From 4c0dff2f7c38ce9fb71bd90c8a502a9c6c40e976 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 May 2025 22:47:15 +0000 Subject: [PATCH 01/19] build: bump vite from 6.3.2 to 6.3.4 in /src/frontend Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 6.3.2 to 6.3.4. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v6.3.4/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 6.3.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- src/frontend/package-lock.json | 12 ++++++------ src/frontend/package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/src/frontend/package-lock.json b/src/frontend/package-lock.json index 06bb8b0d8..5a64cbd49 100644 --- a/src/frontend/package-lock.json +++ b/src/frontend/package-lock.json @@ -72,7 +72,7 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } }, "node_modules/@adobe/css-tools": { @@ -18265,18 +18265,18 @@ } }, "node_modules/vite": { - "version": "6.3.2", - "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.2.tgz", - "integrity": "sha512-ZSvGOXKGceizRQIZSz7TGJ0pS3QLlVY/9hwxVh17W3re67je1RKYzFHivZ/t0tubU78Vkyb9WnHPENSBCzbckg==", + "version": "6.3.4", + "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.4.tgz", + "integrity": "sha512-BiReIiMS2fyFqbqNT/Qqt4CVITDU9M9vE+DKcVAsB+ZV0wvTKd+3hMbkpxz1b+NmEDMegpVbisKiAZOnvO92Sw==", "dev": true, "license": "MIT", "dependencies": { "esbuild": "^0.25.0", - "fdir": "^6.4.3", + "fdir": "^6.4.4", "picomatch": "^4.0.2", "postcss": "^8.5.3", "rollup": "^4.34.9", - "tinyglobby": "^0.2.12" + "tinyglobby": "^0.2.13" }, "bin": { "vite": "bin/vite.js" diff --git a/src/frontend/package.json b/src/frontend/package.json index 9a7560652..612f72bd0 100644 --- a/src/frontend/package.json +++ b/src/frontend/package.json @@ -80,6 +80,6 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } } From 21eef55ea48c30922648c1c3d1ea3fb87216c553 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:07:39 +0000 Subject: [PATCH 02/19] build(deps): bump the all-actions group with 6 updates Bumps the all-actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action) | `0.3.5` | `0.4.2` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `1` | `3` | | [actions/setup-node](https://github.com/actions/setup-node) | `3` | `4` | | [actions/setup-python](https://github.com/actions/setup-python) | `3` | `5` | | [actions/cache](https://github.com/actions/cache) | `3` | `4` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `microsoft/template-validation-action` from 0.3.5 to 0.4.2 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.3.5...v0.4.2) Updates `docker/setup-buildx-action` from 1 to 3 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v3) Updates `actions/setup-node` from 3 to 4 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v3...v4) Updates `actions/setup-python` from 3 to 5 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3...v5) Updates `actions/cache` from 3 to 4 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: microsoft/template-validation-action dependency-version: 0.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: docker/setup-buildx-action dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-node dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-python dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/cache dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- .github/workflows/deploy.yml | 2 +- .github/workflows/docker-build-and-push.yml | 4 ++-- .github/workflows/node.js.yml | 4 ++-- .github/workflows/pylint.yml | 2 +- .github/workflows/python-app.yml | 8 ++++---- .github/workflows/tests.yml | 4 ++-- 7 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 241d4d927..189f4d137 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.3.5 + uses: microsoft/template-validation-action@v0.4.2 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index a9f2595f9..ab9d3b927 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout Code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Setup Azure CLI run: | diff --git a/.github/workflows/docker-build-and-push.yml b/.github/workflows/docker-build-and-push.yml index 5dcd094e3..134e5fd1b 100644 --- a/.github/workflows/docker-build-and-push.yml +++ b/.github/workflows/docker-build-and-push.yml @@ -19,10 +19,10 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Log in to Azure Container Registry - External Registry if: ${{ github.ref_name == 'main' }} diff --git a/.github/workflows/node.js.yml b/.github/workflows/node.js.yml index 03f36a7d9..bda941af8 100644 --- a/.github/workflows/node.js.yml +++ b/.github/workflows/node.js.yml @@ -22,9 +22,9 @@ jobs: # See supported Node.js release schedule at https://nodejs.org/en/about/releases/ steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node-version }} cache: 'npm' diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml index 759f374a7..8498bdb2d 100644 --- a/.github/workflows/pylint.yml +++ b/.github/workflows/pylint.yml @@ -16,7 +16,7 @@ jobs: # Step 2: Set up Python environment - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: ${{ matrix.python-version }} diff --git a/.github/workflows/python-app.yml b/.github/workflows/python-app.yml index 9bde38bc4..ffd5770ad 100644 --- a/.github/workflows/python-app.yml +++ b/.github/workflows/python-app.yml @@ -17,9 +17,9 @@ jobs: runs-on: - ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies @@ -35,9 +35,9 @@ jobs: runs-on: - windows-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 42cf45bfb..3e07d3dc7 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -66,12 +66,12 @@ jobs: # Set up Node.js environment for Frontend - name: Set up Node.js - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: '20' # Set the Node.js version - name: Cache npm dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} From 1b48c055218357a4559234708f3475ea0c9e79cf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:08:40 +0000 Subject: [PATCH 03/19] build(deps): bump the all-backend-deps group in /src with 6 updates Bumps the all-backend-deps group in /src with 6 updates: | Package | From | To | | --- | --- | --- | | [azure-identity](https://github.com/Azure/azure-sdk-for-python) | `1.21.0` | `1.22.0` | | [openai](https://github.com/openai/openai-python) | `1.74.0` | `1.78.1` | | [uvicorn](https://github.com/encode/uvicorn) | `0.34.1` | `0.34.2` | | [aiohttp](https://github.com/aio-libs/aiohttp) | `3.11.16` | `3.11.18` | | [pydantic-settings](https://github.com/pydantic/pydantic-settings) | `2.8.1` | `2.9.1` | | [langchain](https://github.com/langchain-ai/langchain) | `0.3.23` | `0.3.25` | Updates `azure-identity` from 1.21.0 to 1.22.0 - [Release notes](https://github.com/Azure/azure-sdk-for-python/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md) - [Commits](https://github.com/Azure/azure-sdk-for-python/compare/azure-identity_1.21.0...azure-identity_1.22.0) Updates `openai` from 1.74.0 to 1.78.1 - [Release notes](https://github.com/openai/openai-python/releases) - [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/openai/openai-python/compare/v1.74.0...v1.78.1) Updates `uvicorn` from 0.34.1 to 0.34.2 - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/docs/release-notes.md) - [Commits](https://github.com/encode/uvicorn/compare/0.34.1...0.34.2) Updates `aiohttp` from 3.11.16 to 3.11.18 - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](https://github.com/aio-libs/aiohttp/compare/v3.11.16...v3.11.18) Updates `pydantic-settings` from 2.8.1 to 2.9.1 - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](https://github.com/pydantic/pydantic-settings/compare/v2.8.1...v2.9.1) Updates `langchain` from 0.3.23 to 0.3.25 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](https://github.com/langchain-ai/langchain/compare/langchain==0.3.23...langchain==0.3.25) --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.78.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.11.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.25 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 10 +++++----- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 65a0b495b..0576b4844 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -4,7 +4,7 @@ Markdown==3.8 requests==2.32.3 tqdm==4.67.1 tiktoken -langchain==0.3.23 +langchain==0.3.25 bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 diff --git a/src/requirements.txt b/src/requirements.txt index 41cff7640..c70653912 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,15 +1,15 @@ -azure-identity==1.21.0 +azure-identity==1.22.0 # Flask[async]==2.3.2 -openai==1.74.0 +openai==1.78.1 azure-search-documents==11.6.0b9 azure-storage-blob==12.25.1 python-dotenv==1.1.0 azure-cosmos==4.9.0 quart==0.20.0 -uvicorn==0.34.1 -aiohttp==3.11.16 +uvicorn==0.34.2 +aiohttp==3.11.18 gunicorn==23.0.0 -pydantic-settings==2.8.1 +pydantic-settings==2.9.1 flake8==7.2.0 black==25.1.0 autoflake==2.3.1 From fa3f88db78a8b76b2d8f5207f18cd75fe72c2754 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 1 Jun 2025 22:43:16 +0000 Subject: [PATCH 04/19] build(deps): bump the all-backend-deps group in /src with 5 updates --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.23.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.82.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 0576b4844..ee600b00c 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -9,7 +9,7 @@ bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 pytest-asyncio==0.26.0 -PyMuPDF==1.25.5 +PyMuPDF==1.26.0 azure-storage-blob chardet azure-keyvault-secrets diff --git a/src/requirements.txt b/src/requirements.txt index c70653912..4fb30acd9 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,13 +1,13 @@ -azure-identity==1.22.0 +azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.78.1 +openai==1.82.1 azure-search-documents==11.6.0b9 azure-storage-blob==12.25.1 python-dotenv==1.1.0 azure-cosmos==4.9.0 quart==0.20.0 -uvicorn==0.34.2 -aiohttp==3.11.18 +uvicorn==0.34.3 +aiohttp==3.12.6 gunicorn==23.0.0 pydantic-settings==2.9.1 flake8==7.2.0 From 5fc2f0e8bb7a41b0711c8b2e9ecf647019a3bdd1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 23:06:36 +0000 Subject: [PATCH 05/19] build(deps): bump the all-backend-deps group in /src with 14 updates --- updated-dependencies: - dependency-name: openai dependency-version: 1.93.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: azure-search-documents dependency-version: 11.6.0b12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: python-dotenv dependency-version: 1.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.10.