Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[dependabot] Bump safety from 3.2.7 to 3.2.10 #36

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 4, 2024

Bumps safety from 3.2.7 to 3.2.10.

Changelog

Sourced from safety's changelog.

[3.2.10] - 2024-10-25

  • Support for scanning pyproject.toml files (#625)
  • Update safety-schemas version used (#624)
  • Fix basic poloicy test (#622)

[3.2.9] - 2024-10-23

  • chore: deprection-message-for-license-command (4149b70)
  • feat: add-pull-request-template (#604) (61b2fe2)
  • fix: devcontainer fix (be42d8e)
  • fix: safety error when scan is run without being authed (5ec80dd)
  • feat: add-devcontainers-support (0591838)
  • fix: internal-server-error (04d7efb)
  • fix: clarify-vulnerabilities-found/ Fixed the issue where the vulnerabilities (07bc5b7)
  • chore: added check arg depreciation warning (78109e5)
  • feature: release-script: add release script (#602) (cc49542)

[3.2.8] - 2024-09-27

  • feat: enhance version comparison logic for check-updates command (#605)
  • docs: add demo Jupyter Notebook (#601)
  • feat: add script to generate CONTRIBUTORS.md with Shields.io badges based on merged PRs (#600)
  • chore: fix CLI help text by removing rich formatting for cleaner output (#599)
  • chore: hide system scan from help text (#598)
  • chore: add LICENSES.md file to document dependency licenses (#597)
  • docs: add SECURITY.md file with security policy and bug bounty details (#593)
Commits
  • 9ee0b67 chore/release-3.2.10 (#626)
  • d8095a7 feature/pyproject-support (#625)
  • 8d610ff chore/update-safety-schemas-version (#624)
  • d77fec0 Merge pull request #617 from pyupio/chore/release-3.2.9
  • 2d6631c chore/release-3.2.9
  • 57023e0 Merge pull request #622 from pyupio/fix-new-parse-for-test
  • 5a8c181 fix: basic policy file test
  • 7b21f3a Merge pull request #616 from pyupio/fix/version-test
  • ba929db fix/removes hardcoded safety release version from
  • 212318c Merge pull request #614 from pyupio/chore/deprecation-message-for-license-com...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [safety](https://github.com/pyupio/safety) from 3.2.7 to 3.2.10.
- [Release notes](https://github.com/pyupio/safety/releases)
- [Changelog](https://github.com/pyupio/safety/blob/main/CHANGELOG.md)
- [Commits](pyupio/safety@3.2.7...3.2.10)

---
updated-dependencies:
- dependency-name: safety
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 4, 2024

Dependabot tried to add @anevis as a reviewer to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/anevis/yaml-to-markdown/pulls/36/requested_reviewers: 422 - Validation Failed
Error summary:
  Could not add requested reviewers to pull request. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request

@dependabot dependabot bot requested a review from anevis as a code owner November 4, 2024 03:59
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 4, 2024

The following labels could not be found: dependabot.

Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 18, 2024

Superseded by #38.

@dependabot dependabot bot closed this Nov 18, 2024
@dependabot dependabot bot deleted the dependabot/pip/safety-3.2.10 branch November 18, 2024 04:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant