Closed dependabot[bot] closed 1 week ago
The GitHub Pull Request updates the GitHub Actions workflow for publishing a Python package to PyPI, focusing on dependency updates, handling of sensitive credentials, workflow triggers, Python version, and dependencies installed.
We ran 9 analyzers
against 1 file
and 0 analyzers
had findings. 9 analyzers
had no findings.
:green_circle: Risk threshold not exceeded.
Bumps pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3.
Release notes
Sourced from pypa/gh-action-pypi-publish's releases.
Commits
f760068
Merge pull request #271 from mosfet80/patch-36edc294
Fix node.js v16 deprecation self-smoke-test-action.yml85a5a80
Merge pull request #270 from trail-of-forks/fix-magic-link-summary954318b
Merge pull request #267 from mosfet80/patch-224791c7
Merge pull request #266 from mosfet80/patch-1d8c8948
Fix magic link nudge formatting in job summarya1ce384
Check for Trusted Publishing in magic link logic00b87c8
Update check-jsonschema and pre-commit libsa571f1e
Update pylint libDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show