v/70612/97c/
	  why: The maintainer and multiple third parties believe that this vulnerability isn't valid because users shouldn't use untrusted templates without sandboxing.
@hotenov
⬆️ chore(deps): Update deps in 'format' group
d0bbd1c 
	black (22.12.0 -> 24.8.0)
	yapf (0.31.0 -> 0.40.2)
	reorder-python-imports (2.8.0 -> 3.13.0)
	rope (0.20.1 -> 1.13.0)

	Update constraints:
	pre-commit (3.3.2 -> 3.8.0 )
	pre-commit-hooks (4.4.0 -> 4.6.0)
@hotenov
⬆️ chore(deps): Update deps in 'lint' group
dc8e641 
	flake8 (4.0.1 -> 7.1.1)
	flake8-bandit (3.0.0 -> 4.1.1)
	flake8-bugbear (21.11.29 -> 24.4.26)
	flake8-rst-docstrings (0.2.7 -> 0.3.0)
	mypy (0.910 -> 1.11.1)
	pep8-naming (0.12.1 -> 0.14.1)

	Update constraints:
	flake8-docstrings (1.6.0 -> 1.7.0)
	flake8-black (0.3.3 -> 0.3.6)
	flake8-import-order (0.18.1 -> 0.18.2)
@hotenov
⬆️ chore(deps): Update deps in 'test' group
b9e9159 
	pytest (7.4.4 -> 8.3.2)
	safety (2.4.0b2 -> 3.2.5)
	coverage[toml] (6.5.0 -> 7.6.1)
	xdoctest (0.15.10 -> 1.1.6)

	Update constraints:
	pytest-mock (3.6.1 -> 3.14.0)
	requests-mock (1.9.3 -> 1.12.1)
@hotenov
⬆️ chore(deps): Update deps in 'docs' group
2fcfdad 
	sphinx (7.4.7 -> 8.0.2)
	sphinx-click (4.4.0 -> 6.0.0)

	Update constraints:
	sphinx-autobuild (2021.3.14 -> 2024.4.16)
	Pygments (2.15.1 -> 2.18.0)
	furo (2023.5.20 -> 2024.8.6)
@hotenov
🔧 chore(nox): Replace 'reorder-python-imports' with 'isort' pre-commi…
bf8d11f 
…t hook

Reason:
psf/black#4175 (comment)
  Black 24+ and reorder-python-imports have incompatible opinions on whether there should be a blank line after a docstring.

Enable 'mypy' session back
@hotenov
🚨 style: Add new line after module's docstring (with new 'black' v24+)
90949e7 
Update 'poetry.lock' (it was not consistent with pyproject.toml)
@hotenov
✏️ refactor(parser): Correct spelling of 'beginning'
f4947d4
@hotenov
Merge branch 'main' into deps-upgrade-aug2024
aa9d657
@hotenov
🔧 chore(ci): Update action version for 'setup-python' (to v5)
abbfc24
@github-actions github-actions bot added ci Continuous Integration dependencies Pull requests that update a dependency file labels Aug 11, 2024
@hotenov hotenov merged commit fd74c0c into main Aug 11, 2024
29 checks passed
@hotenov hotenov deleted the deps-upgrade-aug2024 branch August 11, 2024 17:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
ci Continuous Integration dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@hotenov