Skip to content

Commit

Permalink
Bump gitpython from 3.1.36 to 3.1.37 in /.github/scripts (#115)
Browse files Browse the repository at this point in the history 
Bumps [gitpython](https://github.com/gitpython-developers/GitPython)
from 3.1.36 to 3.1.37.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/gitpython-developers/GitPython/releases">gitpython's
releases</a>.</em></p>
<blockquote>
<h2>3.1.37 - a proper fix CVE-2023-41040</h2>
<h2>What's Changed</h2>
<ul>
<li>Improve Python version and OS compatibility, fixing deprecations by
<a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in
<a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1654">gitpython-developers/GitPython#1654</a></li>
<li>Better document env_case test/fixture and cwd by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1657">gitpython-developers/GitPython#1657</a></li>
<li>Remove spurious executable permissions by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1658">gitpython-developers/GitPython#1658</a></li>
<li>Fix up checks in Makefile and make them portable by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1661">gitpython-developers/GitPython#1661</a></li>
<li>Fix URLs that were redirecting to another license by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1662">gitpython-developers/GitPython#1662</a></li>
<li>Assorted small fixes/improvements to root dir docs by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1663">gitpython-developers/GitPython#1663</a></li>
<li>Use venv instead of virtualenv in test_installation by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1664">gitpython-developers/GitPython#1664</a></li>
<li>Omit py_modules in setup by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1665">gitpython-developers/GitPython#1665</a></li>
<li>Don't track code coverage temporary files by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1666">gitpython-developers/GitPython#1666</a></li>
<li>Configure tox by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1667">gitpython-developers/GitPython#1667</a></li>
<li>Format tests with black and auto-exclude untracked paths by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1668">gitpython-developers/GitPython#1668</a></li>
<li>Upgrade and broaden flake8, fixing style problems and bugs by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1673">gitpython-developers/GitPython#1673</a></li>
<li>Fix rollback bug in SymbolicReference.set_reference by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1675">gitpython-developers/GitPython#1675</a></li>
<li>Remove <code>@NoEffect</code> annotations by <a
href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1677">gitpython-developers/GitPython#1677</a></li>
<li>Add more checks for the validity of refnames by <a
href="https://github.com/facutuesca"><code>@​facutuesca</code></a> in <a
href="https://redirect.github.com/gitpython-developers/GitPython/pull/1672">gitpython-developers/GitPython#1672</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37">https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/b27a89f683cda85ebd78243c055e876282df89ee"><code>b27a89f</code></a>
fix makefile to compare commit hashes only</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/0bd2890ef42a7506b81a96c3c94b064917ed0d7b"><code>0bd2890</code></a>
prepare next release</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/832b6eeb4a14e669099c486862c9f568215d5afb"><code>832b6ee</code></a>
remove unnecessary list comprehension to fix CI</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/e98f57b81f792f0f5e18d33ee658ae395f9aa3c4"><code>e98f57b</code></a>
Merge pull request <a
href="https://redirect.github.com/gitpython-developers/GitPython/issues/1672">#1672</a>
from trail-of-forks/robust-refname-checks</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/1774f1e32307deb755f80dc51b220566c7aef755"><code>1774f1e</code></a>
Merge pull request <a
href="https://redirect.github.com/gitpython-developers/GitPython/issues/1677">#1677</a>
from EliahKagan/no-noeffect</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/a4701a0f17308ec8d4b5871e6e2a95c4e2ca5b91"><code>a4701a0</code></a>
Remove <code>@NoEffect</code> annotations</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/d40320b823994ed908d8a5e236758ff525851cd4"><code>d40320b</code></a>
Merge pull request <a
href="https://redirect.github.com/gitpython-developers/GitPython/issues/1675">#1675</a>
from EliahKagan/rollback</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/d1c1f31dbd4a4fd527f9f3ff2ea901abf023c46b"><code>d1c1f31</code></a>
Merge pull request <a
href="https://redirect.github.com/gitpython-developers/GitPython/issues/1673">#1673</a>
from EliahKagan/flake8</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/e480985aa4d358d0cc167d4552910e85944b8966"><code>e480985</code></a>
Tweak rollback logic in log.to_file</li>
<li><a
href="https://github.com/gitpython-developers/GitPython/commit/ff84b26445b147ee9e2c75d82903b0c6b09e2b7a"><code>ff84b26</code></a>
Refactor try-finally cleanup in git/</li>
<li>Additional commits viewable in <a
href="https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitpython&package-manager=pip&previous-version=3.1.36&new-version=3.1.37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
@dependabot
dependabot[bot] authored Sep 25, 2023
1 parent d2a8fc6 commit 22a9090
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion .github/scripts/requirements.txt
View file
Original file line number Diff line number Diff line change
@@ -1 +1 @@
GitPython==3.1.36
GitPython==3.1.37

0 comments on commit 22a9090

Please sign in to comment.