Skip to content

RSPY-630 - Fix/bot dependency updates #1060

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 58 commits into from
Mar 10, 2025
Merged

RSPY-630 - Fix/bot dependency updates #1060

merged 58 commits into from
Mar 10, 2025

Conversation

@vprivat-ads
Copy link
Contributor

@vprivat-ads vprivat-ads commented Mar 10, 2025
edited
Loading

dependabot bot and others added 30 commits March 3, 2025 06:30
@dependabot
build(deps): bump fastapi from 0.115.9 to 0.115.11 in /services/frontend
3aaa5fa 
Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.115.9 to 0.115.11.
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.115.9...0.115.11)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/frontend
e4d0e2f 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/cadip
4d7be63 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/catalog
3f7bb4b 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump moto from 5.1.0 to 5.1.1 in /services/catalog
ab9ff02 
Bumps [moto](https://github.com/getmoto/moto) from 5.1.0 to 5.1.1.
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](getmoto/moto@5.1.0...5.1.1)

---
updated-dependencies:
- dependency-name: moto
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump sphinx from 8.2.1 to 8.2.3
596983e 
Bumps [sphinx](https://github.com/sphinx-doc/sphinx) from 8.2.1 to 8.2.3.
- [Release notes](https://github.com/sphinx-doc/sphinx/releases)
- [Changelog](https://github.com/sphinx-doc/sphinx/blob/master/CHANGES.rst)
- [Commits](sphinx-doc/sphinx@v8.2.1...v8.2.3)

---
updated-dependencies:
- dependency-name: sphinx
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump moto from 5.1.0 to 5.1.1
4d3f7e1 
Bumps [moto](https://github.com/getmoto/moto) from 5.1.0 to 5.1.1.
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](getmoto/moto@5.1.0...5.1.1)

---
updated-dependencies:
- dependency-name: moto
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5
53c7064 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/adgs
904783f 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump fastapi from 0.115.9 to 0.115.11 in /services/common
1230be7 
Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.115.9 to 0.115.11.
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.115.9...0.115.11)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/common
ccf5b1c 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump authlib from 1.5.0 to 1.5.1 in /services/common
4fe8065 
Bumps [authlib](https://github.com/lepture/authlib) from 1.5.0 to 1.5.1.
- [Release notes](https://github.com/lepture/authlib/releases)
- [Changelog](https://github.com/lepture/authlib/blob/main/docs/changelog.rst)
- [Commits](authlib/authlib@v1.5.0...v1.5.1)

---
updated-dependencies:
- dependency-name: authlib
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump fastapi from 0.115.9 to 0.115.11 in /services/staging
72ef505 
Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.115.9 to 0.115.11.
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.115.9...0.115.11)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps): bump authlib from 1.5.0 to 1.5.1 in /services/staging
e5b7819 
Bumps [authlib](https://github.com/lepture/authlib) from 1.5.0 to 1.5.1.
- [Release notes](https://github.com/lepture/authlib/releases)
- [Changelog](https://github.com/lepture/authlib/blob/main/docs/changelog.rst)
- [Commits](authlib/authlib@v1.5.0...v1.5.1)

---
updated-dependencies:
- dependency-name: authlib
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump pytest from 8.3.4 to 8.3.5 in /services/staging
08851ab 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.4 to 8.3.5.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.3.4...8.3.5)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
build(deps-dev): bump types-requests
9e8c034 
Bumps [types-requests](https://github.com/python/typeshed) from 2.32.0.20241016 to 2.32.0.20250306.
- [Commits](https://github.com/python/typeshed/commits)

---
updated-dependencies:
- dependency-name: types-requests
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump botocore from 1.37.3 to 1.37.9 in /services/common
89ad466 
Bumps [botocore](https://github.com/boto/botocore) from 1.37.3 to 1.37.9.
- [Commits](boto/botocore@1.37.3...1.37.9)

---
updated-dependencies:
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump botocore from 1.37.3 to 1.37.9 in /services/staging
a9e2cc2 
Bumps [botocore](https://github.com/boto/botocore) from 1.37.3 to 1.37.9.
- [Commits](boto/botocore@1.37.3...1.37.9)

---
updated-dependencies:
- dependency-name: botocore
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/moto-5.1.1
3fe9338
@vprivat-ads
merge: origin/dependabot/pip/moto-5.1.1
5b46d8f
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/pytest-8.3.5
441cc4b
@vprivat-ads
merge: origin/dependabot/pip/pytest-8.3.5
c045853
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/adgs/pyt…
af4a756 
…est-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/adgs/pytest-8.3.5
0f1da10
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/cadip/py…
5f48185 
…test-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/cadip/pytest-8.3.5
1b7f41f
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/catalog/…
a61ba1d 
…moto-5.1.1
@vprivat-ads
merge: origin/dependabot/pip/services/catalog/moto-5.1.1
4828972
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/catalog/…
49cad79 
…pytest-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/catalog/pytest-8.3.5
6de8991
@vprivat-ads
merge: origin/dependabot/pip/services/common/fastapi-0.115.11
2131974
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/common/p…
11e3849 
…ytest-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/common/pytest-8.3.5
18852b5
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/frontend…
4e4a5a7 
…/fastapi-0.115.11
@vprivat-ads
merge: origin/dependabot/pip/services/frontend/fastapi-0.115.11
826fb50
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/frontend…
21f5be7 
…/pytest-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/frontend/pytest-8.3.5
a646c04
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/staging/…
bf752ea 
…authlib-1.5.1
@vprivat-ads
merge: origin/dependabot/pip/services/staging/authlib-1.5.1
468d03d
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/staging/…
ca5a520 
…botocore-1.37.9
@vprivat-ads
merge: origin/dependabot/pip/services/staging/botocore-1.37.9
fb8725e
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/staging/…
f58840d 
…fastapi-0.115.11
@vprivat-ads
merge: origin/dependabot/pip/services/staging/fastapi-0.115.11
5ce153a
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/services/staging/…
5885def 
…pytest-8.3.5
@vprivat-ads
merge: origin/dependabot/pip/services/staging/pytest-8.3.5
5ca2dbe
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/sphinx-8.2.3
b64981e
@vprivat-ads
merge: origin/dependabot/pip/sphinx-8.2.3
d9248e9
@vprivat-ads
merge: poetry.lock files from origin/dependabot/pip/types-requests-2.…
706a8a5 
…32.0.20250306
@vprivat-ads
merge: origin/dependabot/pip/types-requests-2.32.0.20250306
6fa458f
@vprivat-ads
merge: rebuild the poetry.lock files
305b63a
@vprivat-ads
Manual stac-fastapi updates
40d49f8
@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@sonarqubecloud
Copy link

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@vprivat-ads vprivat-ads changed the title Fix/bot dependency updates RSPY-630 - Fix/bot dependency updates Mar 10, 2025
@github-actions
Copy link

SonarQube Quality Gate Result

  • Result: ✅ OK
  • Branch: 1060/merge
  • Triggered by @vprivat-ads on pull_request
Metric Status Value Error Threshold

View on SonarQube

updated: 3/10/2025, 17:24:26 (UTC+0)

@vprivat-ads vprivat-ads marked this pull request as ready for review March 10, 2025 17:25
@vprivat-ads vprivat-ads merged commit 3488d60 into develop Mar 10, 2025
26 checks passed
@vprivat-ads vprivat-ads deleted the fix/bot-dependency-updates branch March 10, 2025 17:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@vprivat-ads