build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 #469

dependabot · 2023-01-24T19:13:35Z

Updates the requirements on ruff to permit the latest version.

Release notes

v0.0.231

What's Changed

fix: issue D401 only for non-test/property functions and methods by @scop in charliermarsh/ruff#2071

feat: flake8-use-pathlib PTH100-124 by @sbrugman in charliermarsh/ruff#2090

refactor: remove redundant enum by @sbrugman in charliermarsh/ruff#2091

feat: Implement TRY201 by @alonme in charliermarsh/ruff#2073

Avoid nested-if violations when outer-if has else clause by @charliermarsh in charliermarsh/ruff#2095

Add flake8-pie PIE804: no-unnecessary-dict-kwargs by @sbdchd in charliermarsh/ruff#1884

Add flake8-pie PIE800: no-unnecessary-spread by @sbdchd in charliermarsh/ruff#1881

Remove some usages of default format for expressions by @charliermarsh in charliermarsh/ruff#2100

docs(readme): add pypa cibuildwheel by @sbrugman in charliermarsh/ruff#2107

refactor: Get rid of build.rs and other refactors by @not-my-profile in charliermarsh/ruff#2101

Fix outdated description of ruff's support of isort settings by @thomkeh in charliermarsh/ruff#2106

[flake8-bandit] Added Rule S612 (Use of insecure logging.config.listen) by @saadmk11 in charliermarsh/ruff#2108

New Contributors

@sbdchd made their first contribution in charliermarsh/ruff#1884

Full Changelog: astral-sh/ruff@v0.0.230...v0.0.231

Changelog

Sourced from ruff's changelog.

Breaking Changes

0.0.226

misplaced-comparison-constant (PLC2201) was deprecated in favor of SIM300 (#1980)

These two rules contain (nearly) identical logic. To deduplicate the rule set, we've upgraded SIM300 to handle a few more cases, and deprecated PLC2201 in favor of SIM300.

0.0.225

@functools.cache rewrites have been moved to a standalone rule (UP033) (#1938)

Previously, UP011 handled both @functools.lru_cache()-to-@functools.lru_cache conversions, and @functools.lru_cache(maxsize=None)-to-@functools.cache conversions. The latter has been moved out to its own rule (UP033). As such, some # noqa: UP011 comments may need to be updated to reflect the change in rule code.

0.0.222

--max-complexity has been removed from the CLI (#1877)

The McCabe plugin's --max-complexity setting has been removed from the CLI, for consistency with the treatment of other, similar settings.

To set the maximum complexity, use the max-complexity property in your pyproject.toml file, like so:
[tool.ruff.mccabe]
max-complexity = 10
0.0.181

Files excluded by .gitignore are now ignored (#1234)

Ruff will now avoid checking files that are excluded by .ignore, .gitignore, .git/info/exclude, and global gitignore files. This behavior is powered by the ignore crate, and is applied in addition to Ruff's built-in exclude system.

To disable this behavior, set respect-gitignore = false in your pyproject.toml file.

Note that hidden files (i.e., files and directories prefixed with a .) are not ignored by default.

0.0.178

Configuration files are now resolved hierarchically (#1190)

... (truncated)

Commits

1c3265e Bump version to 0.0.231
8001a16 [flake8-bandit] Added Rule S612 (Use of insecure logging.config.listen)...
7d9c1d7 Add a note on some isort incompatibilities
c5cebb1 Fix outdated description of ruff's support of isort settings (#2106)
8c61e8a Improve #[derive(RuleNamespace)] error handling
4f33827 refactor: Simplify test_ruff_black_compatibility
6481916 refactor: Collect into Result<Vec
9055860 refactor: Introduce parse_doc_attr helper function
991d3c1 refactor: Move Linter::url and Linter::name generation to proc macro
f472fbc docs(readme): add pypa cibuildwheel (#2107)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.231) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

woodruffw · 2023-01-24T21:02:02Z

/gcbrun

) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.231) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.231) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Jack Leightcap <jack.leightcap@trailofbits.com>

…igstore#469) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.231) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: emboman13 <embo1013@yahoo.com>

* class prototype and script to find instances to change * script added * Set up newtype file with example newTypes * added newtypes to _util.py * renamed newtypes, added keyID * deletion of old file * added hexstr newtype and implemented newtypes for SigningResults * added newtypes to verify/models.py * renamed newtypes to follow standardized format * moved newtypes into _util * deleted newtypes.py * Changed sign.py to use _utils and set up basic implementation in verifier * build(deps-dev): update ruff requirement from <0.0.226 to <0.0.229 (#466) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.228) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: emboman13 <embo1013@yahoo.com> * build(deps-dev): update ruff requirement from <0.0.229 to <0.0.231 (#468) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.230) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: emboman13 <embo1013@yahoo.com> * build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 (#469) Updates the requirements on [ruff](https://github.com/charliermarsh/ruff) to permit the latest version. - [Release notes](https://github.com/charliermarsh/ruff/releases) - [Changelog](https://github.com/charliermarsh/ruff/blob/main/BREAKING_CHANGES.md) - [Commits](astral-sh/ruff@v0.0.18...v0.0.231) --- updated-dependencies: - dependency-name: ruff dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: emboman13 <embo1013@yahoo.com> * Initial Sigstore bundle support (#465) * Initial Sigstore bundle support Signed-off-by: William Woodruff <william@trailofbits.com> * README: update `--help` texts Signed-off-by: William Woodruff <william@trailofbits.com> * sign: fix bundle generation Certs are base64'd DER, not PEM, and the canonicalized_body is the log entry body, not the canonicalized contents that the SET is signed over. Signed-off-by: William Woodruff <william@trailofbits.com> * sign: remove TODO Signed-off-by: William Woodruff <william@trailofbits.com> * sign: update TODO Signed-off-by: William Woodruff <william@trailofbits.com> * _cli: Make `--bundle` refer to a path and create a `--no-bundle` flag to control whether Sigstore bundles are emitted by default Signed-off-by: Alex Cameron <asc@tetsuo.sh> * _cli: Move variable to correct scope Signed-off-by: Alex Cameron <asc@tetsuo.sh> * _cli: Reword warnings for bundle flags Signed-off-by: Alex Cameron <asc@tetsuo.sh> * README: Fix sign example Signed-off-by: Alex Cameron <asc@tetsuo.sh> * README: Update verify invocations Signed-off-by: Alex Cameron <asc@tetsuo.sh> * README: Fix line breaks Signed-off-by: Alex Cameron <asc@tetsuo.sh> * _cli: fix sig output Signed-off-by: William Woodruff <william@trailofbits.com> * _cli: fix sig check, take 2 Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: Alex Cameron <asc@tetsuo.sh> Co-authored-by: Alex Cameron <asc@tetsuo.sh> Signed-off-by: emboman13 <embo1013@yahoo.com> * CHANGELOG: record changes (#470) Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: emboman13 <embo1013@yahoo.com> * class prototype and script to find instances to change Signed-off-by: emboman13 <embo1013@yahoo.com> * script added Signed-off-by: emboman13 <embo1013@yahoo.com> * Set up newtype file with example newTypes Signed-off-by: emboman13 <embo1013@yahoo.com> * renamed newtypes, added keyID Signed-off-by: emboman13 <embo1013@yahoo.com> * deletion of old file Signed-off-by: emboman13 <embo1013@yahoo.com> * added hexstr newtype and implemented newtypes for SigningResults Signed-off-by: emboman13 <embo1013@yahoo.com> * added newtypes to _util.py Signed-off-by: emboman13 <embo1013@yahoo.com> * renamed newtypes to follow standardized format Signed-off-by: emboman13 <embo1013@yahoo.com> * added newtypes to verify/models.py Signed-off-by: emboman13 <embo1013@yahoo.com> * moved newtypes into _util Signed-off-by: emboman13 <embo1013@yahoo.com> * deleted newtypes.py Signed-off-by: emboman13 <embo1013@yahoo.com> * Changed sign.py to use _utils and set up basic implementation in verifier Signed-off-by: emboman13 <embo1013@yahoo.com> * added newtypes to sigstore/veriry/models.py * updated newtypes in verify/models.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * Revert "updated newtypes in verify/models.py" This reverts commit f767d7a. * Encapsulation of NewTypes in my share of files Creation of new type 'dercert' that masks DER encoded bytes. Focus on changing types in files within sigstore/_internal/. Reformat, lint lint is successful. 103 Tests pass, 8 are skipped, 2 fail. * Removed an incorrect b64str newtype in models.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * "added newtypes to _internal/rekor/client.py" Signed-off-by: omartounsi7 <otounsi@purdue.edu> * "fixed type errors in sign.py" Signed-off-by: omartounsi7 <otounsi@purdue.edu> * Added a b64str newtype in verify/models.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * added a b64str newtype in verify/verifier.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * added a b64str newtype to _internal/fulcio/client.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * added a b64str newtype in _internal/oidc/oauth.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * added a b64str newtype in _internal/rekor/client.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * deleted script Signed-off-by: omartounsi7 <otounsi@purdue.edu> * fixed some type errors * changed keyid to KeyID Signed-off-by: omartounsi7 <otounsi@purdue.edu> * anged hexstr to HexStr Signed-off-by: omartounsi7 <otounsi@purdue.edu> * changed b64str to B64Str Signed-off-by: omartounsi7 <otounsi@purdue.edu> * changed pemcert to PEMCert Signed-off-by: omartounsi7 <otounsi@purdue.edu> * changed dercert to DERCert Signed-off-by: omartounsi7 <otounsi@purdue.edu> * added docstrings to newtypes in _utils.py Signed-off-by: omartounsi7 <otounsi@purdue.edu> * Update sigstore/_utils.py Co-authored-by: William Woodruff <william@yossarian.net> Signed-off-by: omartounsi7 <62721212+omartounsi7@users.noreply.github.com> * Update sigstore/_utils.py Co-authored-by: William Woodruff <william@yossarian.net> Signed-off-by: omartounsi7 <62721212+omartounsi7@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: emboman13 <embo1013@yahoo.com> Signed-off-by: William Woodruff <william@trailofbits.com> Signed-off-by: Alex Cameron <asc@tetsuo.sh> Signed-off-by: omartounsi7 <otounsi@purdue.edu> Signed-off-by: omartounsi7 <62721212+omartounsi7@users.noreply.github.com> Co-authored-by: emboman13 <embo1013@yahoo.com> Co-authored-by: omartounsi7 <otounsi@purdue.edu> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: William Woodruff <william@trailofbits.com> Co-authored-by: Alex Cameron <asc@tetsuo.sh> Co-authored-by: omartounsi7 <62721212+omartounsi7@users.noreply.github.com> Co-authored-by: William Woodruff <william@yossarian.net>

