From 5ec30e180c08ceb5bb9a9c65de22b3f186745d15 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 13 Sep 2024 21:02:38 +0000 Subject: [PATCH 1/9] Update dependency static3 to ^0.7.0 --- poetry.lock | 6 +++--- pyproject.toml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/poetry.lock b/poetry.lock index aaf45c82..b2afa528 100644 --- a/poetry.lock +++ b/poetry.lock @@ -3645,12 +3645,12 @@ tests = ["cython", "littleutils", "pygments", "pytest", "typeguard"] [[package]] name = "static3" -version = "0.5.1" +version = "0.7.0" description = "A really simple WSGI way to serve static (or mixed) content." optional = false python-versions = "*" files = [ - {file = "static3-0.5.1.tar.gz", hash = "sha256:78393983482d8f41e6fcf91f3fd99c979ced088c4740c9f22835b96e6712897c"}, + {file = "static3-0.7.0.tar.gz", hash = "sha256:674641c64bc75507af2eb20bef7e7e3593dca993dec6674be108fa15b42f47c8"}, ] [package.extras] @@ -4029,4 +4029,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"] [metadata] lock-version = "2.0" python-versions = "^3.11.0" -content-hash = "b003b0bc005104c8ea3358a4fb5f9f5cd8c784ce102ef9a1d3c18ac547b6a7cd" +content-hash = "43b67ecddc9917dd199a3ed78829071fc5d4d160460d0c10899fa0ebdf2fef95" diff --git a/pyproject.toml b/pyproject.toml index 4d0cf361..ee94a2fb 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -57,7 +57,7 @@ redis = "^5.0.1" requests = "^2.31.0" sentry-sdk = "^1.25.1" social-auth-app-django = "^5.2.0" -static3 = "^0.5.1" +static3 = "^0.7.0" tldextract = "^5.1.1" toolz = "^0.10.0" ulid-py = "^1.1.0" From d615b913936f63c30be96c22500ef7357e06d8b9 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:41:28 +0000 Subject: [PATCH 2/9] Update dependency toolz to ^0.12.0 --- poetry.lock | 9 +++++---- pyproject.toml | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/poetry.lock b/poetry.lock index b2afa528..ef442448 100644 --- a/poetry.lock +++ b/poetry.lock @@ -3708,12 +3708,13 @@ testing = ["black", "mypy", "pytest", "pytest-gitignore", "pytest-mock", "respon [[package]] name = "toolz" -version = "0.10.0" +version = "0.12.1" description = "List processing tools and functional utilities" optional = false -python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*" +python-versions = ">=3.7" files = [ - {file = "toolz-0.10.0.tar.gz", hash = "sha256:08fdd5ef7c96480ad11c12d472de21acd32359996f69a5259299b540feba4560"}, + {file = "toolz-0.12.1-py3-none-any.whl", hash = "sha256:d22731364c07d72eea0a0ad45bafb2c2937ab6fd38a3507bf55eae8744aa7d85"}, + {file = "toolz-0.12.1.tar.gz", hash = "sha256:ecca342664893f177a13dac0e6b41cbd8ac25a358e5f215316d43e2100224f4d"}, ] [[package]] @@ -4029,4 +4030,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"] [metadata] lock-version = "2.0" python-versions = "^3.11.0" -content-hash = "43b67ecddc9917dd199a3ed78829071fc5d4d160460d0c10899fa0ebdf2fef95" +content-hash = "62c187090f26e917759b8a17c078ba2560a44df16c9a09996971bd7f42948530" diff --git a/pyproject.toml b/pyproject.toml index ee94a2fb..e6b8f626 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -59,7 +59,7 @@ sentry-sdk = "^1.25.1" social-auth-app-django = "^5.2.0" static3 = "^0.7.0" tldextract = "^5.1.1" -toolz = "^0.10.0" +toolz = "^0.12.0" ulid-py = "^1.1.0" urllib3 = "^1.25.10" uwsgi = "^2.0.21" From b12d3e97ed0c5ebf9d200ec4b5e2e849bc6b4402 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:41:46 +0000 Subject: [PATCH 3/9] Update dependency iso-639-1 to v3 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index b8b60af6..123301e9 100644 --- a/package.json +++ b/package.json @@ -56,7 +56,7 @@ "eslint-plugin-testing-library": "^6.0.0", "exec-sh": "^0.4.0", "html-entities": "^2.3.3", - "iso-639-1": "^2.1.15", + "iso-639-1": "^3.0.0", "jest": "^29.6.4", "jest-environment-jsdom": "^29.5.0", "jest-extended": "^3.0.1", From 457498a5635053b86efa20ad676df792a58c5515 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:41:50 +0000 Subject: [PATCH 4/9] Update dependency jest-extended to v4 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index b8b60af6..cb230fc8 100644 --- a/package.json +++ b/package.json @@ -59,7 +59,7 @@ "iso-639-1": "^2.1.15", "jest": "^29.6.4", "jest-environment-jsdom": "^29.5.0", - "jest-extended": "^3.0.1", + "jest-extended": "^4.0.0", "jest-fail-on-console": "^2.4.2", "jest-watch-typeahead": "^2.2.2", "jest-when": "^3.5.1", From 9fe1ee9037d73aeb2bb74300c54a7b9038fc0ee3 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:47:54 +0000 Subject: [PATCH 5/9] Update actions/checkout action to v4 --- .github/workflows/ci.yml | 2 +- .github/workflows/docs.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d8b54f17..78552b46 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -28,7 +28,7 @@ jobs: - 6379:6379 steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - name: update apt run: sudo apt-get update -y diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 6739bd34..f44cec5c 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -10,7 +10,7 @@ jobs: runs-on: ubuntu-latest name: Publish Documentation steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4 - name: Set up Python uses: actions/setup-python@v4 with: From e5e19d23dcbc527a0e2bc0478f59031855afe1a7 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:47:56 +0000 Subject: [PATCH 6/9] Update actions/setup-python action to v5 --- .github/workflows/ci.yml | 2 +- .github/workflows/docs.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d8b54f17..060ca6f0 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -43,7 +43,7 @@ jobs: virtualenvs-create: true virtualenvs-in-project: true - - uses: actions/setup-python@v4 + - uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5 with: python-version: "3.12.1" cache: "poetry" diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 6739bd34..658d8e66 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -12,7 +12,7 @@ jobs: steps: - uses: actions/checkout@v3 - name: Set up Python - uses: actions/setup-python@v4 + uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5 with: python-version: 3.11 - name: Install ghp-import From eda7aa501e2a72da654b3ab7e4458d74222b409c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:47:59 +0000 Subject: [PATCH 7/9] Update codecov/codecov-action action to v4 --- .github/workflows/ci.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index d8b54f17..2434c05f 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -75,6 +75,6 @@ jobs: MITOL_UE_DB_DISABLE_SSL: "True" - name: Upload coverage to CodeCov - uses: codecov/codecov-action@v3.1.6 + uses: codecov/codecov-action@e28ff129e5465c2c0dcc6f003fc735cb6ae0c673 # v4.5.0 with: file: ./coverage.xml From 5aa5c9b03ade6bdafc1fa5d44230b593e75a2bcd Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:48:02 +0000 Subject: [PATCH 8/9] Update dependency @typescript-eslint/eslint-plugin to v8 --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index b8b60af6..be2e59de 100644 --- a/package.json +++ b/package.json @@ -42,7 +42,7 @@ "@types/react-infinite-scroller": "^1.2.3", "@types/styled-components": "^5.1.25", "@types/url-assembler": "^2.1.1", - "@typescript-eslint/eslint-plugin": "^6.9.1", + "@typescript-eslint/eslint-plugin": "^8.0.0", "casual-browserify": "^1.5.19-2", "css-mediaquery": "^0.1.2", "eslint": "^8.18.0", From 34245247184ee2b8d55ef6385ad0fc2cf5e52938 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 17 Sep 2024 12:52:59 +0000 Subject: [PATCH 9/9] Update dependency djangorestframework to v3.15.2 [SECURITY] --- poetry.lock | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/poetry.lock b/poetry.lock index ef442448..1fdfcc4e 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1227,18 +1227,17 @@ files = [ [[package]] name = "djangorestframework" -version = "3.14.0" +version = "3.15.2" description = "Web APIs for Django, made easy." optional = false -python-versions = ">=3.6" +python-versions = ">=3.8" files = [ - {file = "djangorestframework-3.14.0-py3-none-any.whl", hash = "sha256:eb63f58c9f218e1a7d064d17a70751f528ed4e1d35547fdade9aaf4cd103fd08"}, - {file = "djangorestframework-3.14.0.tar.gz", hash = "sha256:579a333e6256b09489cbe0a067e66abe55c6595d8926be6b99423786334350c8"}, + {file = "djangorestframework-3.15.2-py3-none-any.whl", hash = "sha256:2b8871b062ba1aefc2de01f773875441a961fefbf79f5eed1e32b2f096944b20"}, + {file = "djangorestframework-3.15.2.tar.gz", hash = "sha256:36fe88cd2d6c6bec23dca9804bab2ba5517a8bb9d8f47ebc68981b56840107ad"}, ] [package.dependencies] -django = ">=3.0" -pytz = "*" +django = ">=4.2" [[package]] name = "dparse"