chore(deps): bump the pip group across 2 directories with 4 updates#629
Open
dependabot[bot] wants to merge 1 commit into
Open
chore(deps): bump the pip group across 2 directories with 4 updates#629dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Contributor
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
Dependency ReviewThe following issues were found:
Vulnerabilitiesrequirements.txt
Only included vulnerabilities with severity high or higher. License Issuesrequirements.txt
src/500-application/506-ros2-connector/services/requirements.base.txt
OpenSSF Scorecard
Scanned Files
|
004ece7 to
c55b0aa
Compare
Bumps the pip group with 1 update in the / directory: [checkov](https://github.com/bridgecrewio/checkov). Bumps the pip group with 3 updates in the /src/500-application/506-ros2-connector directory: [numpy](https://github.com/numpy/numpy), [pytest](https://github.com/pytest-dev/pytest) and [pytest-asyncio](https://github.com/pytest-dev/pytest-asyncio). Updates `checkov` from 3.2.529 to 3.3.2 - [Release notes](https://github.com/bridgecrewio/checkov/releases) - [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md) - [Commits](bridgecrewio/checkov@3.2.529...3.3.2) Updates `numpy` from 2.4.6 to 2.5.0 - [Release notes](https://github.com/numpy/numpy/releases) - [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst) - [Commits](numpy/numpy@v2.4.6...v2.5.0) Updates `pytest` from 9.0.3 to 9.1.1 - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](pytest-dev/pytest@9.0.3...9.1.1) Updates `pytest-asyncio` from 1.3.0 to 1.4.0 - [Release notes](https://github.com/pytest-dev/pytest-asyncio/releases) - [Commits](pytest-dev/pytest-asyncio@v1.3.0...v1.4.0) --- updated-dependencies: - dependency-name: checkov dependency-version: 3.3.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: pip - dependency-name: numpy dependency-version: 2.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: pip - dependency-name: pytest dependency-version: 9.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: pip - dependency-name: pytest-asyncio dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: pip ... Signed-off-by: dependabot[bot] <support@github.com>
c55b0aa to
ae035ea
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the pip group with 1 update in the / directory: checkov.
Bumps the pip group with 3 updates in the /src/500-application/506-ros2-connector directory: numpy, pytest and pytest-asyncio.
Updates
checkovfrom 3.2.529 to 3.3.2Release notes
Sourced from checkov's releases.
Changelog
Sourced from checkov's changelog.
Commits
c9497defix(terraform_plan): handle computed log_bucket in CKV_GCP_62 and CKV_GCP_63 ...6a82b2ffix(terraform_plan): handle computed log_bucket in CKV_GCP_62 and CKV_GCP_63 ...efe84c2fix(terraform): pass CKV_GCP_123 when remove_default_node_pool is true (#7575)c265fdachore: update release notes807eb13feat(serverless): disable vars opt out (#7574)7f8645dchore: update release notes5b5ce3efeat(general): fix regex to include hyphen (#7566)295570bchore: update release notes73dac2ffeat(general): fix regex to include hyphen (#7566)69e64f7feat(general): fix regex to include hyphen (#7566)Updates
numpyfrom 2.4.6 to 2.5.0Release notes
Sourced from numpy's releases.
... (truncated)
Commits
6910b28Merge pull request #31706 from charris/prepare-2.5.0-releasee0acd2bREL: Prepare for the NumPy 2.5.0 release.8d928b7Merge pull request #31704 from charris/backport-31649c2055baMAINT: update openblas to 0.3.33.112.0 (#31649)ce17c81Merge pull request #31703 from charris/backport-316093de6203BUG: fix StringDType distinct-allocator bugs and add tests (#31609)c723971Merge pull request #31700 from charris/backport-3169464513b2MAINT: Bump pypa/cibuildwheel from 3.4.1 to 4.1.004707f0Merge pull request #31698 from charris/try-fix-emscripten5cf0686MAINT: Try to fix emscripten wheel build.Updates
pytestfrom 9.0.3 to 9.1.1Release notes
Sourced from pytest's releases.
... (truncated)
Commits
cf470ecPrepare release version 9.1.1e0c8ce6Merge pull request #14625 from pytest-dev/patchback/backports/9.1.x/a07c31a97...1b82d16Merge pull request #14624 from pytest-dev/patchback/backports/9.1.x/b375b79ec...501c4bcMerge pull request #14596 from bluetech/doc-classmethodb61f588Merge pull request #14622 from chrisburr/fix-14608-initial-conftest-test-subdir9a567e0[automated] Update plugin list (#14617) (#14618)ef8b299Merge pull request #14620 from pytest-dev/patchback/backports/9.1.x/680f9f3ed...66abd07Merge pull request #14220 from bysiber/fix-stale-iexp-raisesgroup79fbf93Merge pull request #14612 from pytest-dev/patchback/backports/9.1.x/974ed48b6...0d312ebMerge pull request #14611 from bluetech/parametrize-argvalues-typingUpdates
pytest-asynciofrom 1.3.0 to 1.4.0Release notes
Sourced from pytest-asyncio's releases.
... (truncated)
Commits
6e14cd2chore: Prepare release of v1.4.0.4b900fbBuild(deps): Bump codecov/codecov-action from 6.0.0 to 6.0.1ab9f632Build(deps): Bump zipp from 3.23.1 to 4.1.0a56fc77Build(deps): Bump hypothesis from 6.152.6 to 6.152.8e8bae9bBuild(deps): Bump requests from 2.34.0 to 2.34.2fc43340Build(deps): Bump idna from 3.14 to 3.15762eaf5Build(deps): Bump jaraco-functools from 4.4.0 to 4.5.0b62e222Build(deps): Bump click from 8.3.3 to 8.4.09190447Build(deps): Bump pydantic from 2.13.3 to 2.13.482a393cci: Remove unnecessary debug output.