Merge branch 'main' into feature/#465-Create-BaseConfig-class

Author: Jannis-Mittenzwei

.github/actions/security-issues/action.yml

@@ -39,7 +39,7 @@ runs:
     - name: Install Python Toolbox / Security tool
       shell: bash
       run: |
-        pip install exasol-toolbox==1.7.4
+        pip install exasol-toolbox==1.8.0
 
     - name: Create Security Issue Report
       shell: bash

.github/workflows/checks.yml

@@ -4,7 +4,6 @@ on:
   workflow_call:
 
 jobs:
-
   Version-Check:
     name: Version
     runs-on: ubuntu-24.04
@@ -43,6 +42,11 @@ jobs:
         run: |
           poetry run -- nox -s links:check
 
+  build-matrix:
+    name: Generate Build Matrix
+    uses: ./.github/workflows/matrix-python.yml
+    permissions:
+      contents: read
 
   Changelog:
     name: Changelog Update Check
@@ -60,12 +64,6 @@ jobs:
       - name: Run changelog update check
         run: poetry run -- nox -s changelog:updated
 
-  build-matrix:
-    name: Generate Build Matrix
-    uses: ./.github/workflows/matrix-python.yml
-    permissions:
-      contents: read
-
   Lint:
     name: Linting (Python-${{ matrix.python-version }})
     needs: [ Version-Check, build-matrix ]
@@ -75,7 +73,6 @@ jobs:
     strategy:
       fail-fast: false
       matrix: ${{ fromJson(needs.build-matrix.outputs.matrix) }}
-
     steps:
       - name: SCM Checkout
         uses: actions/checkout@v4
@@ -128,6 +125,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix: ${{ fromJson(needs.build-matrix.outputs.matrix) }}
+
     steps:
       - name: SCM Checkout
         uses: actions/checkout@v4
@@ -175,6 +173,7 @@ jobs:
     steps:
       - name: SCM Checkout
         uses: actions/checkout@v4
+        # The PTB has unit tests which require the fetch-depth to be 0.
         with:
           fetch-depth: 0
 

.github/workflows/ci.yml

@@ -8,14 +8,16 @@ on:
     - cron: "0 0 1/7 * *"
 
 jobs:
+
   CI:
     uses: ./.github/workflows/merge-gate.yml
     secrets: inherit
     permissions:
       contents: read
+
   Metrics:
     needs: [ CI ]
     uses: ./.github/workflows/report.yml
     secrets: inherit
     permissions:
-      contents: read
+      contents: read

.github/workflows/matrix-python.yml

@@ -9,9 +9,9 @@ on:
 
 jobs:
   python_versions:
+    runs-on: ubuntu-24.04
     permissions:
       contents: read
-    runs-on: ubuntu-24.04
     steps:
       - name: SCM Checkout
         uses: actions/checkout@v4

.github/workflows/merge-gate.yml

@@ -11,9 +11,25 @@ jobs:
     permissions:
       contents: read
 
+  run-slow-tests:
+    name: Run Slow Tests
+    runs-on: ubuntu-24.04
+    permissions:
+      contents: read
+
+    # Even though the environment "manual-approval" will be created automatically,
+    # it still needs to be configured to require interactive review.
+    # See project settings on GitHub (Settings / Environments / manual-approval).
+    environment: manual-approval
+    steps:
+      - name: Tests
+        run: echo "Slow tests approved"
+
   slow-checks:
     name: Slow
+    needs: [ run-slow-tests ]
     uses: ./.github/workflows/slow-checks.yml
+    secrets: inherit
     permissions:
       contents: read
 

.github/workflows/pr-merge.yml

@@ -8,6 +8,9 @@ on:
 
 jobs:
 
+  # This job can be removed if certain preconditions are met. See
+  # https://exasol.github.io/python-toolbox/user_guide/workflows.html#pr-merge-workflow
+
   ci-job:
     name: Checks
     uses: ./.github/workflows/checks.yml

.github/workflows/report.yml

@@ -5,7 +5,7 @@ on:
 
 jobs:
 
-  Report:
+  report:
     runs-on: ubuntu-24.04
     permissions:
       contents: read
@@ -22,7 +22,7 @@ jobs:
         uses: ./.github/actions/python-environment
 
       - name: Download Artifacts
-        uses: actions/download-artifact@v4.3.0
+        uses: actions/download-artifact@v5.0.0
         with:
           path: ./artifacts
 
@@ -32,14 +32,14 @@ jobs:
       - name: Validate Artifacts
         run: poetry run -- nox -s artifacts:validate
 
-      - name: Generate Report
-        run: poetry run -- nox -s project:report -- --format json | tee metrics.json
-
       - name: Upload to sonar
         env:
           SONAR_TOKEN: "${{ secrets.SONAR_TOKEN }}"
         run: poetry run -- nox -s sonar:check
 
+      - name: Generate Report
+        run: poetry run -- nox -s project:report -- --format json | tee metrics.json
+
       - name: Upload Artifacts
         uses: actions/[email protected]
         with:

.github/workflows/slow-checks.yml

@@ -4,23 +4,18 @@ on:
   workflow_call:
 
 jobs:
-
   build-matrix:
     name: Generate Build Matrix
     uses: ./.github/workflows/matrix-all.yml
     permissions:
       contents: read
 
-  Tests:
+  tests:
     name: Integration-Tests (Python-${{ matrix.python-version }}, Exasol-${{ matrix.exasol-version}})
     needs: [ build-matrix ]
     runs-on: ubuntu-24.04
     permissions:
       contents: read
-    # Even though the environment "manual-approval" will be created automatically,
-    # it still needs to be configured to require interactive review.
-    # See project settings on GitHub (Settings / Environments / manual-approval).
-    environment: manual-approval
     env:
       GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
     strategy:
@@ -47,7 +42,7 @@ jobs:
           include-hidden-files: true
 
 
-  Verify-Poetry-Installation:
+  verify-poetry-installation:
     # This Job verifies if pipx installation is successful on each of the
     # selected GitHub Runners.
     strategy:
@@ -85,4 +80,4 @@ jobs:
           poetry run which python
           poetry run python --version
           poetry env list
-          poetry run python --version | grep "${{ matrix.python-version }}"
+          poetry run python --version | grep "${{ matrix.python-version }}"

doc/changes/changelog.md

@@ -0,0 +1,33 @@
+# 1.8.0 - 2025-08-14
+With the refactoring of the `dependency:audit`, we use `poetry export`. For how it can
+be added (project-specific or globally), see the
+[poetry export documentation](https://github.com/python-poetry/poetry-plugin-export).
+
+Within the `report.yml`, the `actions/[email protected]` was upgraded to
+`v5.0.0`. This upgrade should not affect the existing functionality of the standard
+GitHub workflows from the PTB. However, there are breaking changes that affect cases
+where artifacts are downloaded by ID. For further details, please see the
+[release notes for 5.0.0](https://github.com/actions/download-artifact/releases/tag/v5.0.0).
+
+## Feature
+
+* #469: Moved manual approval for slow tests to merge-gate.yml
+
+## Refactoring
+
+* #517: Refactored `dependency:audit` & split up to support upcoming work
+* #541: Refactored test code using `prysk` and removed `prysk` as a dependency
+
+## Bugfix
+
+* #533: Fixed project-template tests to run with unreleased PTB to better detect issues pre-release
+
+## Dependency Updates
+
+### `main`
+* Updated dependency `coverage:7.10.1` to `7.10.3`
+* Updated dependency `mypy:1.17.0` to `1.17.1`
+* Updated dependency `pre-commit:4.2.0` to `4.3.0`
+* Removed dependency `prysk:0.20.0`
+* Updated dependency `pylint:3.3.7` to `3.3.8`
+* Updated dependency `pytest:7.4.4` to `8.4.1`