From 3069c4b66f9f690ddcb7cba64dda35b3b8c0c426 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 31 Mar 2025 00:14:18 +0000 Subject: [PATCH 01/24] chore(deps): bump the dependencies group with 2 updates Bumps the dependencies group with 2 updates: [flake8](https://github.com/pycqa/flake8) and [python-dotenv](https://github.com/theskumar/python-dotenv). Updates `flake8` from 7.1.2 to 7.2.0 - [Commits](https://github.com/pycqa/flake8/compare/7.1.2...7.2.0) Updates `python-dotenv` from 1.0.1 to 1.1.0 - [Release notes](https://github.com/theskumar/python-dotenv/releases) - [Changelog](https://github.com/theskumar/python-dotenv/blob/main/CHANGELOG.md) - [Commits](https://github.com/theskumar/python-dotenv/compare/v1.0.1...v1.1.0) --- updated-dependencies: - dependency-name: flake8 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: python-dotenv dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- requirements-test.txt | 2 +- requirements.txt | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements-test.txt b/requirements-test.txt index 5f3df3d..e04dc0f 100644 --- a/requirements-test.txt +++ b/requirements-test.txt @@ -1,5 +1,5 @@ black==25.1.0 -flake8==7.1.2 +flake8==7.2.0 mypy==1.15.0 mypy-extensions==1.0.0 pylint==3.3.6 diff --git a/requirements.txt b/requirements.txt index 99ea149..28b53f8 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,3 +1,3 @@ github3.py==4.0.1 -python-dotenv==1.0.1 +python-dotenv==1.1.0 python_dateutil==2.9.0.post0 From 80e3651b4435e2e15bd43c2a3b87f4c8f1ba3b12 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 31 Mar 2025 00:14:20 +0000 Subject: [PATCH 02/24] chore(deps): bump types-requests from 2.32.0.20250306 to 2.32.0.20250328 Bumps [types-requests](https://github.com/python/typeshed) from 2.32.0.20250306 to 2.32.0.20250328. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-requests dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- requirements-test.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-test.txt b/requirements-test.txt index 5f3df3d..6831823 100644 --- a/requirements-test.txt +++ b/requirements-test.txt @@ -6,4 +6,4 @@ pylint==3.3.6 pytest==8.3.5 pytest-cov==6.0.0 types-python-dateutil==2.9.0.20241206 -types-requests==2.32.0.20250306 +types-requests==2.32.0.20250328 From 81beabc58e552ca42acf0e7476c24c64d96f2cee Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 31 Mar 2025 00:50:31 +0000 Subject: [PATCH 03/24] chore(deps): bump the dependencies group with 2 updates Bumps the dependencies group with 2 updates: [actions/setup-python](https://github.com/actions/setup-python) and [github/codeql-action](https://github.com/github/codeql-action). Updates `actions/setup-python` from 5.4.0 to 5.5.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v5.4.0...v5.5.0) Updates `github/codeql-action` from 3.28.12 to 3.28.13 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/5f8171a638ada777af81d42b55959a643bb29017...1b549b9259bda1cb5ddde3b41741a82a2d15a841) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/python-package.yml | 2 +- .github/workflows/scorecard.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 43ad0c0..6469c2c 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -21,7 +21,7 @@ jobs: steps: - uses: actions/checkout@v4.2.2 - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v5.4.0 + uses: actions/setup-python@v5.5.0 with: python-version: ${{ matrix.python-version }} - name: Install dependencies diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 17258f7..edd7097 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -42,6 +42,6 @@ jobs: path: results.sarif retention-days: 5 - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@5f8171a638ada777af81d42b55959a643bb29017 # v3.28.12 + uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13 with: sarif_file: results.sarif From 4e6124f9bdf4a7290ee3d2d475e25995c204ed22 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Thu, 3 Apr 2025 23:16:20 -0500 Subject: [PATCH 04/24] chore: add major version updater workflow back Accidentally removed during previous cleanup We're going to use actions/release-action since it simplifies some things and already have example from actions/stale usage Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 24 +++++++++++++++++++++ 1 file changed, 24 insertions(+) create mode 