Update dependency bandit to v1.7.10 - autoclosed
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
bandit (source, changelog) | dev-dependencies | patch |
1.7.8 -> 1.7.10
|
Release Notes
PyCQA/bandit (bandit)
v1.7.10
What's Changed
- Bump docker/build-push-action from 5.4.0 to 6.0.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1147
- Suggested small refactors in assignments by @ericwb in https://github.com/PyCQA/bandit/pull/1150
- Performance improvement in blacklist function by @ericwb in https://github.com/PyCQA/bandit/pull/1148
- Add test for usage of FTP_TLS by @ericwb in https://github.com/PyCQA/bandit/pull/1149
- New check: B113: TrojanSource - Bidirectional control characters by @Lucas-C in https://github.com/PyCQA/bandit/pull/757
- Bump docker/build-push-action from 6.0.0 to 6.1.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1152
- feat(plugins): add support for
httpx
inB113
by @mkniewallner in https://github.com/PyCQA/bandit/pull/1060 - Nit: remove unused variable by @ericwb in https://github.com/PyCQA/bandit/pull/1153
- Add recent releases to version choice in bug report by @ericwb in https://github.com/PyCQA/bandit/pull/1151
- Bump docker/build-push-action from 6.1.0 to 6.2.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1155
- Bump docker/build-push-action from 6.2.0 to 6.3.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1157
- Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1156
- Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1158
- Bump docker/login-action from 3.2.0 to 3.3.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1159
- Bump docker/build-push-action from 6.3.0 to 6.5.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1160
- Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 by @dependabot in https://github.com/PyCQA/bandit/pull/1163
- Bump docker/build-push-action from 6.5.0 to 6.6.1 by @dependabot in https://github.com/PyCQA/bandit/pull/1166
- Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1165
- Bump docker/build-push-action from 6.6.1 to 6.7.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1168
- Use consistent file naming of docs by @ericwb in https://github.com/PyCQA/bandit/pull/1170
- Pytorch Load / Save Plugin by @lukehinds in https://github.com/PyCQA/bandit/pull/1114
New Contributors
- @Lucas-C made their first contribution in https://github.com/PyCQA/bandit/pull/757
Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10
v1.7.9
What's Changed
- Bump docker/build-push-action from 5.1.0 to 5.2.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1117
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1119
- New logo for Bandit based on raccoon by @ericwb in https://github.com/PyCQA/bandit/pull/1121
- Start testing on Python 3.13 by @ericwb in https://github.com/PyCQA/bandit/pull/1122
- Bump docker/build-push-action from 5.2.0 to 5.3.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1123
- Bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1124
- Bump docker/login-action from 3.0.0 to 3.1.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1125
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1126
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1127
- Bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1130
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1131
- Bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1132
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1133
- Updates banner logo so it renders well in dark mode by @ericwb in https://github.com/PyCQA/bandit/pull/1134
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1135
- Add a sponsor section to README by @ericwb in https://github.com/PyCQA/bandit/pull/1137
- Ensure sarif extra is included as part of doc build by @ericwb in https://github.com/PyCQA/bandit/pull/1139
- Bump docker/login-action from 3.1.0 to 3.2.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1142
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1143
- [pre-commit.ci] pre-commit autoupdate by @pre-commit-ci in https://github.com/PyCQA/bandit/pull/1145
- Guard against empty call argument list by @ericwb in https://github.com/PyCQA/bandit/pull/1146
- Bump docker/build-push-action from 5.3.0 to 5.4.0 by @dependabot in https://github.com/PyCQA/bandit/pull/1144
- Support
configfile
in.bandit
file by @bersbersbers in https://github.com/PyCQA/bandit/pull/1052
New Contributors
- @pre-commit-ci made their first contribution in https://github.com/PyCQA/bandit/pull/1119
- @bersbersbers made their first contribution in https://github.com/PyCQA/bandit/pull/1052
Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.8...1.7.9
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by Renovate Bot