build(deps): bump the minor-and-patch group with 3 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates: certifi, safety and orderly-set.

Updates certifi from 2025.6.15 to 2025.7.14

Commits

• ddd90c6 2025.07.14 (#359)
• d905221 2025.07.09 (#358)
• See full diff in compare view

Updates safety from 3.5.0 to 3.6.0

Release notes

Sourced from safety's releases.

Version 3.6.0

What's Changed

• bump: version 3.6.0b0 → 3.6.0 (af75197)
• chore: prepare for stable release (2f7df72)

Version 3.6.0b0

What's Changed

• bump: version 3.5.2 → 3.6.0b0 (dd6c81b)
• fix: issues with encoding in all the outputs (#757) (293bccb)
• fix: restore missing codebase name prompt in scan command (#771) (0abd016)
• fix: issues with click 8.2.0 (#748) (d5be19c)
• fix: codebase init --link-to help text (#770) (99971f8)
• feat: add Windows venv wrappers support (#768) (0a3d05a)
• feat: add codebase init command (#756) (bd1fade)
• test: use tomllib in tests if available (#765) (f1e3d4d)
• fix: test isolation for firewall tests on unix-like systems (#767) (362f6e0)

Version 3.5.2

What's Changed

• bump: version 3.5.2b1 → 3.5.2 (03e057b)
• fix: resolve logger warnings (#761) (4cbb766)

Version 3.5.2b1

What's Changed

• bump: version 3.5.2b0 → 3.5.2b1 (e89c965)
• ci: use a newer windows runner image (#760) (35bc33f)

Version 3.5.1

What's Changed

• bump: version 3.5.1b0 → 3.5.1 (9dc9ac3)
• chore: update CHANGELOG.md with note (#753) (a01f411)

Version 3.5.1b0

What's Changed

• bump: version 3.5.0 → 3.5.1b0 (7eadf12)
• fix: add missing uv index env var for auth (#751) (1136c27)
• ci: avoid lint on schedule but keep matrix/tests (#750) (24cfa65)
• fix: preventing the branch name to be included in the codebase url (#744) (47cdb3e)
• ci: make sure tests run if lint is skipped (#747) (2be4712)
• fix: click version constraint (#749) (cd90ab9)

Changelog

Sourced from safety's changelog.

3.6.0 (2025-07-09)

3.6.0b0 (2025-07-09)

Feat

• add Windows venv wrappers support (#768)
• add codebase init command (#756)

Fix

• issues with encoding in all the outputs (#757)
• restore missing codebase name prompt in scan command (#771)
• issues with click 8.2.0 (#748)
• codebase init --link-to help text (#770)
• test isolation for firewall tests on unix-like systems (#767)

3.5.2 (2025-06-04)

Fix

• resolve logger warnings (#761)

3.5.2b1 (2025-06-03)

3.5.2b0 (2025-06-03)

Fix

• encoding issues when reading user UTF-16 and UTF-8-SIG encoded files (#759)
• include missing warn for Poetry (#758)
• missing poetry index credentials (#754)

3.5.1 (2025-05-14)

3.5.1b0 (2025-05-13)

Fix

• add missing uv index env var for auth (#751)
• preventing the branch name to be included in the codebase url (#744)
• click version constraint (#749)

Commits

• af75197 bump: version 3.6.0b0 → 3.6.0
• 2f7df72 chore: prepare for stable release
• dd6c81b bump: version 3.5.2 → 3.6.0b0
• 293bccb fix: issues with encoding in all the outputs (#757)
• 0abd016 fix: restore missing codebase name prompt in scan command (#771)
• d5be19c fix: issues with click 8.2.0 (#748)
• 99971f8 fix: codebase init --link-to help text (#770)
• 0a3d05a feat: add Windows venv wrappers support (#768)
• bd1fade feat: add codebase init command (#756)
• f1e3d4d test: use tomllib in tests if available (#765)
• Additional commits viewable in compare view

Updates orderly-set from 5.4.1 to 5.5.0

Release notes

Sourced from orderly-set's releases.

5.5.0

• Switching from setup.py to pyproject.toml
• Adding RoughMaxSizeSet

Commits

• 897f0f2 adding 3.13
• ccc9c45 adding claude.md
• f62be7f 5.5.0
• a5fb7bc version
• c9a9a31 adding bumpversion.cfg
• 45138ea fixing pyproject and a few tests
• 87c69e0 adding pyproject
• 4634254 adding RoughMaxSizeSet
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions