Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps(python): bump the pip group across 1 directory with 6 updates #640

Merged
merged 1 commit into from
Mar 3, 2025
Merged

deps(python): bump the pip group across 1 directory with 6 updates #640

merged 1 commit into from
Mar 3, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 3, 2025
edited by sourcery-ai bot
Loading

Bumps the pip group with 6 updates in the /dependencies/python directory:

Package From To
checkov 3.2.370 3.2.379
ansible-lint 25.1.2 25.1.3
cfn-lint 1.25.1 1.27.0
snakemake 8.28.0 8.29.0
ruff 0.9.6 0.9.9
isort 6.0.0 6.0.1

Updates checkov from 3.2.370 to 3.2.379

Release notes

Sourced from checkov's releases.

3.2.378

Bug Fix

  • secrets: Remove CKV_SECRET_80 instead of CKV_SECRET_6 - #7029

3.2.377

Feature

  • terraform: adding 3 policies & tests - #7011

Bug Fix

  • cloudformation: Handle subs in CKV_AWS_384 - #7022
  • secrets: Fix Duplicated Violation in line bug - #7027
  • terraform: Fixed CKV2_GCP_10 to exclude non http triggered cloud functions from security_level requirement - #7008
  • terraform: Handle new resource type for CKV_GCP_73 - #7023

3.2.373

Bug Fix

  • terraform: CKV_GCP_74, CKV_GCP_76 incorrectly enforced for REGIONAL and GLOBAL managed proxy networks - #7002

3.2.372

Feature

  • terraform: Add multiple checks - #7016

Bug Fix

  • terraform: Postgres latest stable version - #7015
Changelog

Sourced from checkov's changelog.

CHANGELOG

Unreleased

3.2.378 - 2025-02-27

Bug Fix

  • secrets: Remove CKV_SECRET_80 instead of CKV_SECRET_6 - #7029

3.2.377 - 2025-02-25

Feature

  • terraform: adding 3 policies & tests - #7011

Bug Fix

  • cloudformation: Handle subs in CKV_AWS_384 - #7022
  • secrets: Fix Duplicated Violation in line bug - #7027
  • terraform: Fixed CKV2_GCP_10 to exclude non http triggered cloud functions from security_level requirement - #7008
  • terraform: Handle new resource type for CKV_GCP_73 - #7023

3.2.373 - 2025-02-24

Bug Fix

  • terraform: CKV_GCP_74, CKV_GCP_76 incorrectly enforced for REGIONAL and GLOBAL managed proxy networks - #7002

3.2.372 - 2025-02-18

Feature

  • terraform: Add multiple checks - #7016

Bug Fix

  • terraform: Postgres latest stable version - #7015
Commits
  • 259b430 feat(terraform): Add azure DB checks for flexible server private endpoints (#...
  • 40ec5e6 feat(terraform): Add azure DB checks for flexible server private endpoints (#...
  • bd81980 feat(terraform): Add azure DB checks for flexible server private endpoints (#...
  • f0f1607 chore: update release notes
  • 76d0b9f fix(secrets): Remove CKV_SECRET_80 instead of CKV_SECRET_6 (#7029)
  • bea0f38 fix(secrets): Remove CKV_SECRET_80 instead of CKV_SECRET_6 (#7029)
  • 6a264ee chore: update release notes
  • ed56b54 fix(secrets): Fix Duplicated Violation in line bug (#7027)
  • f1f5db8 fix(secrets): Fix Duplicated Violation in line bug (#7027)
  • da73f20 feat(terraform): adding 3 policies & tests (#7011)
  • Additional commits viewable in compare view

Updates ansible-lint from 25.1.2 to 25.1.3

Release notes

Sourced from ansible-lint's releases.

v25.1.3

Bugfixes

Commits

Updates cfn-lint from 1.25.1 to 1.27.0

Release notes

Sourced from cfn-lint's releases.

