dependabot[bot]
de960771ea
Bump actions/dependency-review-action from 3.0.6 to 3.0.7 ( #383 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 3.0.6 to 3.0.7.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](1360a344cc...7d90b4f05f
2023-08-09 16:54:13 -04:00
dependabot[bot]
099bf5b8c2
Bump step-security/harden-runner from 2.5.0 to 2.5.1
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](cba0d00b1f...8ca2b8b2ec
2023-08-09 17:05:11 +00:00
dependabot[bot]
3e4edc9689
Bump github/codeql-action from 2.21.2 to 2.21.3 ( #381 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.2 to 2.21.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0ba4244466...5b6282e01c
2023-08-08 14:18:07 -04:00
pre-commit-ci[bot]
25c5deaf55
[pre-commit.ci] pre-commit autoupdate ( #380 )
...
updates:
- [github.com/astral-sh/ruff-pre-commit: v0.0.281 → v0.0.282](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.281...v0.0.282 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-08-07 22:05:31 -04:00
dependabot[bot]
2317234ef0
Bump sphinx from 7.1.1 to 7.1.2 ( #379 )
...
Bumps [sphinx](https://github.com/sphinx-doc/sphinx ) from 7.1.1 to 7.1.2.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases )
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/master/CHANGES )
- [Commits](https://github.com/sphinx-doc/sphinx/compare/v7.1.1...v7.1.2 )
---
updated-dependencies:
- dependency-name: sphinx
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-02 22:07:49 -04:00
pre-commit-ci[bot]
fbf938c96f
[pre-commit.ci] pre-commit autoupdate ( #378 )
...
updates:
- [github.com/astral-sh/ruff-pre-commit: v0.0.280 → v0.0.281](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.280...v0.0.281 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-08-01 06:47:33 -04:00
dependabot[bot]
7cc833824a
Bump github/codeql-action from 2.21.1 to 2.21.2 ( #377 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.1 to 2.21.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](6ca1aa8c19...0ba4244466
2023-07-28 18:39:42 -04:00
dependabot[bot]
ab02b565d4
Bump sphinx from 7.1.0 to 7.1.1 ( #376 )
...
Bumps [sphinx](https://github.com/sphinx-doc/sphinx ) from 7.1.0 to 7.1.1.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases )
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/master/CHANGES )
- [Commits](https://github.com/sphinx-doc/sphinx/compare/v7.1.0...v7.1.1 )
---
updated-dependencies:
- dependency-name: sphinx
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-28 18:38:32 -04:00
dependabot[bot]
e993c84d5e
Bump step-security/harden-runner from 2.4.1 to 2.5.0 ( #371 )
...
Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner ) from 2.4.1 to 2.5.0.
- [Release notes](https://github.com/step-security/harden-runner/releases )
- [Commits](https://github.com/step-security/harden-runner/compare/v2.4.1...cba0d00b1fc9a034e1e642ea0f1103c282990604 )
---
updated-dependencies:
- dependency-name: step-security/harden-runner
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-27 22:20:28 -04:00
dependabot[bot]
38e49f1b1c
Bump furo from 2023.5.20 to 2023.7.26 ( #374 )
...
Bumps [furo](https://github.com/pradyunsg/furo ) from 2023.5.20 to 2023.7.26.
- [Release notes](https://github.com/pradyunsg/furo/releases )
- [Changelog](https://github.com/pradyunsg/furo/blob/main/docs/changelog.md )
- [Commits](https://github.com/pradyunsg/furo/compare/2023.05.20...2023.07.26 )
---
updated-dependencies:
- dependency-name: furo
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-27 22:20:14 -04:00
dependabot[bot]
3cb841b9b3
Bump github/codeql-action from 2.21.0 to 2.21.1 ( #375 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.21.0 to 2.21.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1813ca74c3...6ca1aa8c19
2023-07-27 22:19:43 -04:00
dependabot[bot]
765f776cbb
Bump paambaati/codeclimate-action from 4.0.0 to 5.0.0 ( #372 )
...
Bumps [paambaati/codeclimate-action](https://github.com/paambaati/codeclimate-action ) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/paambaati/codeclimate-action/releases )
- [Changelog](https://github.com/paambaati/codeclimate-action/blob/main/CHANGELOG.md )
- [Commits](9dea053ab1...4cace242c6
2023-07-25 21:34:32 -04:00
dependabot[bot]
f1cec9035e
Bump sphinx from 7.0.1 to 7.1.0 ( #373 )
...
Bumps [sphinx](https://github.com/sphinx-doc/sphinx ) from 7.0.1 to 7.1.0.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases )
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/master/CHANGES )
- [Commits](https://github.com/sphinx-doc/sphinx/compare/v7.0.1...v7.1.0 )
---
updated-dependencies:
- dependency-name: sphinx
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-25 21:33:52 -04:00
Arjan Molenaar
e0cf33ced4
Merge pull request #370 from step-security-bot/stepsecurity_remediation_1690273702
...
[StepSecurity] ci: Harden GitHub Actions
2023-07-25 11:33:13 +02:00
StepSecurity Bot
b7d09c414f
[StepSecurity] ci: Harden GitHub Actions
...
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2023-07-25 08:28:23 +00:00
Arjan Molenaar
1e7d94adb9
Merge pull request #367 from gaphor/dependabot/github_actions/paambaati/codeclimate-action-9dea053ab1947f448753ac842b9980de2e44fe88
...
Bump paambaati/codeclimate-action from 5f637ccd517bc8960de0fe59379dd922bcba9486 to 9dea053ab1947f448753ac842b9980de2e44fe88
2023-07-25 10:28:11 +02:00
Arjan Molenaar
5da8ffdd84
Merge pull request #368 from gaphor/dependabot/github_actions/actions/setup-python-4.7.0
...
Bump actions/setup-python from 4.6.1 to 4.7.0
2023-07-25 10:27:48 +02:00
Arjan Molenaar
d5611765be
Merge pull request #369 from gaphor/pre-commit-ci-update-config
...
[pre-commit.ci] pre-commit autoupdate
2023-07-25 10:27:24 +02:00
pre-commit-ci[bot]
b34b3cfe26
[pre-commit.ci] pre-commit autoupdate
...
updates:
- [github.com/astral-sh/ruff-pre-commit: v0.0.278 → v0.0.280](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.278...v0.0.280 )
2023-07-24 23:35:19 +00:00
dependabot[bot]
e99fd168ce
Bump pypa/gh-action-pypi-publish from 1.8.7 to 1.8.8 ( #366 )
...
Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish ) from 1.8.7 to 1.8.8.
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases )
- [Commits](f5622bde02...f8c70e705f
2023-07-21 19:09:13 -04:00
dependabot[bot]
3a7fda5206
Bump actions/dependency-review-action from 2.5.1 to 3.0.6 ( #365 )
...
Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action ) from 2.5.1 to 3.0.6.
- [Release notes](https://github.com/actions/dependency-review-action/releases )
- [Commits](0efb1d1d84...1360a344cc
2023-07-21 19:08:49 -04:00
dependabot[bot]
76afe5ae13
Bump github/codeql-action from 2.20.1 to 2.21.0 ( #364 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.1 to 2.21.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v2.20.1...1813ca74c3faaa3a2da2070b9b8a0b3e7373a0d8 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-21 19:08:26 -04:00
dependabot[bot]
ac0a9f6178
Bump actions/setup-python from 4.6.1 to 4.7.0
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.6.1 to 4.7.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](bd6b4b6205...61a6322f88
2023-07-21 17:10:26 +00:00
dependabot[bot]
2e0aee3f7d
Bump paambaati/codeclimate-action
...
Bumps [paambaati/codeclimate-action](https://github.com/paambaati/codeclimate-action ) from 5f637ccd517bc8960de0fe59379dd922bcba9486 to 9dea053ab1947f448753ac842b9980de2e44fe88.
- [Release notes](https://github.com/paambaati/codeclimate-action/releases )
- [Changelog](https://github.com/paambaati/codeclimate-action/blob/main/CHANGELOG.md )
- [Commits](5f637ccd51...9dea053ab1
2023-07-21 17:10:23 +00:00
Arjan Molenaar
cf320f3791
Merge pull request #337 from gaphor/danyeaw-patch-2
...
Add OpenSSF Scorecard badge
2023-07-21 18:57:13 +02:00
Arjan Molenaar
187ca399de
Merge pull request #350 from step-security-bot/stepsecurity_remediation_1688315983
...
[StepSecurity] Apply security best practices
2023-07-21 18:51:45 +02:00
Arjan Molenaar
01bad0d356
Merge branch 'main' into stepsecurity_remediation_1688315983
2023-07-21 18:51:38 +02:00
dependabot[bot]
fee83e29af
Bump github/codeql-action from 2.20.4 to 2.21.0 ( #363 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.4 to 2.21.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](489225d82a...1813ca74c3
2023-07-20 19:38:51 -04:00
pre-commit-ci[bot]
c1d6381f29
[pre-commit.ci] pre-commit autoupdate ( #362 )
...
updates:
- [github.com/psf/black: 23.3.0 → 23.7.0](https://github.com/psf/black/compare/23.3.0...23.7.0 )
- [github.com/astral-sh/ruff-pre-commit: v0.0.277 → v0.0.278](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.277...v0.0.278 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-07-17 20:42:42 -04:00
Arjan Molenaar
31d0e26c52
Merge pull request #353 from gaphor/poetry-constraints
2023-07-17 21:56:20 +02:00
Dan Yeaw
150255e83d
Merge pull request #361 from gaphor/release-1.1.2
...
Prepare for version 1.1.2 release
2023-07-16 07:26:37 -04:00
Dan Yeaw
65854a264d
Bump version and updates changes
2023-07-15 13:56:08 -04:00
dependabot[bot]
19a5c7eac1
Bump github/codeql-action from 2.20.3 to 2.20.4 ( #360 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.3 to 2.20.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](46ed16ded9...489225d82a
2023-07-14 19:04:46 -04:00
dependabot[bot]
a374345d5b
Bump actions/setup-python from 4.6.1 to 4.7.0 ( #359 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.6.1 to 4.7.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v4.6.1...v4.7.0 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-13 18:14:28 -04:00
pre-commit-ci[bot]
6bb371d539
[pre-commit.ci] pre-commit autoupdate ( #358 )
...
updates:
- [github.com/astral-sh/ruff-pre-commit: v0.0.276 → v0.0.277](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.276...v0.0.277 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-07-10 22:03:47 -04:00
dependabot[bot]
ba31a81844
Bump github/codeql-action from 2.20.2 to 2.20.3 ( #356 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.2 to 2.20.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](004c5de30b...46ed16ded9
2023-07-06 20:28:19 -04:00
dependabot[bot]
799068e77d
Bump paambaati/codeclimate-action from 4.0.0 to 5.0.0 ( #355 )
...
Bumps [paambaati/codeclimate-action](https://github.com/paambaati/codeclimate-action ) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/paambaati/codeclimate-action/releases )
- [Changelog](https://github.com/paambaati/codeclimate-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/paambaati/codeclimate-action/compare/v4.0.0...v5.0.0 )
---
updated-dependencies:
- dependency-name: paambaati/codeclimate-action
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-06 20:26:51 -04:00
pre-commit-ci[bot]
d70cafca61
[pre-commit.ci] pre-commit autoupdate ( #354 )
...
updates:
- https://github.com/charliermarsh/ruff-pre-commit → https://github.com/astral-sh/ruff-pre-commit
- [github.com/astral-sh/ruff-pre-commit: v0.0.275 → v0.0.276](https://github.com/astral-sh/ruff-pre-commit/compare/v0.0.275...v0.0.276 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-07-03 20:52:35 -04:00
Dan Yeaw
a595a4f95b
Use constraints file to install Poetry
2023-07-03 15:03:24 -04:00
dependabot[bot]
d95d60f811
Bump exceptiongroup from 1.1.1 to 1.1.2 ( #352 )
...
Bumps [exceptiongroup](https://github.com/agronholm/exceptiongroup ) from 1.1.1 to 1.1.2.
- [Changelog](https://github.com/agronholm/exceptiongroup/blob/main/CHANGES.rst )
- [Commits](https://github.com/agronholm/exceptiongroup/compare/1.1.1...1.1.2 )
---
updated-dependencies:
- dependency-name: exceptiongroup
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-03 13:35:58 -04:00
dependabot[bot]
13e68ee221
Bump github/codeql-action from 2.20.1 to 2.20.2 ( #351 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 2.20.1 to 2.20.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f6e388ebf0...004c5de30b
2023-07-03 13:35:29 -04:00
Dan Yeaw
c3b72c7b2e
Add sha for publish to PyPI actions
2023-07-02 13:44:36 -04:00
Dan Yeaw
b717bc0223
Don't run autobuild with CodeQL
2023-07-02 13:21:48 -04:00
Dan Yeaw
0846d9f27a
Merge main
2023-07-02 13:11:50 -04:00
Dan Yeaw
410a710c42
Merge pull request #349 from gaphor/trusted-publisher
...
Enable trusted publisher for PyPI
2023-07-02 13:03:02 -04:00
Dan Yeaw
331606756a
Fix typo
2023-07-02 12:54:20 -04:00
StepSecurity Bot
8a32f36501
[StepSecurity] Apply security best practices
...
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2023-07-02 16:39:46 +00:00
Dan Yeaw
4629e5973d
Enable trusted publisher for PyPI
2023-07-01 22:32:22 -04:00
dependabot[bot]
c0b49e2573
Bump release-drafter/release-drafter from 5.23.0 to 5.24.0 ( #348 )
...
Bumps [release-drafter/release-drafter](https://github.com/release-drafter/release-drafter ) from 5.23.0 to 5.24.0.
- [Release notes](https://github.com/release-drafter/release-drafter/releases )
- [Commits](https://github.com/release-drafter/release-drafter/compare/v5.23.0...v5.24.0 )
---
updated-dependencies:
- dependency-name: release-drafter/release-drafter
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-28 18:21:35 -04:00
pre-commit-ci[bot]
0b600d26a2
[pre-commit.ci] pre-commit autoupdate ( #347 )
...
updates:
- [github.com/pre-commit/mirrors-mypy: v1.3.0 → v1.4.1](https://github.com/pre-commit/mirrors-mypy/compare/v1.3.0...v1.4.1 )
- [github.com/charliermarsh/ruff-pre-commit: v0.0.272 → v0.0.275](https://github.com/charliermarsh/ruff-pre-commit/compare/v0.0.272...v0.0.275 )
Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
2023-06-26 20:15:42 -04:00
