-
Notifications
You must be signed in to change notification settings - Fork 10
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix dependency vulnerabilities in source packages #47
base: develop
Are you sure you want to change the base?
Commits on Oct 20, 2024
-
Bump black from 23.3.0 to 24.3.0 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [black](https://github.com/psf/black). Updates `black` from 23.3.0 to 24.3.0 - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](psf/black@23.3.0...24.3.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:development dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 5e6bb24 - Browse repository at this point
Copy the full SHA 5e6bb24View commit details -
Bump pyarrow from 12.0.0 to 14.0.1 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [pyarrow](https://github.com/apache/arrow). Updates `pyarrow` from 12.0.0 to 14.0.1 - [Release notes](https://github.com/apache/arrow/releases) - [Commits](apache/arrow@go/v12.0.0...go/v14.0.1) --- updated-dependencies: - dependency-name: pyarrow dependency-type: direct:development dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 22c7af1 - Browse repository at this point
Copy the full SHA 22c7af1View commit details -
Bump idna from 3.4 to 3.7 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [idna](https://github.com/kjd/idna). Updates `idna` from 3.4 to 3.7 - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst) - [Commits](kjd/idna@v3.4...v3.7) --- updated-dependencies: - dependency-name: idna dependency-type: indirect dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for a8aa0c8 - Browse repository at this point
Copy the full SHA a8aa0c8View commit details -
Bump certifi in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [certifi](https://github.com/certifi/python-certifi). Updates `certifi` from 2023.5.7 to 2024.7.4 - [Commits](certifi/python-certifi@2023.05.07...2024.07.04) --- updated-dependencies: - dependency-name: certifi dependency-type: indirect dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for bd3a3ff - Browse repository at this point
Copy the full SHA bd3a3ffView commit details -
Bump requests from 2.30.0 to 2.32.2 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [requests](https://github.com/psf/requests). Updates `requests` from 2.30.0 to 2.32.2 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](psf/requests@v2.30.0...v2.32.2) --- updated-dependencies: - dependency-name: requests dependency-type: indirect dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 618f9d1 - Browse repository at this point
Copy the full SHA 618f9d1View commit details -
Merge pull request #6 from arpitjain099/dependabot/pip/pip-775dd686c6
Bump requests from 2.30.0 to 2.32.2 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for b2d7c96 - Browse repository at this point
Copy the full SHA b2d7c96View commit details -
Merge pull request #5 from arpitjain099/dependabot/pip/pip-a98e789dc2
Bump idna from 3.4 to 3.7 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for ac154b2 - Browse repository at this point
Copy the full SHA ac154b2View commit details -
Merge pull request #4 from arpitjain099/dependabot/pip/pip-a8b23622d7
Bump certifi from 2023.5.7 to 2024.7.4 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for 7e2d830 - Browse repository at this point
Copy the full SHA 7e2d830View commit details -
Merge pull request #3 from arpitjain099/dependabot/pip/pip-81350e123e
Bump black from 23.3.0 to 24.3.0 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for 3b2a27b - Browse repository at this point
Copy the full SHA 3b2a27bView commit details -
Bump idna from 3.7 to 3.10 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [idna](https://github.com/kjd/idna). Updates `idna` from 3.7 to 3.10 - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst) - [Commits](kjd/idna@v3.7...v3.10) --- updated-dependencies: - dependency-name: idna dependency-type: indirect dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 99090be - Browse repository at this point
Copy the full SHA 99090beView commit details -
Configuration menu - View commit details
-
Copy full SHA for 8ab9969 - Browse repository at this point
Copy the full SHA 8ab9969View commit details -
Bump urllib3 from 2.0.2 to 2.2.2 in the pip group across 1 directory
Bumps the pip group with 1 update in the / directory: [urllib3](https://github.com/urllib3/urllib3). Updates `urllib3` from 2.0.2 to 2.2.2 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](urllib3/urllib3@2.0.2...2.2.2) --- updated-dependencies: - dependency-name: urllib3 dependency-type: indirect dependency-group: pip ... Signed-off-by: dependabot[bot] <[email protected]>
Configuration menu - View commit details
-
Copy full SHA for 1c92f58 - Browse repository at this point
Copy the full SHA 1c92f58View commit details -
Merge pull request #2 from arpitjain099/dependabot/pip/pip-fb879a73c4
Bump pyarrow from 12.0.0 to 14.0.1 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for 2868042 - Browse repository at this point
Copy the full SHA 2868042View commit details -
Merge pull request #7 from arpitjain099/dependabot/pip/pip-69a3c6ef02
Bump idna from 3.7 to 3.10 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for c3629e9 - Browse repository at this point
Copy the full SHA c3629e9View commit details -
Merge pull request #1 from arpitjain099/dependabot/pip/pip-48da786093
Bump urllib3 from 2.0.2 to 2.2.2 in the pip group across 1 directory
Configuration menu - View commit details
-
Copy full SHA for a04ed6a - Browse repository at this point
Copy the full SHA a04ed6aView commit details -
Configuration menu - View commit details
-
Copy full SHA for e605b48 - Browse repository at this point
Copy the full SHA e605b48View commit details