Merge pull request #839 from asfadmin/rew/update-dependencies

Update Dependencies

.github/workflows/deploy-docs-website.yml

@@ -8,8 +8,8 @@ jobs:
   deploy:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-python@v4
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
         with:
           python-version: 3.9
       - run: pip install -r requirements/requirements-docs.txt

.github/workflows/lint.yml

@@ -6,8 +6,8 @@ jobs:
   flake8:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-python@v4
+      - uses: actions/checkout@v4
+      - uses: actions/setup-python@v5
         with:
           python-version: 3.8
 
@@ -19,7 +19,7 @@ jobs:
   requirements:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Check requirements.in order
         run: |

.github/workflows/re-build.yml

@@ -49,7 +49,7 @@ jobs:
     needs: variables
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Load environment defaults
         run: cat .github/workflows/config-public/${{ inputs.environment }}.env >> $GITHUB_ENV
@@ -72,25 +72,25 @@ jobs:
         run: make build
 
       - name: Save dependency layer zip
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: dependency-layer
           path: dist/thin-egress-app-dependencies.zip
 
       - name: Save Lambda code
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: code
           path: dist/thin-egress-app-code.zip
 
       - name: Save CloudFormation yaml
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: cloudformation
           path: dist/thin-egress-app.yaml
 
       - name: Save Terraform zip
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
         with:
           name: terraform
           path: dist/thin-egress-app-terraform.zip

.github/workflows/re-status.yml

@@ -36,12 +36,12 @@ jobs:
       AWS_DEFAULT_REGION: ${{ vars.AWS_REGION || 'us-west-2' }}
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Load environment defaults
         run: cat .github/workflows/config-public/${{ inputs.environment }}.env >> $GITHUB_ENV
 
-      - uses: actions/download-artifact@v3
+      - uses: actions/download-artifact@v4
 
       - name: Upload success labels
         run: |
@@ -68,12 +68,12 @@ jobs:
       AWS_DEFAULT_REGION: ${{ vars.AWS_REGION || 'us-west-2' }}
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Load environment defaults
         run: cat .github/workflows/config-public/${{ inputs.environment }}.env >> $GITHUB_ENV
 
-      - uses: actions/download-artifact@v3
+      - uses: actions/download-artifact@v4
 
       - name: Upload failure labels
         run: |

.github/workflows/re-test-e2e.yml

@@ -43,12 +43,12 @@ jobs:
       YAML_NAME: tea-cloudformation-run.${{ github.run_id }}.yaml
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Load environment defaults
         run: cat .github/workflows/config-public/${{ inputs.environment }}.env >> $GITHUB_ENV
 
-      - uses: actions/download-artifact@v3
+      - uses: actions/download-artifact@v4
 
       - name: Upload to AWS
         env:

.github/workflows/release.yml

@@ -37,12 +37,12 @@ jobs:
       AWS_DEFAULT_REGION: ${{ vars.AWS_REGION || 'us-west-2' }}
 
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Load environment defaults
         run: cat .github/workflows/config-public/prod.env >> $GITHUB_ENV
 
-      - uses: actions/download-artifact@v3
+      - uses: actions/download-artifact@v4
 
       - name: Upload to public code bucket
         env:
@@ -69,7 +69,7 @@ jobs:
       - test-e2e
     if: success() || needs.test-e2e.result == 'skipped'
     steps:
-      - uses: actions/download-artifact@v3
+      - uses: actions/download-artifact@v4
 
       - uses: actions/upload-release-asset@v1
         env:

.github/workflows/test.yml

@@ -10,8 +10,8 @@ jobs:
   test:
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v3
-    - uses: actions/setup-python@v4
+    - uses: actions/checkout@v4
+    - uses: actions/setup-python@v5
       with:
         python-version: 3.8
 

