search

greenbone / python-gvm

Greenbone Vulnerability Management Python Library
https://greenbone.github.io/python-gvm/
GNU General Public License v3.0
107 stars 60 forks source link

Deps: Bump the python-packages group with 10 updates #1113

Closed dependabot[bot] closed 9 months ago

dependabot[bot] commented 9 months ago

Bumps the python-packages group with 10 updates:

Package From To
lxml 4.9.3 5.1.0
pontos 24.1.0 24.1.2
alabaster 0.7.15 0.7.16
beautifulsoup4 4.12.2 4.12.3
markupsafe 2.1.3 2.1.4
sphinxcontrib-applehelp 1.0.7 1.0.8
sphinxcontrib-devhelp 1.0.5 1.0.6
sphinxcontrib-htmlhelp 2.0.4 2.0.5
sphinxcontrib-qthelp 1.0.6 1.0.7
sphinxcontrib-serializinghtml 1.1.9 1.1.10

Updates lxml from 4.9.3 to 5.1.0

Changelog

Sourced from lxml's changelog.

5.1.0 (2024-01-05)

Features added

  • Parsing ASCII strings is slightly faster.

Bugs fixed

  • GH#349: The HTML Cleaner() interpreted an accidentally provided string parameter for the host_whitelist as list of characters and silently failed to reject any hosts. Passing a non-collection is now rejected.

Other changes

  • Support for Python 2.7 and Python versions < 3.6 was removed.

  • The wheel build was migrated to use cibuildwheel. Patch by Primož Godec.

5.0.1 (2024-01-05)

Bugs fixed

  • LP#2046208: Parsing non-BMP Python Unicode strings could fail on macOS.

  • LP#2044225: When incrementally parsing broken HTML, reporting start events on missing structural tags failed and could lead to subsequent exceptions.

  • LP#2045435: Some (not all) issues with stricter C compilers were resolved.

  • The binary wheels in the 5.0.0 release did not validate cleanly (but installed ok).

.. _latest_release:

5.0.0 (2023-12-29)

Features added

  • Character escaping in C14N2 serialisation now uses a single pass over the text instead of searching for each unescaped character separately.

... (truncated)

Commits
  • 82a4260 Prepare release of 5.1.0.
  • 3eafa61 Merge branch 'lxml-5.0'
  • eb5cd98 Prepare release of 5.0.1.
  • f4b8be5 docs: Shorten the list of old versions on the main website.
  • 9496a79 Update changelog.
  • c13c5af Remove some dead Py2 code.
  • 5bba8c4 Remove some dead Py2 code.
  • 5fa0cd5 Cleaner: Validate that host_whitelist is not a string (GH-349)
  • ff88377 Remove accidentally duplicated code.
  • 7244b43 Merge branch 'lxml-5.0'
  • Additional commits viewable in compare view


Updates pontos from 24.1.0 to 24.1.2

Release notes

Sourced from pontos's releases.

pontos 24.1.2

24.1.2 - 2024-01-18

Added

  • Export all relevant git classes from pontos.git 42ff071

Changed

  • Cleanup pontos.version module API 53ddf6b
  • Mark pontos.git.status as private module explicitly db91dbe
  • Mark pontos.git.git as private module explicitly a73513e
  • Use trusted publisher process to deploy on PyPI 6aefbab

Bug Fixes

  • Fix versioning_scheme type of Project constructor 123db56
  • Fix return type of CMakeVErsionParser._tokenize method 38479f9

Dependencies

  • Bump the python-packages group with 9 updates bcb3e86

pontos 24.1.1

24.1.1 - 2024-01-12

Changed

  • Improve CLI help for pontos-changelog and pontos-release 2fa927b
  • Include changes from pre-releases in non pre-releases 0ddbb3c

Bug Fixes

  • Ignore invalid versions in tag when determining last release 84ecc39

Dependencies

  • Bump jinja2 from 3.1.2 to 3.1.3 415878e
  • Bump the python-packages group with 4 updates 4a6f56a
Commits
  • c7b8ece Automatic release to 24.1.2
  • 123db56 Fix: Fix versioning_scheme type of Project constructor
  • 38479f9 Fix: Fix return type of CMakeVErsionParser._tokenize method
  • 53ddf6b Change: Cleanup pontos.version module API
  • db91dbe Change: Mark pontos.git.status as private module explicitly
  • a73513e Change: Mark pontos.git.git as private module explicitly
  • 42ff071 Add: Export all relevant git classes from pontos.git
  • 6aefbab Change: Use trusted publisher process to deploy on PyPI
  • bcb3e86 Deps: Bump the python-packages group with 9 updates
  • 4d127c7 Automatic adjustments after release
  • Additional commits viewable in compare view


Updates alabaster from 0.7.15 to 0.7.16

Release notes

Sourced from alabaster's releases.

Alabaster 0.7.16

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Changelog

Sourced from alabaster's changelog.

:git_tag:0.7.16 -- 2024-01-10

  • :bug:215 Do not display logo_name if it is set to False.
Commits


Updates beautifulsoup4 from 4.12.2 to 4.12.3

Updates markupsafe from 2.1.3 to 2.1.4

Release notes

Sourced from markupsafe's releases.

2.1.4

This is a fix release for the 2.1.x feature release branch. It fixes bugs but does not otherwise change behavior and should not result in breaking changes.

Changelog

Sourced from markupsafe's changelog.

Version 2.1.4

Released 2024-01-19

  • Don't use regular expressions for striptags, avoiding a performance issue. :pr:413
Commits


Updates sphinxcontrib-applehelp from 1.0.7 to 1.0.8

Release notes

Sourced from sphinxcontrib-applehelp's releases.

sphinxcontrib-applehelp 1.0.8

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-applehelp's changelog.

Release 1.0.8 (2024-01-13)

  • Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.
Commits


Updates sphinxcontrib-devhelp from 1.0.5 to 1.0.6

Release notes

Sourced from sphinxcontrib-devhelp's releases.

sphinxcontrib-devhelp 1.0.6

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-devhelp's changelog.

Release 1.0.6 (2024-01-13)

  • Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.
Commits


Updates sphinxcontrib-htmlhelp from 2.0.4 to 2.0.5

Release notes

Sourced from sphinxcontrib-htmlhelp's releases.

sphinxcontrib-htmlhelp 2.0.5

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-htmlhelp's changelog.

Release 2.0.5 (2024-01-13)

  • Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.
Commits


Updates sphinxcontrib-qthelp from 1.0.6 to 1.0.7

Release notes

Sourced from sphinxcontrib-qthelp's releases.

sphinxcontrib-qthelp 1.0.7

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-qthelp's changelog.

Release 1.0.7 (2024-01-13)

  • Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.
Commits


Updates sphinxcontrib-serializinghtml from 1.1.9 to 1.1.10

Release notes

Sourced from sphinxcontrib-serializinghtml's releases.

sphinxcontrib-serializinghtml 1.1.10

Changelog: https://www.sphinx-doc.org/en/master/changes.html

Changelog

Sourced from sphinxcontrib-serializinghtml's changelog.

Release 1.1.10 (2024-01-13)

  • Remove Sphinx as a required dependency, as circular dependencies may cause failure with package managers that expect a directed acyclic graph (DAG) of dependencies.
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
github-actions[bot] commented 9 months ago

Conventional Commits Report

Type Number
Dependencies 1

:rocket: Conventional commits found.

dependabot[bot] commented 9 months ago

Looks like these dependencies are updatable in another way, so this is no longer needed.