Closed dependabot[bot] closed 7 months ago
Hi there :wave:, @dryrunsecurity here, below is a summary of our analysis and findings.
DryRun Security | Status | Findings |
---|---|---|
Sensitive Functions Analyzer | :white_check_mark: | 0 findings |
Configured Sensitive Files Analyzer | :white_check_mark: | 0 findings |
Sensitive Files Analyzer | :white_check_mark: | 0 findings |
[!Note] :green_circle: Risk threshold not exceeded.
[!Tip] Get answers to your security questions. Add a comment in this PR starting with @dryrunsecurity. For example...
@dryrunsecurity What are common security issues with web application cookies?
Powered by DryRun Security
Bumps pypa/gh-action-pypi-publish from 1.8.11 to 1.8.12.
Release notes
Sourced from pypa/gh-action-pypi-publish's releases.
Commits
e53eb8b
Clarify the error during OIDC exchange on PRs from forksedfa8f3
Merge pull request #216 from xuanzhi33/unstable/v1aeff019
docs(fix): Fix a markdown alert24c5d5c
Merge pull request #214 from pypa/dependabot/pip/requirements/cryptography-42...c13b4aa
build(deps): bump cryptography from 42.0.2 to 42.0.4 in /requirements72a79c8
Merge pull request #213 from pypa/dependabot/pip/requirements/cryptography-42...751e5b8
build(deps): bump cryptography from 42.0.0 to 42.0.2 in /requirements0580fcb
Merge pull request #210 from pypa/dependabot/pip/requirements/cryptography-42...a524841
build(deps): bump cryptography from 41.0.6 to 42.0.0 in /requirements3f824c7
Merge pull request #204 from pypa/pre-commit-ci-update-configDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show