search

gemini-oss / starfleet

Whole-infrastructure automation tooling for AWS
https://gemini-oss.github.io/starfleet/
Apache License 2.0
41 stars 7 forks source link

Bump the primary-deps group with 5 updates #119

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 7 months ago

Bumps the primary-deps group with 5 updates:

Package From To
marshmallow 3.20.1 3.20.2
cryptography 41.0.7 42.0.2
botocore 1.34.11 1.34.32
boto3 1.34.11 1.34.32
slack-sdk 3.26.1 3.26.2

Updates marshmallow from 3.20.1 to 3.20.2

Changelog

Sourced from marshmallow's changelog.

3.20.2 (2024-01-09)

Bug fixes:

  • Fix Nested field type hint for lambda Schema types (:pr:2164). Thanks :user:somethingnew2-0 for the PR.

Other changes:

  • Officially support Python 3.12 (:pr:2188). Thanks :user:hugovk for the PR.
Commits
  • 154d4c1 Bump version and update changelog
  • a13e731 Bump LICENSE and fix changelog
  • 755a074 Prevent false from appearing under logo (#2221)
  • f98ad7f Bump alabaster from 0.7.13 to 0.7.15
  • 88ce4cb [pre-commit.ci] pre-commit autoupdate
  • b1857ef Bump autodocsumm from 0.2.11 to 0.2.12
  • 86b8790 [pre-commit.ci] pre-commit autoupdate (#2217)
  • 2ef3f44 Merge pull request #2215 from marshmallow-code/pre-commit_update
  • 24855ac Fix flake8 issues
  • 0547a8a Bump flake8-bugbear to 23.12.2 in pre-commit config
  • Additional commits viewable in compare view


Updates cryptography from 41.0.7 to 42.0.2

Changelog

Sourced from cryptography's changelog.

42.0.2 - 2024-01-30


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.1.
* Fixed an issue that prevented the use of Python buffer protocol objects in
  ``sign`` and ``verify`` methods on asymmetric keys.
* Fixed an issue with incorrect keyword-argument naming with ``EllipticCurvePrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.exchange`,
  ``X25519PrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.x25519.X25519PrivateKey.exchange`,
  ``X448PrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.x448.X448PrivateKey.exchange`,
  and ``DHPrivateKey``
  :meth:`~cryptography.hazmat.primitives.asymmetric.dh.DHPrivateKey.exchange`.

.. _v42-0-1:


42.0.1 - 2024-01-24

  • Fixed an issue with incorrect keyword-argument naming with EllipticCurvePrivateKey :meth:~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.sign.
  • Resolved compatibility issue with loading certain RSA public keys in :func:~cryptography.hazmat.primitives.serialization.load_pem_public_key.

.. _v42-0-0:

42.0.0 - 2024-01-22


* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.7.
* **BACKWARDS INCOMPATIBLE:** Loading a PKCS7 with no content field using
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates`
  or
  :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates`
  will now raise a ``ValueError`` rather than return an empty list.
* Parsing SSH certificates no longer permits malformed critical options with
  values, as documented in the 41.0.2 release notes.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.2.0.
* Updated the minimum supported Rust version (MSRV) to 1.63.0, from 1.56.0.
* We now publish both ``py37`` and ``py39`` ``abi3`` wheels. This should
  resolve some errors relating to initializing a module multiple times per
  process.
* Support :class:`~cryptography.hazmat.primitives.asymmetric.padding.PSS` for
  X.509 certificate signing requests and certificate revocation lists with the
  keyword-only argument ``rsa_padding`` on the ``sign`` methods for
  :class:`~cryptography.x509.CertificateSigningRequestBuilder` and
  :class:`~cryptography.x509.CertificateRevocationListBuilder`.
* Added support for obtaining X.509 certificate signing request signature
  algorithm parameters (including PSS) via
</tr></table>

... (truncated)

Commits


Updates botocore from 1.34.11 to 1.34.32

Changelog

Sourced from botocore's changelog.

1.34.32

  • api-change:cloudformation: CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.
  • api-change:elbv2: Update elbv2 client to latest version
  • api-change:glue: Update page size limits for GetJobRuns and GetTriggers APIs.
  • api-change:ssm: This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.