Release v1.27.0

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.26.1...v1.27.0

Release v1.26.1

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.26.0...v1.26.1

Release v1.26.0

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.25.1...v1.26.0

Changelog

Sourced from cfn-lint's changelog.

v1.27.0

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.26.1...v1.27.0

v1.26.1

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.26.0...v1.26.1

v1.26.0

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.25.1...v1.26.0

Commits

Updates snakemake from 8.28.0 to 8.29.0

Release notes

Sourced from snakemake's releases.

v8.29.0

8.29.0 (2025-02-27)

Features

  • provide mechanism to link between report items (snakemake.report_href, see docs) (#3224) (a024e60)
  • toggles for binary labels in report (#3296) (7690998)

Bug Fixes

  • add missing @​conda annotations (#3298) (0b541cc)
  • properly handle remote storage when waiting for pipes (#3317) (9f7e092)
  • provide proper error messages if output file preparation (pipe, mkdir) fails (#3309) (77ef176)
  • record file extension (e.g. .tsv) in between workflow cache records in order to avoid that files of the wrong format are erroneously returned by the cache. This will lead to some cache misses. But avoiding errors induced by the previous behavior of ignoring file extensions when seeking for cache records is more important. (#3314) (4912f00)
  • sort results lexicographically by labels in their order of appearance (#3293) (a19a0ac)

Documentation

Changelog

Sourced from snakemake's changelog.

8.29.0 (2025-02-27)

Features

  • provide mechanism to link between report items (snakemake.report_href, see docs) (#3224) (a024e60)
  • toggles for binary labels in report (#3296) (7690998)

Bug Fixes

  • add missing @​conda annotations (#3298) (0b541cc)
  • properly handle remote storage when waiting for pipes (#3317) (9f7e092)
  • provide proper error messages if output file preparation (pipe, mkdir) fails (#3309) (77ef176)
  • record file extension (e.g. .tsv) in between workflow cache records in order to avoid that files of the wrong format are erroneously returned by the cache. This will lead to some cache misses. But avoiding errors induced by the previous behavior of ignoring file extensions when seeking for cache records is more important. (#3314) (4912f00)
  • sort results lexicographically by labels in their order of appearance (#3293) (a19a0ac)

Documentation

Commits
  • beb9915 chore(main): release 8.29.0 (#3294)
  • 4912f00 fix: record file extension (e.g. .tsv) in between workflow cache records in o...
  • 9f7e092 fix: properly handle remote storage when waiting for pipes (#3317)
  • 77ef176 fix: provide proper error messages if output file preparation (pipe, mkdir) f...
  • 04f89d3 fix
  • 9a3e29f chore: fix if syntax
  • 99ae9b2 dbg
  • 7690998 feat: toggles for binary labels in report (#3296)
  • 4818b80 chore: use locally deployed minio instead of play.min.io for storage testing ...
  • 784e867 best practices for reporting
  • Additional commits viewable in compare view

Updates ruff from 0.9.6 to 0.9.9

Release notes

Sourced from ruff's releases.

0.9.9

Release Notes

Preview features

  • Fix caching of unsupported-syntax errors (#16425)

Bug fixes

  • Only show unsupported-syntax errors in editors when preview mode is enabled (#16429)

Contributors

Install ruff 0.9.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.9.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.9.9/ruff-installer.ps1 | iex"

Download ruff 0.9.9

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum
ruff-aarch64-pc-windows-msvc.zip ARM64 Windows checksum
ruff-i686-pc-windows-msvc.zip x86 Windows checksum
ruff-x86_64-pc-windows-msvc.zip x64 Windows checksum
ruff-aarch64-unknown-linux-gnu.tar.gz ARM64 Linux checksum
ruff-i686-unknown-linux-gnu.tar.gz x86 Linux checksum
ruff-powerpc64-unknown-linux-gnu.tar.gz PPC64 Linux checksum
ruff-powerpc64le-unknown-linux-gnu.tar.gz PPC64LE Linux checksum
ruff-s390x-unknown-linux-gnu.tar.gz S390x Linux checksum
ruff-x86_64-unknown-linux-gnu.tar.gz x64 Linux checksum
ruff-armv7-unknown-linux-gnueabihf.tar.gz ARMv7 Linux checksum
ruff-aarch64-unknown-linux-musl.tar.gz ARM64 MUSL Linux checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.9

Preview features

  • Fix caching of unsupported-syntax errors (#16425)

