nrobinaubertin
commented
4 months ago Open renovate[bot] opened 4 months ago
nrobinaubertin
commented
4 months ago 
renovate[bot]
commented
1 week ago Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.
You can manually request rebase by checking the rebase/retry box above.
⚠️ Warning: custom changes will be lost.
github-actions[bot]
commented
1 week ago Test coverage for c2ff9ffb79263db60b1e1f2a6181bb71ff922c53
Name Stmts Miss Branch BrPart Cover Missing
---------------------------------------------------------------
src/charm.py 557 35 174 34 91% 162, 204-207, 299->302, 414, 473->477, 627, 658, 664, 681-685, 715, 750-751, 811, 820, 924->937, 936, 938, 943-944, 1004, 1024, 1031, 1121, 1130, 1142, 1163, 1172, 1191, 1195, 1224, 1265, 1397, 1419, 1426->1428, 1471->exit, 1483, 1493, 1531
src/cos.py 20 0 0 0 100%
src/exceptions.py 16 1 2 1 89% 41
src/state.py 33 0 2 0 100%
src/types_.py 15 0 0 0 100%
---------------------------------------------------------------
TOTAL 641 36 178 35 91%Static code analysis report
Run started:2024-11-05 10:29:46.053124
Test results:
No issues identified.
Code scanned:
Total lines of code: 4647
Total lines skipped (#nosec): 1
Total potential issues skipped due to specifically being disabled (e.g., #nosec BXXX): 0
Run metrics:
Total issues (by severity):
Undefined: 0
Low: 0
Medium: 0
High: 0
Total issues (by confidence):
Undefined: 0
Low: 0
Medium: 0
High: 0
Files skipped (0):
cbartz
commented
5 days ago @yanksyoon Can you take over here please (it seems there have been some security vulnerabilities detected by trivy)?
This PR contains the following updates:
==2.14.0->==2.17.0Release Notes
canonical/operator (ops)
### [`v2.17.0`](https://redirect.github.com/canonical/operator/blob/HEAD/CHANGES.md#2170---26-Sep-2024) [Compare Source](https://redirect.github.com/canonical/operator/compare/2.16.1...2.17.0) #### Features - Optionally install Scenario with `ops[testing]` and expose the names in ops.testing ([#1381](https://redirect.github.com/canonical/operator/issues/1381)) - Change ops.main() so that you don't need to `type: ignore` it ([#1345](https://redirect.github.com/canonical/operator/issues/1345)) - Expand the secret ID out to the full URI when only given the ID ([#1358](https://redirect.github.com/canonical/operator/issues/1358)) - Add a JujuVersion property for Pebble log forwarding to Loki ([#1370](https://redirect.github.com/canonical/operator/issues/1370)) - Pre-emptively raise `InvalidStatusError` instead of waiting for Juju: - Make it an error to call `CollectStatusEvent.add_status` with error or unknown ([#1386](https://redirect.github.com/canonical/operator/issues/1386)) - Document and validate settable status values in `_ModelBackend.set_status` ([#1354](https://redirect.github.com/canonical/operator/issues/1354)) #### Fixes - Fix type of `StatusBase` subclasses by calling `StatusBase.register` in `__init_subclass__` ([#1383](https://redirect.github.com/canonical/operator/issues/1383)) - `Secret.set_info` and `Secret.set_content` can be called in the same hook ([#1373](https://redirect.github.com/canonical/operator/issues/1373)) #### Documentation - Add top-level intro and module-level intros ([#1320](https://redirect.github.com/canonical/operator/issues/1320)) - Update the links to the Pebble docs ([#1362](https://redirect.github.com/canonical/operator/issues/1362)) - Note about repeatedly setting secret value in Juju 3.6 ([#1366](https://redirect.github.com/canonical/operator/issues/1366)) - `config-changed` is triggered by Juju trust ([#1357](https://redirect.github.com/canonical/operator/issues/1357)) - Typo on `CharmBase` inheritance example by [@theofpa](https://redirect.github.com/theofpa) ([#1349](https://redirect.github.com/canonical/operator/issues/1349)) - Docs: move Pebble to a separate page ([#1392](https://redirect.github.com/canonical/operator/issues/1392)) #### Continuous Integration - Periodically run the unit tests of