greenbone / gvm-tools

Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance
https://greenbone.github.io/gvm-tools/
GNU General Public License v3.0
166 stars 89 forks source link

Deps: Bump the python-packages group with 7 updates #1049

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps the python-packages group with 7 updates:

Package From To
pontos 23.9.0 23.9.2
rope 1.9.0 1.10.0
astroid 2.15.7 3.0.0
cffi 1.15.1 1.16.0
charset-normalizer 3.2.0 3.3.0
packaging 23.1 23.2
rich 13.5.3 13.6.0

Updates pontos from 23.9.0 to 23.9.2

Release notes

Sourced from pontos's releases.

pontos 23.9.2

23.9.2 - 2023-09-28

Added

  • Add simple GitHub script to show and update repo topics c2a9948
  • Add GitHub API for updating repository topics c9328eb
  • Add GitHub API for getting repository topics cf5f21e

Changed

  • Update java version command with config file (#886) fd7af60

pontos 23.9.1

23.9.1 - 2023-09-27

Added

  • Add repo model property for enabled dependabot security updates a31ae3c

Changed

  • Improve error message when a model value can't be set c3d18b8
  • Group PRs from Dependabot (#879) 36fdead

Bug Fixes

  • Mark repo model properties for security and analysis as optional 0ad99e9

Dependencies

Commits
  • 1bdd114 Automatic release to 23.9.2
  • fd7af60 Change: Update java version command with config file (#886)
  • c2a9948 Add: Add simple GitHub script to show and update repo topics
  • c9328eb Add: Add GitHub API for updating repository topics
  • cf5f21e Add: Add GitHub API for getting repository topics
  • 167ef3a Automatic adjustments after release
  • 96b297a Automatic release to 23.9.1
  • c3d18b8 Change: Improve error message when a model value can't be set
  • a31ae3c Add: Add repo model property for enabled dependabot security updates
  • 0ad99e9 Fix: Mark repo model properties for security and analysis as optional
  • Additional commits viewable in compare view


Updates rope from 1.9.0 to 1.10.0

Changelog

Sourced from rope's changelog.

Release 1.10.0

  • #708, #709 Add support for Python 3.12
Commits
  • a5fa15b Update CHANGELOG.md
  • 0bee51e Bump version
  • ef3613b Black
  • 00e937c Add build.os key to .readthedocs.yaml
  • 3049f35 Update .readthedocs.yaml to use build.tools.python key
  • 68630e3 Update readthedocs to use Python 3.11
  • cd34ac5 Update current year to 2023
  • 11316ec Replace pkg_resources to use importlib
  • c4c77d5 Fix deprecation warnings
  • 677111a Merge pull request #709 from python-rope/lieryan-py312
  • Additional commits viewable in compare view


Updates astroid from 2.15.7 to 3.0.0

Changelog

Sourced from astroid's changelog.

What's New in astroid 3.0.0?

Release date: 2023-09-25

  • Add support for Python 3.12, including PEP 695 type parameter syntax.

    Closes #2201

  • Remove support for Python 3.7.

    Refs #2137

  • Use the global inference cache when inferring, even without an explicit InferenceContext. This is a significant performance improvement given how often methods default to None for the context argument. (Linting astroid itself now takes ~5% less time on Python 3.12; other projects requiring more complex inference calculations will see greater speedups.)

    Refs #529

  • Following a deprecation period starting in astroid 2.7.0, the astroid.node_classes and astroid.scoped_nodes modules have been removed in favor of astroid.nodes.node_classes and astroid.nodes.scoped_nodes.

    Closes #1072

  • Following a deprecation period starting in astroid 2.12.0, the astroid.mixins module has been removed in favor of astroid.nodes._base_nodes (private).

    Refs #1633

  • Return all existing arguments when calling Arguments.arguments(). This also means find_argname will now use the whole list of arguments for its search.

    Closes #2213

  • Exclude class attributes from the __members__ container of an Enum class when they are nodes.AnnAssign nodes with no assigned value.

    Refs pylint-dev/pylint#7402

  • Remove @cached and @cachedproperty decorator (just use @cached_property from the stdlib).

    Closes #1780 Refs #2140

  • Remove the inference module. Node inference methods are now in the module defining the node, rather than being associated to the node afterward.

    Closes #679

... (truncated)

Commits
  • 2891daf Bump astroid to 3.0.0, update changelog
  • d637bdf Revert "Add boilerplate for documenting an upgrade guide (#1873)"
  • 5c8a248 Merge maintenance/2.15.x following 2.15.8 release
  • c633af2 Bump astroid to 2.15.8, update changelog
  • 584b1fd False positive unsubscriptable-object (#2307) (#2309)
  • 1f0f2f8 False positive unsubscriptable-object (#2307)
  • 2380f6f Merge pull request #2308 from pylint-dev/pre-commit-ci-update-config
  • 7581348 [pre-commit.ci] pre-commit autoupdate
  • 1113d49 Merge pull request #2306 from pylint-dev/dependabot/github_actions/actions/ch...
  • 9c0e642 Bump actions/checkout from 4.0.0 to 4.1.0
  • Additional commits viewable in compare view


Updates cffi from 1.15.1 to 1.16.0

Release notes

Sourced from cffi's releases.

v1.16.0

  • Add support for Python 3.12. With the removal of distutils from Python 3.12, projects using CFFI features that depend on distutils at runtime must add a dependency on setuptools to function under Python 3.12+. CFFI does not declare a runtime setuptools requirement to avoid an unnecessary dependency for projects that do not require it.
  • Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
  • Add support for PEP517 builds; setuptools is now a required build dependency.
  • Declare python_requires metadata for Python 3.8+. This allows unsupported Pythons to continue using previously released sdists and wheels.
  • Move project source under src/; a more standard layout that also enables CI to more easily catch packaging errors.

v1.16.0rc2

  • Fix packaging issue in v1.16.0rc1.
  • Rearrange project sources (src/ layout) so packaging tests can properly detect similar issues in the future.