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jan 24, 2023

woodruffw approved these changes Jan 24, 2023

View reviewed changes

woodruffw added the safe to test label Jan 24, 2023

woodruffw approved these changes Jan 24, 2023

View reviewed changes

woodruffw merged commit 6ae96b2 into main Jan 24, 2023

woodruffw deleted the dependabot/pip/ruff-lt-0.0.232 branch January 24, 2023 21:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 #469

build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 #469

dependabot bot commented on behalf of github Jan 24, 2023

woodruffw commented Jan 24, 2023

build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 #469

build(deps-dev): update ruff requirement from <0.0.231 to <0.0.232 #469

Conversation

dependabot bot commented on behalf of github Jan 24, 2023

v0.0.231

What's Changed

New Contributors

Breaking Changes

0.0.226

misplaced-comparison-constant (PLC2201) was deprecated in favor of SIM300 (#1980)

0.0.225

@functools.cache rewrites have been moved to a standalone rule (UP033) (#1938)

0.0.222

--max-complexity has been removed from the CLI (#1877)

0.0.181

Files excluded by .gitignore are now ignored (#1234)

0.0.178

Configuration files are now resolved hierarchically (#1190)

woodruffw commented Jan 24, 2023

`misplaced-comparison-constant` (`PLC2201`) was deprecated in favor of `SIM300` (#1980)

`@functools.cache` rewrites have been moved to a standalone rule (`UP033`) (#1938)

`--max-complexity` has been removed from the CLI (#1877)

Files excluded by `.gitignore` are now ignored (#1234)