-
Notifications
You must be signed in to change notification settings - Fork 5
Commit 6d05f1e
authored
build(deps): update safety requirement from <3.3,>=2.3.5 to >=2.3.5,<3.4 (#621)
Updates the requirements on [safety](https://github.com/pyupio/safety)
to permit the latest version.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pyupio/safety/releases">safety's
releases</a>.</em></p>
<blockquote>
<h2>Version 3.3.0</h2>
<h2>What's Changed</h2>
<ul>
<li>bump: version 3.3.0b0 → 3.3.0 (3de59d8)</li>
<li>ci: rename assets on release to avoid conflicts (<a
href="https://redirect.github.com/pyupio/safety/issues/678">#678</a>)
(73a211f)</li>
<li>ci: use bot token on release creation (<a
href="https://redirect.github.com/pyupio/safety/issues/677">#677</a>)
(6a05419)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pyupio/safety/blob/main/CHANGELOG.md">safety's
changelog</a>.</em></p>
<blockquote>
<h2>3.3.0 (2025-02-14)</h2>
<h2>3.3.0b0 (2025-02-13)</h2>
<h3>Feat</h3>
<ul>
<li>added safety firewall (<a
href="https://redirect.github.com/pyupio/safety/issues/671">#671</a>)</li>
</ul>
<h2>[3.2.14] - 2024-12-20</h2>
<ul>
<li>Add fun-mode (<a
href="https://redirect.github.com/pyupio/safety/issues/649">#649</a>)</li>
<li>Package version upgrade for psutil and filelock (<a
href="https://redirect.github.com/pyupio/safety/issues/652">#652</a>)</li>
<li>Package version upgrade for typer (<a
href="https://redirect.github.com/pyupio/safety/issues/654">#654</a>)</li>
<li>Package version upgrade for pydantic (<a
href="https://redirect.github.com/pyupio/safety/issues/655">#655</a>)</li>
<li>Add "--use-server-matching" arguement (<a
href="https://redirect.github.com/pyupio/safety/issues/640">#640</a>)</li>
<li>Bugfix for safety "NoneType is not iterable" error (<a
href="https://redirect.github.com/pyupio/safety/issues/657">#657</a>)</li>
</ul>
<h2>[3.2.13] - 2024-12-10</h2>
<ul>
<li>Remove email verification for running scans (<a
href="https://redirect.github.com/pyupio/safety/issues/645">#645</a>)</li>
</ul>
<h2>[3.2.12] - 2024-12-10</h2>
<ul>
<li>Add CVE Details and Single-Key Filtering for JSON Output in safety
scan (<a
href="https://redirect.github.com/pyupio/safety/issues/643">#643</a>)</li>
<li>feature/add-branch-name (<a
href="https://redirect.github.com/pyupio/safety/issues/641">#641</a>)</li>
<li>feat/add --headless to --help (<a
href="https://redirect.github.com/pyupio/safety/issues/636">#636</a>)</li>
</ul>
<h2>[3.2.11] - 2024-11-12</h2>
<ul>
<li>chore/upgrade-dparse (<a
href="https://redirect.github.com/pyupio/safety/issues/633">#633</a>)</li>
<li>Migrate to PyPI Trusted Publisher for Automated Package Deployment
(<a
href="https://redirect.github.com/pyupio/safety/issues/632">#632</a>)</li>
<li>fix/fix-test-validate-func (<a
href="https://redirect.github.com/pyupio/safety/issues/631">#631</a>)</li>
<li>feat: api keys now work without specifying the env (<a
href="https://redirect.github.com/pyupio/safety/issues/630">#630</a>)</li>
<li>fix:jupyter notebook rich format removal (<a
href="https://redirect.github.com/pyupio/safety/issues/628">#628</a>)</li>
</ul>
<h2>[3.2.10] - 2024-10-25</h2>
<ul>
<li>Support for scanning pyproject.toml files (<a
href="https://redirect.github.com/pyupio/safety/issues/625">#625</a>)</li>
<li>Update safety-schemas version used (<a
href="https://redirect.github.com/pyupio/safety/issues/624">#624</a>)</li>
<li>Fix basic poloicy test (<a
href="https://redirect.github.com/pyupio/safety/issues/622">#622</a>)</li>
</ul>
<h2>[3.2.9] - 2024-10-23</h2>
<ul>
<li>chore: deprection-message-for-license-command (4149b70)</li>
<li>feat: add-pull-request-template (<a
href="https://redirect.github.com/pyupio/safety/issues/604">#604</a>)
(61b2fe2)</li>
<li>fix: devcontainer fix (be42d8e)</li>
<li>fix: safety error when scan is run without being authed
(5ec80dd)</li>
<li>feat: add-devcontainers-support (0591838)</li>
<li>fix: internal-server-error (04d7efb)</li>
<li>fix: clarify-vulnerabilities-found/ Fixed the issue where the
vulnerabilities (07bc5b7)</li>
<li>chore: added check arg depreciation warning (78109e5)</li>
<li>feature: release-script: add release script (<a
href="https://redirect.github.com/pyupio/safety/issues/602">#602</a>)
(cc49542)</li>
</ul>
<h2>[3.2.8] - 2024-09-27</h2>
<ul>
<li>feat: enhance version comparison logic for check-updates command (<a
href="https://redirect.github.com/pyupio/safety/issues/605">#605</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pyupio/safety/commit/3de59d8ec68ee186f0ab068d902c10b444bef4f5"><code>3de59d8</code></a>
bump: version 3.3.0b0 → 3.3.0</li>
<li><a
href="https://github.com/pyupio/safety/commit/73a211fe7c3ccda4a8d445aad5d2ff496a389540"><code>73a211f</code></a>
ci: rename assets on release to avoid conflicts (<a
href="https://redirect.github.com/pyupio/safety/issues/678">#678</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/6a054191d433eb1be9d371d78883c6aa0b3089f3"><code>6a05419</code></a>
ci: use bot token on release creation (<a
href="https://redirect.github.com/pyupio/safety/issues/677">#677</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/fc9c9f059474fc7d5c68e29dd74aa099ef1d6dc9"><code>fc9c9f0</code></a>
bump: version 3.2.14 → 3.3.0b0</li>
<li><a
href="https://github.com/pyupio/safety/commit/d92868822ea45e1aba04bf7072291615796155f6"><code>d928688</code></a>
ci: use bot token on bump push (<a
href="https://redirect.github.com/pyupio/safety/issues/676">#676</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/8e7172bfb8e6e980217f55ec2f60be1642616b91"><code>8e7172b</code></a>
ci: fetch tags and history on bump workflow (<a
href="https://redirect.github.com/pyupio/safety/issues/675">#675</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/1f05c1d0632122abe9f54031a574c0ac67b1f6d7"><code>1f05c1d</code></a>
ci: improve beta bump and release handling (<a
href="https://redirect.github.com/pyupio/safety/issues/674">#674</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/e1c2b6ada9d3d75592ae5cbce5c0dda45a758dcb"><code>e1c2b6a</code></a>
feat: added safety firewall (<a
href="https://redirect.github.com/pyupio/safety/issues/671">#671</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/209e4435e40a3ae55bd69e6ae234d3a0c24f2012"><code>209e443</code></a>
ci: remove legacy workflow (<a
href="https://redirect.github.com/pyupio/safety/issues/672">#672</a>)</li>
<li><a
href="https://github.com/pyupio/safety/commit/f97fb1585f8f9bf24c13076a8f64c408ec05962d"><code>f97fb15</code></a>
ci: add bump file (<a
href="https://redirect.github.com/pyupio/safety/issues/670">#670</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/pyupio/safety/compare/2.3.5...3.3.0">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>File tree
Expand file treeCollapse file tree
1 file changed
+1
-1
lines changedFilter options
- requirements
Expand file treeCollapse file tree
1 file changed
+1
-1
lines changedrequirements/security.txt
Copy file name to clipboard+1-1Lines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1 | 1 | | |
2 | | - | |
| 2 | + | |
0 commit comments