100644 .github/workflows/major-version-updater.yml diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml new file mode 100644 index 0000000..52726dd --- /dev/null +++ b/.github/workflows/major-version-updater.yml @@ -0,0 +1,24 @@ +name: Update major tag for release +on: + release: + types: [released] + workflow_dispatch: + inputs: + TAG_NAME: + description: "Tag name that the major tag will point to (e.g. v1.2.3)" + required: true +env: + TAG_NAME: ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} +permissions: + contents: read +jobs: + update_tag: + permissions: + contents: write + name: Update the major tag to include the ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} changes + runs-on: ubuntu-latest + steps: + - name: Update the ${{ env.TAG_NAME }} tag + uses: actions/publish-action@8a4b4f687b72f481b8a241ef71f38857239698fc + with: + source-tag: ${{ env.TAG_NAME }} From aef09fcae1eba1ecd1cea9d42ecd0591b4b9a4d0 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Thu, 3 Apr 2025 23:22:23 -0500 Subject: [PATCH 05/24] fix: ignore checkov error, not valid Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 52726dd..046cb7e 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -1,3 +1,4 @@ +#checkov:skip=CKV_GHA_7 name: Update major tag for release on: release: From 20833622d96bc7b3caeb7f583d873dbed486ce3b Mon Sep 17 00:00:00 2001 From: jmeridth Date: Thu, 3 Apr 2025 23:29:32 -0500 Subject: [PATCH 06/24] fix: create linter/.checkov.yml for checkov checks to skip Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 1 - Dockerfile | 2 -- 2 files changed, 3 deletions(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 046cb7e..52726dd 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -1,4 +1,3 @@ -#checkov:skip=CKV_GHA_7 name: Update major tag for release on: release: diff --git a/Dockerfile b/Dockerfile index ce98624..8e696a9 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,5 +1,3 @@ -#checkov:skip=CKV_DOCKER_2 -#checkov:skip=CKV_DOCKER_3 FROM python:3.13-slim@sha256:8f3aba466a471c0ab903dbd7cb979abd4bda370b04789d25440cc90372b50e04 LABEL com.github.actions.name="stale-repos" \ com.github.actions.description="Find stale repositories in a GitHub organization." \ From f20be60f68649a75af80a723ecbccac30fa05927 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Thu, 3 Apr 2025 23:36:23 -0500 Subject: [PATCH 07/24] fix: checkov linter file needs yaml extension, not yml :facepalm: Signed-off-by: jmeridth --- .github/linters/.checkov.yaml | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 .github/linters/.checkov.yaml diff --git a/.github/linters/.checkov.yaml b/.github/linters/.checkov.yaml new file mode 100644 index 0000000..695c8fb --- /dev/null +++ b/.github/linters/.checkov.yaml @@ -0,0 +1,5 @@ +quiet: true +skip-check: + - CKV_GHA_7 + - CKV_DOCKER_2 + - CKV_DOCKER_3 From dc03cb514a5281979a58b81bb537853b220155f4 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Thu, 3 Apr 2025 23:44:48 -0500 Subject: [PATCH 08/24] fix: pass token to action Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 52726dd..da9168e 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -22,3 +22,4 @@ jobs: uses: actions/publish-action@8a4b4f687b72f481b8a241ef71f38857239698fc with: source-tag: ${{ env.TAG_NAME }} + token: ${{ secrets.GITHUB_TOKEN }} From 575ddfa800af9d347c7df51fff792f3e87752109 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 00:06:04 -0500 Subject: [PATCH 09/24] chore: move perms up to workflow level Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index da9168e..0a266b0 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -10,11 +10,9 @@ on: env: TAG_NAME: ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} permissions: - contents: read + contents: write jobs: update_tag: - permissions: - contents: write name: Update the major tag to include the ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} changes runs-on: ubuntu-latest steps: From e130b6dbf7105e894513bf42ec302415fa5e3647 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 00:56:07 -0500 Subject: [PATCH 10/24] fix: brought back the original script - [x] extended to allow manual run Found https://github.com/orgs/community/discussions/116660 which showed the _exact_ error I was getting with actions/publish-action. Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 22 ++++++++++++++------- 1 file changed, 15 insertions(+), 7 deletions(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 0a266b0..cbd7d7c 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -1,14 +1,14 @@ name: Update major tag for release on: release: - types: [released] + types: [published] workflow_dispatch: inputs: TAG_NAME: description: "Tag name that the major tag will point to (e.g. v1.2.3)" required: true env: - TAG_NAME: ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} + TAG_NAME: ${{ github.event.inputs.TAG_NAME || github.ref}} permissions: contents: write jobs: @@ -16,8 +16,16 @@ jobs: name: Update the major tag to include the ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} changes runs-on: ubuntu-latest steps: - - name: Update the ${{ env.TAG_NAME }} tag - uses: actions/publish-action@8a4b4f687b72f481b8a241ef71f38857239698fc - with: - source-tag: ${{ env.TAG_NAME }} - token: ${{ secrets.GITHUB_TOKEN }} + - name: Checkout Repo + uses: actions/checkout@v4.2.2 + - name: version + id: version + run: | + tag=${TAG_NAME/refs\/tags\//} + version=${tag#v} + major=${version%%.*} + { echo "tag=${tag}"; echo "version=${version}"; echo "major=${major}"; } >> "$GITHUB_OUTPUT" + - name: force update major tag + run: | + git tag v${{ steps.version.outputs.major }} + git push origin refs/tags/v${{ steps.version.outputs.major }} -f From ba5e470499750b01b93a52ba2f934b5f772aaea9 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:00:42 -0500 Subject: [PATCH 11/24] fix: ensure we tag to the github.ref especially if run manually. otherwise HEAD is tagged (latest on main). nope nope nope Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index cbd7d7c..7ad0771 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -27,5 +27,5 @@ jobs: { echo "tag=${tag}"; echo "version=${version}"; echo "major=${major}"; } >> "$GITHUB_OUTPUT" - name: force update major tag run: | - git tag v${{ steps.version.outputs.major }} - git push origin refs/tags/v${{ steps.version.outputs.major }} -f + git tag v${{ steps.version.outputs.major }} ${{ github.ref }} + git push -f origin v${{ steps.version.outputs.major }} From 1236c88bdf26e58e249cefea0d38fc10c7385127 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:03:17 -0500 Subject: [PATCH 12/24] fix: again. use correct tag either one passed in or github.ref for publish saved as TAG_NAME. use TAG_NAME. :headdesk: Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 7ad0771..97376bb 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -27,5 +27,5 @@ jobs: { echo "tag=${tag}"; echo "version=${version}"; echo "major=${major}"; } >> "$GITHUB_OUTPUT" - name: force update major tag run: | - git tag v${{ steps.version.outputs.major }} ${{ github.ref }} + git tag v${{ steps.version.outputs.major }} ${TAG_NAME} git push -f origin v${{ steps.version.outputs.major }} From fd25731d787b53031ef98e205c9b75961f9a2f9b Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:12:38 -0500 Subject: [PATCH 13/24] fix: get tags with checkout Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index 97376bb..b7d6ab1 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -18,6 +18,8 @@ jobs: steps: - name: Checkout Repo uses: actions/checkout@v4.2.2 + with: + fetch-tags: true - name: version id: version run: | @@ -27,5 +29,5 @@ jobs: { echo "tag=${tag}"; echo "version=${version}"; echo "major=${major}"; } >> "$GITHUB_OUTPUT" - name: force update major tag run: | - git tag v${{ steps.version.outputs.major }} ${TAG_NAME} + git tag v${{ steps.version.outputs.major }} ${{ steps.version.outputs.tag }} git push -f origin v${{ steps.version.outputs.major }} From a0a96af04fedc1e77c69f058c454bf8c5707de82 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:17:53 -0500 Subject: [PATCH 14/24] fix: for tag update, especially if it already exists Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index b7d6ab1..c33977c 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -29,5 +29,5 @@ jobs: { echo "tag=${tag}"; echo "version=${version}"; echo "major=${major}"; } >> "$GITHUB_OUTPUT" - name: force update major tag run: | - git tag v${{ steps.version.outputs.major }} ${{ steps.version.outputs.tag }} + git tag -f v${{ steps.version.outputs.major }} ${{ steps.version.outputs.tag }} git push -f origin v${{ steps.version.outputs.major }} From 0622b872a0c51f7846199d7b7cd077f5715807f4 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:30:05 -0500 Subject: [PATCH 15/24] fix: checkout ref to ensure tag is there Based on https://github.com/actions/checkout/issues/1467#issuecomment-2764532031 Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index c33977c..cc2fdb4 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -20,6 +20,7 @@ jobs: uses: actions/checkout@v4.2.2 with: fetch-tags: true + ref: ${ TAG_NAME } - name: version id: version run: | From 6be0cec4efff6f23ac58bc1681261590e8d8a086 Mon Sep 17 00:00:00 2001 From: jmeridth Date: Fri, 4 Apr 2025 01:34:15 -0500 Subject: [PATCH 16/24] fix: use vars instead of env (not available at this point) Signed-off-by: jmeridth --- .github/workflows/major-version-updater.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/major-version-updater.yml b/.github/workflows/major-version-updater.yml index cc2fdb4..d7f25c8 100644 --- a/.github/workflows/major-version-updater.yml +++ b/.github/workflows/major-version-updater.yml @@ -13,14 +13,14 @@ permissions: contents: write jobs: update_tag: - name: Update the major tag to include the ${{ github.event.inputs.TAG_NAME || github.event.release.tag_name }} changes + name: Update the major tag to include the ${{ github.event.inputs.TAG_NAME || github.ref }} changes runs-on: ubuntu-latest steps: - name: Checkout Repo uses: actions/checkout@v4.2.2 with: fetch-tags: true - ref: ${ TAG_NAME } + ref: ${{ github.event.inputs.TAG_NAME || github.ref }} - name: version id: version run: | From b51dd6655ab5a6382e853134d9f9a7605d412e63 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 7 Apr 2025 00:41:49 +0000 Subject: [PATCH 17/24] chore(deps): bump pytest-cov in the dependencies group Bumps the dependencies group with 1 update: [pytest-cov](https://github.com/pytest-dev/pytest-cov). Updates `pytest-cov` from 6.0.0 to 6.1.1 - [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest-cov/compare/v6.0.0...v6.1.1) --- updated-dependencies: - dependency-name: pytest-cov dependency-version: 6.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- requirements-test.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-test.txt b/requirements-test.txt index 38fb736..892af2c 100644 --- a/requirements-test.txt +++ b/requirements-test.txt @@ -4,6 +4,6 @@ mypy==1.15.0 mypy-extensions==1.0.0 pylint==3.3.6 pytest==8.3.5 -pytest-cov==6.0.0 +pytest-cov==6.1.1 types-python-dateutil==2.9.0.20241206 types-requests==2.32.0.20250328 From 3ed3cc8470b3c11696060e6af78bae507a848087 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 14 Apr 2025 00:11:52 +0000 Subject: [PATCH 18/24] chore(deps): bump the dependencies group with 2 updates Bumps the dependencies group with 2 updates: [github/ospo-reusable-workflows](https://github.com/github/ospo-reusable-workflows) and [github/codeql-action](https://github.com/github/codeql-action). Updates `github/ospo-reusable-workflows` from 0.4.6 to 0.5.0 - [Release notes](https://github.com/github/ospo-reusable-workflows/releases) - [Changelog](https://github.com/github/ospo-reusable-workflows/blob/main/docs/release-image.md) - [Commits](https://github.com/github/ospo-reusable-workflows/compare/ecdd405ebb379e0713e348440e6e26e85fc06773...10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab) Updates `github/codeql-action` from 3.28.13 to 3.28.15 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/1b549b9259bda1cb5ddde3b41741a82a2d15a841...45775bd8235c68ba998cffa5171334d58593da47) --- updated-dependencies: - dependency-name: github/ospo-reusable-workflows dependency-version: 0.5.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-version: 3.28.15 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/auto-labeler.yml | 2 +- .github/workflows/pr-title.yml | 2 +- .github/workflows/release.yml | 6 +++--- .github/workflows/scorecard.yml | 2 +- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/auto-labeler.yml b/.github/workflows/auto-labeler.yml index dcc51dc..b52b9b6 100644 --- a/.github/workflows/auto-labeler.yml +++ b/.github/workflows/auto-labeler.yml @@ -11,7 +11,7 @@ jobs: permissions: contents: read pull-requests: write - uses: github/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@ecdd405ebb379e0713e348440e6e26e85fc06773 + uses: github/ospo-reusable-workflows/.github/workflows/auto-labeler.yaml@10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab with: config-name: release-drafter.yml secrets: diff --git a/.github/workflows/pr-title.yml b/.github/workflows/pr-title.yml index 0655a34..e8d9e67 100644 --- a/.github/workflows/pr-title.yml +++ b/.github/workflows/pr-title.yml @@ -12,6 +12,6 @@ jobs: contents: read pull-requests: read statuses: write - uses: github/ospo-reusable-workflows/.github/workflows/pr-title.yaml@ecdd405ebb379e0713e348440e6e26e85fc06773 + uses: github/ospo-reusable-workflows/.github/workflows/pr-title.yaml@10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab secrets: github-token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 2631fe8..8d81c96 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -12,7 +12,7 @@ jobs: permissions: contents: write pull-requests: read - uses: github/ospo-reusable-workflows/.github/workflows/release.yaml@ecdd405ebb379e0713e348440e6e26e85fc06773 + uses: github/ospo-reusable-workflows/.github/workflows/release.yaml@10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab with: publish: true release-config-name: release-drafter.yml @@ -25,7 +25,7 @@ jobs: packages: write id-token: write attestations: write - uses: github/ospo-reusable-workflows/.github/workflows/release-image.yaml@ecdd405ebb379e0713e348440e6e26e85fc06773 + uses: github/ospo-reusable-workflows/.github/workflows/release-image.yaml@10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab with: image-name: ${{ github.repository_owner }}/stale_repos full-tag: ${{ needs.release.outputs.full-tag }} @@ -40,7 +40,7 @@ jobs: permissions: contents: read discussions: write - uses: github/ospo-reusable-workflows/.github/workflows/release-discussion.yaml@ecdd405ebb379e0713e348440e6e26e85fc06773 + uses: github/ospo-reusable-workflows/.github/workflows/release-discussion.yaml@10cfc2f9be5fce5e90150dfbffc7c0f4e68108ab with: full-tag: ${{ needs.release.outputs.full-tag }} body: ${{ needs.release.outputs.body }} diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index edd7097..99b94cd 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -42,6 +42,6 @@ jobs: path: results.sarif retention-days: 5 - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@1b549b9259bda1cb5ddde3b41741a82a2d15a841 # v3.28.13 + uses: github/codeql-action/upload-sarif@45775bd8235c68ba998cffa5171334d58593da47 # v3.28.15 with: sarif_file: results.sarif From 2bfd6669f6ea5c7aee7ef95a50b82911dd3cc666 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 14 Apr 2025 00:21:02 +0000 Subject: [PATCH 19/24] chore(deps): bump python from `8f3aba4` to `21e39cf` Bumps python from `8f3aba4` to `21e39cf`. --- updated-dependencies: - dependency-name: python dependency-version: 3.13-slim dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 8e696a9..53c2554 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.13-slim@sha256:8f3aba466a471c0ab903dbd7cb979abd4bda370b04789d25440cc90372b50e04 +FROM python:3.13-slim@sha256:21e39cf1815802d4c6f89a0d3a166cc67ce58f95b6d1639e68a394c99310d2e5 LABEL com.github.actions.name="stale-repos" \ com.github.actions.description="Find stale repositories in a GitHub organization." \ com.github.actions.icon="check-square" \ From 3d362bac5c3ab31e7ca9de8c1795aa64d0ccc5b4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 28 Apr 2025 00:16:47 +0000 Subject: [PATCH 20/24] chore(deps): bump the dependencies group with 2 updates Bumps the dependencies group with 2 updates: [actions/setup-python](https://github.com/actions/setup-python) and [github/codeql-action](https://github.com/github/codeql-action). Updates `actions/setup-python` from 5.5.0 to 5.6.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v5.5.0...v5.6.0) Updates `github/codeql-action` from 3.28.15 to 3.28.16 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/45775bd8235c68ba998cffa5171334d58593da47...28deaeda66b76a05916b6923827895f2b14ab387) --- updated-dependencies: - dependency-name: actions/setup-python dependency-version: 5.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: github/codeql-action dependency-version: 3.28.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/python-package.yml | 2 +- .github/workflows/scorecard.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 6469c2c..45b1c7b 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -21,7 +21,7 @@ jobs: steps: - uses: actions/checkout@v4.2.2 - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v5.5.0 + uses: actions/setup-python@v5.6.0 with: python-version: ${{ matrix.python-version }} - name: Install dependencies diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 99b94cd..01b8ab7 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -42,6 +42,6 @@ jobs: path: results.sarif retention-days: 5 - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@45775bd8235c68ba998cffa5171334d58593da47 # v3.28.15 + uses: github/codeql-action/upload-sarif@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16 with: sarif_file: results.sarif From db40ab4ce7986a4d6f710d36f1dc7ae488d9a95e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 28 Apr 2025 00:31:49 +0000 Subject: [PATCH 21/24] chore(deps): bump mypy-extensions in the dependencies group Bumps the dependencies group with 1 update: [mypy-extensions](https://github.com/python/mypy_extensions). Updates `mypy-extensions` from 1.0.0 to 1.1.0 - [Commits](https://github.com/python/mypy_extensions/compare/1.0.0...1.1.0) --- updated-dependencies: - dependency-name: mypy-extensions dependency-version: 1.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- requirements-test.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-test.txt b/requirements-test.txt index 892af2c..055d5e8 100644 --- a/requirements-test.txt +++ b/requirements-test.txt @@ -1,7 +1,7 @@ black==25.1.0 flake8==7.2.0 mypy==1.15.0 -mypy-extensions==1.0.0 +mypy-extensions==1.1.0 pylint==3.3.6 pytest==8.3.5 pytest-cov==6.1.1 From 4707af9a73ec7215608369278ce45b27c60a1492 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 May 2025 00:05:44 +0000 Subject: [PATCH 22/24] chore(deps): bump python from `21e39cf` to `60248ff` Bumps python from `21e39cf` to `60248ff`. --- updated-dependencies: - dependency-name: python dependency-version: 3.13-slim dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 53c2554..b01f047 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:3.13-slim@sha256:21e39cf1815802d4c6f89a0d3a166cc67ce58f95b6d1639e68a394c99310d2e5 +FROM python:3.13-slim@sha256:60248ff36cf701fcb6729c085a879d81e4603f7f507345742dc82d4b38d16784 LABEL com.github.actions.name="stale-repos" \ com.github.actions.description="Find stale repositories in a GitHub organization." \ com.github.actions.icon="check-square" \ From 754a7d14d9dd8bc192687fa6afa01c739de4d2a8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 May 2025 00:09:22 +0000 Subject: [PATCH 23/24] chore(deps): bump pylint from 3.3.6 to 3.3.7 in the dependencies group Bumps the dependencies group with 1 update: [pylint](https://github.com/pylint-dev/pylint). Updates `pylint` from 3.3.6 to 3.3.7 - [Release notes](https://github.com/pylint-dev/pylint/releases) - [Commits](https://github.com/pylint-dev/pylint/compare/v3.3.6...v3.3.7) --- updated-dependencies: - dependency-name: pylint dependency-version: 3.3.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- requirements-test.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-test.txt b/requirements-test.txt index 055d5e8..c5f80cb 100644 --- a/requirements-test.txt +++ b/requirements-test.txt @@ -2,7 +2,7 @@ black==25.1.0 flake8==7.2.0 mypy==1.15.0 mypy-extensions==1.1.0 -pylint==3.3.6 +pylint==3.3.7 pytest==8.3.5 pytest-cov==6.1.1 types-python-dateutil==2.9.0.20241206 From b3e198bcd4aff96703155a8cf6afb63466a0e4d7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 5 May 2025 00:33:23 +0000 Subject: [PATCH 24/24] chore(deps): bump github/codeql-action in the dependencies group Bumps the dependencies group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 3.28.16 to 3.28.17 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/28deaeda66b76a05916b6923827895f2b14ab387...60168efe1c415ce0f5521ea06d5c2062adbeed1b) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 3.28.17 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- .github/workflows/scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 01b8ab7..4c01ae6 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -42,6 +42,6 @@ jobs: path: results.sarif retention-days: 5 - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16 + uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3.28.17 with: sarif_file: results.sarif