CycloneDX / cyclonedx-python

CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
https://cyclonedx.org
Apache License 2.0
257 stars 67 forks source link

chore(deps): Bump python-semantic-release/python-semantic-release from 9.1.1 to 9.10.1 #811

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps python-semantic-release/python-semantic-release from 9.1.1 to 9.10.1.

Release notes

Sourced from python-semantic-release/python-semantic-release's releases.

v9.10.1 (2024-10-10)

Bug Fixes

  • config: handle branch match regex errors gracefully (#1054, 4d12251)

Resolved Issues

  • #931: branches.match value “*” causes unintentional error

Detailed Changes: https://github.com/python-semantic-release/python-semantic-release/compare/v9.10.0...v9.10.1

v9.10.0 (2024-10-08)

Features

  • changelog: add changelog_insertion_flag to changelog template context (#1045, c18c245)

  • changelog: add changelog_mode to changelog template context (#1045, c18c245)

  • changelog: add prev_changelog_file to changelog template context (#1045, c18c245)

  • changelog: add read_file function to changelog template context (#1045, c18c245)

  • changelog: add shorthand ctx variable to changelog template env (#1045, c18c245)

  • changelog: modify changelog template to support changelog updates (#1045, c18c245)

  • config: add changelog.default_templates.output_format config option (#1045, c18c245)

  • config: add changelog.insertion_flag as configuration option (#1045, c18c245)

  • config: add changelog.mode as configuration option (#1045, c18c245)

  • github-actions: add an action build directive to toggle the --skip-build option (#1044, 26597e2)

Bug Fixes

  • config: prevent jinja from autoescaping markdown content by default (#1045, c18c245)

  • changelog: adjust angular heading names for readability (#1045, c18c245)

  • changelog: ensure changelog templates can handle complex directory includes (#1045, c18c245)

  • changelog: only render user templates when files exist (#1045, c18c245)

... (truncated)

Changelog

Sourced from python-semantic-release/python-semantic-release's changelog.

v9.10.1 (2024-10-10)

Fixes

  • fix(config): handle branch match regex errors gracefully (#1054)

prevents stacktrace error when user provided regex for a branch name match is invalid. Translates most common failure of a plain wildcard * character to the implied proper regex (4d12251)

v9.10.0 (2024-10-08)

Documentation

  • docs(github-actions): update primary example with workflow sha controlled pipeline (14f04df)

Features

  • feat(changelog): modify changelog template to support changelog updates (#1045)

  • feat(changelog): add read_file function to changelog template context

    This feature adds a filter that will enable jinja templates to read a file from the repository into memory to then use as output within the template. The primary use for this is to read in a previous changelog file which then the template can give the illusion of insertion as it re-writes the entire file.

  • feat(changelog): add changelog_mode to changelog template context

    Adds a flag that can be passed to the templating environment to allow for triggering an update mode of a changelog versions an initialization mode. The usage is up to the template developer but for PSR it is used to handle changelog generation vs changelog updating.

  • feat(changelog): add prev_changelog_file to changelog template context

    This adds a string that represents a filename to a previous changelog file which can be read from inside the template context. The primary use is for enabling the updating of a changelog through jinja templating.

  • feat(changelog): add changelog_insertion_flag to changelog template context

    This adds a customizable string to the jinja templating context which allows users to use the PSR configuration to pass a custom insertion flag into the templating context. This is intended for use with initializing a changelog and then updating it from that point forward.

  • feat(changelog): add shorthand ctx variable to changelog template env

... (truncated)

Commits
  • d6ea6b8 9.10.1
  • 4d12251 fix(config): handle branch match regex errors gracefully (#1054)
  • 18399a7 9.10.0
  • 31b615a ci(main-wkflow): fix unknown git user before tag creation (#1053)
  • 76f1ffa 9.10.0
  • c18c245 feat(changelog): modify changelog template to support changelog updates (#1045)
  • 26597e2 feat(github-actions): add an action build directive to toggle the `--skip-b...
  • 6a37159 chore(git-attributes): force line-endings in repo to always be posix complian...
  • b87172b chore(conf-pytest): remove default xdist parameter from config
  • cfcb4eb chore(config): fix setuptools package discovery error
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 month ago

Superseded by #816.