requirements/requirements-dev.txt

@@ -4,21 +4,21 @@
 #
 #    pip-compile requirements/requirements-dev.in
 #
-boto3==1.34.110
+boto3==1.35.14
     # via
     #   -r requirements/requirements-dev.in
     #   moto
-botocore==1.34.110
+botocore==1.35.14
     # via
     #   -c requirements/requirements.txt
     #   boto3
     #   moto
     #   s3transfer
-build==1.2.1
+build==1.2.2
     # via pip-tools
-certifi==2024.2.2
+certifi==2024.8.30
     # via requests
-cffi==1.16.0
+cffi==1.17.1
     # via
     #   -c requirements/requirements.txt
     #   cryptography
@@ -28,21 +28,21 @@ click==8.1.7
     # via
     #   -c requirements/requirements.txt
     #   pip-tools
-coverage[toml]==7.5.1
+coverage[toml]==7.6.1
     # via pytest-cov
-cryptography==42.0.7
+cryptography==43.0.1
     # via
     #   -c requirements/requirements.txt
     #   moto
 deprecated==1.2.14
     # via opentelemetry-api
-docker==7.0.0
+docker==7.1.0
     # via moto
-exceptiongroup==1.2.1
+exceptiongroup==1.2.2
     # via pytest
-idna==3.7
+idna==3.8
     # via requests
-importlib-metadata==7.0.0
+importlib-metadata==8.4.0
     # via
     #   build
     #   opentelemetry-api
@@ -62,16 +62,15 @@ markupsafe==2.1.5
     #   -c requirements/requirements.txt
     #   jinja2
     #   werkzeug
-moto[awslambda]==5.0.7
+moto[awslambda]==5.0.14
     # via -r requirements/requirements-dev.in
-opentelemetry-api==1.24.0
+opentelemetry-api==1.27.0
     # via opentelemetry-instrumentation
-opentelemetry-instrumentation==0.45b0
+opentelemetry-instrumentation==0.48b0
     # via -r requirements/requirements-dev.in
-packaging==24.0
+packaging==24.1
     # via
     #   build
-    #   docker
     #   pytest
 pip-tools==7.4.1
     # via -r requirements/requirements-dev.in
@@ -85,7 +84,7 @@ pyproject-hooks==1.1.0
     # via
     #   build
     #   pip-tools
-pytest==8.2.1
+pytest==8.3.2
     # via
     #   -r requirements/requirements-dev.in
     #   pytest-cov
@@ -96,19 +95,19 @@ python-dateutil==2.9.0.post0
     #   -c requirements/requirements.txt
     #   botocore
     #   moto
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   -c requirements/requirements.txt
     #   -r requirements/requirements-dev.in
     #   responses
-requests==2.32.2
+requests==2.32.3
     # via
     #   docker
     #   moto
     #   responses
-responses==0.25.0
+responses==0.25.3
     # via moto
-s3transfer==0.10.1
+s3transfer==0.10.2
     # via boto3
 six==1.16.0
     # via
@@ -120,16 +119,16 @@ tomli==2.0.1
     #   coverage
     #   pip-tools
     #   pytest
-urllib3==1.26.18
+urllib3==1.26.20
     # via
     #   -c requirements/requirements.txt
     #   botocore
     #   docker
     #   requests
     #   responses
-werkzeug==3.0.3
+werkzeug==3.0.4
     # via moto
-wheel==0.43.0
+wheel==0.44.0
     # via
     #   -c requirements/requirements.txt
     #   pip-tools
@@ -139,7 +138,7 @@ wrapt==1.16.0
     #   opentelemetry-instrumentation
 xmltodict==0.13.0
     # via moto
-zipp==3.18.2
+zipp==3.20.1
     # via importlib-metadata
 
 # The following packages are considered to be unsafe in a requirements file:

requirements/requirements-docs.txt

@@ -4,9 +4,9 @@
 #
 #    pip-compile requirements/requirements-docs.in
 #
-babel==2.15.0
+babel==2.16.0
     # via mkdocs-material
-certifi==2024.2.2
+certifi==2024.8.30
     # via requests
 charset-normalizer==3.3.2
     # via requests
@@ -16,9 +16,9 @@ colorama==0.4.6
     # via mkdocs-material
 ghp-import==2.1.0
     # via mkdocs
-idna==3.7
+idna==3.8
     # via requests
-importlib-metadata==7.1.0
+importlib-metadata==8.4.0
     # via
     #   markdown
     #   mkdocs
@@ -27,7 +27,7 @@ jinja2==3.1.4
     # via
     #   mkdocs
     #   mkdocs-material
-markdown==3.6
+markdown==3.7
     # via
     #   mkdocs
     #   mkdocs-material
@@ -40,7 +40,7 @@ mergedeep==1.3.4
     # via
     #   mkdocs
     #   mkdocs-get-deps
-mkdocs==1.6.0
+mkdocs==1.6.1
     # via
     #   -r requirements/requirements-docs.in
     #   mkdocs-asf-theme
@@ -49,43 +49,43 @@ mkdocs-asf-theme==0.3.2
     # via -r requirements/requirements-docs.in
 mkdocs-get-deps==0.2.0
     # via mkdocs
-mkdocs-material==9.5.24
+mkdocs-material==9.5.34
     # via mkdocs-asf-theme
 mkdocs-material-extensions==1.3.1
     # via mkdocs-material
-packaging==24.0
+packaging==24.1
     # via mkdocs
-paginate==0.5.6
+paginate==0.5.7
     # via mkdocs-material
 pathspec==0.12.1
     # via mkdocs
-platformdirs==4.2.2
+platformdirs==4.3.2
     # via mkdocs-get-deps
 pygments==2.18.0
     # via mkdocs-material
-pymdown-extensions==10.8.1
+pymdown-extensions==10.9
     # via mkdocs-material
 python-dateutil==2.9.0.post0
     # via ghp-import
 pytz==2024.1
     # via babel
-pyyaml==6.0.1
+pyyaml==6.0.2
     # via
     #   mkdocs
     #   mkdocs-get-deps
     #   pymdown-extensions
     #   pyyaml-env-tag
 pyyaml-env-tag==0.1
     # via mkdocs
-regex==2024.5.15
+regex==2024.7.24
     # via mkdocs-material
-requests==2.32.2
+requests==2.32.3
     # via mkdocs-material
 six==1.16.0
     # via python-dateutil
-urllib3==2.2.1
+urllib3==2.2.2
     # via requests
-watchdog==4.0.0
+watchdog==4.0.2
     # via mkdocs
-zipp==3.18.2
+zipp==3.20.1
     # via importlib-metadata