Bump protobuf from 5.28.3 to 5.29.0 #162
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
🛡️ Bandit Scan Results SummaryWe found 0 High, 0 Medium, and 0 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
Bumps [protobuf](https://github.com/protocolbuffers/protobuf) from 5.28.3 to 5.29.0. - [Release notes](https://github.com/protocolbuffers/protobuf/releases) - [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl) - [Commits](protocolbuffers/protobuf@v5.28.3...v5.29.0) --- updated-dependencies: - dependency-name: protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
force-pushed
the
dependabot/pip/protobuf-5.29.0
branch
from
b55b718 to
553abd3
Compare
🛡️ Bandit Scan Results SummaryWe found 0 High, 0 Medium, and 0 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
🛡️ Bandit Scan Results SummaryWe found 0 High, 0 Medium, and 0 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
Bumps protobuf from 5.28.3 to 5.29.0.
Commits
2d4414fUpdating version.json and repo version numbers to: 29.0870e599Revert upgrade to rules_java 8.3.1. This is a partial roll-back of fb8ee79 (#...02cffa4Fix typo in BCR maintainer name config for acozzette@ (#19307)7537b03Remove Bazel 6 in BCR presubmits (#19309)325aa80Merge pull request #19305 from protocolbuffers/29.x-202411182222c13eb62Updating version.json and repo version numbers to: 29.0-dev71c2594Updating version.json and repo version numbers to: 29.0-rc3b69ea96Fixed non-conformance in JSON parsing for empty strings in numeric fields. (#...fb8ee79Upgrade rules_cc 0.0.15 and rules_java 8.3.1 (#19215)6f310d5Add missing line to docstring after Args (#19213)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)