search

anchore / vunnel

Tool for collecting vulnerability data from various sources (used to build the grype database)
Apache License 2.0
69 stars 25 forks source link

chore(deps): Bump xsdata from 24.3.1 to 24.4 #532

Closed dependabot[bot] closed 5 months ago

dependabot[bot] commented 5 months ago

Bumps xsdata from 24.3.1 to 24.4.

Changelog

Sourced from xsdata's changelog.

24.4 (2024-04-01)

Features

  • Add xml and lxml tree serializers (#975)
  • Capture namespace prefixes in user dicts (#978)
  • Add cli option to generate wrapper fields (#982)
  • Support wrapper fields in JSON data bindings (#982)
  • Use abstract suffixes to resolve class name conflicts (#985)
  • Add the version number in the cli cache key (#990)
  • Use unicodedata.name for attrs with only special characters (#993)
  • Add src code excerpts on ruff errors (#996)
  • Detect circular imports and raise appropriate error (#999)
  • Add support for Python 3.13 (#1001)
  • Add cli debug messages with performance stats

Fixes

  • Use deepcopy to clone codegen models (#980)
  • Generate type hints for compound fields with token elements (#997)
  • Protect prohibited attrs from turning into lists (#998)
  • Convert child attr to list when parent is list (#998)
Commits
  • 9a8cd92 release: Bump version & update changelog (#1005)
  • e403f85 docs: Align features
  • 05b03b5 docs: Cleanup a few issues (#1002)
  • 2ebf999 Support python v3.13 (#1001)
  • 6441877 feat: Detect and alert circular imports (#999)
  • 96d2085 Merge pull request #998 from tefra/sdmx-ml-suite
  • ffe2bd1 feat: Convert child attr to list when parent is list
  • 0bc0da3 fix: Protect prohibitted attrs from turning into lists
  • ff01d9b fix: Generate type hints for compound fields with token elements (#997)
  • a15c3e7 feat: Add src code excerpt on ruff errors (#996)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)