Full Changelog: https://github.com/python-cffi/cffi/compare/v1.16.0rc1...v1.16.0rc2

v1.16.0rc1

  • Add support for Python 3.12. With the removal of distutils from Python 3.12, projects using CFFI features that depend on distutils at runtime must add a dependency on setuptools to function under Python 3.12+. CFFI does not declare a runtime setuptools requirement to avoid an unnecessary dependency for projects that do not require it.
  • Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
  • Move project home to python-cffi/cffi on GitHub.
  • Add support for PEP517 builds; setuptools is now a required build dependency.
  • Declare python_requires metadata for Python 3.8+. This allows unsupported Pythons to continue using previously released sdists and wheels.
  • Add missing calls to PyObject_GC_UnTrack to avoid ResourceWarning 15c4b71d5e3f2295c0e4773e99b23ac751e02534
Commits


Updates charset-normalizer from 3.2.0 to 3.3.0

Release notes

Sourced from charset-normalizer's releases.

Release 3.3.0

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encodings that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.8

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Changelog

Sourced from charset-normalizer's changelog.

3.3.0 (2023-09-30)

Added

  • Allow to execute the CLI (e.g. normalizer) through python -m charset_normalizer.cli or python -m charset_normalizer
  • Support for 9 forgotten encoding that are supported by Python but unlisted in encoding.aliases as they have no alias (#323)

Removed

  • (internal) Redundant utils.is_ascii function and unused function is_private_use_only
  • (internal) charset_normalizer.assets is moved inside charset_normalizer.constant

Changed

  • (internal) Unicode code blocks in constants are updated using the latest v15.0.0 definition to improve detection
  • Optional mypyc compilation upgraded to version 1.5.1 for Python >= 3.7

Fixed

  • Unable to properly sort CharsetMatch when both chaos/noise and coherence were close due to an unreachable condition in __lt__ (#350)
Commits
  • 165211a :bookmark: Release 3.3.0 (#353)
  • 5aed9a4 :bug: Fix unreachable code in the sorting algorithm of CharsetMatch (#352)
  • 061a71b :arrow_up: Bump actions/checkout from 4.0.0 to 4.1.0 (#348)
  • 88df580 :arrow_up: Bump github/codeql-action from 2.21.7 to 2.21.9 (#351)
  • aa0234b :arrow_up: Bump pypa/cibuildwheel from 2.15.0 to 2.16.0 (#349)
  • 58f69f7 :arrow_up: Bump github/codeql-action from 2.21.5 to 2.21.7 (#345)
  • e7c2d8e :arrow_up: Bump docker/setup-qemu-action from 2.2.0 to 3.0.0 (#346)
  • 5abf47f :arrow_up: Bump pytest from 7.4.1 to 7.4.2 (#342)
  • 50a138e :arrow_up: Bump actions/checkout from 3.6.0 to 4.0.0 (#343)
  • 5da7047 :arrow_up: Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#344)
  • Additional commits viewable in compare view


Updates packaging from 23.1 to 23.2

Release notes

Sourced from packaging's releases.

23.2

What's Changed

New Contributors

Full Changelog: https://github.com/pypa/packaging/compare/23.1...23.2

Changelog

Sourced from packaging's changelog.

23.2 - 2023-10-01


* Document calendar-based versioning scheme (:issue:`716`)
* Enforce that the entire marker string is parsed (:issue:`687`)
* Requirement parsing no longer automatically validates the URL (:issue:`120`)
* Canonicalize names for requirements comparison (:issue:`644`)
* Introduce ``metadata.Metadata`` (along with ``metadata.ExceptionGroup`` and ``metadata.InvalidMetadata``; :issue:`570`)
* Introduce the ``validate`` keyword parameter to ``utils.validate_name()`` (:issue:`570`)
* Introduce ``utils.is_normalized_name()`` (:issue:`570`)
* Make ``utils.parse_sdist_filename()`` and ``utils.parse_wheel_filename()``
  raise ``InvalidSdistFilename`` and ``InvalidWheelFilename``, respectively,
  when the version component of the name is invalid
Commits
  • b3a5d7d Bump for release
  • d7ce40d Fix code blocks in CHANGELOG.md (#724)
  • 524b701 parse_{sdist,wheel}_filename: don't raise InvalidVersion (#721)
  • b509bef Typing annotations fixed (#723)
  • 0206c39 Bump pip version to avoid known vulnerabilities (#720)
  • 7023537 fix: Update copyright date for docs (#713)
  • 39786bb Document use of calendar-based versioning scheme (#717)
  • c1346df fix: Detect when a platform is 32-bit more accurately (#711)
  • 7e68d82 Correct rST syntax in CHANGELOG.rst (#709)
  • 61e6efb Support enriched metadata in packaging.metadata (#686)
  • Additional commits viewable in compare view


Updates rich from 13.5.3 to 13.6.0

Release notes

Sourced from rich's releases.

The Python 3.12 release

Mostly a meta update in readiness for the release of Python3.12

[13.6.0] - 2023-09-30

Added

  • Added Python 3.12 to classifiers.
Changelog

Sourced from rich's changelog.

[13.6.0] - 2023-09-30

Added

  • Added Python 3.12 to classifiers.
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
github-actions[bot] commented 1 year ago

Conventional Commits Report

Type Number
Dependencies 1

:rocket: Conventional commits found.

dependabot[bot] commented 1 year ago

Looks like these dependencies are up-to-date now, so this is no longer needed.