search

vacanza / holidays

Generate and work with holidays in Python
https://pypi.org/project/holidays
MIT License
1.45k stars 460 forks source link

Bump cyclonedx-bom from 4.5.1 to 4.6.0 #2022

Closed dependabot[bot] closed 1 week ago

dependabot[bot] commented 1 week ago

Bumps cyclonedx-bom from 4.5.1 to 4.6.0.

Release notes

Sourced from cyclonedx-bom's releases.

v4.6.0 (2024-09-20)

Documentation

  • docs: reformat help page in usage docs (#788)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (a1354e5)

Feature

  • feat: populate properties cdx:python:package:source:vcs:... (#790)

populate the newly added/fixed CycloneDX properties cdx:python:package:source:vcs:... in accordance with <CycloneDX/cyclonedx-property-taxonomy#96> and <CycloneDX/cyclonedx-property-taxonomy#98>.

the deprecated properties are still used, so no breaking changes exist.

fixes #789

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b08e1bb)

What's Changed

Full Changelog: https://github.com/CycloneDX/cyclonedx-python/compare/v4.5.1...v4.6.0

Changelog

Sourced from cyclonedx-bom's changelog.

v4.6.0 (2024-09-20)

Documentation

  • docs: reformat help page in usage docs (#788)

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (a1354e5)

Feature

  • feat: populate properties cdx:python:package:source:vcs:... (#790)

populate the newly added/fixed CycloneDX properties cdx:python:package:source:vcs:... in accordance with <CycloneDX/cyclonedx-property-taxonomy#96> and <CycloneDX/cyclonedx-property-taxonomy#98>.

the deprecated properties are still used, so no breaking changes exist.

fixes #789

Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com> (b08e1bb)

Commits
  • d68a594 chore(release): 4.6.0
  • b08e1bb feat: populate properties cdx:python:package:source:vcs:... (#790)
  • 39c426b chore(deps): Update sphinx requirement from <8,>=7.2.6 to >=7.2.6,<9 (#772)
  • a1354e5 docs: reformat help page in usage docs (#788)
  • See full diff in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
sonarcloud[bot] commented 1 week ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud