Bump the all group across 1 directory with 9 updates #131

dependabot · 2024-08-19T03:10:26Z

Bumps the all group with 9 updates in the /localcert directory:

Package	From	To
coverage	`7.5.4`	`7.6.1`
flake8	`7.1.0`	`7.1.1`
cffi	`1.16.0`	`1.17.0`
cryptography	`42.0.8`	`43.0.0`
django	`5.0.7`	`5.1`
django-allauth	`0.63.3`	`64.1.0`
gunicorn	`22.0.0`	`23.0.0`
pyjwt	`2.8.0`	`2.9.0`
sqlparse	`0.5.0`	`0.5.1`

Updates coverage from 7.5.4 to 7.6.1

Changelog

Sourced from coverage's changelog.

Version 7.6.1 — 2024-08-04

Fix: coverage used to fail when measuring code using :func:runpy.run_path <python:runpy.run_path> with a :class:Path <python:pathlib.Path> argument. This is now fixed, thanks to Ask Hjorth Larsen <pull 1819_>_.

Fix: backslashes preceding a multi-line backslashed string could confuse the HTML report. This is now fixed, thanks to LiuYinCarl <pull 1828_>_.

Now we publish wheels for Python 3.13, both regular and free-threaded.

.. _pull 1819: nedbat/coveragepy#1819 .. _pull 1828: nedbat/coveragepy#1828

.. _changes_7-6-0:

Version 7.6.0 — 2024-07-11

Exclusion patterns can now be multi-line, thanks to Daniel Diniz <pull 1807_>. This enables many interesting exclusion use-cases, including those requested in issues 118 <issue 118_> (entire files), 996 <issue 996_>_ (multiple lines only when appearing together), 1741 <issue 1741_>_ (remainder of a function), and 1803 <issue 1803_>_ (arbitrary sequence of marked lines). See the :ref:multi_line_exclude section of the docs for more details and examples.

The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz <pull 1809_>_ for getting the work started. This closes issue 1793_ and issue 1532_.

Fixed an incorrect calculation of "(no class)" lines in the HTML classes report.

Python 3.13.0b3 is supported.

.. _issue 118: nedbat/coveragepy#118 .. _issue 996: nedbat/coveragepy#996 .. _issue 1532: nedbat/coveragepy#1532 .. _issue 1741: nedbat/coveragepy#1741 .. _issue 1793: nedbat/coveragepy#1793 .. _issue 1803: nedbat/coveragepy#1803 .. _pull 1807: nedbat/coveragepy#1807 .. _pull 1809: nedbat/coveragepy#1809

.. _changes_7-5-4:

Commits

29f5898 docs: sample HTML for 7.6.1
9b829f1 docs: prep for 7.6.1
ebbb6a2 build: wheels for 3.13rc1
3872525 chore: make upgrade
7a27f40 test: fix a test on free-threading, use abiflags to get site-packages path co...
2b53664 build: include gil/nogil in the version banner
da1682f docs: changelog and contributor for #1828
dc819ff test: two tests for #1828
9aaa404 fix: properly handle backslash before multi-line string (#1828)
9c50270 chore: make upgrade
Additional commits viewable in compare view

Updates flake8 from 7.1.0 to 7.1.1

Commits

cf1542c Release 7.1.1
939ea3d Merge pull request #1949 from stephenfin/issue-1948
bdcd5c2 Handle escaped braces in f-strings
2a811cc Merge pull request #1946 from Viicos/patch-1
10314ad Fix wording of plugins documentation
See full diff in compare view

Updates cffi from 1.16.0 to 1.17.0

Release notes

Sourced from cffi's releases.

v1.17.0

Add support for Python 3.13.

Free-threaded CPython builds (i.e. python3.13t and the 3.13t ABI) are not currently supported.

In API mode, when you get a function from a C library by writing fn = lib.myfunc, you get an object of a special type for performance reasons, instead of a <cdata 'C-function-type'>. Before version 1.17 you could only call such objects. You could write ffi.addressof(lib, "myfunc") in order to get a real <cdata> object, based on the idea that in these cases in C you'd usually write &myfunc instead of myfunc. In version 1.17, the special object lib.myfunc can now be passed in many places where CFFI expects a regular <cdata> object. For example, you can now pass it as a callback to a C function call, or write it inside a C structure field of the correct pointer-to-function type, or use ffi.cast() or ffi.typeof() on it.

Full Changelog: python-cffi/cffi@v1.16.0...v1.17.0

v1.17.0rc1

Add support for Python 3.13.

In API mode, when you get a function from a C library by writing fn = lib.myfunc, you get an object of a special type for performance reasons, instead of a object. For example, you can now pass it as a callback to a C function call, or write it inside a C structure field of the correct pointer-to-function type, or use ffi.cast() or ffi.typeof() on it.

Build wheels for musllinux aarch64.

Commits

74731f9 Release 1.17.0 (#108)
181fa00 1.17.0rc1 release (#80)
772528e Add 3.13 to trove classifiers (#72)
e36042d 1.17.0b1 prep (#79)
39bdab2 avoid null-pointer-subtraction error (#78)
d7f750b Mention the systemd issue with old-style callbacks (#74)
56f7609 Build aarch64 musllinux wheel (#69)
e59ec8f Win32: pass the flags from dlopen() to LoadLibraryEx() (#65)
0619e5e remove binary cruft (#63)
640e89f rearrange code to make PyPy testing happier (#59)
Additional commits viewable in compare view

Updates cryptography from 42.0.8 to 43.0.0

Changelog

Sourced from cryptography's changelog.

43.0.0 - 2024-07-20


* **BACKWARDS INCOMPATIBLE:** Support for OpenSSL less than 1.1.1e has been
  removed.  Users on older version of OpenSSL will need to upgrade.
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.8.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1.
* Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0.
* :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generate_private_key`
  now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still
  considered insecure, users should generally use a key size of 2048-bits.
* :func:`~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificates`
  now emits ASN.1 that more closely follows the recommendations in :rfc:`2315`.
* Added new :doc:`/hazmat/decrepit/index` module which contains outdated and
  insecure cryptographic primitives.
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.CAST5`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.SEED`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA`, and
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish`, which were
  deprecated in 37.0.0, have been added to this module. They will be removed
  from the ``cipher`` module in 45.0.0.
* Moved :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES`
  and :class:`~cryptography.hazmat.primitives.ciphers.algorithms.ARC4` into
  :doc:`/hazmat/decrepit/index` and deprecated them in the ``cipher`` module.
  They will be removed from the ``cipher`` module in 48.0.0.
* Added support for deterministic
  :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (:rfc:`6979`)
* Added support for client certificate verification to the
  :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the
  form of :class:`~cryptography.x509.verification.ClientVerifier`,
  :class:`~cryptography.x509.verification.VerifiedClient`, and
  ``PolicyBuilder``
  :meth:`~cryptography.x509.verification.PolicyBuilder.build_client_verifier`.
* Added Certificate
  :attr:`~cryptography.x509.Certificate.public_key_algorithm_oid`
  and Certificate Signing Request
  :attr:`~cryptography.x509.CertificateSigningRequest.public_key_algorithm_oid`
  to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID`
  Object Identifier of the public key found inside the certificate.
* Added :attr:`~cryptography.x509.InvalidityDate.invalidity_date_utc`, a
  timezone-aware alternative to the naïve ``datetime`` attribute
  :attr:`~cryptography.x509.InvalidityDate.invalidity_date`.
* Added support for parsing empty DN string in
  :meth:`~cryptography.x509.Name.from_rfc4514_string`.
* Added the following properties that return timezone-aware ``datetime`` objects:
  :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_time_utc`,
</tr></table>

... (truncated)

Commits

ebf14f2 bump for 43.0.0 and update changelog (#11311)
42788a0 Fix exchange with keys that had Q automatically computed (#11309)
2dbdfb8 don't assign unused name (#11310)
ccc66e6 Bump openssl from 0.10.64 to 0.10.65 in /src/rust (#11308)
4310c87 Bump sphinxcontrib-qthelp from 1.0.7 to 1.0.8 (#11307)
f66a9c4 Bump sphinxcontrib-htmlhelp from 2.0.5 to 2.0.6 (#11306)
a8fcf18 Bump openssl-sys from 0.9.102 to 0.9.103 in /src/rust (#11305)
2fe32b2 Bump mypy from 1.10.1 to 1.11.0 (#11303)
ee24e82 Bump setuptools from 71.0.3 to 71.0.4 in /.github/requirements (#11304)
7249ccd Bump portable-atomic from 1.6.0 to 1.7.0 in /src/rust (#11302)
Additional commits viewable in compare view

Updates django from 5.0.7 to 5.1

Commits

373cb30 [5.1.x] Bumped version for 5.1 release.
8baab82 [5.1.x] Finalized release notes for Django 5.1.
d5ad743 [5.1.x] Fixed i18n.tests.TranslationTests.test_plural to use correct French t...
380c6e6 [5.1.x] Updated translations from Transifex.
d787e44 [5.1.x] Added CVE-2024-41989, CVE-2024-41990, CVE-2024-41991, and CVE-2024-42...
e2583fb [5.1.x] Fixed CVE-2024-42005 -- Mitigated QuerySet.values() SQL injection att...
bd807c0 [5.1.x] Fixed CVE-2024-41991 -- Prevented potential ReDoS in django.utils.htm...
0c1a890 [5.1.x] Fixed CVE-2024-41990 -- Mitigated potential DoS in urlize and urlizet...
0504af6 [5.1.x] Fixed CVE-2024-41989 -- Prevented excessive memory consumption in flo...
2ba4f4b [5.1.x] Fixed #35657 -- Made FileField handle db_default values.
Additional commits viewable in compare view

Updates django-allauth from 0.63.3 to 64.1.0

Changelog

Sourced from django-allauth's changelog.

64.1.0 (2024-08-15)

Note worthy changes

Headless: When trying to login while a user is already logged in, you now get a 409.

Limited the maximum allowed time for a login to go through the various login stages. This limits, for example, the time span that the 2FA stage remains available. See settings.ACCOUNT_LOGIN_TIMEOUT.

Security notice

Headless: When a user was not fully logged in, for example, because (s)he was in the process of completing the 2FA process, calling logout would not wipe the session containing the partially logged in user.

64.0.0 (2024-07-31)

Note worthy changes

The 0.x.y version numbers really did not do justice to the state of the project, and we are way past the point where a version 1.0 would be applicable. Additionally, 64 is a nice round number. Therefore, the version numbering is changed from 0.x.y to x.y.z. We will use a loose form of semantic versioning. However, please be aware that feature releases may occasionally include minor documented backwards incompatibilities. Always read the release notes before upgrading.

Added support for WebAuthn based security keys and passkey login. Note that this is currently disabled by default.

Headless: The TOTP URI is now available in the MFA activation response.

Headless: When trying to sign up while a user is already logged in, you now get a 409.

Headless: You can now alter the user data payload by overriding the newly introduced serialize_user() adapter method.

Headless: The token strategy now allows for exposing refresh tokens and any other information you may need (such as e.g. expires_in).

... (truncated)

Commits

d6e07b2 feat: Django 5.1
b7eaefd chore: Release 64.1.0
4b13c66 feat(mfa): AuthenticateView to use form class from setting
bd3ae52 chore(i18n): Sync translations
63bc165 feat(account): Login timeout
4303cbe fix(headless): Logout should remove partial login
20d1334 chore(mfa): add tags to submit button
c970b33 tests(socialaccount): Test storing tokens vs email authentication
907ffe6 chore(i18n): korean translations
ef8743c fix(socialaccount): OAuth 1.0 vs storing tokens without app instance
Additional commits viewable in compare view

Updates gunicorn from 22.0.0 to 23.0.0

Release notes

Sourced from gunicorn's releases.

23.0.0

Gunicorn 23.0.0 has been released. This version improve HTTP 1.1. support and which improve safety

You're invited to upgrade asap your own installation.

23.0.0 - 2024-08-10

minor docs fixes (:pr:3217, :pr:3089, :pr:3167)

worker_class parameter accepts a class (:pr:3079)

fix deadlock if request terminated during chunked parsing (:pr:2688)

permit receiving Transfer-Encodings: compress, deflate, gzip (:pr:3261)

permit Transfer-Encoding headers specifying multiple encodings. note: no parameters, still (:pr:3261)

sdist generation now explicitly excludes sphinx build folder (:pr:3257)

decode bytes-typed status (as can be passed by gevent) as utf-8 instead of raising TypeError (:pr:2336)

raise correct Exception when encounting invalid chunked requests (:pr:3258)

the SCRIPT_NAME and PATH_INFO headers, when received from allowed forwarders, are no longer restricted for containing an underscore (:pr:3192)

include IPv6 loopback address [::1] in default for :ref:forwarded-allow-ips and :ref:proxy-allow-ips (:pr:3192)

** NOTE **

The SCRIPT_NAME change mitigates a regression that appeared first in the 22.0.0 release

Review your :ref:forwarded-allow-ips setting if you are still not seeing the SCRIPT_NAME transmitted

Review your :ref:forwarder-headers setting if you are missing headers after upgrading from a version prior to 22.0.0

** Breaking changes **

refuse requests where the uri field is empty (:pr:3255)

refuse requests with invalid CR/LR/NUL in heade field values (:pr:3253)

remove temporary --tolerate-dangerous-framing switch from 22.0 (:pr:3260)

If any of the breaking changes affect you, be aware that now refused requests can post a security problem, especially so in setups involving request pipe-lining and/or proxies.

Fix CVE-2024-1135

Commits

411986d fix doc
334392e Merge pull request #2559 from laggardkernel/bugfix/reexec-env
e75c353 Merge pull request #3189 from pajod/patch-py36
9357b28 keep document user in access_log_format setting
79fdef0 bump to 23.0.0
3acd9fb Merge pull request #2620 from talkerbox/improve-access-log-format-docs
3f56d76 Merge pull request #3192 from pajod/patch-allowed-script-name
256d474 docs: revert duped directive
ffa48b5 test: default change was intentional
52538ca docs: recommend SCRIPT_NAME=/subfolder
Additional commits viewable in compare view

Updates pyjwt from 2.8.0 to 2.9.0

Release notes

Sourced from pyjwt's releases.

2.9.0

What's Changed

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#905

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#909

Add support for Python 3.12 by @hugovk in jpadilla/pyjwt#910

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#911

Fix an unnecessary str concat by @sirosen in jpadilla/pyjwt#904

Update jwt-api to accept either a string or list of strings for issuer validation by @mattpollak in jpadilla/pyjwt#913

Bump actions/checkout from 3 to 4 by @dependabot in jpadilla/pyjwt#916

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#917

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#922

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#926

Bump actions/setup-python from 4 to 5 by @dependabot in jpadilla/pyjwt#931

Bump hynek/build-and-inspect-python-package from 1 to 2 by @dependabot in jpadilla/pyjwt#935

docs/api: document strict_aud on decode_complete by @woodruffw in jpadilla/pyjwt#923

chore: fix docs step by @jpadilla in jpadilla/pyjwt#950

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#953

Add coverage and improve performance of is_ssh_key by @bdraco in jpadilla/pyjwt#940

Decode with PyJWK by @luhn in jpadilla/pyjwt#886

Remove an unused variable from an example code block by @kenkoooo in jpadilla/pyjwt#958

Handle load_pem_public_key ValueError by @CollinEMac in jpadilla/pyjwt#952

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#960

Raise exception when required cryptography dependency is missing by @tobloef in jpadilla/pyjwt#963

[pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in jpadilla/pyjwt#965

Add 2.9.0 changelog. Fixes #949 by @benvdh in jpadilla/pyjwt#967

New Contributors

@mattpollak made their first contribution in jpadilla/pyjwt#913

@bdraco made their first contribution in jpadilla/pyjwt#940

@luhn made their first contribution in jpadilla/pyjwt#886

@kenkoooo made their first contribution in jpadilla/pyjwt#958

@CollinEMac made their first contribution in jpadilla/pyjwt#952

@tobloef made their first contribution in jpadilla/pyjwt#963

@benvdh made their first contribution in jpadilla/pyjwt#967

Full Changelog: jpadilla/pyjwt@2.8.0...2.9.0

Changelog

Sourced from pyjwt's changelog.

`v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>`__

Changed


- Drop support for Python 3.7 (EOL) by @hugovk in `[#910](https://github.com/jpadilla/pyjwt/issues/910) <https://github.com/jpadilla/pyjwt/pull/910>`__
- Allow JWT issuer claim validation to accept a list of strings too by @mattpollak in `[#913](https://github.com/jpadilla/pyjwt/issues/913) <https://github.com/jpadilla/pyjwt/pull/913>`__
Fixed

- Fix unnecessary string concatenation by @sirosen in `[#904](https://github.com/jpadilla/pyjwt/issues/904) &lt;https://github.com/jpadilla/pyjwt/pull/904&gt;`__
- Fix docs for ``jwt.decode_complete`` to include ``strict_aud`` option by @woodruffw in `[#923](https://github.com/jpadilla/pyjwt/issues/923) &lt;https://github.com/jpadilla/pyjwt/pull/923&gt;`__
- Fix docs step by @jpadilla in `[#950](https://github.com/jpadilla/pyjwt/issues/950) &lt;https://github.com/jpadilla/pyjwt/pull/950&gt;`__
- Fix: Remove an unused variable from example code block by @kenkoooo in `[#958](https://github.com/jpadilla/pyjwt/issues/958) &lt;https://github.com/jpadilla/pyjwt/pull/958&gt;`__
Added



Add support for Python 3.12 by @hugovk in [#910](https://github.com/jpadilla/pyjwt/issues/910) &lt;https://github.com/jpadilla/pyjwt/pull/910&gt;__
Improve performance of is_ssh_key + add unit test by @bdraco in [#940](https://github.com/jpadilla/pyjwt/issues/940) &lt;https://github.com/jpadilla/pyjwt/pull/940&gt;__
Allow jwt.decode() to accept a PyJWK object by @luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Make algorithm_name attribute available on PyJWK by @luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Raise InvalidKeyError on invalid PEM keys to be compatible with cryptography 42.x.x by @CollinEMac in [#952](https://github.com/jpadilla/pyjwt/issues/952) &lt;https://github.com/jpadilla/pyjwt/pull/952&gt;__
Raise an exception when required cryptography dependency is missing by @tobloef in &lt;https://github.com/jpadilla/pyjwt/pull/963&gt;__

Commits

868cf4a Add 2.9.0 changelog. Fixes #949 (#967)
304a3df [pre-commit.ci] pre-commit autoupdate (#965)
527fec2 Raise exception when required cryptography dependency is missing (#963)
18a50be [pre-commit.ci] pre-commit autoupdate (#960)
4703f87 Handle load_pem_public_key ValueError (#952)
9dc732f Update usage.rst (#958)
ab8176a Decode with PyJWK (#886)
c0a071d chore: update actions/download-artifact
2afbe32 Add coverage and improve performance of is_ssh_key (#940)
97345a7 [pre-commit.ci] pre-commit autoupdate (#953)
Additional commits viewable in compare view

Updates sqlparse from 0.5.0 to 0.5.1

Changelog

Sourced from sqlparse's changelog.

Release 0.5.1 (Jul 15, 2024)

Enhancements

New "compact" option for formatter. If set, the formatter tries to produce a more compact output by avoiding some line breaks (issue783).

Bug Fixes

The strip comments filter was a bit greedy and removed too much whitespace (issue772). Note: In some cases you might want to add strip_whitespace=True where you previously used just strip_comments=True. strip_comments did some of the work that strip_whitespace should do.

Fix error when splitting statements that contain multiple CASE clauses within a BEGIN block (issue784).

Fix whitespace removal with nested expressions (issue782).

Fix parsing and formatting of ORDER clauses containing NULLS FIRST or NULLS LAST (issue532).

