search

svthalia / concrexit

Thalia Website built on Django.
https://thalia.nu
Other
23 stars 12 forks source link

Bump the patch-updates group with 3 updates #3645

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 6 months ago

Bumps the patch-updates group with 3 updates: django, boto3 and coverage.

Updates django from 5.0.2 to 5.0.3

Commits
  • 4b64d72 [5.0.x] Bumped version for 5.0.3 release.
  • 3394fc6 [5.0.x] Fixed CVE-2024-27351 -- Prevented potential ReDoS in Truncator.words().
  • 80761c3 [5.0.x] Fixed #35198 -- Fixed facet filters crash on querysets with no primar...
  • 24de811 [5.0.x] Fixed typo in docs/ref/contrib/admin/index.txt.
  • bf7fedc [5.0.x] Removed #django-geo IRC channel in docs.
  • a8de04f [5.0.x] Refs #34964 -- Doc'd that Q expression order is preserved.
  • b1f2833 [5.0.x] Added release date for 5.0.3, 4.2.11, and 3.2.25.
  • 5d9be66 [5.0.x] Removed distracting note from tutorial 4.
  • 69e5b13 [5.0.x] Fixed #35238 -- Fixed database serialization crash when base managers...
  • e72fdc8 [5.0.x] Fixed #35153 -- Added note about locale name notation to FORMAT_MODUL...
  • Additional commits viewable in compare view


Updates boto3 from 1.34.44 to 1.34.64

Changelog

Sourced from boto3's changelog.

1.34.64

  • api-change:backup: [botocore] This release introduces a boolean attribute ManagedByAWSBackupOnly as part of ListRecoveryPointsByResource api to filter the recovery points based on ownership. This attribute can be used to filter out the recovery points protected by AWSBackup.
  • api-change:codebuild: [botocore] AWS CodeBuild now supports overflow behavior on Reserved Capacity.
  • api-change:connect: [botocore] This release adds Hierarchy based Access Control fields to Security Profile public APIs and adds support for UserAttributeFilter to SearchUsers API.
  • api-change:ec2: [botocore] Add media accelerator and neuron device information on the describe instance types API.
  • api-change:kinesisanalyticsv2: [botocore] Support for Flink 1.18 in Managed Service for Apache Flink
  • api-change:s3: [botocore] Documentation updates for Amazon S3.
  • api-change:sagemaker: [botocore] Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type support to Sagemaker Notebook Instances and miscellaneous wording fixes for previous Sagemaker documentation.
  • api-change:workspaces-thin-client: [botocore] Removed unused parameter kmsKeyArn from UpdateDeviceRequest

1.34.63

  • api-change:amplify: [botocore] Documentation updates for Amplify. Identifies the APIs available only to apps created using Amplify Gen 1.
  • api-change:ec2-instance-connect: [botocore] This release includes a new exception type "SerialConsoleSessionUnsupportedException" for SendSerialConsoleSSHPublicKey API.
  • api-change:elbv2: [botocore] This release allows you to configure HTTP client keep-alive duration for communication between clients and Application Load Balancers.
  • api-change:fis: [botocore] This release adds support for previewing target resources before running a FIS experiment. It also adds resource ARNs for actions, experiments, and experiment templates to API responses.
  • api-change:iot-roborunner: [botocore] The iot-roborunner client has been removed following the deprecation of the service.
  • api-change:rds: [botocore] Updates Amazon RDS documentation for EBCDIC collation for RDS for Db2.
  • api-change:secretsmanager: [botocore] Doc only update for Secrets Manager
  • api-change:timestream-influxdb: [botocore] This is the initial SDK release for Amazon Timestream for InfluxDB. Amazon Timestream for InfluxDB is a new time-series database engine that makes it easy for application developers and DevOps teams to run InfluxDB databases on AWS for near real-time time-series applications using open source APIs.
  • enhancement:urllib3: [botocore] Added support for urllib3 2.2.1+ in Python 3.10+

1.34.62

  • api-change:ivs-realtime: [botocore] adds support for multiple new composition layout configuration options (grid, pip)
  • api-change:kinesisanalyticsv2: [botocore] Support new RuntimeEnvironmentUpdate parameter within UpdateApplication API allowing callers to change the Flink version upon which their application runs.
  • api-change:s3: [botocore] This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT).

1.34.61

  • api-change:cloudformation: [botocore] CloudFormation documentation update for March, 2024
  • api-change:connect: [botocore] This release increases MaxResults limit to 500 in request for SearchUsers, SearchQueues and SearchRoutingProfiles APIs of Amazon Connect.
  • api-change:ec2: [botocore] Documentation updates for Amazon EC2.
  • api-change:kafka: [botocore] Added support for specifying the starting position of topic replication in MSK-Replicator.
  • api-change:ssm: [botocore] March 2024 doc-only updates for Systems Manager.

1.34.60

  • api-change:codestar-connections: [botocore] Added a sync configuration enum to disable publishing of deployment status to source providers (PublishDeploymentStatus). Added a sync configuration enum (TriggerStackUpdateOn) to only trigger changes.
  • api-change:elasticache: [botocore] Revisions to API text that are now to be carried over to SDK text, changing usages of "SFO" in code examples to "us-west-1", and some other typos.

... (truncated)

Commits
  • f4491f1 Merge branch 'release-1.34.64'
  • a3306a7 Bumping version to 1.34.64
  • c4b5971 Add changelog entries from botocore
  • e2d520c Merge branch 'release-1.34.63'
  • 675cded Merge branch 'release-1.34.63' into develop
  • d1aefcd Bumping version to 1.34.63
  • e627bf6 Add changelog entries from botocore
  • 23c0741 Fix boto3 resource reference docs (#4050)
  • 49d87f3 Merge branch 'release-1.34.62'
  • 453b615 Merge branch 'release-1.34.62' into develop
  • Additional commits viewable in compare view


Updates coverage from 7.4.3 to 7.4.4

Changelog

Sourced from coverage's changelog.

Version 7.4.4 — 2024-03-14

  • Fix: in some cases, even with [run] relative_files=True, a data file could be created with absolute path names. When combined with other relative data files, it was random whether the absolute file names would be made relative or not. If they weren't, then a file would be listed twice in reports, as detailed in issue 1752_. This is now fixed: absolute file names are always made relative when combining. Thanks to Bruno Rodrigues dos Santos for support.

  • Fix: the last case of a match/case statement had an incorrect message if the branch was missed. It said the pattern never matched, when actually the branch is missed if the last case always matched.

  • Fix: clicking a line number in the HTML report now positions more accurately.

  • Fix: the report:format setting was defined as a boolean, but should be a string. Thanks, Tanaydin Sirin <pull 1754_>_. It is also now documented on the :ref:configuration page <config_report_format>.

.. _issue 1752: nedbat/coveragepy#1752 .. _pull 1754: nedbat/coveragepy#1754

.. _changes_7-4-3:

Commits
  • bc5e2d7 docs: sample HTML for 7.4.4
  • 9b0008b docs: prep for 7.4.4
  • a536161 docs: thanks, Bruno Rodrigues dos Santos
  • e06e4f9 chore: make doc_upgrade
  • f30818e chore: make upgrade
  • 1b19799 fix: ensure absolute paths are relative when combined #1752
  • 1ef020d build: more cheats for convenient URLs
  • 3d57a07 docs: document the report:format setting
  • 8e30221 fix: correct the type of report:format in config.py (#1754)
  • 6289be8 refactor: use dataclasses, no namedtuple
  • Additional commits viewable in compare view


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 6 months ago

Superseded by #3651.