1.34.31

  • api-change:datazone: Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects
  • api-change:route53: Update the SDKs for text changes in the APIs.

1.34.30

  • api-change:autoscaling: EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:comprehend: Comprehend PII analysis now supports Spanish input documents.
  • api-change:ec2: EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:mwaa: This release adds MAINTENANCE environment status for Amazon MWAA environments.
  • api-change:rds: Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.
  • api-change:snowball: Modified description of createaddress to include direction to add path when providing a JSON file.

1.34.29

  • api-change:connect: Update list and string length limits for predefined attributes.
  • api-change:inspector2: This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: Documentation updates for Amazon ECS.
  • api-change:outposts: DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: Add DeprecationDate and SoftwareVersion to response of ListGateways.

... (truncated)

Commits
  • eb8972c Merge branch 'release-1.34.32'
  • 4adc32e Bumping version to 1.34.32
  • 3e5ea2e Update to latest partitions and endpoints
  • ff50dc4 Update to latest models
  • 3972982 Merge branch 'release-1.34.31'
  • 03891ec Merge branch 'release-1.34.31' into develop
  • 4170bc9 Bumping version to 1.34.31
  • 2773da2 Update to latest models
  • 0bc71c4 Merge branch 'release-1.34.30'
  • 35b20f1 Merge branch 'release-1.34.30' into develop
  • Additional commits viewable in compare view


Updates boto3 from 1.34.11 to 1.34.32

Changelog

Sourced from boto3's changelog.

1.34.32

  • api-change:cloudformation: [botocore] CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack.
  • api-change:elbv2: [botocore] Update elbv2 client to latest version
  • api-change:glue: [botocore] Update page size limits for GetJobRuns and GetTriggers APIs.
  • api-change:ssm: [botocore] This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.

1.34.31

  • api-change:datazone: [botocore] Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects
  • api-change:route53: [botocore] Update the SDKs for text changes in the APIs.

1.34.30

  • api-change:autoscaling: [botocore] EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:comprehend: [botocore] Comprehend PII analysis now supports Spanish input documents.
  • api-change:ec2: [botocore] EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type.
  • api-change:mwaa: [botocore] This release adds MAINTENANCE environment status for Amazon MWAA environments.
  • api-change:rds: [botocore] Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience.
  • api-change:snowball: [botocore] Modified description of createaddress to include direction to add path when providing a JSON file.

1.34.29

  • api-change:connect: [botocore] Update list and string length limits for predefined attributes.
  • api-change:inspector2: [botocore] This release adds ECR container image scanning based on their lastRecordedPullTime.
  • api-change:sagemaker: [botocore] Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.

1.34.28

  • api-change:acm-pca: [botocore] AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled.
  • api-change:lightsail: [botocore] This release adds support for IPv6-only instance plans.

1.34.27

  • api-change:ec2: [botocore] Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs.
  • api-change:ecs: [botocore] Documentation updates for Amazon ECS.
  • api-change:outposts: [botocore] DeviceSerialNumber parameter is now optional in StartConnection API
  • api-change:rds: [botocore] This release adds support for Aurora Limitless Database.
  • api-change:storagegateway: [botocore] Add DeprecationDate and SoftwareVersion to response of ListGateways.

... (truncated)

Commits
  • 27f44b2 Merge branch 'release-1.34.32'
  • 4d34dfe Bumping version to 1.34.32
  • db1931d Add changelog entries from botocore
  • 481ddf1 Merge branch 'release-1.34.31'
  • 04c6aa7 Merge branch 'release-1.34.31' into develop
  • 57dd57a Bumping version to 1.34.31
  • 681a75e Add changelog entries from botocore
  • a1ac699 Merge branch 'release-1.34.30'
  • d37e5ff Merge branch 'release-1.34.30' into develop
  • 3f7cb1c Bumping version to 1.34.30
  • Additional commits viewable in compare view


Updates slack-sdk from 3.26.1 to 3.26.2

Release notes

Sourced from slack-sdk's releases.

version 3.26.2

Changes

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 6 months ago

Superseded by #126.