search

Yelp / detect-secrets

An enterprise friendly way of detecting and preventing secrets in code.
Apache License 2.0
3.59k stars 448 forks source link

Bump filelock from 3.0.12 to 3.13.1 #723

Closed dependabot[bot] closed 7 months ago

dependabot[bot] commented 7 months ago

Bumps filelock from 3.0.12 to 3.13.1.

Release notes

Sourced from filelock's releases.

3.13.1

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/filelock/compare/3.13.0...3.13.1

3.13.0

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/filelock/compare/3.12.4...3.13.0

3.12.4

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/filelock/compare/3.12.3...3.12.4

3.12.3

What's Changed

New Contributors

Full Changelog: https://github.com/tox-dev/filelock/compare/3.12.2...3.12.3

... (truncated)

Changelog

Sourced from filelock's changelog.

Changelog

v3.12.0 (2023-04-18)

  • Make the thread local behaviour something the caller can enable/disable via a flag during the lock creation, it's on by default.
  • Better error handling on Windows.

v3.11.0 (2023-04-06)

  • Make the lock thread local.

v3.10.7 (2023-03-27)

  • Use fchmod instead of chmod to work around bug in PyPy via Anaconda.

v3.10.6 (2023-03-25)

  • Enhance the robustness of the try/catch block in _soft.py. by :user:jahrules.

v3.10.5 (2023-03-25)

  • Add explicit error check as certain UNIX filesystems do not support flock. by :user:jahrules.

v3.10.4 (2023-03-24)

  • Update os.open to preserve mode= for certain edge cases. by :user:jahrules.

v3.10.3 (2023-03-23)

  • Fix permission issue - by :user:jahrules.

v3.10.2 (2023-03-22)

  • Bug fix for using filelock with threaded programs causing undesired file permissions - by :user:jahrules.

v3.10.1 (2023-03-22)

  • Handle pickle for :class:filelock.Timeout :pr:203 - by :user:TheMatt2.

v3.10.0 (2023-03-15)

  • Add support for explicit file modes for lockfiles :pr:192 - by :user:jahrules.

v3.9.1 (2023-03-14)

  • Use time.perf_counter instead of time.monotonic for calculating timeouts.

v3.9.0 (2022-12-28)

... (truncated)

Commits
  • 141f5d8 Allow users to subclass FileLock with custom keyword arguments (#284)
  • 3e3455e Support reentrant locking on lock file path via optional singleton instance (...
  • 16f2a93 [pre-commit.ci] pre-commit autoupdate (#281)
  • 0e72219 [pre-commit.ci] pre-commit autoupdate (#280)
  • 25a2f0d [pre-commit.ci] pre-commit autoupdate (#278)
  • f2885d1 [pre-commit.ci] pre-commit autoupdate (#277)
  • c1163ae change typing-extensions to be installed only with the [typing] extra (#276)
  • 0a338c1 [pre-commit.ci] pre-commit autoupdate (#274)
  • f696067 Bump actions/checkout from 3 to 4 (#273)
  • a4ce560 [pre-commit.ci] pre-commit autoupdate (#272)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)