We're adding support for Python 3.10, 3.11 and 3.12 and we dropped support for Python 3.6 and 3.7! We hope this won't be too disruptive for you all. Be aware that in a next release, we'll remove support for Python 3.8 too, as it'll reach EOL in October 2024.
:mega: Release Highlights
Added support for OS-agnostic baseline files (#586)
We apologise for the extreme delay in publishing a new release for our beloved detect-secrets. We at Yelp appreciate your continued support and your contributions to this valuable project!
:newspaper: News
We're adding support for Python 3.10, 3.11 and 3.12 and we dropped support for Python 3.6 and 3.7! We hope this won't be too disruptive for you all. Be aware that in a next release, we'll remove support for Python 3.8 too, as it'll reach EOL in October 2024.
:mega: Release Highlights
Added support for OS-agnostic baseline files (#586)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the minor-patch group with 3 updates: pre-commit, detect-secrets and ruff.
Updates
pre-commit
from 3.7.0 to 3.7.1Release notes
Sourced from pre-commit's releases.
Changelog
Sourced from pre-commit's changelog.
Commits
9ee0768
v3.7.1eeac061
Merge pull request #3201 from pre-commit/rust-default-language-version296f592
determine rust default language version independent of rust-toolchain.toml1602328
Merge pull request #3193 from pre-commit/pre-commit-ci-update-config0142f45
[pre-commit.ci] pre-commit autoupdated7e21cd
Merge pull request #3194 from pre-commit/handle-readonly-3-125c3d006
use a simpler gem for testing additional_dependencies0d4c6da
adjust _handle_readonly for typeshed updates85fe182
Merge pull request #3176 from pre-commit/pre-commit-ci-update-config74d05b4
[pre-commit.ci] pre-commit autoupdateUpdates
detect-secrets
from 1.4.0 to 1.5.0Release notes
Sourced from detect-secrets's releases.
Changelog
Sourced from detect-secrets's changelog.
... (truncated)
Commits
01886c8
Bump version: 1.4.0 → 1.5.0cb271be
Update changelog v1.5.0 release (#829)81157d0
Merge pull request #828 from Yelp/dependabot/pip/coverage-7.5.17237fda
Merge pull request #827 from Yelp/dependabot/pip/packaging-24.08f4f823
Bump coverage from 7.4.0 to 7.5.1adfe36f
Bump packaging from 23.2 to 24.0928f03a
Revert "Changelog for v1.5.0 release"98b0e9f
Revert "Updated baseline file"89cdc79
Revert "Fixed version in baseline file"16e3452
Fixed version in baseline fileUpdates
ruff
from 0.4.3 to 0.4.4Release notes
Sourced from ruff's releases.
Changelog
Sourced from ruff's changelog.
Commits
3e8878a
Bump version to v0.4.4 (#11352)b6b4ad9
[red-knot]@override
lint rule (#11282)dd42961
[pylint
] Detectpathlib.Path.open
calls inunspecified-encoding
(`PLW15...c80c171
[red-knot] Vendor typeshed's stdlib (#11340)e2fe177
Revert "Simplify arithmetic operation in logical lines checker (#11346)" (#11...e9d1cdd
Simplify arithmetic operation in logical lines checker (#11346)dfe4291
Improveruff_python_semantic::all::extract_all_names()
(#11335)4541337
[red-knot] Remove\<Db: SemanticDb>
contraints in favor of dynamic dispatch ...8e9ddee
Ignore end-of-line comments when determining blank line rules (#11342)702d2fa
Make B024 and B027 documentation more nuanced (#11341)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show