Skip to content
This repository has been archived by the owner on Nov 28, 2024. It is now read-only.

build(deps): bump the general group with 2 updates #206

Merged
merged 1 commit into from
Sep 21, 2024
Merged

build(deps): bump the general group with 2 updates #206

merged 1 commit into from
Sep 21, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 20, 2024

Bumps the general group with 2 updates: greenlet and wakepy.

Updates greenlet from 3.1.0 to 3.1.1

Changelog

Sourced from greenlet's changelog.

3.1.1 (2024-09-20)

  • Fix crashes on 32-bit PPC Linux. Note that there is no CI for this, and support is best effort; there may be other issues lurking. See issue 422 <https://github.com/python-greenlet/greenlet/issues/422>_.
  • Remove unnecessary logging sometimes during interpreter shutdown. See issue 426 <https://github.com/python-greenlet/greenlet/issues/426>_.
  • Fix some crashes on 32-bit PPC MacOS. This is a very old platform, and is only known to be tested on beta versions of an operating system that was never released, using the GCC 14 only provided by MacPorts; it may or may not work on the final MacOS X release that supported 32-bit PowerPC. It has the known issue of leaking memory when greenlets are used in multiple threads. Help debugging this would be appreciated. See PR 419 <https://github.com/python-greenlet/greenlet/pull/419>_.
Commits
  • dd0a948 Preparing release 3.1.1
  • ab8d3bc Disable thread-local cleanup on 32-bit MacOS PPC with GCC. This will result i...
  • e9db22a Merge pull request #429 from python-greenlet/issue419redux
  • 6081a16 Merge pull request #419 from barracuda156/powerpc
  • dbf311a Greater safety and fewer assumptions doing cross-thread cleanup.
  • 9e8a90b Set back greenlet_thread_state.hpp file
  • 1bf374f Duplicate greenlet_thread_state.hpp history.
  • 64e0b4f Copy greenlet_thread_state.hpp into TThreadStateCreator.hpp
  • 358a2e8 Keep greenlet_thread_state.hpp
  • 5144f70 Sigh. Pip hides compiler output which is, you know, important, and the only w...
  • Additional commits viewable in compare view

Updates wakepy from 0.9.1 to 0.10.1

Release notes

Sourced from wakepy's releases.

wakepy 0.10.1

🗓️ 2024-09-20

🐞 Bug fixes

  • Fix the wakepy logo/text printed to CLI (#400)

diff: v0.10.0...v0.10.1

wakepy 0.10.0

🗓️ 2024-09-20

🏆 Highlights

  • Wakepy has been available in conda-forge since 0.9.1. Now it’s also documented.
  • Warn instead of raise Exception by default if activating a Mode fails.

✨ Features

  • Change default on_fail action to be “warn” instead of “error” (in keep.running and keep.presenting modes). (#388)
  • Add support for BSD and other non-Linux Unix-like FOSS desktop systems. All systems running a supported Desktop Environment (currently: KDE, Gnome + other freedesktop compliant DEs) should be supported. (#379, #385)
  • Add support for PyPy (#393, #396)
  • When running on an unknown platform, do not fail any Methods in the platform check phase anymore, but try to use each Method. This means for example that any system running GNOME that is not Linux (or BSD) could still use wakepy with the org.gnome.SessionManager (#379)
  • 🚨 CLI arguments: Change -k, --keep-running to be -r, --keep-running and -p, --presentation to be -p, --keep-presenting; Be more consistent with the naming of the Modes. The old alternatives are deprecated and will be removed in a future release. (#356)
  • 🚨 Renamed PlatformName to PlatformType and added new types: ANY, which means “any platform”, BSD, meaning “any BSD system” in the future, but currently just FreeBSD / GhostBSD, and UNIX_LIKE_FOSS, which means “Unix-like desktop environment, but FOSS”. Includes: Linux and BSD. Excludes: Android (mobile), MacOS (non-FOSS), ChromeOS (non-FOSS). Only affects you if you have created custom Method subclasses. (#379)
  • Improve warnings and errors if platform is not supported (#383)

👷 Maintenance

  • Fixed GitHub Release pipeline: Creates releases only from tags. Added automatic titles. Cannot accidentally publish with “main” tag. (#328, #346)
  • Fixed: Tests failing on Fedora 40 (#381)
  • Update various development time dependencies (#389)

📖 Documentation

  • Update Installing instructions. Wakepy is available in conda-forge starting from version 0.9.1. (#390 + Thanks to @​thewchan for wakepy-feedstock)
  • Add Roadmap and improve the Supported Platforms docs (#365)
  • Add logos and banners (#370, #371)

diff: v0.9.1...v0.10.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the general group with 2 updates
54b3e48 
Bumps the general group with 2 updates: [greenlet](https://github.com/python-greenlet/greenlet) and [wakepy](https://github.com/fohrloop/wakepy).


Updates `greenlet` from 3.1.0 to 3.1.1
- [Changelog](https://github.com/python-greenlet/greenlet/blob/master/CHANGES.rst)
- [Commits](python-greenlet/greenlet@3.1.0...3.1.1)

Updates `wakepy` from 0.9.1 to 0.10.1
- [Release notes](https://github.com/fohrloop/wakepy/releases)
- [Commits](fohrloop/wakepy@v0.9.1...v0.10.1)

---
updated-dependencies:
- dependency-name: greenlet
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: general
- dependency-name: wakepy
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: general
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Sep 20, 2024
@sonarqubecloud SonarQubeCloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@github-actions GitHub Actions
Copy link

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 1 package(s) with unknown licenses.
See the Details below.

License Issues

requirements.txt

PackageVersionLicenseIssue Type
greenlet3.1.1NullUnknown License

OpenSSF Scorecard

PackageVersionScoreDetails
pip/greenlet 3.1.1 🟢 5.4
Details
CheckScoreReason
Code-Review⚠️ 1Found 4/23 approved changesets -- score normalized to 1
Maintained🟢 1030 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
License🟢 9license file detected
Signed-Releases⚠️ -1no releases found
Dangerous-Workflow🟢 10no dangerous workflow patterns detected
Token-Permissions⚠️ 0detected GitHub workflow tokens with excessive permissions
Branch-Protection⚠️ 0branch protection not enabled on development/release branches
Binary-Artifacts🟢 10no binaries found in the repo
Pinned-Dependencies⚠️ 0dependency not pinned by hash detected -- score normalized to 0
Security-Policy⚠️ 0security policy file not detected
Fuzzing⚠️ 0project is not fuzzed
Vulnerabilities🟢 100 existing vulnerabilities detected
SAST🟢 10SAST tool is run on all commits
Packaging🟢 10packaging workflow detected
pip/wakepy 0.10.1 UnknownUnknown

Scanned Manifest Files

requirements.txt
  • greenlet@3.1.1
  • wakepy@0.10.1
  • greenlet@3.1.0
  • wakepy@0.9.1

@Nick2bad4u Nick2bad4u merged commit 1f909a3 into main Sep 21, 2024
45 checks passed
@dependabot dependabot bot deleted the dependabot/pip/general-7d794f2e1e branch September 21, 2024 04:15
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file python Pull requests that update Python code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Nick2bad4u