aio-libs
janus
Blog
Docs
Changelog
Blog
Docs
Changelog
Overview
Branches
Benchmarks
Runs
Performance History
Latest Results
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 (#820) Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/releases">sigstore/gh-action-sigstore-python's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md">sigstore/gh-action-sigstore-python's changelog</a>.</em></p> <blockquote> <h2>[3.1.0]</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/f832326173235dcb00dd5d92cd3f353de3188e6c"><code>f832326</code></a> Prepare 3.1.0 release (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/230">#230</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/3385d3ad524c66915d8fcfa82f74b905058b2ad4"><code>3385d3a</code></a> build(deps): bump astral-sh/setup-uv in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/232">#232</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/35fff1e5bf90fac1298692cee891e1f65fce1a93"><code>35fff1e</code></a> Add rekor-version argument (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/228">#228</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/be60bbea7f8770c9c9673a8fabafec00df7f458f"><code>be60bbe</code></a> build(deps): bump github/codeql-action in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/231">#231</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/72e7431cf7415752b53e3e537861872efa4b59b1"><code>72e7431</code></a> Actually upgrade dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/225">#225</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ccdc279cc26afbb1ce2849748d6263f076b7e3e3"><code>ccdc279</code></a> ci, action: address zizmor findings, bump versions (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/222">#222</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/709f8a40efe9f4d3bf38feb831ffc930b9688c93"><code>709f8a4</code></a> build(deps): bump sigstore from 3.6.3 to 4.0.0 (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/220">#220</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/5ce4031dd209da1deb84a18c41259d0c46478e48"><code>5ce4031</code></a> requirements: Include main.in contents within dev.in (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/221">#221</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ea888adbde89b79cda7612fd09c99bdcc8b129b5"><code>ea888ad</code></a> build(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/218">#218</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/17565e2406fc237359e19a217a7b03242eb60c36"><code>17565e2</code></a> build(deps): bump the python-dependencies group with 6 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/219">#219</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
13 hours ago
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 (#820) Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/releases">sigstore/gh-action-sigstore-python's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md">sigstore/gh-action-sigstore-python's changelog</a>.</em></p> <blockquote> <h2>[3.1.0]</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/f832326173235dcb00dd5d92cd3f353de3188e6c"><code>f832326</code></a> Prepare 3.1.0 release (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/230">#230</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/3385d3ad524c66915d8fcfa82f74b905058b2ad4"><code>3385d3a</code></a> build(deps): bump astral-sh/setup-uv in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/232">#232</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/35fff1e5bf90fac1298692cee891e1f65fce1a93"><code>35fff1e</code></a> Add rekor-version argument (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/228">#228</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/be60bbea7f8770c9c9673a8fabafec00df7f458f"><code>be60bbe</code></a> build(deps): bump github/codeql-action in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/231">#231</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/72e7431cf7415752b53e3e537861872efa4b59b1"><code>72e7431</code></a> Actually upgrade dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/225">#225</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ccdc279cc26afbb1ce2849748d6263f076b7e3e3"><code>ccdc279</code></a> ci, action: address zizmor findings, bump versions (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/222">#222</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/709f8a40efe9f4d3bf38feb831ffc930b9688c93"><code>709f8a4</code></a> build(deps): bump sigstore from 3.6.3 to 4.0.0 (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/220">#220</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/5ce4031dd209da1deb84a18c41259d0c46478e48"><code>5ce4031</code></a> requirements: Include main.in contents within dev.in (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/221">#221</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ea888adbde89b79cda7612fd09c99bdcc8b129b5"><code>ea888ad</code></a> build(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/218">#218</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/17565e2406fc237359e19a217a7b03242eb60c36"><code>17565e2</code></a> build(deps): bump the python-dependencies group with 6 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/219">#219</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
2 days ago
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 (#820) Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/releases">sigstore/gh-action-sigstore-python's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md">sigstore/gh-action-sigstore-python's changelog</a>.</em></p> <blockquote> <h2>[3.1.0]</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/f832326173235dcb00dd5d92cd3f353de3188e6c"><code>f832326</code></a> Prepare 3.1.0 release (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/230">#230</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/3385d3ad524c66915d8fcfa82f74b905058b2ad4"><code>3385d3a</code></a> build(deps): bump astral-sh/setup-uv in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/232">#232</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/35fff1e5bf90fac1298692cee891e1f65fce1a93"><code>35fff1e</code></a> Add rekor-version argument (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/228">#228</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/be60bbea7f8770c9c9673a8fabafec00df7f458f"><code>be60bbe</code></a> build(deps): bump github/codeql-action in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/231">#231</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/72e7431cf7415752b53e3e537861872efa4b59b1"><code>72e7431</code></a> Actually upgrade dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/225">#225</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ccdc279cc26afbb1ce2849748d6263f076b7e3e3"><code>ccdc279</code></a> ci, action: address zizmor findings, bump versions (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/222">#222</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/709f8a40efe9f4d3bf38feb831ffc930b9688c93"><code>709f8a4</code></a> build(deps): bump sigstore from 3.6.3 to 4.0.0 (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/220">#220</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/5ce4031dd209da1deb84a18c41259d0c46478e48"><code>5ce4031</code></a> requirements: Include main.in contents within dev.in (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/221">#221</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ea888adbde89b79cda7612fd09c99bdcc8b129b5"><code>ea888ad</code></a> build(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/218">#218</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/17565e2406fc237359e19a217a7b03242eb60c36"><code>17565e2</code></a> build(deps): bump the python-dependencies group with 6 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/219">#219</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
3 days ago
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 (#820) Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/releases">sigstore/gh-action-sigstore-python's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md">sigstore/gh-action-sigstore-python's changelog</a>.</em></p> <blockquote> <h2>[3.1.0]</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/f832326173235dcb00dd5d92cd3f353de3188e6c"><code>f832326</code></a> Prepare 3.1.0 release (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/230">#230</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/3385d3ad524c66915d8fcfa82f74b905058b2ad4"><code>3385d3a</code></a> build(deps): bump astral-sh/setup-uv in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/232">#232</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/35fff1e5bf90fac1298692cee891e1f65fce1a93"><code>35fff1e</code></a> Add rekor-version argument (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/228">#228</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/be60bbea7f8770c9c9673a8fabafec00df7f458f"><code>be60bbe</code></a> build(deps): bump github/codeql-action in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/231">#231</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/72e7431cf7415752b53e3e537861872efa4b59b1"><code>72e7431</code></a> Actually upgrade dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/225">#225</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ccdc279cc26afbb1ce2849748d6263f076b7e3e3"><code>ccdc279</code></a> ci, action: address zizmor findings, bump versions (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/222">#222</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/709f8a40efe9f4d3bf38feb831ffc930b9688c93"><code>709f8a4</code></a> build(deps): bump sigstore from 3.6.3 to 4.0.0 (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/220">#220</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/5ce4031dd209da1deb84a18c41259d0c46478e48"><code>5ce4031</code></a> requirements: Include main.in contents within dev.in (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/221">#221</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ea888adbde89b79cda7612fd09c99bdcc8b129b5"><code>ea888ad</code></a> build(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/218">#218</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/17565e2406fc237359e19a217a7b03242eb60c36"><code>17565e2</code></a> build(deps): bump the python-dependencies group with 6 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/219">#219</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
4 days ago
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 (#820) Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/releases">sigstore/gh-action-sigstore-python's releases</a>.</em></p> <blockquote> <h2>v3.1.0</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md">sigstore/gh-action-sigstore-python's changelog</a>.</em></p> <blockquote> <h2>[3.1.0]</h2> <p><code>gh-action-sigstore-python</code> is now compatible with <a href="https://blog.sigstore.dev/rekor-v2-ga/">Rekor v2</a> transparency log (but produced signature bundles still contain Rekor v1 entries by default).</p> <h3>Changed</h3> <ul> <li>The action now uses sigstore-python 4.1. All other dependencies are also updated (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/220">#220</a>)</li> </ul> <h3>Fixed</h3> <ul> <li>Fixed incompatibility with Python 3.14 by upgrading dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/225">#225</a>)</li> </ul> <h3>Added</h3> <ul> <li><code>rekor-version</code> argument was added to control the Rekor transparency log version when signing. The default version in the gh-action-sigstore-python 3.x series will remain 1 (except when using <code>staging: true</code>). (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/pull/228">#228</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/f832326173235dcb00dd5d92cd3f353de3188e6c"><code>f832326</code></a> Prepare 3.1.0 release (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/230">#230</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/3385d3ad524c66915d8fcfa82f74b905058b2ad4"><code>3385d3a</code></a> build(deps): bump astral-sh/setup-uv in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/232">#232</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/35fff1e5bf90fac1298692cee891e1f65fce1a93"><code>35fff1e</code></a> Add rekor-version argument (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/228">#228</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/be60bbea7f8770c9c9673a8fabafec00df7f458f"><code>be60bbe</code></a> build(deps): bump github/codeql-action in the actions group (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/231">#231</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/72e7431cf7415752b53e3e537861872efa4b59b1"><code>72e7431</code></a> Actually upgrade dependencies (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/225">#225</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ccdc279cc26afbb1ce2849748d6263f076b7e3e3"><code>ccdc279</code></a> ci, action: address zizmor findings, bump versions (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/222">#222</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/709f8a40efe9f4d3bf38feb831ffc930b9688c93"><code>709f8a4</code></a> build(deps): bump sigstore from 3.6.3 to 4.0.0 (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/220">#220</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/5ce4031dd209da1deb84a18c41259d0c46478e48"><code>5ce4031</code></a> requirements: Include main.in contents within dev.in (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/221">#221</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/ea888adbde89b79cda7612fd09c99bdcc8b129b5"><code>ea888ad</code></a> build(deps): bump the actions group with 3 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/218">#218</a>)</li> <li><a href="https://github.com/sigstore/gh-action-sigstore-python/commit/17565e2406fc237359e19a217a7b03242eb60c36"><code>17565e2</code></a> build(deps): bump the python-dependencies group with 6 updates (<a href="https://redirect.github.com/sigstore/gh-action-sigstore-python/issues/219">#219</a>)</li> <li>Additional commits viewable in <a href="https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
5 days ago
Bump sigstore/gh-action-sigstore-python from 3.0.1 to 3.1.0 Bumps [sigstore/gh-action-sigstore-python](https://github.com/sigstore/gh-action-sigstore-python) from 3.0.1 to 3.1.0. - [Release notes](https://github.com/sigstore/gh-action-sigstore-python/releases) - [Changelog](https://github.com/sigstore/gh-action-sigstore-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/sigstore/gh-action-sigstore-python/compare/v3.0.1...v3.1.0) --- updated-dependencies: - dependency-name: sigstore/gh-action-sigstore-python dependency-version: 3.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot/github_actions/sigstore/gh-action-sigstore-python-3.1.0
5 days ago
Bump pytest-codspeed from 4.1.0 to 4.1.1 (#819) Bumps [pytest-codspeed](https://github.com/CodSpeedHQ/pytest-codspeed) from 4.1.0 to 4.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/CodSpeedHQ/pytest-codspeed/releases">pytest-codspeed's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h2>What's Changed?</h2> <ul> <li>fix: build on macos with instrument-hooks by <a href="https://github.com/not-matthias"><code>@not-matthias</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/90">CodSpeedHQ/pytest-codspeed#90</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1">https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/CodSpeedHQ/pytest-codspeed/blob/master/CHANGELOG.md">pytest-codspeed's changelog</a>.</em></p> <blockquote> <h2>[4.1.1] - 2025-10-07</h2> <h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3> <ul> <li>Wheel installation due to file system loop</li> <li>Use ParamSpec in instrument definition instead of tuple and dict by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Use ParamSpec in the plugin call definition by <a href="https://github.com/flying-sheep"><code>@flying-sheep</code></a></li> </ul> <h3><!-- raw HTML omitted -->📚 Documentation</h3> <ul> <li>Add pull_request trigger comment by <a href="https://github.com/adriencaccia"><code>@adriencaccia</code></a></li> </ul> <h3><!-- raw HTML omitted -->⚙️ Internals</h3> <ul> <li>Remove the beta versions from the changelog by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Exclude beta tags in changelog by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Bump instrument-hooks (<a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/issues/87">#87</a>) by <a href="https://github.com/not-matthias"><code>@not-matthias</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/87">#87</a></li> <li>Switch to sharded upload (<a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/issues/75">#75</a>) by <a href="https://github.com/art049"><code>@art049</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/75">#75</a></li> <li>Fix changelog generation by <a href="https://github.com/art049"><code>@art049</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/58ee9e99b6ceb7f9cd00c3c5a3f0df7f5149bb57"><code>58ee9e9</code></a> Release v4.1.1 🚀</li> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/01742c8e1b279c69823514f40da84658d6b58dce"><code>01742c8</code></a> fix: wheel installation due to file system loop</li> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/791bed2a9bdd7d3400eb21ba05efa44afb1ad687"><code>791bed2</code></a> chore: remove the beta versions from the changelog</li> <li>See full diff in <a href="https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
6 days ago
Bump pytest-codspeed from 4.1.0 to 4.1.1 (#819) Bumps [pytest-codspeed](https://github.com/CodSpeedHQ/pytest-codspeed) from 4.1.0 to 4.1.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/CodSpeedHQ/pytest-codspeed/releases">pytest-codspeed's releases</a>.</em></p> <blockquote> <h2>v4.1.1</h2> <h2>What's Changed?</h2> <ul> <li>fix: build on macos with instrument-hooks by <a href="https://github.com/not-matthias"><code>@not-matthias</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/90">CodSpeedHQ/pytest-codspeed#90</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1">https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/CodSpeedHQ/pytest-codspeed/blob/master/CHANGELOG.md">pytest-codspeed's changelog</a>.</em></p> <blockquote> <h2>[4.1.1] - 2025-10-07</h2> <h3><!-- raw HTML omitted -->🐛 Bug Fixes</h3> <ul> <li>Wheel installation due to file system loop</li> <li>Use ParamSpec in instrument definition instead of tuple and dict by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Use ParamSpec in the plugin call definition by <a href="https://github.com/flying-sheep"><code>@flying-sheep</code></a></li> </ul> <h3><!-- raw HTML omitted -->📚 Documentation</h3> <ul> <li>Add pull_request trigger comment by <a href="https://github.com/adriencaccia"><code>@adriencaccia</code></a></li> </ul> <h3><!-- raw HTML omitted -->⚙️ Internals</h3> <ul> <li>Remove the beta versions from the changelog by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Exclude beta tags in changelog by <a href="https://github.com/art049"><code>@art049</code></a></li> <li>Bump instrument-hooks (<a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/issues/87">#87</a>) by <a href="https://github.com/not-matthias"><code>@not-matthias</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/87">#87</a></li> <li>Switch to sharded upload (<a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/issues/75">#75</a>) by <a href="https://github.com/art049"><code>@art049</code></a> in <a href="https://redirect.github.com/CodSpeedHQ/pytest-codspeed/pull/75">#75</a></li> <li>Fix changelog generation by <a href="https://github.com/art049"><code>@art049</code></a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/58ee9e99b6ceb7f9cd00c3c5a3f0df7f5149bb57"><code>58ee9e9</code></a> Release v4.1.1 🚀</li> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/01742c8e1b279c69823514f40da84658d6b58dce"><code>01742c8</code></a> fix: wheel installation due to file system loop</li> <li><a href="https://github.com/CodSpeedHQ/pytest-codspeed/commit/791bed2a9bdd7d3400eb21ba05efa44afb1ad687"><code>791bed2</code></a> chore: remove the beta versions from the changelog</li> <li>See full diff in <a href="https://github.com/CodSpeedHQ/pytest-codspeed/compare/v4.1.0...v4.1.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
master
7 days ago
Active Branches
Bump coverage from 7.10.6 to 7.10.7
last run
1 month ago
#815
CodSpeed Performance Gauge
+3%
Bump mypy from 1.17.1 to 1.18.2
last run
1 month ago
#812
CodSpeed Performance Gauge
0%
Refactor notifiers
last run
10 months ago
#725
CodSpeed Performance Gauge
-2%
© 2025 CodSpeed Technology
Home
Terms
Privacy
Docs