Update several dependencies.

.github/workflows/release.yml

@@ -72,7 +72,7 @@ jobs:
           tags: ictu/quality-time_frontend:${{ github.ref_name }}
           push: true
       - name: Anchore SBOM Action
-        uses: anchore/[email protected].1
+        uses: anchore/[email protected].2
       - name: Package and push Helm chart to Docker Hub
         run: |
           cd helm

components/api_server/pyproject.toml

@@ -20,7 +20,7 @@ optional-dependencies.dev = [
     "coverage==7.6.1",
     "pip==24.2",
     "pip-tools==7.4.1",                # To add hashes to requirements
-    "pipx==1.6.0",
+    "pipx==1.7.1",
     "pydantic==2.8.2",                 # Needed for importing the data model in the tests from the shared code component
     "types-cryptography==3.3.23.2",
     "types-ldap3==2.9.13.20240205",
@@ -30,10 +30,10 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.7.9",
     "fixit==2.1.0",
-    "mypy==1.11.1",
+    "mypy==1.11.2",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.2.1",
-    "ruff==0.6.0",
+    "ruff==0.6.2",
     "vulture==2.11",
 ]
 

components/api_server/requirements/requirements-dev.txt

@@ -401,9 +401,9 @@ greenlet==3.0.3 \
     --hash=sha256:fd096eb7ffef17c456cfa587523c5f92321ae02427ff955bebe9e3c63bc9f0da \
     --hash=sha256:fe754d231288e1e64323cfad462fcee8f0288654c10bdf4f603a39ed923bef33
     # via gevent
-idna==3.7 \
-    --hash=sha256:028ff3aadf0609c1fd278d8ea3089299412a7a8b9bd005dd08b9f8285bcb5cfc \
-    --hash=sha256:82fee1fc78add43492d3a1898bfa6d8a904cc97d8427f683ed8e798d07761aa0
+idna==3.8 \
+    --hash=sha256:050b4e5baadcd44d760cedbd2b8e639f2ff89bbc7a5730fcc662954303377aac \
+    --hash=sha256:d838c2c0ed6fced7693d5e8ab8e734d5f8fda53a039c0164afb0b82e771e3603
     # via requests
 ldap3==2.9.1 \
     --hash=sha256:5869596fc4948797020d3f03b7939da938778a0f9e2009f7a072ccf92b8e8d70 \
@@ -566,9 +566,9 @@ pip-tools==7.4.1 \
     --hash=sha256:4c690e5fbae2f21e87843e89c26191f0d9454f362d8acdbd695716493ec8b3a9 \
     --hash=sha256:864826f5073864450e24dbeeb85ce3920cdfb09848a3d69ebf537b521f14bcc9
     # via api-server (pyproject.toml)
-pipx==1.6.0 \
-    --hash=sha256:760889dc3aeed7bf4024973bf22ca0c2a891003f52389159ab5cb0c57d9ebff4 \
-    --hash=sha256:840610e00103e3d49ae24b6b51804b60988851a5dd65468adb71e5a97e2699b2
+pipx==1.7.1 \
+    --hash=sha256:3933c43bb344e649cb28e10d357e0967ce8572f1c19caf90cf39ae95c2a0afaf \
+    --hash=sha256:762de134e16a462be92645166d225ecef446afaef534917f5f70008d63584360
     # via api-server (pyproject.toml)
 platformdirs==4.2.2 \
     --hash=sha256:2d7a1657e36a80ea911db832a8a6ece5ee53d8de21edd5cc5879af6530b1bfee \
@@ -747,9 +747,9 @@ types-ldap3==2.9.13.20240205 \
     --hash=sha256:0f3310883d26a386562877791b46f96041eebbd50cc945a5ad935e7fde876cc1 \
     --hash=sha256:3b2cdaf071171fb37e79c6dab0d682aa65f2268ea25c749dc96fc2f041adb6b9
     # via api-server (pyproject.toml)
-types-pyasn1==0.6.0.20240402 \
-    --hash=sha256:5d54dcb33f69dd269071ca098e923ac20c5f03c814631fa7f3ed9ee035a5da3a \
-    --hash=sha256:848d01e7313c200acc035a8b3d377fe7b2aecbe77f2be49eb160a7f82835aaaf
+types-pyasn1==0.6.0.20240824 \
+    --hash=sha256:2cee8bfddf06d88e25ea122f7fb3b9d127a9f4a532e4d1415ef99ee0c2f902ea \
+    --hash=sha256:40873dbd960e8ddb4bebda5195d3aa5e9f9c7c19d461af2f6c8540aa97e8055d
     # via types-ldap3
 types-requests==2.32.0.20240712 \
     --hash=sha256:90c079ff05e549f6bf50e02e910210b98b8ff1ebdd18e19c873cd237737c1358 \
@@ -827,9 +827,9 @@ pip==24.2 \
     # via
     #   api-server (pyproject.toml)
     #   pip-tools
-setuptools==72.2.0 \
-    --hash=sha256:80aacbf633704e9c8bfa1d99fa5dd4dc59573efcf9e4042c13d3bcef91ac2ef9 \
-    --hash=sha256:f11dd94b7bae3a156a95ec151f24e4637fb4fa19c878e4d191bfb8b2d82728c4
+setuptools==73.0.1 \
+    --hash=sha256:b208925fcb9f7af924ed2dc04708ea89791e24bde0d3020b27df0e116088b34e \
+    --hash=sha256:d59a3e788ab7e012ab2c4baed1b376da6366883ee20d7a5fc426816e3d7b1193
     # via
     #   pip-tools
     #   zope-event

components/api_server/requirements/requirements.txt

@@ -309,9 +309,9 @@ greenlet==3.0.3 \
     --hash=sha256:fd096eb7ffef17c456cfa587523c5f92321ae02427ff955bebe9e3c63bc9f0da \
     --hash=sha256:fe754d231288e1e64323cfad462fcee8f0288654c10bdf4f603a39ed923bef33
     # via gevent
-idna==3.7 \
-    --hash=sha256:028ff3aadf0609c1fd278d8ea3089299412a7a8b9bd005dd08b9f8285bcb5cfc \
-    --hash=sha256:82fee1fc78add43492d3a1898bfa6d8a904cc97d8427f683ed8e798d07761aa0
+idna==3.8 \
+    --hash=sha256:050b4e5baadcd44d760cedbd2b8e639f2ff89bbc7a5730fcc662954303377aac \
+    --hash=sha256:d838c2c0ed6fced7693d5e8ab8e734d5f8fda53a039c0164afb0b82e771e3603
     # via requests
 ldap3==2.9.1 \
     --hash=sha256:5869596fc4948797020d3f03b7939da938778a0f9e2009f7a072ccf92b8e8d70 \
@@ -573,9 +573,9 @@ zope-interface==7.0.1 \
     # via gevent
 
 # The following packages are considered to be unsafe in a requirements file:
-setuptools==72.2.0 \
-    --hash=sha256:80aacbf633704e9c8bfa1d99fa5dd4dc59573efcf9e4042c13d3bcef91ac2ef9 \
-    --hash=sha256:f11dd94b7bae3a156a95ec151f24e4637fb4fa19c878e4d191bfb8b2d82728c4
+setuptools==73.0.1 \
+    --hash=sha256:b208925fcb9f7af924ed2dc04708ea89791e24bde0d3020b27df0e116088b34e \
+    --hash=sha256:d59a3e788ab7e012ab2c4baed1b376da6366883ee20d7a5fc426816e3d7b1193
     # via
     #   zope-event
     #   zope-interface

components/collector/pyproject.toml

@@ -8,7 +8,7 @@ classifiers = [
 ]
 dependencies = [
     "aiogqlc==5.1.0",
-    "aiohttp==3.10.3",
+    "aiohttp==3.10.5",
     "beautifulsoup4==4.12.3",
     "defusedxml==0.7.1",
     "packaging==24.1",
@@ -21,19 +21,19 @@ optional-dependencies.dev = [
     "mongomock==4.1.2",
     "pip==24.2",
     "pip-tools==7.4.1",                      # To add hashes to requirements
-    "pipx==1.6.0",
+    "pipx==1.7.1",
     "pydantic==2.8.2",                       # Needed for importing the data model in the tests from the shared code component
     "types-beautifulsoup4==4.12.0.20240511",
-    "types-python-dateutil==2.9.0.20240316",
+    "types-python-dateutil==2.9.0.20240821",
     "unittest-xml-reporting==3.2.0",         # Needed to generate JUnit XML output for Sonarcloud.io
 ]
 optional-dependencies.tools = [
     "bandit==1.7.9",
     "fixit==2.1.0",
-    "mypy==1.11.1",
+    "mypy==1.11.2",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.2.1",
-    "ruff==0.6.0",
+    "ruff==0.6.2",
     "vulture==2.11",
 ]