Commits

2664c9e Bump version.
b126ba5 Fix tokenization of order keywords (fixes #532).
0c4902f Descend into subgroups when removing whitespace (fixes #782).
a8de06e Revert "Add regression test (#780)."
b253bb1 Add regression test (#780).
791e25d Fix error when splitting statements that contain multiple CASE clauses within...
073099d Update compact option to improve formatting
3ea660e Code cleanup.
974617d Add shortcut for running flake8 and pytest.
bf74d8b Add compact option to force a more compact formatting (fixes #783).
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all group with 9 updates in the /localcert directory: | Package | From | To | | --- | --- | --- | | [coverage](https://github.com/nedbat/coveragepy) | `7.5.4` | `7.6.1` | | [flake8](https://github.com/pycqa/flake8) | `7.1.0` | `7.1.1` | | [cffi](https://github.com/python-cffi/cffi) | `1.16.0` | `1.17.0` | | [cryptography](https://github.com/pyca/cryptography) | `42.0.8` | `43.0.0` | | [django](https://github.com/django/django) | `5.0.7` | `5.1` | | [django-allauth](https://github.com/pennersr/django-allauth) | `0.63.3` | `64.1.0` | | [gunicorn](https://github.com/benoitc/gunicorn) | `22.0.0` | `23.0.0` | | [pyjwt](https://github.com/jpadilla/pyjwt) | `2.8.0` | `2.9.0` | | [sqlparse](https://github.com/andialbrecht/sqlparse) | `0.5.0` | `0.5.1` | Updates `coverage` from 7.5.4 to 7.6.1 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](nedbat/coveragepy@7.5.4...7.6.1) Updates `flake8` from 7.1.0 to 7.1.1 - [Commits](PyCQA/flake8@7.1.0...7.1.1) Updates `cffi` from 1.16.0 to 1.17.0 - [Release notes](https://github.com/python-cffi/cffi/releases) - [Commits](python-cffi/cffi@v1.16.0...v1.17.0) Updates `cryptography` from 42.0.8 to 43.0.0 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@42.0.8...43.0.0) Updates `django` from 5.0.7 to 5.1 - [Commits](django/django@5.0.7...5.1) Updates `django-allauth` from 0.63.3 to 64.1.0 - [Changelog](https://github.com/pennersr/django-allauth/blob/main/ChangeLog.rst) - [Commits](pennersr/django-allauth@0.63.3...64.1.0) Updates `gunicorn` from 22.0.0 to 23.0.0 - [Release notes](https://github.com/benoitc/gunicorn/releases) - [Commits](benoitc/gunicorn@22.0.0...23.0.0) Updates `pyjwt` from 2.8.0 to 2.9.0 - [Release notes](https://github.com/jpadilla/pyjwt/releases) - [Changelog](https://github.com/jpadilla/pyjwt/blob/master/CHANGELOG.rst) - [Commits](jpadilla/pyjwt@2.8.0...2.9.0) Updates `sqlparse` from 0.5.0 to 0.5.1 - [Changelog](https://github.com/andialbrecht/sqlparse/blob/master/CHANGELOG) - [Commits](andialbrecht/sqlparse@0.5.0...0.5.1) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all - dependency-name: flake8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all - dependency-name: cffi dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: django dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: django-allauth dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: gunicorn dependency-type: direct:production update-type: version-update:semver-major dependency-group: all - dependency-name: pyjwt dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: sqlparse dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-08-26T03:47:52Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Aug 19, 2024

dependabot bot mentioned this pull request Aug 19, 2024

Bump the all group across 1 directory with 9 updates #130

Closed

dependabot bot closed this Aug 26, 2024

dependabot bot deleted the dependabot/pip/localcert/all-e24c2ad50a branch August 26, 2024 03:47

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the all group across 1 directory with 9 updates #131

Bump the all group across 1 directory with 9 updates #131

dependabot bot commented on behalf of github Aug 19, 2024 •

edited

Loading

dependabot bot commented on behalf of github Aug 26, 2024

Bump the all group across 1 directory with 9 updates #131

Bump the all group across 1 directory with 9 updates #131

Conversation

dependabot bot commented on behalf of github Aug 19, 2024 • edited Loading

Version 7.6.1 — 2024-08-04

Version 7.6.0 — 2024-07-11

v1.17.0

v1.17.0rc1

Note worthy changes

Security notice

Note worthy changes

23.0.0

23.0.0 - 2024-08-10

2.9.0

What's Changed

New Contributors

v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>__

Release 0.5.1 (Jul 15, 2024)

dependabot bot commented on behalf of github Aug 26, 2024

dependabot bot commented on behalf of github Aug 19, 2024 •

edited

Loading

`v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>`__