Closed dependabot[bot] closed 3 weeks ago
The following issues were found:
⚠️: No snapshots were found for the head SHA 30f1b87e237fe5417343c36762c125f10ef02969.
Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.
Package | Version | License | Issue Type |
idna | 3.8 | BSD-2-Clause AND BSD-3-Clause | Incompatible License |
uvicorn | 0.30.6 | BSD-2-Clause AND BSD-3-Clause | Incompatible License |
websockets | 13.0 | BSD-2-Clause AND BSD-3-Clause | Incompatible License |
Allowed Licenses: 0BSD, AGPL-3.0-or-later, Apache-2.0, BlueOak-1.0.0, BSD-2-Clause, BSD-3-Clause-Clear, BSD-3-Clause, BSL-1.0, CAL-1.0, CC-BY-3.0, CC-BY-4.0, CC-BY-SA-4.0, CC0-1.0, EPL-2.0, GPL-2.0-only, GPL-2.0-or-later, GPL-2.0, GPL-3.0-or-later, ISC, LGPL-2.0-only, LGPL-2.1-only, LGPL-2.1-or-later, LGPL-2.1, LGPL-3.0-only, LGPL-3.0, MIT, MPL-2.0, OFL-1.1, PSF-2.0, Python-2.0, Python-2.0.1, Unicode-DFS-2016, Unlicense
Package | Version | Score | Details | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
pip/idna | 3.8 | :green_circle: 7 | Details
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
pip/importlib-metadata | 8.4.0 | :green_circle: 6.4 | Details
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
pip/soupsieve | 2.6 | :green_circle: 6.1 | Details
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
pip/uvicorn | 0.30.6 | :green_circle: 6.1 | Details
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||
pip/websockets | 13.0 | :green_circle: 5.6 | Details
|
Bumps the python-packages group with 5 updates in the / directory:
3.7
3.8
8.2.0
8.4.0
2.5
2.6
0.30.5
0.30.6
12.0
13.0
Updates
idna
from 3.7 to 3.8Release notes
Sourced from idna's releases.
Changelog
Sourced from idna's changelog.
Commits
784c6f4
Release v3.828c7c9e
Typo fixa2b41c3
Pin remainder of Github Actions flagged in code scanning1f613c5
More Github Action dependency pinninga87e2b6
Update OSSF scorecard to latest version12d4dd1
Merge pull request #182 from kjd/github-pypi-actionse1a1541
Pin Github Actions dependenciesc109d3a
Merge branch 'master' into github-pypi-actionsf8a8de4
Do not try to build/send packages to TestPyPI for now613bdde
Update regexp to move global flag to start of expressionUpdates
importlib-metadata
from 8.2.0 to 8.4.0Changelog
Sourced from importlib-metadata's changelog.
Commits
1616cb3
Finalize71b4678
Add news fragment.ebcdcfd
Remove workaround for python/typeshed#10328.2c43cfe
Merge pull request #499 from danielhollas/defer-inspecta7aaf72
Use third-person imperative voice and link to issue in comment.e99c105
Restore single-expression logic.debb516
Don't use global var3c8e1ec
Finalize5035755
Merge pull request #498 from python/feature/entry-points-disallow-dist-match6d9b766
Remove MetadataPathFinder regardless of its position.Updates
soupsieve
from 2.5 to 2.6Release notes
Sourced from soupsieve's releases.
Commits
f974ea7
Update token (#273)1a67e46
Officially support Python 3.13 and update build environment (#271)25631bd
fix Adjacent sibling combinator example (#272)e0d4979
Improve pseudo-class error message (#270)c811bdf
Add support for nesting ampersand (#269)dc71495
Fix typo in README.md (#267)Updates
uvicorn
from 0.30.5 to 0.30.6Release notes
Sourced from uvicorn's releases.
Changelog
Sourced from uvicorn's changelog.
Commits
7dc027d
Version 0.30.6 (#2428)587a1cc
fix: upgrade is not websocket and dependencies are installed, should not warn...cee31a6
test(signal): add sleep to ensure shutdown completion (#2427)eba64ef
ci: timeout for test suite runs to 30 minutes (#2426)0f513d2
Remove signal testing order dependency (#2382)Updates
websockets
from 12.0 to 13.0Release notes
Sourced from websockets's releases.
Commits
323adef
Migrate to actions/upload-artifact@v4.f9c20d0
Avoid deleting .so files in .direnv or equivalent.4d0e0e1
Build sdist and arch-independent wheel with build.0019943
Release version 13.0.12fa8bc
Complete changelog with changes since 12.0.9d355bf
Remove unnecessary code paths in keepalive().453e55a
Standardize on raise AssertionError(...).9e5b91b
Improve documentation of latency.8eaa5a2
Document & test process_response modifying the response.09b1d8d
Fix tests on Python < 3.10.Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show