Bug fixes

  • Only show unsupported-syntax errors in editors when preview mode is enabled (#16429)

0.9.8

Preview features

  • Start detecting version-related syntax errors in the parser (#16090)

Rule changes

  • [pylint] Mark fix unsafe (PLW1507) (#16343)
  • [pylint] Catch case np.nan/case math.nan in match statements (PLW0177) (#16378)
  • [ruff] Add more Pydantic models variants to the list of default copy semantics (RUF012) (#16291)

Server

  • Avoid indexing the project if configurationPreference is editorOnly (#16381)
  • Avoid unnecessary info at non-trace server log level (#16389)
  • Expand ruff.configuration to allow inline config (#16296)
  • Notify users for invalid client settings (#16361)

Configuration

  • Add per-file-target-version option (#16257)

Bug fixes

  • [refurb] Do not consider docstring(s) (FURB156) (#16391)
  • [flake8-self] Ignore attribute accesses on instance-like variables (SLF001) (#16149)
  • [pylint] Fix false positives, add missing methods, and support positional-only parameters (PLE0302) (#16263)
  • [flake8-pyi] Mark PYI030 fix unsafe when comments are deleted (#16322)

Documentation

  • Fix example for S611 (#16316)
  • Normalize inconsistent markdown headings in docstrings (#16364)
  • Document MSRV policy (#16384)

0.9.7

Preview features

... (truncated)

Commits
  • 091d0af Bump version to Ruff 0.9.9 (#16434)
  • 3d72138 Check LinterSettings::preview for version-related syntax errors (#16429)
  • 4a23756 Avoid caching files with unsupported syntax errors (#16425)
  • af62f79 Prioritize "bug" label for changelog sections (#16433)
  • 0ced8d0 [flake8-copyright] Add links to applicable options (CPY001) (#16421)
  • a8e171f Fix string-length limit in documentation for PYI054 (#16432)
  • cf83584 Show version-related syntax errors in the playground (#16419)
  • 764aa0e Allow passing ParseOptions to inline tests (#16357)
  • 568cf88 Bump version to 0.9.8 (#16414)
  • 040071b [red-knot] Ignore surrounding whitespace when looking for `<!-- snapshot-diag...
  • Additional commits viewable in compare view

Updates isort from 6.0.0 to 6.0.1

Release notes

Sourced from isort's releases.

6.0.1

Changes

🪲 Fixes

👷 Continuous Integration

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by Sourcery

Bump the pip group across the /dependencies/python directory, updating the versions of checkov, ansible-lint, cfn-lint, snakemake, ruff, and isort.

Chores:

  • Update checkov from 3.2.370 to 3.2.379
  • Update ansible-lint from 25.1.2 to 25.1.3
  • Update cfn-lint from 1.25.1 to 1.27.0
  • Update snakemake from 8.28.0 to 8.29.0
  • Update ruff from 0.9.6 to 0.9.9
  • Update isort from 6.0.0 to 6.0.1

@dependabot
deps(python): bump the pip group across 1 directory with 6 updates
0b9b275 
Bumps the pip group with 6 updates in the /dependencies/python directory:

| Package | From | To |
| --- | --- | --- |
| [checkov](https://github.com/bridgecrewio/checkov) | `3.2.370` | `3.2.379` |
| [ansible-lint](https://github.com/ansible/ansible-lint) | `25.1.2` | `25.1.3` |
| [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) | `1.25.1` | `1.27.0` |
| [snakemake](https://github.com/snakemake/snakemake) | `8.28.0` | `8.29.0` |
| [ruff](https://github.com/astral-sh/ruff) | `0.9.6` | `0.9.9` |
| [isort](https://github.com/PyCQA/isort) | `6.0.0` | `6.0.1` |



Updates `checkov` from 3.2.370 to 3.2.379
- [Release notes](https://github.com/bridgecrewio/checkov/releases)
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md)
- [Commits](bridgecrewio/checkov@3.2.370...3.2.379)

Updates `ansible-lint` from 25.1.2 to 25.1.3
- [Release notes](https://github.com/ansible/ansible-lint/releases)
- [Commits](ansible/ansible-lint@v25.1.2...v25.1.3)