all GitHub-hosted published charms ([#1365](https://redirect.github.com/canonical/operator/issues/1365)) - Update the TIOBE reporting for the changes in coverage calculation ([#1367](https://redirect.github.com/canonical/operator/issues/1367)) - Spell-check the code as part of linting ([#1388](https://redirect.github.com/canonical/operator/issues/1388)) - Run the smoke tests on a schedule ([#1387](https://redirect.github.com/canonical/operator/issues/1387)) #### Testing - Fix tests that leaked environment variables ([#1385](https://redirect.github.com/canonical/operator/issues/1385)) #### Refactoring - Move the content of `ops.testing` to `ops._private.harness` ([#1369](https://redirect.github.com/canonical/operator/issues/1369)) - Keep the `unittest.mock` names in the 'mock' namespace ([#1379](https://redirect.github.com/canonical/operator/issues/1379)) - Deprecate `StatusBase.register` decorator ([#1384](https://redirect.github.com/canonical/operator/issues/1384)) #### Chores - Note Juju version on legacy workaround ([#1355](https://redirect.github.com/canonical/operator/issues/1355)) - Re-enable test now that Pebble directory permissions are fixed ([#1363](https://redirect.github.com/canonical/operator/issues/1363)) - Generate warnings for events that will be removed in Juju 4.0 ([#1374](https://redirect.github.com/canonical/operator/issues/1374)) ### [`v2.16.1`](https://redirect.github.com/canonical/operator/releases/tag/2.16.1): Don't have Harness alter os.environ [Compare Source](https://redirect.github.com/canonical/operator/compare/2.16.0...2.16.1) This is a small bug-fix release to address a regression in ops 2.16.0 where creating a `Harness` object would add a `JUJU_VERSION` to `os.environ`. ##### Fixes - Don't alter os.environ in Harness in [https://github.com/canonical/operator/pull/1359](https://redirect.github.com/canonical/operator/pull/1359) **Full Changelog**: https://github.com/canonical/operator/compare/2.16.0...2.16.1 ### [`v2.16.0`](https://redirect.github.com/canonical/operator/blob/HEAD/CHANGES.md#2160---29-Aug-2024) [Compare Source](https://redirect.github.com/canonical/operator/compare/2.15.0...2.16.0) #### Features - Add the description field to SecretInfo in [https://github.com/canonical/operator/pull/1338](https://redirect.github.com/canonical/operator/pull/1338) #### Refactor - Parse JUJU_\* environment variables in one place in[https://github.com/canonical/operator/pull/1313](https://redirect.github.com/canonical/operator/pull/1313)3 #### Fixes - Fix reading Juju secret expiry dates in [https://github.com/canonical/operator/pull/1317](https://redirect.github.com/canonical/operator/pull/1317) - Correct the signature of .events() in [https://github.com/canonical/operator/pull/1342](https://redirect.github.com/canonical/operator/pull/1342) #### Documentation - Security policy change to only support each active major release in [https://github.com/canonical/operator/pull/1297](https://redirect.github.com/canonical/operator/pull/1297) - Add Juju version markers in [https://github.com/canonical/operator/pull/1311](https://redirect.github.com/canonical/operator/pull/1311) - Use Sphinx 8 in [https://github.com/canonical/operator/pull/1303](https://redirect.github.com/canonical/operator/pull/1303) - Live reload documentation with sphinx-autobuild in [https://github.com/canonical/operator/pull/1323](https://redirect.github.com/canonical/operator/pull/1323) #### Tests - Update the smoke test series/bases in [https://github.com/canonical/operator/pull/1318](https://redirect.github.com/canonical/operator/pull/1318) - Run pytest in parallel with pytest xdist in [https://github.com/canonical/operator/pull/1319](https://redirect.github.com/canonical/operator/pull/1319) - Bump Pyright to 1.1.377 in [https://github.com/canonical/operator/pull/1332](https://redirect.github.com/canonical/operator/pull/1332) - Run tests on Python 3.12 and the install test on Python 3.13 in [https://github.com/canonical/operator/pull/1315](https://redirect.github.com/canonical/operator/pull/1315) #### CI - Add a workflow that runs the TIOBE quality checks in [https://github.com/canonical/operator/pull/1301](https://redirect.github.com/canonical/operator/pull/1301) - Allow executing the TIOBE workflow manually in [https://github.com/canonical/operator/pull/1321](https://redirect.github.com/canonical/operator/pull/1321) - Make Pyright report unnecessary type ignore comments in [https://github.com/canonical/operator/pull/1333](https://redirect.github.com/canonical/operator/pull/1333) - Enable linting of docs/custom_conf.py in [https://github.com/canonical/operator/pull/1330](https://redirect.github.com/canonical/operator/pull/1330) ### [`v2.15.0`](https://redirect.github.com/canonical/operator/blob/HEAD/CHANGES.md#2150---22-Jul-2024) [Compare Source](https://redirect.github.com/canonical/operator/compare/2.14.1...2.15.0) #### Features - Add support for Pebble check-failed and check-recovered events ([#1281](https://redirect.github.com/canonical/operator/issues/1281)) #### Fixes - Pass secret data to Juju via files, rather than as command-line values ([#1290](https://redirect.github.com/canonical/operator/issues/1290)) fixing CVE-2024-41129 - Include checks and log targets when merging layers in ops.testing ([#1268](https://redirect.github.com/canonical/operator/issues/1268)) #### Documentation - Clarify distinction between maintenance and waiting status ([#1148](https://redirect.github.com/canonical/operator/issues/1148)) #### CI - Bump the Go version to match Pebble ([#1285](https://redirect.github.com/canonical/operator/issues/1285)) - Run ruff format over charm pin update code ([#1278](https://redirect.github.com/canonical/operator/issues/1278)) - Bump certifi from 2024.2.2 to 2024.7.4 in /docs ([#1282](https://redirect.github.com/canonical/operator/issues/1282)) - Update charm pins ([#1269](https://redirect.github.com/canonical/operator/issues/1269)) ### [`v2.14.1`](https://redirect.github.com/canonical/operator/blob/HEAD/CHANGES.md#2141---27-Jun-2024) [Compare Source](https://redirect.github.com/canonical/operator/compare/2.14.0...2.14.1) #### Fixes - Add connect timeout for exec websockets to avoid hanging ([#1247](https://redirect.github.com/canonical/operator/issues/1247)) - Adjust Harness secret behaviour to align with Juju ([#1248](https://redirect.github.com/canonical/operator/issues/1248)) #### Tests - Fix TypeError when running test.pebble_cli ([#1245](https://redirect.github.com/canonical/operator/issues/1245)) - Properly clean up after running setup_root_logging in test_log ([#1259](https://redirect.github.com/canonical/operator/issues/1259)) - Verify that defer() is not usable on stop,remove,secret-expired,secret-rotate ([#1233](https://redirect.github.com/canonical/operator/issues/1233)) #### Documentation - Fix HACKING.md link on PyPI, and internal links ([#1261](https://redirect.github.com/canonical/operator/issues/1261), [#1236](https://redirect.github.com/canonical/operator/issues/1236)) - Add a section to HACKING.md on PR titles (commit messages to main) ([#1252](https://redirect.github.com/canonical/operator/issues/1252)) - Add release step to update pinned charm tests ([#1213](https://redirect.github.com/canonical/operator/issues/1213)) - Add a security policy ([#1266](https://redirect.github.com/canonical/operator/issues/1266)) #### CI - Only run tests once on push to PR ([#1242](https://redirect.github.com/canonical/operator/issues/1242)) - Validate PR title against conventional commit rules in ([#1262](https://redirect.github.com/canonical/operator/issues/1262)) - Only update ops, not all dependencies, in charm tests in ([#1275](https://redirect.github.com/canonical/operator/issues/1275)) - Add artefact attestation ([#1267](https://redirect.github.com/canonical/operator/issues/1267))Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.