chore(deps): update pypa/gh-action-pypi-publish action to v1.10.0

[renovate[bot]]

This PR contains the following updates:

Package	Type	Update	Change
pypa/gh-action-pypi-publish	action	minor	v1.9.0 -> v1.10.0

---

Release Notes

pypa/gh-action-pypi-publish (pypa/gh-action-pypi-publish)

### [`v1.10.0`](https://togithub.com/pypa/gh-action-pypi-publish/releases/tag/v1.10.0) [Compare Source](https://togithub.com/pypa/gh-action-pypi-publish/compare/v1.9.0...v1.10.0) #### 🔏 Anything fancy, eh? This time, [@​woodruffw](https://togithub.com/woodruffw)[💰](https://togithub.com/sponsors/woodruffw) implemented support for [PEP 740] attestations functionality in [#​236](https://togithub.com/pypa/gh-action-pypi-publish/issues/236) and [#​245](https://togithub.com/pypa/gh-action-pypi-publish/issues/245). This is a big deal, as it is a huge step forward to replacing what the deprecated GPG signatures used to provide in a more meaningful way. 🙏 Please, thank William for working on this amazing improvement for the ecosystem! The overall effort is tracked @&#[https://github.com/pypi/warehouse/issues/15871](https://togithub.com/pypi/warehouse/issues/15871)/15871, by the way. **🪞 Full Diff**: https://github.com/pypa/gh-action-pypi-publish/compare/v1.9.0...v1.10.0 **🧔‍♂️ Release Manager:** [@​webknjaz 🇺🇦](https://togithub.com/sponsors/webknjaz) [PEP 740]: https://peps.python.org/pep-0740/

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/pypa/gh-action-pypi-publish	8a08d616893759ef8e1aa1f2785787c0b97e20d6	:green_circle: 5.1	Details Check Score Reason Code-Review :green_circle: 3 Found 6/19 approved changesets -- score normalized to 3 Maintained :green_circle: 7 4 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Security-Policy :green_circle: 4 security policy file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Branch-Protection :warning: -1 internal error: error during GetBranch(master): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0
actions/pypa/gh-action-pypi-publish	8a08d616893759ef8e1aa1f2785787c0b97e20d6	:green_circle: 5.1	Details Check Score Reason Code-Review :green_circle: 3 Found 6/19 approved changesets -- score normalized to 3 Maintained :green_circle: 7 4 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 7 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Security-Policy :green_circle: 4 security policy file detected Packaging :warning: -1 packaging workflow not detected Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :green_circle: 10 no binaries found in the repo Signed-Releases :warning: -1 no releases found Fuzzing :warning: 0 project is not fuzzed Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Branch-Protection :warning: -1 internal error: error during GetBranch(master): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Manifest Files

.github/workflows/publish.yaml

• pypa/gh-action-pypi-publish@8a08d616893759ef8e1aa1f2785787c0b97e20d6
• pypa/gh-action-pypi-publish@ec4db0b4ddc65acdf4bff5fa45ac92d78b56bdf0

.github/workflows/pullrequest.yaml

• pypa/gh-action-pypi-publish@8a08d616893759ef8e1aa1f2785787c0b97e20d6
• pypa/gh-action-pypi-publish@ec4db0b4ddc65acdf4bff5fa45ac92d78b56bdf0

[codecov[bot]]

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Project coverage is 100.00%. Comparing base (81657bd) to head (cd839ba). Report is 150 commits behind head on main.

Additional details and impacted files

[](https://app.codecov.io/gh/mcaulifn/solcast/pull/313?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe) ```diff @@ Coverage Diff @@ ## main #313 +/- ## ========================================= Coverage 100.00% 100.00% ========================================= Files 7 7 Lines 126 126 ========================================= Hits 126 126 ``` | [Flag](https://app.codecov.io/gh/mcaulifn/solcast/pull/313/flags?src=pr&el=flags&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe) | Coverage Δ | | |---|---|---| | [unittests](https://app.codecov.io/gh/mcaulifn/solcast/pull/313/flags?src=pr&el=flag&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe) | `100.00% <ø> (ø)` | | Flags with carried forward coverage won't be shown. [Click here](https://docs.codecov.io/docs/carryforward-flags?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe#carryforward-flags-in-the-pull-request-comment) to find out more. ------ [Continue to review full report in Codecov by Sentry](https://app.codecov.io/gh/mcaulifn/solcast/pull/313?dropdown=coverage&src=pr&el=continue&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe). > **Legend** - [Click here to learn more](https://docs.codecov.io/docs/codecov-delta?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe) > `Δ = absolute (impact)`, `ø = not affected`, `? = missing data` > Powered by [Codecov](https://app.codecov.io/gh/mcaulifn/solcast/pull/313?dropdown=coverage&src=pr&el=footer&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe). Last update [690e0ed...cd839ba](https://app.codecov.io/gh/mcaulifn/solcast/pull/313?dropdown=coverage&src=pr&el=lastupdated&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe). Read the [comment docs](https://docs.codecov.io/docs/pull-request-comments?utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=Nathaniel+McAuliffe).

[codeclimate[bot]]

Code Climate has analyzed commit 7f4b64ed and detected 0 issues on this pull request.

View more on Code Climate.