[pull] main from pypi:main #2305
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![pull[bot]](https://avatars.githubusercontent.com/in/12910?s=60&v=4){kind=small}
* Remove statistics blurb * Add statstic links to /stats page * Update translations
Co-authored-by: Mike Fiedler <miketheman@gmail.com> Co-authored-by: Alexis <alexis.challande@trailofbits.com>
…16200) * Document the project and file upload limits in pypi on the FAQ page * Test it * Add license * sort * Test config * make translations * Update warehouse/templates/pages/help.html * Update translations --------- Co-authored-by: Suren Nihalani <1093911+SurenNihalani@users.noreply.github.com> Co-authored-by: Dustin Ingram <di@users.noreply.github.com>
* chore(deps): bump node from 22.3.0-bookworm to 22.4.0-bookworm Bumps node from 22.3.0-bookworm to 22.4.0-bookworm. --- updated-dependencies: - dependency-name: node dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump pillow from 10.3.0 to 10.4.0 Bumps [pillow](https://github.com/python-pillow/Pillow) from 10.3.0 to 10.4.0. - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](python-pillow/Pillow@10.3.0...10.4.0) --- updated-dependencies: - dependency-name: pillow dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump trove-classifiers from 2024.5.22 to 2024.7.2 Bumps [trove-classifiers](https://github.com/pypa/trove-classifiers) from 2024.5.22 to 2024.7.2. - [Release notes](https://github.com/pypa/trove-classifiers/releases) - [Commits](pypa/trove-classifiers@2024.5.22...2024.7.2) --- updated-dependencies: - dependency-name: trove-classifiers dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump google-auth from 2.30.0 to 2.31.0 Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 2.30.0 to 2.31.0. - [Release notes](https://github.com/googleapis/google-auth-library-python/releases) - [Changelog](https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md) - [Commits](googleapis/google-auth-library-python@v2.30.0...v2.31.0) --- updated-dependencies: - dependency-name: google-auth dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump setuptools from 70.1.1 to 70.2.0 Bumps [setuptools](https://github.com/pypa/setuptools) from 70.1.1 to 70.2.0. - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](pypa/setuptools@v70.1.1...v70.2.0) --- updated-dependencies: - dependency-name: setuptools dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump pydantic from 2.7.4 to 2.8.0 Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.4 to 2.8.0. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](pydantic/pydantic@v2.7.4...v2.8.0) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump pytest-xdist from 3.5.0 to 3.6.1 Bumps [pytest-xdist](https://github.com/pytest-dev/pytest-xdist) from 3.5.0 to 3.6.1. - [Release notes](https://github.com/pytest-dev/pytest-xdist/releases) - [Changelog](https://github.com/pytest-dev/pytest-xdist/blob/master/CHANGELOG.rst) - [Commits](pytest-dev/pytest-xdist@v3.5.0...v3.6.1) --- updated-dependencies: - dependency-name: pytest-xdist dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump mkdocs-rss-plugin from 1.14.0 to 1.15.0 Bumps [mkdocs-rss-plugin](https://github.com/Guts/mkdocs-rss-plugin) from 1.14.0 to 1.15.0. - [Release notes](https://github.com/Guts/mkdocs-rss-plugin/releases) - [Changelog](https://github.com/Guts/mkdocs-rss-plugin/blob/main/CHANGELOG.md) - [Commits](Guts/mkdocs-rss-plugin@1.14.0...1.15.0) --- updated-dependencies: - dependency-name: mkdocs-rss-plugin dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump execnet from 2.0.2 to 2.1.1 Bumps [execnet](https://github.com/pytest-dev/execnet) from 2.0.2 to 2.1.1. - [Changelog](https://github.com/pytest-dev/execnet/blob/master/CHANGELOG.rst) - [Commits](pytest-dev/execnet@v2.0.2...v2.1.1) --- updated-dependencies: - dependency-name: execnet dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump mkdocs-material from 9.5.27 to 9.5.28 Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 9.5.27 to 9.5.28. - [Release notes](https://github.com/squidfunk/mkdocs-material/releases) - [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG) - [Commits](squidfunk/mkdocs-material@9.5.27...9.5.28) --- updated-dependencies: - dependency-name: mkdocs-material dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump orjson from 3.10.5 to 3.10.6 Bumps [orjson](https://github.com/ijl/orjson) from 3.10.5 to 3.10.6. - [Release notes](https://github.com/ijl/orjson/releases) - [Changelog](https://github.com/ijl/orjson/blob/master/CHANGELOG.md) - [Commits](ijl/orjson@3.10.5...3.10.6) --- updated-dependencies: - dependency-name: orjson dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump disposable-email-domains from 0.0.103 to 0.0.104 Bumps [disposable-email-domains](https://github.com/disposable-email-domains/disposable-email-domains) from 0.0.103 to 0.0.104. - [Commits](https://github.com/disposable-email-domains/disposable-email-domains/commits) --- updated-dependencies: - dependency-name: disposable-email-domains dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump certifi from 2024.6.2 to 2024.7.4 Bumps [certifi](https://github.com/certifi/python-certifi) from 2024.6.2 to 2024.7.4. - [Commits](certifi/python-certifi@2024.06.02...2024.07.04) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump types-awscrt from 0.20.12 to 0.21.0 Bumps [types-awscrt](https://github.com/youtype/types-awscrt) from 0.20.12 to 0.21.0. - [Release notes](https://github.com/youtype/types-awscrt/releases) - [Commits](https://github.com/youtype/types-awscrt/commits) --- updated-dependencies: - dependency-name: types-awscrt dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump types-setuptools Bumps [types-setuptools](https://github.com/python/typeshed) from 70.1.0.20240627 to 70.2.0.20240704. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-setuptools dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
* chore(deps): bump pydantic from 2.7.4 to 2.8.2 Bumps [pydantic](https://github.com/pydantic/pydantic) from 2.7.4 to 2.8.2. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/v2.8.2/HISTORY.md) - [Commits](pydantic/pydantic@v2.7.4...v2.8.2) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump tenacity from 8.4.2 to 8.5.0 Bumps [tenacity](https://github.com/jd/tenacity) from 8.4.2 to 8.5.0. - [Release notes](https://github.com/jd/tenacity/releases) - [Commits](jd/tenacity@8.4.2...8.5.0) --- updated-dependencies: - dependency-name: tenacity dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump stripe from 10.1.0 to 10.2.0 Bumps [stripe](https://github.com/stripe/stripe-python) from 10.1.0 to 10.2.0. - [Release notes](https://github.com/stripe/stripe-python/releases) - [Changelog](https://github.com/stripe/stripe-python/blob/master/CHANGELOG.md) - [Commits](stripe/stripe-python@v10.1.0...v10.2.0) --- updated-dependencies: - dependency-name: stripe dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump envier from 0.5.1 to 0.5.2 Bumps [envier](https://github.com/DataDog/envier) from 0.5.1 to 0.5.2. - [Release notes](https://github.com/DataDog/envier/releases) - [Commits](DataDog/envier@v0.5.1...v0.5.2) --- updated-dependencies: - dependency-name: envier dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump nh3 from 0.2.17 to 0.2.18 Bumps [nh3](https://github.com/messense/nh3) from 0.2.17 to 0.2.18. - [Release notes](https://github.com/messense/nh3/releases) - [Commits](messense/nh3@v0.2.17...v0.2.18) --- updated-dependencies: - dependency-name: nh3 dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump sentry-sdk from 2.7.1 to 2.8.0 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.7.1 to 2.8.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](getsentry/sentry-python@2.7.1...2.8.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
* chore(deps): bump humanize from 4.9.0 to 4.10.0 Bumps [humanize](https://github.com/python-humanize/humanize) from 4.9.0 to 4.10.0. - [Release notes](https://github.com/python-humanize/humanize/releases) - [Commits](python-humanize/humanize@4.9.0...4.10.0) --- updated-dependencies: - dependency-name: humanize dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump rpds-py from 0.18.1 to 0.19.0 Bumps [rpds-py](https://github.com/crate-py/rpds) from 0.18.1 to 0.19.0. - [Release notes](https://github.com/crate-py/rpds/releases) - [Commits](crate-py/rpds@v0.18.1...v0.19.0) --- updated-dependencies: - dependency-name: rpds-py dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump google-auth from 2.31.0 to 2.32.0 Bumps [google-auth](https://github.com/googleapis/google-auth-library-python) from 2.31.0 to 2.32.0. - [Release notes](https://github.com/googleapis/google-auth-library-python/releases) - [Changelog](https://github.com/googleapis/google-auth-library-python/blob/main/CHANGELOG.md) - [Commits](googleapis/google-auth-library-python@v2.31.0...v2.32.0) --- updated-dependencies: - dependency-name: google-auth dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump jsonschema from 4.22.0 to 4.23.0 Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.22.0 to 4.23.0. - [Release notes](https://github.com/python-jsonschema/jsonschema/releases) - [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst) - [Commits](python-jsonschema/jsonschema@v4.22.0...v4.23.0) --- updated-dependencies: - dependency-name: jsonschema dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Translate-URL: https://hosted.weblate.org/projects/pypa/warehouse/ Translation: pypa/warehouse Co-authored-by: Bernhard Sailer <bernhardsailer@bernhardsailer.at> Co-authored-by: Oriya Alperin <oriya2011@gmail.com> Co-authored-by: P. adalat <pad.parsa1388@gmail.com> Co-authored-by: 大王叫我来巡山 <hamburger2048@users.noreply.hosted.weblate.org>