Updates `cfn-lint` from 1.25.1 to 1.27.0
- [Release notes](https://github.com/aws-cloudformation/cfn-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](aws-cloudformation/cfn-lint@v1.25.1...v1.27.0)

Updates `snakemake` from 8.28.0 to 8.29.0
- [Release notes](https://github.com/snakemake/snakemake/releases)
- [Changelog](https://github.com/snakemake/snakemake/blob/main/CHANGELOG.md)
- [Commits](snakemake/snakemake@v8.28.0...v8.29.0)

Updates `ruff` from 0.9.6 to 0.9.9
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.9.6...0.9.9)

Updates `isort` from 6.0.0 to 6.0.1
- [Release notes](https://github.com/PyCQA/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](PyCQA/isort@6.0.0...6.0.1)

---
updated-dependencies:
- dependency-name: checkov
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: ansible-lint
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: cfn-lint
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: snakemake
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip
- dependency-name: ruff
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
- dependency-name: isort
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 3, 2025
@sourcery-ai Sourcery AI
Copy link

sourcery-ai bot commented Mar 3, 2025
edited
Loading

Reviewer's Guide by Sourcery

This pull request bumps the pip group across the /dependencies/python directory, updating checkov, ansible-lint, cfn-lint, snakemake, ruff, and isort to their latest versions. The updates include bug fixes, new features, rule changes, and documentation improvements.

No diagrams generated as the changes look simple and do not need a visual representation.

File-Level Changes

Change Details Files
Updated checkov from 3.2.370 to 3.2.379.
  • Fixed a bug in secrets where CKV_SECRET_80 was removed instead of CKV_SECRET_6.
  • Added 3 policies and tests for Terraform.
  • Handled subs in CKV_AWS_384 for CloudFormation.
  • Fixed a duplicated violation in line bug in secrets.
  • Fixed CKV2_GCP_10 to exclude non-HTTP triggered cloud functions from security_level requirement for Terraform.
  • Handled a new resource type for CKV_GCP_73 for Terraform.
  • Fixed CKV_GCP_74 and CKV_GCP_76 incorrectly enforced for REGIONAL and GLOBAL managed proxy networks for Terraform.
  • Added multiple checks for Terraform.
  • Updated Postgres to the latest stable version for Terraform.
  • Added azure DB checks for flexible server private endpoints
 dependencies/python/checkov.txt
Updated ansible-lint from 25.1.2 to 25.1.3.
  • Allowed use with readonly virtualenvs.
  • Added git clean to allowed executable options.
  • Fixed a failing ansible-lint CI job.
  • Added .ansible to the implicit ignore list.
  • Avoided unnecessary warning when meta/runtime.yml is null.
 dependencies/python/ansible-lint.txt
Updated cfn-lint from 1.25.1 to 1.27.0.
  • Provided configuration for exceptions to E3019.
  • Deprecated py3.8.
  • Updated lambda eol dates.
  • Updated CloudFormation schemas to 2025-02-28.
  • Supported major version for aurora-postgresql.
  • Switched EC2 subnet requiredXor to requiredOr.
  • Updated I1022 to allow functions.
  • Added rule W1051 to validate if dynamic reference when ARN.
  • Ignored custom resource Ref.
  • Updated custom resource schema.
  • Fixed EC2 Subnet allowing ipv6 only.
 dependencies/python/cfn-lint.txt
Updated snakemake from 8.28.0 to 8.29.0.
  • Provided a mechanism to link between report items (snakemake.report_href).
  • Added toggles for binary labels in report.
  • Added missing @conda annotations.
  • Properly handled remote storage when waiting for pipes.
  • Provided proper error messages if output file preparation (pipe, mkdir) fails.
  • Recorded file extension (e.g. .tsv) in between workflow cache records.
  • Sorted results lexicographically by labels in their order of appearance.
  • Updated best practices.
 dependencies/python/snakemake.txt
Updated ruff from 0.9.6 to 0.9.9.
  • Fixed caching of unsupported-syntax errors.
  • Only show unsupported-syntax errors in editors when preview mode is enabled.
  • Started detecting version-related syntax errors in the parser.
  • Marked fix unsafe (PLW1507).
  • Caught case np.nan/case math.nan in match statements (PLW0177).
  • Added more Pydantic models variants to the list of default copy semantics (RUF012).
  • Avoided indexing the project if configurationPreference is editorOnly.
  • Avoided unnecessary info at non-trace server log level.
  • Expanded ruff.configuration to allow inline config.
  • Notified users for invalid client settings.
  • Added per-file-target-version option.
  • Do not consider docstring(s) (FURB156).
  • Ignored attribute accesses on instance-like variables (SLF001).
  • Fixed false positives, add missing methods, and support positional-only parameters (PLE0302).
  • Marked PYI030 fix unsafe when comments are deleted.
  • Fixed example for S611.
  • Normalized inconsistent markdown headings in docstrings.
  • Documented MSRV policy.
 dependencies/python/ruff.txt
Updated isort from 6.0.0 to 6.0.1.
  • Fixed multi_line_output_modes docs.
  • Added Ruff rules PT for pytest.
  • Added Ruff rules B017, B028, and E203.
  • Linted Python code with ruff.
  • Fixed test_find_imports_in_file_error failing on Windows.
  • Moved flake8 settings into pyproject.toml.
  • Upgraded to uv>=0.6.0 and enable-cache.
  • Applied some ruff rules.
  • Added OSError handling in find_imports_in_file.
  • Linked GH as changelog.
  • Removed Safety.
 dependencies/python/isort.txt
Tips and commands

Interacting with Sourcery

  • Trigger a new review: Comment @sourcery-ai review on the pull request.
  • Continue discussions: Reply directly to Sourcery's review comments.
  • Generate a GitHub issue from a review comment: Ask Sourcery to create an
    issue from a review comment by replying to it. You can also reply to a
    review comment with @sourcery-ai issue to create an issue from it.
  • Generate a pull request title: Write @sourcery-ai anywhere in the pull
    request title to generate a title at any time. You can also comment
    @sourcery-ai title on the pull request to (re-)generate the title at any time.
  • Generate a pull request summary: Write @sourcery-ai summary anywhere in
    the pull request body to generate a PR summary at any time exactly where you
    want it. You can also comment @sourcery-ai summary on the pull request to
    (re-)generate the summary at any time.
  • Generate reviewer's guide: Comment @sourcery-ai guide on the pull
    request to (re-)generate the reviewer's guide at any time.
  • Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
    pull request to resolve all Sourcery comments. Useful if you've already
    addressed all the comments and don't want to see them anymore.
  • Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
    request to dismiss all existing Sourcery reviews. Especially useful if you
    want to start fresh with a new review - don't forget to comment
    @sourcery-ai review to trigger a new review!
  • Generate a plan of action for an issue: Comment @sourcery-ai plan on
    an issue to generate a plan of action for it.

Customizing Your Experience

Access your dashboard to:

  • Enable or disable review features such as the Sourcery-generated pull request
    summary, the reviewer's guide, and others.
  • Change the review language.
  • Add, remove or edit custom review instructions.
  • Adjust other review settings.

Getting Help

@gitstream-cm gitStream.cm
Copy link

gitstream-cm bot commented Mar 3, 2025

🚨 gitStream Monthly Automation Limit Reached 🚨

Your organization has exceeded the number of pull requests allowed for automation with gitStream.
Monthly PRs automated: 486/250

To continue automating your PR workflows and unlock additional features, please contact LinearB.

sourcery-ai[bot]
sourcery-ai bot reviewed Mar 3, 2025
View reviewed changes
Copy link

@sourcery-ai sourcery-ai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We have skipped reviewing this pull request. It seems to have been created by a bot (hey, dependabot[bot]!). We assume it knows what it's doing!

@github-actions github-actions bot merged commit 1bb0e17 into FEAT/fixer Mar 3, 2025
10 of 11 checks passed
@github-actions github-actions bot deleted the dependabot/pip/dependencies/python/pip-80942032c8 branch March 3, 2025 15:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sourcery-ai sourcery-ai[bot] sourcery-ai[bot] left review comments

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants