diff --git a/.github/workflows/build-push-chart.yml b/.github/workflows/build-push-chart.yml
index 333e220..2331024 100644
--- a/.github/workflows/build-push-chart.yml
+++ b/.github/workflows/build-push-chart.yml
@@ -15,7 +15,7 @@ name: Build/Push Image and Release Charts
permissions: read-all
jobs:
setenv:
- uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@b8742370cb1539c1edb9ad5b8f479f121980587f
+ uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@f4838576b2f6cc71062002313e23e7be5c636158
with:
gh_head_ref: ${{ github.head_ref }}
gh_ref_name: ${{ github.ref_name }}
@@ -27,7 +27,7 @@ jobs:
permissions:
id-token: write
contents: write
- uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@b8742370cb1539c1edb9ad5b8f479f121980587f
+ uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@f4838576b2f6cc71062002313e23e7be5c636158
needs: setenv
with:
gh_repository_owner: ${{ github.repository_owner }}
@@ -44,7 +44,7 @@ jobs:
permissions:
security-events: write
statuses: write
- uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@b8742370cb1539c1edb9ad5b8f479f121980587f
+ uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@f4838576b2f6cc71062002313e23e7be5c636158
needs:
- setenv
- release
@@ -56,7 +56,7 @@ jobs:
helm:
permissions:
contents: write
- uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@b8742370cb1539c1edb9ad5b8f479f121980587f
+ uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@f4838576b2f6cc71062002313e23e7be5c636158
needs:
- setenv
- release
@@ -76,7 +76,7 @@ jobs:
GPG_KEY: ${{ secrets.GPG_KEY }}
gh_token: ${{ secrets.HELM_INDEXER_TOKEN }}
sbom:
- uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@b8742370cb1539c1edb9ad5b8f479f121980587f
+ uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@f4838576b2f6cc71062002313e23e7be5c636158
needs:
- setenv
- release
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index ce8c5cb..ffe9f77 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -21,19 +21,19 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
+ uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
- name: Checkout repository
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+ uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Initialize CodeQL
- uses: github/codeql-action/init@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
+ uses: github/codeql-action/init@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
with:
languages: "python"
- name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
+ uses: github/codeql-action/analyze@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
with:
category: "/language:python"
diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml
index 84fd5f6..bef13d6 100644
--- a/.github/workflows/mega-linter.yml
+++ b/.github/workflows/mega-linter.yml
@@ -25,12 +25,12 @@ jobs:
steps:
# Git Checkout
- name: Harden Runner
- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
+ uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
with:
egress-policy: audit
- name: Checkout Code
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+ uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
token: ${{ secrets.PAT || secrets.GITHUB_TOKEN }}
fetch-depth: 0 # If you use VALIDATE_ALL_CODEBASE = true, you can remove this line to improve performances
@@ -40,7 +40,7 @@ jobs:
id: ml
# You can override MegaLinter flavor used to have faster performances
# More info at https://megalinter.io/flavors/
- uses: oxsecurity/megalinter/flavors/python@c217fe8f7bc9207062a084e989bd97efd56e7b9a # v8.0.0
+ uses: oxsecurity/megalinter/flavors/python@1fc052d03c7a43c78fe0fee19c9d648b749e0c01 # v8.3.0
env:
# All available variables are described in documentation
# https://megalinter.io/configuration/
@@ -51,7 +51,7 @@ jobs:
# Upload MegaLinter artifacts
- name: Archive production artifacts
if: ${{ success() || failure() }}
- uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
+ uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
with:
name: MegaLinter reports
path: |
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index c48e363..c5fdc58 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -26,12 +26,12 @@ jobs:
steps:
- name: Harden Runner
- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
+ uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
with:
egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
- name: "Checkout code"
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+ uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with:
persist-credentials: false
@@ -44,6 +44,6 @@ jobs:
# Upload the results to GitHub's code scanning dashboard.
- name: "Upload to code-scanning"
- uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
+ uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
with:
sarif_file: results.sarif
diff --git a/Dockerfile b/Dockerfile
index f3712ec..d2b5fe7 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -12,7 +12,7 @@
# See the License for the specific language governing permissions and
# limitations under the License.
# hadolint global ignore=DL3041,DL3013,DL4006
-FROM public.ecr.aws/amazonlinux/amazonlinux:2023.5.20240916.0@sha256:feeb91e31912e7b3739d9cee4bc2181262f54688bc4fbd21069f3cedce03fa4f
+FROM public.ecr.aws/amazonlinux/amazonlinux:2023.6.20241212.0@sha256:bea1de0a7c636402cc10a1746df1e90ab60f01ae2a76a0103c11940d67c68d03
COPY . /app
WORKDIR /app
diff --git a/pyproject.toml b/pyproject.toml
index 73027ce..76cd8f2 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -8,15 +8,15 @@ readme = "README.md"
[tool.poetry.dependencies]
python = "^3.11"
-fastapi = "0.115.0"
-numpy = "2.1.1"
+fastapi = "0.115.6"
+numpy = "2.2.0"
pandas = "2.2.3"
-psycopg2-binary = "2.9.9"
-pydantic = "2.9.2"
-sqlalchemy = "2.0.35"
-uvicorn = "0.30.6"
-certifi = "2024.8.30"
-starlette = "0.38.6"
+psycopg2-binary = "2.9.10"
+pydantic = "2.10.4"
+sqlalchemy = "2.0.36"
+uvicorn = "0.34.0"
+certifi = "2024.12.14"
+starlette = "0.42.0"
[build-system]
diff --git a/reports/frequency.html b/reports/frequency.html
index bfae41e..501731e 100644
--- a/reports/frequency.html
+++ b/reports/frequency.html
@@ -20,14 +20,14 @@
-
+
-
+
-
+