Santandersecurityresearch / DrHeader

drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
MIT License
105 stars 26 forks source link

Bump tox from 4.13.0 to 4.19.0 #368

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps tox from 4.13.0 to 4.19.0.

Release notes

Sourced from tox's releases.

4.18.1

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/tox/compare/4.18.0...4.18.1

4.18.0

What's Changed

Full Changelog: https://github.com/tox-dev/tox/compare/4.17.1...4.18.0

4.17.1

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/tox/compare/4.17.0...4.17.1

4.17.0

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from tox's changelog.

v4.19.0 (2024-09-17)

Features - 4.19.0

- Support ``pypy-<major>.<minor>`` environment names for PyPy environments - by :user:`gaborbernat`. (:issue:`3346`)

v4.18.1 (2024-09-07)

Bugfixes - 4.18.1

  • Fix and test the string spec for the sys.executable interpreter (introduced in :pull:3325)
    • by :user:hroncok (:issue:3327)

Improved Documentation - 4.18.1

- Changes the ``tox_env_teardown`` docstring to explain the hook is called after a tox env was teared down. (:issue:`3305`)

v4.18.0 (2024-08-13)

Features - 4.18.0

- Suppress spinner in parallel runs in CI - by :user:`ziima`. (:issue:`3318`)

Bugfixes - 4.18.0
  • Boost temporary directories cleanup in tests - by :user:ziima. (:issue:3278)
  • Fix absolute base python paths conflicting - by :user:gaborbernat. (:issue:3325)

v4.17.1 (2024-08-07)

Bugfixes - 4.17.1

- Support for running ``-e &lt;major&gt;.&lt;minor&gt;`` has been lost, fixing it - by :user:`gaborbernat`. (:issue:`2849`)
- ``base_python`` now accepts absolute paths to interpreter executable - by :user:`paveldikov`. (:issue:`3191`)

v4.17.0 (2024-08-05)
--------------------

Features - 4.17.0
  • Add graalpy prefix as a supported base python (:issue:3312)
  • Add :ref:on_platform core configuration holding the tox platform and do not install package when exec an environment
    • by :user:gaborbernat. (:issue:3315)

Bugfixes - 4.17.0

&lt;/tr&gt;&lt;/table&gt; 
</code></pre>
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>

<ul>
<li><a href="https://github.com/tox-dev/tox/commit/2f8362416fdcc94ed99b99d81387ac5ea20311f1"><code>2f83624</code></a> release 4.19.0</li>
<li><a href="https://github.com/tox-dev/tox/commit/ed6b0dcdd61fac5db7194ca0f84885bf132107d5"><code>ed6b0dc</code></a> Add pypy-major.minor environment name support (<a href="https://redirect.github.com/tox-dev/tox/issues/3346">#3346</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/8127c7f64e29787b972f8b4355ab0f89dc0820da"><code>8127c7f</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/tox-dev/tox/issues/3345">#3345</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/8cadfa294ae4f896ff8bb2668cac35bd42fad1db"><code>8cadfa2</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/tox-dev/tox/issues/3341">#3341</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/df34192e07d47c257c85b0e0af2d065f7bb6c7ba"><code>df34192</code></a> release 4.18.1</li>
<li><a href="https://github.com/tox-dev/tox/commit/9c6f8350a1ffc7dd395c039afb9e3fd795b65307"><code>9c6f835</code></a> Add 3.13 to CI and bump deps (<a href="https://redirect.github.com/tox-dev/tox/issues/3339">#3339</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/9138e1541ce4af63fbb59cf4efcc5b1264fd0fc0"><code>9138e15</code></a> Bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.1 (<a href="https://redirect.github.com/tox-dev/tox/issues/3338">#3338</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/3f004fcf0ffa8cf1eb60ac98a373b54f53b8972a"><code>3f004fc</code></a> [pre-commit.ci] pre-commit autoupdate (<a href="https://redirect.github.com/tox-dev/tox/issues/3329">#3329</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/fab358ebd4204183044c94d14a7f94eb724d89d5"><code>fab358e</code></a> Properly document the <code>tox_env_teardown</code> hook (<a href="https://redirect.github.com/tox-dev/tox/issues/3333">#3333</a>)</li>
<li><a href="https://github.com/tox-dev/tox/commit/8d0a47cb860f938c0599e80c58dfb1bc4ef484ed"><code>8d0a47c</code></a> Fix issue link in changelog (<a href="https://redirect.github.com/tox-dev/tox/issues/3332">#3332</a>)</li>
<li>Additional commits viewable in <a href="https://github.com/tox-dev/tox/compare/4.13.0...4.19.0">compare view</a></li>
</ul>
</details>

<br />
[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tox&package-manager=pip&previous-version=4.13.0&new-version=4.19.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 months ago

Dependabot tried to add @danielcuthbert, @javixeneize, @pealtrufo and @emilejq as reviewers to this PR, but received the following error from GitHub:

POST https://api.github.com/repos/Santandersecurityresearch/DrHeader/pulls/368/requested_reviewers: 422 - Reviews may only be requested from collaborators. One or more of the users or teams you specified is not a collaborator of the Santandersecurityresearch/DrHeader repository. // See: https://docs.github.com/rest/pulls/review-requests#request-reviewers-for-a-pull-request
dependabot[bot] commented 2 months ago

Superseded by #369.