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: flake8 dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: markdown dependency-version: 3.8.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: requests dependency-version: 2.32.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.26 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: urllib3 dependency-version: 2.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest dependency-version: 8.4.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest-asyncio dependency-version: 1.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 16 ++++++++-------- src/requirements.txt | 14 +++++++------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index ee600b00c..3d94c83b4 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -1,20 +1,20 @@ -r requirements.txt azure-ai-documentintelligence==1.0.2 -Markdown==3.8 -requests==2.32.3 +Markdown==3.8.2 +requests==2.32.4 tqdm==4.67.1 tiktoken -langchain==0.3.25 +langchain==0.3.26 bs4==0.0.2 -urllib3==2.4.0 -pytest==8.3.5 -pytest-asyncio==0.26.0 -PyMuPDF==1.26.0 +urllib3==2.5.0 +pytest==8.4.1 +pytest-asyncio==1.0.0 +PyMuPDF==1.26.1 azure-storage-blob chardet azure-keyvault-secrets coverage -flake8==7.2.0 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 \ No newline at end of file diff --git a/src/requirements.txt b/src/requirements.txt index 4fb30acd9..5cc7918e6 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,16 +1,16 @@ azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.82.1 -azure-search-documents==11.6.0b9 +openai==1.93.0 +azure-search-documents==11.6.0b12 azure-storage-blob==12.25.1 -python-dotenv==1.1.0 +python-dotenv==1.1.1 azure-cosmos==4.9.0 quart==0.20.0 -uvicorn==0.34.3 -aiohttp==3.12.6 +uvicorn==0.35.0 +aiohttp==3.12.13 gunicorn==23.0.0 -pydantic-settings==2.9.1 -flake8==7.2.0 +pydantic-settings==2.10.1 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 \ No newline at end of file From a246d5883d309fc95367a55e9a92bbdb680d1bea Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 22:33:24 +0000 Subject: [PATCH 06/19] build(deps): bump microsoft/template-validation-action Bumps the all-actions group with 1 update: [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action). Updates `microsoft/template-validation-action` from 0.4.2 to 0.4.3 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.4.2...v0.4.3) --- updated-dependencies: - dependency-name: microsoft/template-validation-action dependency-version: 0.4.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 189f4d137..67ec924a3 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.4.2 + uses: microsoft/template-validation-action@v0.4.3 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} From 6f54e28dcf4f0bafcc075ed272cd49aa772c13a3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:08:40 +0000 Subject: [PATCH 07/19] build(deps): bump the all-backend-deps group in /src with 6 updates Bumps the all-backend-deps group in /src with 6 updates: | Package | From | To | | --- | --- | --- | | [azure-identity](https://github.com/Azure/azure-sdk-for-python) | `1.21.0` | `1.22.0` | | [openai](https://github.com/openai/openai-python) | `1.74.0` | `1.78.1` | | [uvicorn](https://github.com/encode/uvicorn) | `0.34.1` | `0.34.2` | | [aiohttp](https://github.com/aio-libs/aiohttp) | `3.11.16` | `3.11.18` | | [pydantic-settings](https://github.com/pydantic/pydantic-settings) | `2.8.1` | `2.9.1` | | [langchain](https://github.com/langchain-ai/langchain) | `0.3.23` | `0.3.25` | Updates `azure-identity` from 1.21.0 to 1.22.0 - [Release notes](https://github.com/Azure/azure-sdk-for-python/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md) - [Commits](https://github.com/Azure/azure-sdk-for-python/compare/azure-identity_1.21.0...azure-identity_1.22.0) Updates `openai` from 1.74.0 to 1.78.1 - [Release notes](https://github.com/openai/openai-python/releases) - [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/openai/openai-python/compare/v1.74.0...v1.78.1) Updates `uvicorn` from 0.34.1 to 0.34.2 - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/docs/release-notes.md) - [Commits](https://github.com/encode/uvicorn/compare/0.34.1...0.34.2) Updates `aiohttp` from 3.11.16 to 3.11.18 - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](https://github.com/aio-libs/aiohttp/compare/v3.11.16...v3.11.18) Updates `pydantic-settings` from 2.8.1 to 2.9.1 - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](https://github.com/pydantic/pydantic-settings/compare/v2.8.1...v2.9.1) Updates `langchain` from 0.3.23 to 0.3.25 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](https://github.com/langchain-ai/langchain/compare/langchain==0.3.23...langchain==0.3.25) --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.78.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.11.