* fix typo in reporting address * Add PAT token permissions reported by JFrog * add cabotage-app image publication dates from JFrog * backlink to JFrog's blog
* requirements: add pytest-pretty Signed-off-by: William Woodruff <william@trailofbits.com> * requirements: switch to pytest-sugar Signed-off-by: William Woodruff <william@trailofbits.com> --------- Signed-off-by: William Woodruff <william@trailofbits.com>
* surface organization membership, organization inviations, and project invitations in admin * surface email unverify_reason in admin * admin: expose all event history available for users * admin: when reseting user password by admin intervention, set a unique status and send a better email * test new email * untranslate password-reset-by-admin
* help, settings: replace setup.py with pyproject.toml Signed-off-by: William Woodruff <william@trailofbits.com> * settings: fix language Signed-off-by: William Woodruff <william@trailofbits.com> * Apply suggestions from code review Co-authored-by: Dustin Ingram <di@users.noreply.github.com> * bump translations Signed-off-by: William Woodruff <william@trailofbits.com> --------- Signed-off-by: William Woodruff <william@trailofbits.com> Co-authored-by: Dustin Ingram <di@users.noreply.github.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com> Co-authored-by: Jeff Zohrab <jzohrab@gmail.com>
Signed-off-by: William Woodruff <william@trailofbits.com> Co-authored-by: Dustin Ingram <di@users.noreply.github.com>
* Add support for uploading attestations in legacy API * Move attestation processing to helper function * legacy: remove metrics param Signed-off-by: William Woodruff <william@trailofbits.com> * lintage Signed-off-by: William Woodruff <william@trailofbits.com> * bump pypi-attestations, use AttestationType Signed-off-by: William Woodruff <william@trailofbits.com> --------- Signed-off-by: William Woodruff <william@trailofbits.com> Co-authored-by: William Woodruff <william@trailofbits.com> Co-authored-by: Dustin Ingram <di@users.noreply.github.com>
* Remove gradient background for underlining links ...in favor of normal text-decoration. * Just make white links white This also lets white links slightly darken on hover like all other links.
* add a make task for generating dev totp creds * generate recovery codes for select users * update doc
* implement some guards on our /search endpoint - Move timeout from 2000ms to 500ms - Add a simple rate limiter to the endpoint by client ip * no need to explicitly pass empty tags list to metrics.implement
…up across 1 directory (#16819) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Dustin Ingram <di@users.noreply.github.com> Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com> Co-authored-by: Dustin Ingram <di@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
…p across 1 directory (#16846) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
* chore(deps): bump rich from 13.9.1 to 13.9.2 Bumps [rich](https://github.com/Textualize/rich) from 13.9.1 to 13.9.2. - [Release notes](https://github.com/Textualize/rich/releases) - [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md) - [Commits](Textualize/rich@v13.9.1...v13.9.2) --- updated-dependencies: - dependency-name: rich dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump faker from 30.1.0 to 30.3.0 Bumps [faker](https://github.com/joke2k/faker) from 30.1.0 to 30.3.0. - [Release notes](https://github.com/joke2k/faker/releases) - [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md) - [Commits](joke2k/faker@v30.1.0...v30.3.0) --- updated-dependencies: - dependency-name: faker dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump black from 24.8.0 to 24.10.0 Bumps [black](https://github.com/psf/black) from 24.8.0 to 24.10.