From 44138f172525eae9fbb10ddeec34d88f7bd5decc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 12 Aug 2025 05:37:25 +0000 Subject: [PATCH 1/2] build(deps): bump the dependencies group across 1 directory with 7 updates Bumps the dependencies group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [cryptography](https://github.com/pyca/cryptography) | `45.0.5` | `45.0.6` | | [ruff](https://github.com/astral-sh/ruff) | `0.12.0` | `0.12.8` | | [mypy](https://github.com/python/mypy) | `1.16.1` | `1.17.1` | | [zizmor](https://github.com/zizmorcore/zizmor) | `1.9.0` | `1.11.0` | | [freezegun](https://github.com/spulec/freezegun) | `1.5.3` | `1.5.5` | | [build](https://github.com/pypa/build) | `1.2.2.post1` | `1.3.0` | | [coverage[toml]](https://github.com/nedbat/coveragepy) | `7.9.2` | `7.10.3` | Updates `cryptography` from 45.0.5 to 45.0.6 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/45.0.5...45.0.6) Updates `ruff` from 0.12.0 to 0.12.8 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.12.0...0.12.8) Updates `mypy` from 1.16.1 to 1.17.1 - [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md) - [Commits](https://github.com/python/mypy/compare/v1.16.1...v1.17.1) Updates `zizmor` from 1.9.0 to 1.11.0 - [Release notes](https://github.com/zizmorcore/zizmor/releases) - [Changelog](https://github.com/zizmorcore/zizmor/blob/main/docs/release-notes.md) - [Commits](https://github.com/zizmorcore/zizmor/compare/v1.9.0...v1.11.0) Updates `freezegun` from 1.5.3 to 1.5.5 - [Release notes](https://github.com/spulec/freezegun/releases) - [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG) - [Commits](https://github.com/spulec/freezegun/compare/1.5.3...1.5.5) Updates `build` from 1.2.2.post1 to 1.3.0 - [Release notes](https://github.com/pypa/build/releases) - [Changelog](https://github.com/pypa/build/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pypa/build/compare/1.2.2.post1...1.3.0) Updates `coverage[toml]` from 7.9.2 to 7.10.3 - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](https://github.com/nedbat/coveragepy/compare/7.9.2...7.10.3) --- updated-dependencies: - dependency-name: cryptography dependency-version: 45.0.6 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: ruff dependency-version: 0.12.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: mypy dependency-version: 1.17.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: zizmor dependency-version: 1.11.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: freezegun dependency-version: 1.5.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: build dependency-version: 1.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies - dependency-name: coverage[toml] dependency-version: 7.10.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dependencies ... Signed-off-by: dependabot[bot] --- requirements/build.txt | 2 +- requirements/lint.txt | 8 ++++---- requirements/pinned.txt | 2 +- requirements/test.txt | 4 ++-- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/requirements/build.txt b/requirements/build.txt index 2d7aef17f9..fc5bb56b8e 100644 --- a/requirements/build.txt +++ b/requirements/build.txt @@ -1,4 +1,4 @@ # The build and tox versions specified here are also used as constraints # during CI and CD Github workflows -build==1.2.2.post1 +build==1.3.0 tox==4.1.2 diff --git a/requirements/lint.txt b/requirements/lint.txt index 16b9222674..fd68243e6c 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -6,9 +6,9 @@ # Lint tools # (We are not so interested in the specific versions of the tools: the versions # are pinned to prevent unexpected linting failures when tools update) -ruff==0.12.0 -mypy==1.16.1 -zizmor==1.9.0 +ruff==0.12.8 +mypy==1.17.1 +zizmor==1.11.0 # Required for type stubs -freezegun==1.5.3 +freezegun==1.5.5 diff --git a/requirements/pinned.txt b/requirements/pinned.txt index 6a312eab92..47ef14e382 100644 --- a/requirements/pinned.txt +++ b/requirements/pinned.txt @@ -6,7 +6,7 @@ # cffi==1.17.1 # via cryptography -cryptography==45.0.5 +cryptography==45.0.6 # via securesystemslib pycparser==2.22 # via cffi diff --git a/requirements/test.txt b/requirements/test.txt index 0c6c8bc994..2ac691c1b4 100644 --- a/requirements/test.txt +++ b/requirements/test.txt @@ -4,5 +4,5 @@ -r pinned.txt # coverage measurement -coverage[toml]==7.9.2 -freezegun==1.5.3 +coverage[toml]==7.10.3 +freezegun==1.5.5 From 99f25aeda4f304fb16da05d7cfa340368663bbae Mon Sep 17 00:00:00 2001 From: Jussi Kukkonen Date: Fri, 15 Aug 2025 09:49:12 +0300 Subject: [PATCH 2/2] lint: Set zizmor to lower pedantry level pedantic means a little too much churn. Signed-off-by: Jussi Kukkonen --- tox.ini | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tox.ini b/tox.ini index 5eae84cfba..7ef098ba3c 100644 --- a/tox.ini +++ b/tox.ini @@ -42,7 +42,7 @@ commands = ruff format --diff {[testenv:lint]lint_dirs} mypy {[testenv:lint]lint_dirs} - zizmor --persona=pedantic -q . + zizmor -q . [testenv:fix] deps = {[testenv:lint]deps}