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.25 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 65a0b495b..0576b4844 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -4,7 +4,7 @@ Markdown==3.8 requests==2.32.3 tqdm==4.67.1 tiktoken -langchain==0.3.23 +langchain==0.3.25 bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 diff --git a/src/requirements.txt b/src/requirements.txt index b52c10254..c76f158d2 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -8,10 +8,10 @@ azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.1 -aiohttp==3.11.16 +uvicorn==0.34.2 +aiohttp==3.11.18 gunicorn==23.0.0 -pydantic-settings==2.8.1 +pydantic-settings==2.9.1 flake8==7.2.0 black==25.1.0 autoflake==2.3.1 From 1e9198f4b2e585f5e5e0202667a5dfc6d8ead6a7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:07:39 +0000 Subject: [PATCH 08/19] build(deps): bump the all-actions group with 6 updates Bumps the all-actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action) | `0.3.5` | `0.4.2` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `1` | `3` | | [actions/setup-node](https://github.com/actions/setup-node) | `3` | `4` | | [actions/setup-python](https://github.com/actions/setup-python) | `3` | `5` | | [actions/cache](https://github.com/actions/cache) | `3` | `4` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `microsoft/template-validation-action` from 0.3.5 to 0.4.2 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.3.5...v0.4.2) Updates `docker/setup-buildx-action` from 1 to 3 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v3) Updates `actions/setup-node` from 3 to 4 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v3...v4) Updates `actions/setup-python` from 3 to 5 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3...v5) Updates `actions/cache` from 3 to 4 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: microsoft/template-validation-action dependency-version: 0.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: docker/setup-buildx-action dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-node dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-python dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/cache dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- .github/workflows/deploy.yml | 2 +- .github/workflows/docker-build-and-push.yml | 4 ++-- .github/workflows/node.js.yml | 4 ++-- .github/workflows/pylint.yml | 2 +- .github/workflows/python-app.yml | 8 ++++---- .github/workflows/tests.yml | 4 ++-- 7 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 241d4d927..189f4d137 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.3.5 + uses: microsoft/template-validation-action@v0.4.2 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index 8a4a125a5..a5624ed5a 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -26,7 +26,7 @@ jobs: WEBAPP_URL: ${{ steps.get_output.outputs.WEBAPP_URL }} steps: - name: Checkout Code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Setup Azure CLI run: | diff --git a/.github/workflows/docker-build-and-push.yml b/.github/workflows/docker-build-and-push.yml index c7a80720a..0d53b255e 100644 --- a/.github/workflows/docker-build-and-push.yml +++ b/.github/workflows/docker-build-and-push.yml @@ -19,10 +19,10 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Log in to Azure Container Registry - External Registry if: ${{ github.ref_name == 'main' }} diff --git a/.github/workflows/node.js.yml b/.github/workflows/node.js.yml index 03f36a7d9..bda941af8 100644 --- a/.github/workflows/node.js.yml +++ b/.github/workflows/node.js.yml @@ -22,9 +22,9 @@ jobs: # See supported Node.js release schedule at https://nodejs.org/en/about/releases/ steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node-version }} cache: 'npm' diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml index 759f374a7..8498bdb2d 100644 --- a/.github/workflows/pylint.yml +++ b/.github/workflows/pylint.yml @@ -16,7 +16,7 @@ jobs: # Step 2: Set up Python environment - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: ${{ matrix.python-version }} diff --git a/.github/workflows/python-app.yml b/.github/workflows/python-app.yml index 0253af298..3e1a5597e 100644 --- a/.github/workflows/python-app.yml +++ b/.github/workflows/python-app.yml @@ -17,9 +17,9 @@ jobs: runs-on: - ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies @@ -35,9 +35,9 @@ jobs: runs-on: - windows-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 9bdf6b3f2..d9c52774a 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -66,12 +66,12 @@ jobs: # Set up Node.js environment for Frontend - name: Set up Node.js - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: '20' # Set the Node.js version - name: Cache npm dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} From 129b45fc6df10739885592501afae8b25f46e4ae Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 May 2025 22:47:15 +0000 Subject: [PATCH 09/19] build: bump vite from 6.3.2 to 6.3.4 in /src/frontend Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 6.3.2 to 6.3.4. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v6.3.4/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 6.3.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- src/frontend/package-lock.json | 12 ++++++------ src/frontend/package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/src/frontend/package-lock.json b/src/frontend/package-lock.json index 652913022..c09d503b8 100644 --- a/src/frontend/package-lock.json +++ b/src/frontend/package-lock.json @@ -72,7 +72,7 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } }, "node_modules/@adobe/css-tools": { @@ -18277,18 +18277,18 @@ } }, "node_modules/vite": { - "version": "6.3.2", - "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.2.tgz", - "integrity": "sha512-ZSvGOXKGceizRQIZSz7TGJ0pS3QLlVY/9hwxVh17W3re67je1RKYzFHivZ/t0tubU78Vkyb9WnHPENSBCzbckg==", + "version": "6.3.4", + "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.4.tgz", + "integrity": "sha512-BiReIiMS2fyFqbqNT/Qqt4CVITDU9M9vE+DKcVAsB+ZV0wvTKd+3hMbkpxz1b+NmEDMegpVbisKiAZOnvO92Sw==", "dev": true, "license": "MIT", "dependencies": { "esbuild": "^0.25.0", - "fdir": "^6.4.3", + "fdir": "^6.4.4", "picomatch": "^4.0.2", "postcss": "^8.5.3", "rollup": "^4.34.9", - "tinyglobby": "^0.2.12" + "tinyglobby": "^0.2.13" }, "bin": { "vite": "bin/vite.js" diff --git a/src/frontend/package.json b/src/frontend/package.json index f7e95ab02..b98f96634 100644 --- a/src/frontend/package.json +++ b/src/frontend/package.json @@ -80,6 +80,6 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } } From d7f32365c86180bd63613663010394517d43e5c1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 1 Jun 2025 22:43:16 +0000 Subject: [PATCH 10/19] build(deps): bump the all-backend-deps group in /src with 5 updates --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.23.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.82.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 0576b4844..ee600b00c 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -9,7 +9,7 @@ bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 pytest-asyncio==0.26.0 -PyMuPDF==1.25.5 +PyMuPDF==1.26.0 azure-storage-blob chardet azure-keyvault-secrets diff --git a/src/requirements.txt b/src/requirements.txt index c76f158d2..3882481a1 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,6 +1,6 @@ azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.84.0 +openai==1.82.1 azure-search-documents==11.6.0b9 azure-storage-blob==12.25.1 python-dotenv==1.1.0 @@ -8,8 +8,8 @@ azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.2 -aiohttp==3.11.18 +uvicorn==0.34.3 +aiohttp==3.12.6 gunicorn==23.0.0 pydantic-settings==2.9.1 flake8==7.2.0 From b7e6e2a4b3e16bbd294cbc5301c7b864f40a0875 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 23:06:36 +0000 Subject: [PATCH 11/19] build(deps): bump the all-backend-deps group in /src with 14 updates --- updated-dependencies: - dependency-name: openai dependency-version: 1.93.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: azure-search-documents dependency-version: 11.6.0b12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: python-dotenv dependency-version: 1.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.10.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: flake8 dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: markdown dependency-version: 3.8.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: requests dependency-version: 2.32.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.26 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: urllib3 dependency-version: 2.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest dependency-version: 8.4.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest-asyncio dependency-version: 1.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 16 ++++++++-------- src/requirements.txt | 14 +++++++------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index ee600b00c..3d94c83b4 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -1,20 +1,20 @@ -r requirements.txt azure-ai-documentintelligence==1.0.2 -Markdown==3.8 -requests==2.32.3 +Markdown==3.8.2 +requests==2.32.4 tqdm==4.67.1 tiktoken -langchain==0.3.25 +langchain==0.3.26 bs4==0.0.2 -urllib3==2.4.0 -pytest==8.3.5 -pytest-asyncio==0.26.0 -PyMuPDF==1.26.0 +urllib3==2.5.0 +pytest==8.4.1 +pytest-asyncio==1.0.0 +PyMuPDF==1.26.1 azure-storage-blob chardet azure-keyvault-secrets coverage -flake8==7.2.0 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 \ No newline at end of file diff --git a/src/requirements.txt b/src/requirements.txt index 3882481a1..b0a23a61a 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,18 +1,18 @@ azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.82.1 -azure-search-documents==11.6.0b9 +openai==1.93.0 +azure-search-documents==11.6.0b12 azure-storage-blob==12.25.1 -python-dotenv==1.1.0 +python-dotenv==1.1.1 azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.3 -aiohttp==3.12.6 +uvicorn==0.35.0 +aiohttp==3.12.13 gunicorn==23.0.0 -pydantic-settings==2.9.1 -flake8==7.2.0 +pydantic-settings==2.10.1 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 From ecc2a221e3bda6a13bdfd17e467f09ac0e8283c2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 22:33:24 +0000 Subject: [PATCH 12/19] build(deps): bump microsoft/template-validation-action Bumps the all-actions group with 1 update: [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action). Updates `microsoft/template-validation-action` from 0.4.2 to 0.4.3 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.4.2...v0.4.3) --- updated-dependencies: - dependency-name: microsoft/template-validation-action dependency-version: 0.4.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 189f4d137..67ec924a3 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.4.2 + uses: microsoft/template-validation-action@v0.4.3 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} From fa4eeff54a6b38037ebc5fcc17705694dad47ffe Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:08:40 +0000 Subject: [PATCH 13/19] build(deps): bump the all-backend-deps group in /src with 6 updates Bumps the all-backend-deps group in /src with 6 updates: | Package | From | To | | --- | --- | --- | | [azure-identity](https://github.com/Azure/azure-sdk-for-python) | `1.21.0` | `1.22.0` | | [openai](https://github.com/openai/openai-python) | `1.74.0` | `1.78.1` | | [uvicorn](https://github.com/encode/uvicorn) | `0.34.1` | `0.34.2` | | [aiohttp](https://github.com/aio-libs/aiohttp) | `3.11.16` | `3.11.18` | | [pydantic-settings](https://github.com/pydantic/pydantic-settings) | `2.8.1` | `2.9.1` | | [langchain](https://github.com/langchain-ai/langchain) | `0.3.23` | `0.3.25` | Updates `azure-identity` from 1.21.0 to 1.22.0 - [Release notes](https://github.com/Azure/azure-sdk-for-python/releases) - [Changelog](https://github.com/Azure/azure-sdk-for-python/blob/main/doc/esrp_release.md) - [Commits](https://github.com/Azure/azure-sdk-for-python/compare/azure-identity_1.21.0...azure-identity_1.22.0) Updates `openai` from 1.74.0 to 1.78.1 - [Release notes](https://github.com/openai/openai-python/releases) - [Changelog](https://github.com/openai/openai-python/blob/main/CHANGELOG.md) - [Commits](https://github.com/openai/openai-python/compare/v1.74.0...v1.78.1) Updates `uvicorn` from 0.34.1 to 0.34.2 - [Release notes](https://github.com/encode/uvicorn/releases) - [Changelog](https://github.com/encode/uvicorn/blob/master/docs/release-notes.md) - [Commits](https://github.com/encode/uvicorn/compare/0.34.1...0.34.2) Updates `aiohttp` from 3.11.16 to 3.11.18 - [Release notes](https://github.com/aio-libs/aiohttp/releases) - [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst) - [Commits](https://github.com/aio-libs/aiohttp/compare/v3.11.16...v3.11.18) Updates `pydantic-settings` from 2.8.1 to 2.9.1 - [Release notes](https://github.com/pydantic/pydantic-settings/releases) - [Commits](https://github.com/pydantic/pydantic-settings/compare/v2.8.1...v2.9.1) Updates `langchain` from 0.3.23 to 0.3.25 - [Release notes](https://github.com/langchain-ai/langchain/releases) - [Commits](https://github.com/langchain-ai/langchain/compare/langchain==0.3.23...langchain==0.3.25) --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.22.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.78.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.11.18 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.9.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.25 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 65a0b495b..0576b4844 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -4,7 +4,7 @@ Markdown==3.8 requests==2.32.3 tqdm==4.67.1 tiktoken -langchain==0.3.23 +langchain==0.3.25 bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 diff --git a/src/requirements.txt b/src/requirements.txt index b52c10254..c76f158d2 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -8,10 +8,10 @@ azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.1 -aiohttp==3.11.16 +uvicorn==0.34.2 +aiohttp==3.11.18 gunicorn==23.0.0 -pydantic-settings==2.8.1 +pydantic-settings==2.9.1 flake8==7.2.0 black==25.1.0 autoflake==2.3.1 From 841165110ae36d3cf004d7cc2d52f0c1f5a0f8df Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 13 May 2025 13:07:39 +0000 Subject: [PATCH 14/19] build(deps): bump the all-actions group with 6 updates Bumps the all-actions group with 6 updates: | Package | From | To | | --- | --- | --- | | [actions/checkout](https://github.com/actions/checkout) | `2` | `4` | | [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action) | `0.3.5` | `0.4.2` | | [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) | `1` | `3` | | [actions/setup-node](https://github.com/actions/setup-node) | `3` | `4` | | [actions/setup-python](https://github.com/actions/setup-python) | `3` | `5` | | [actions/cache](https://github.com/actions/cache) | `3` | `4` | Updates `actions/checkout` from 2 to 4 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v2...v4) Updates `microsoft/template-validation-action` from 0.3.5 to 0.4.2 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.3.5...v0.4.2) Updates `docker/setup-buildx-action` from 1 to 3 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](https://github.com/docker/setup-buildx-action/compare/v1...v3) Updates `actions/setup-node` from 3 to 4 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v3...v4) Updates `actions/setup-python` from 3 to 5 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v3...v5) Updates `actions/cache` from 3 to 4 - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: microsoft/template-validation-action dependency-version: 0.4.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-actions - dependency-name: docker/setup-buildx-action dependency-version: '3' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-node dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/setup-python dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions - dependency-name: actions/cache dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- .github/workflows/deploy.yml | 2 +- .github/workflows/docker-build-and-push.yml | 4 ++-- .github/workflows/node.js.yml | 4 ++-- .github/workflows/pylint.yml | 2 +- .github/workflows/python-app.yml | 8 ++++---- .github/workflows/tests.yml | 4 ++-- 7 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 241d4d927..189f4d137 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.3.5 + uses: microsoft/template-validation-action@v0.4.2 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index f2ed7d8c1..12ffbb10e 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -26,7 +26,7 @@ jobs: WEBAPP_URL: ${{ steps.get_output.outputs.WEBAPP_URL }} steps: - name: Checkout Code - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Setup Azure CLI run: | diff --git a/.github/workflows/docker-build-and-push.yml b/.github/workflows/docker-build-and-push.yml index c7a80720a..0d53b255e 100644 --- a/.github/workflows/docker-build-and-push.yml +++ b/.github/workflows/docker-build-and-push.yml @@ -19,10 +19,10 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v2 + uses: actions/checkout@v4 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@v3 - name: Log in to Azure Container Registry - External Registry if: ${{ github.ref_name == 'main' }} diff --git a/.github/workflows/node.js.yml b/.github/workflows/node.js.yml index 03f36a7d9..bda941af8 100644 --- a/.github/workflows/node.js.yml +++ b/.github/workflows/node.js.yml @@ -22,9 +22,9 @@ jobs: # See supported Node.js release schedule at https://nodejs.org/en/about/releases/ steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node-version }} cache: 'npm' diff --git a/.github/workflows/pylint.yml b/.github/workflows/pylint.yml index 97dc812b6..f77e1e102 100644 --- a/.github/workflows/pylint.yml +++ b/.github/workflows/pylint.yml @@ -16,7 +16,7 @@ jobs: # Step 2: Set up Python environment - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: ${{ matrix.python-version }} diff --git a/.github/workflows/python-app.yml b/.github/workflows/python-app.yml index 0253af298..3e1a5597e 100644 --- a/.github/workflows/python-app.yml +++ b/.github/workflows/python-app.yml @@ -17,9 +17,9 @@ jobs: runs-on: - ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies @@ -35,9 +35,9 @@ jobs: runs-on: - windows-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v4 - name: Set up Python 3.11 - uses: actions/setup-python@v3 + uses: actions/setup-python@v5 with: python-version: "3.11" - name: Install dependencies diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 9bdf6b3f2..d9c52774a 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -66,12 +66,12 @@ jobs: # Set up Node.js environment for Frontend - name: Set up Node.js - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: '20' # Set the Node.js version - name: Cache npm dependencies - uses: actions/cache@v3 + uses: actions/cache@v4 with: path: ~/.npm key: ${{ runner.os }}-node-${{ hashFiles('**/package-lock.json') }} From 725053081bd035c7f89679c1a9fad33fdb1a5363 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 1 May 2025 22:47:15 +0000 Subject: [PATCH 15/19] build: bump vite from 6.3.2 to 6.3.4 in /src/frontend Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 6.3.2 to 6.3.4. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v6.3.4/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 6.3.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- src/frontend/package-lock.json | 12 ++++++------ src/frontend/package.json | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/src/frontend/package-lock.json b/src/frontend/package-lock.json index 652913022..c09d503b8 100644 --- a/src/frontend/package-lock.json +++ b/src/frontend/package-lock.json @@ -72,7 +72,7 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } }, "node_modules/@adobe/css-tools": { @@ -18277,18 +18277,18 @@ } }, "node_modules/vite": { - "version": "6.3.2", - "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.2.tgz", - "integrity": "sha512-ZSvGOXKGceizRQIZSz7TGJ0pS3QLlVY/9hwxVh17W3re67je1RKYzFHivZ/t0tubU78Vkyb9WnHPENSBCzbckg==", + "version": "6.3.4", + "resolved": "https://registry.npmjs.org/vite/-/vite-6.3.4.tgz", + "integrity": "sha512-BiReIiMS2fyFqbqNT/Qqt4CVITDU9M9vE+DKcVAsB+ZV0wvTKd+3hMbkpxz1b+NmEDMegpVbisKiAZOnvO92Sw==", "dev": true, "license": "MIT", "dependencies": { "esbuild": "^0.25.0", - "fdir": "^6.4.3", + "fdir": "^6.4.4", "picomatch": "^4.0.2", "postcss": "^8.5.3", "rollup": "^4.34.9", - "tinyglobby": "^0.2.12" + "tinyglobby": "^0.2.13" }, "bin": { "vite": "bin/vite.js" diff --git a/src/frontend/package.json b/src/frontend/package.json index f7e95ab02..b98f96634 100644 --- a/src/frontend/package.json +++ b/src/frontend/package.json @@ -80,6 +80,6 @@ "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.7.2", - "vite": "^6.1.0" + "vite": "^6.3.4" } } From b6cdfa48268f8dcd802c67f0879620c621710bcf Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 1 Jun 2025 22:43:16 +0000 Subject: [PATCH 16/19] build(deps): bump the all-backend-deps group in /src with 5 updates --- updated-dependencies: - dependency-name: azure-identity dependency-version: 1.23.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: openai dependency-version: 1.82.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.34.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.6 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 2 +- src/requirements.txt | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 0576b4844..ee600b00c 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -9,7 +9,7 @@ bs4==0.0.2 urllib3==2.4.0 pytest==8.3.5 pytest-asyncio==0.26.0 -PyMuPDF==1.25.5 +PyMuPDF==1.26.0 azure-storage-blob chardet azure-keyvault-secrets diff --git a/src/requirements.txt b/src/requirements.txt index c76f158d2..3882481a1 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,6 +1,6 @@ azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.84.0 +openai==1.82.1 azure-search-documents==11.6.0b9 azure-storage-blob==12.25.1 python-dotenv==1.1.0 @@ -8,8 +8,8 @@ azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.2 -aiohttp==3.11.18 +uvicorn==0.34.3 +aiohttp==3.12.6 gunicorn==23.0.0 pydantic-settings==2.9.1 flake8==7.2.0 From d8b0e0310ec3912be2c50fee2762f3d77c2689cc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 23:06:36 +0000 Subject: [PATCH 17/19] build(deps): bump the all-backend-deps group in /src with 14 updates --- updated-dependencies: - dependency-name: openai dependency-version: 1.93.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: azure-search-documents dependency-version: 11.6.0b12 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: python-dotenv dependency-version: 1.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: uvicorn dependency-version: 0.35.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: aiohttp dependency-version: 3.12.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: pydantic-settings dependency-version: 2.10.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: flake8 dependency-version: 7.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: markdown dependency-version: 3.8.2 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: requests dependency-version: 2.32.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: langchain dependency-version: 0.3.26 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps - dependency-name: urllib3 dependency-version: 2.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest dependency-version: 8.4.1 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: all-backend-deps - dependency-name: pytest-asyncio dependency-version: 1.0.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: all-backend-deps - dependency-name: pymupdf dependency-version: 1.26.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: all-backend-deps ... Signed-off-by: dependabot[bot] --- src/requirements-dev.txt | 16 ++++++++-------- src/requirements.txt | 14 +++++++------- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index ee600b00c..3d94c83b4 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -1,20 +1,20 @@ -r requirements.txt azure-ai-documentintelligence==1.0.2 -Markdown==3.8 -requests==2.32.3 +Markdown==3.8.2 +requests==2.32.4 tqdm==4.67.1 tiktoken -langchain==0.3.25 +langchain==0.3.26 bs4==0.0.2 -urllib3==2.4.0 -pytest==8.3.5 -pytest-asyncio==0.26.0 -PyMuPDF==1.26.0 +urllib3==2.5.0 +pytest==8.4.1 +pytest-asyncio==1.0.0 +PyMuPDF==1.26.1 azure-storage-blob chardet azure-keyvault-secrets coverage -flake8==7.2.0 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 \ No newline at end of file diff --git a/src/requirements.txt b/src/requirements.txt index 3882481a1..b0a23a61a 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -1,18 +1,18 @@ azure-identity==1.23.0 # Flask[async]==2.3.2 -openai==1.82.1 -azure-search-documents==11.6.0b9 +openai==1.93.0 +azure-search-documents==11.6.0b12 azure-storage-blob==12.25.1 -python-dotenv==1.1.0 +python-dotenv==1.1.1 azure-cosmos==4.9.0 azure-ai-projects==1.0.0b11 azure-ai-inference==1.0.0b9 quart==0.20.0 -uvicorn==0.34.3 -aiohttp==3.12.6 +uvicorn==0.35.0 +aiohttp==3.12.13 gunicorn==23.0.0 -pydantic-settings==2.9.1 -flake8==7.2.0 +pydantic-settings==2.10.1 +flake8==7.3.0 black==25.1.0 autoflake==2.3.1 isort==6.0.1 From ddf8c4d35996f672d5a738919e6948aabc0ca170 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 1 Jul 2025 22:33:24 +0000 Subject: [PATCH 18/19] build(deps): bump microsoft/template-validation-action Bumps the all-actions group with 1 update: [microsoft/template-validation-action](https://github.com/microsoft/template-validation-action). Updates `microsoft/template-validation-action` from 0.4.2 to 0.4.3 - [Release notes](https://github.com/microsoft/template-validation-action/releases) - [Commits](https://github.com/microsoft/template-validation-action/compare/v0.4.2...v0.4.3) --- updated-dependencies: - dependency-name: microsoft/template-validation-action dependency-version: 0.4.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-actions ... Signed-off-by: dependabot[bot] --- .github/workflows/azure-dev.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/azure-dev.yml b/.github/workflows/azure-dev.yml index 189f4d137..67ec924a3 100644 --- a/.github/workflows/azure-dev.yml +++ b/.github/workflows/azure-dev.yml @@ -19,7 +19,7 @@ jobs: # Step 2: Validate the Azure template using microsoft/template-validation-action - name: Validate Azure Template - uses: microsoft/template-validation-action@v0.4.2 + uses: microsoft/template-validation-action@v0.4.3 id: validation env: AZURE_CLIENT_ID: ${{ secrets.AZURE_CLIENT_ID }} From 83b27a4b0218fc6cec74c06eafe75bcd1584470c Mon Sep 17 00:00:00 2001 From: Ajit Padhi Date: Tue, 15 Jul 2025 16:36:43 +0530 Subject: [PATCH 19/19] Merge branch 'dependabotchanges' of https://github.com/microsoft/document-generation-solution-accelerator into dependabotchanges