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](psf/black@24.8.0...24.10.0) --- updated-dependencies: - dependency-name: black dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump tuf from 5.0.0 to 5.1.0 Bumps [tuf](https://github.com/theupdateframework/python-tuf) from 5.0.0 to 5.1.0. - [Release notes](https://github.com/theupdateframework/python-tuf/releases) - [Changelog](https://github.com/theupdateframework/python-tuf/blob/develop/docs/CHANGELOG.md) - [Commits](theupdateframework/python-tuf@v5.0.0...v5.1.0) --- updated-dependencies: - dependency-name: tuf dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump charset-normalizer from 3.3.2 to 3.4.0 Bumps [charset-normalizer](https://github.com/Ousret/charset_normalizer) from 3.3.2 to 3.4.0. - [Release notes](https://github.com/Ousret/charset_normalizer/releases) - [Changelog](https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md) - [Commits](jawah/charset_normalizer@3.3.2...3.4.0) --- updated-dependencies: - dependency-name: charset-normalizer dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump xmltodict from 0.13.0 to 0.14.0 Bumps [xmltodict](https://github.com/martinblech/xmltodict) from 0.13.0 to 0.14.0. - [Changelog](https://github.com/martinblech/xmltodict/blob/master/CHANGELOG.md) - [Commits](martinblech/xmltodict@v0.13.0...v0.14.0) --- updated-dependencies: - dependency-name: xmltodict dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump s3transfer from 0.10.2 to 0.10.3 Bumps [s3transfer](https://github.com/boto/s3transfer) from 0.10.2 to 0.10.3. - [Changelog](https://github.com/boto/s3transfer/blob/develop/CHANGELOG.rst) - [Commits](boto/s3transfer@0.10.2...0.10.3) --- updated-dependencies: - dependency-name: s3transfer dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump markupsafe from 2.1.5 to 3.0.1 Bumps [markupsafe](https://github.com/pallets/markupsafe) from 2.1.5 to 3.0.1. - [Release notes](https://github.com/pallets/markupsafe/releases) - [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst) - [Commits](pallets/markupsafe@2.1.5...3.0.1) --- updated-dependencies: - dependency-name: markupsafe dependency-type: indirect update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump types-s3transfer from 0.10.2 to 0.10.3 Bumps [types-s3transfer](https://github.com/youtype/types-s3transfer) from 0.10.2 to 0.10.3. - [Release notes](https://github.com/youtype/types-s3transfer/releases) - [Commits](https://github.com/youtype/types-s3transfer/commits) --- updated-dependencies: - dependency-name: types-s3transfer dependency-type: indirect update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump isodate from 0.6.1 to 0.7.2 Bumps [isodate](https://github.com/gweis/isodate) from 0.6.1 to 0.7.2. - [Changelog](https://github.com/gweis/isodate/blob/master/CHANGES.txt) - [Commits](gweis/isodate@0.6.1...0.7.2) --- updated-dependencies: - dependency-name: isodate dependency-type: indirect update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump sentry-sdk from 2.15.0 to 2.16.0 Bumps [sentry-sdk](https://github.com/getsentry/sentry-python) from 2.15.0 to 2.16.0. - [Release notes](https://github.com/getsentry/sentry-python/releases) - [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md) - [Commits](getsentry/sentry-python@2.15.0...2.16.0) --- updated-dependencies: - dependency-name: sentry-sdk dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * chore(deps): bump mkdocs-macros-plugin from 1.2.0 to 1.3.4 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com> Co-authored-by: Ee Durbin <ewdurbin@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Co-authored-by: Andrew Murray <radarhere@users.noreply.github.com> Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pypi-combine-prs[bot] <144945619+pypi-combine-prs[bot]@users.noreply.github.com>
Bumps [types-setuptools](https://github.com/python/typeshed) from 75.2.0.20241018 to 75.2.0.20241019. - [Commits](https://github.com/python/typeshed/commits) --- updated-dependencies: - dependency-name: types-setuptools dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [cryptography](https://github.com/pyca/cryptography) from 43.0.1 to 43.0.3. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@43.0.1...43.0.3) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ee Durbin <ewdurbin@gmail.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Adds `warehouse.attestations.build_provenance.ok` to signal when a provenance object is persisted to DB. Signed-off-by: William Woodruff <william@trailofbits.com>
Signed-off-by: William Woodruff <william@trailofbits.com>
Co-authored-by: Mike Fiedler <miketheman@gmail.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot]
Can you help keep this open source service alive? 💖 Please sponsor : )