Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps-dev): bump dependent package and tools versions #12

Merged
merged 6 commits into from
Oct 14, 2021
Merged

chore(deps-dev): bump dependent package and tools versions #12

merged 6 commits into from
Oct 14, 2021

Conversation

jenstroeger
Copy link
Owner

No description provided.

dependabot bot and others added 6 commits October 13, 2021 21:02
@dependabot
chore(deps-dev): bump hypothesis from 6.21.6 to 6.23.2 (#7)
87d0f2b 
Bumps [hypothesis](https://github.com/HypothesisWorks/hypothesis) from 6.21.6 to 6.23.2.
- [Release notes](https://github.com/HypothesisWorks/hypothesis/releases)
- [Commits](HypothesisWorks/hypothesis@hypothesis-python-6.21.6...hypothesis-python-6.23.2)

---
updated-dependencies:
- dependency-name: hypothesis
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump pre-commit from 2.13.0 to 2.15.0 (#8)
76b0d60 
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 2.13.0 to 2.15.0.
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/master/CHANGELOG.md)
- [Commits](pre-commit/pre-commit@v2.13.0...v2.15.0)

---
updated-dependencies:
- dependency-name: pre-commit
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump python-semantic-release from 7.16.2 to 7.19.2 (#10
72deae8 
)

Bumps [python-semantic-release](https://github.com/relekang/python-semantic-release) from 7.16.2 to 7.19.2.
- [Release notes](https://github.com/relekang/python-semantic-release/releases)
- [Changelog](https://github.com/relekang/python-semantic-release/blob/master/CHANGELOG.md)
- [Commits](python-semantic-release/python-semantic-release@v7.16.2...v7.19.2)

---
updated-dependencies:
- dependency-name: python-semantic-release
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps-dev): bump flake8 from 3.9.2 to 4.0.1 (#11)
5a2d131 
Bumps [flake8](https://github.com/pycqa/flake8) from 3.9.2 to 4.0.1.
- [Release notes](https://github.com/pycqa/flake8/releases)
- [Commits](PyCQA/flake8@3.9.2...4.0.1)

---
updated-dependencies:
- dependency-name: flake8
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot @jenstroeger
chore(deps-dev): bump pytest-cov from 2.12.1 to 3.0.0 (#9)
7378be1 
Bumps [pytest-cov](https://github.com/pytest-dev/pytest-cov) from 2.12.1 to 3.0.0.
- [Release notes](https://github.com/pytest-dev/pytest-cov/releases)
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v2.12.1...v3.0.0)

---
updated-dependencies:
- dependency-name: pytest-cov
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Jens Tröger <jenstroeger@users.noreply.github.com>
@jenstroeger
chore(deps-dev): bump pre-commit tools dependencies
9ffac17
@jenstroeger jenstroeger added the dependencies Pull requests that update a dependency file label Oct 13, 2021
@jenstroeger jenstroeger requested a review from behnazh October 13, 2021 11:23
behnazh
behnazh reviewed Oct 13, 2021
View reviewed changes
Copy link
Collaborator

@behnazh behnazh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

chore(deps-dev) is used as the scope to avoid bumping the version because the updated dependencies are not part of the production code. Looks good to me 👍

@jenstroeger
Copy link
Owner Author

We can keep this PR open for another day or two, in case Dependabot pushes more updates.

Unfortunately, Dependabot does not consider checking & updating the pre-commit-config.yml file (see issue dependabot/dependabot-core#1524). But we’d address that using a dedicated Action as described in this blog. Separate PR, perhaps?

@jenstroeger jenstroeger marked this pull request as ready for review October 14, 2021 08:30
@jenstroeger
Copy link
Owner Author

@behnazh, I think this PR needs to be merged to avoid Dependabot alerts.

@jenstroeger jenstroeger merged commit 3e24c3b into master Oct 14, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@behnazh behnazh behnazh approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jenstroeger @behnazh