Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
chore(deps-dev): Update bandit requirement from 1.7.9 to 1.7.10 (Cycl…
…oneDX#803) Updates the requirements on [bandit](https://github.com/PyCQA/bandit) to permit the latest version. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/PyCQA/bandit/releases">bandit's releases</a>.</em></p> <blockquote> <h2>1.7.10</h2> <h2>What's Changed</h2> <ul> <li>Bump docker/build-push-action from 5.4.0 to 6.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1147">PyCQA/bandit#1147</a></li> <li>Suggested small refactors in assignments by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1150">PyCQA/bandit#1150</a></li> <li>Performance improvement in blacklist function by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1148">PyCQA/bandit#1148</a></li> <li>Add test for usage of FTP_TLS by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1149">PyCQA/bandit#1149</a></li> <li>New check: B113: TrojanSource - Bidirectional control characters by <a href="https://github.com/Lucas-C"><code>@Lucas-C</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/757">PyCQA/bandit#757</a></li> <li>Bump docker/build-push-action from 6.0.0 to 6.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1152">PyCQA/bandit#1152</a></li> <li>feat(plugins): add support for <code>httpx</code> in <code>B113</code> by <a href="https://github.com/mkniewallner"><code>@mkniewallner</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1060">PyCQA/bandit#1060</a></li> <li>Nit: remove unused variable by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1153">PyCQA/bandit#1153</a></li> <li>Add recent releases to version choice in bug report by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1151">PyCQA/bandit#1151</a></li> <li>Bump docker/build-push-action from 6.1.0 to 6.2.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1155">PyCQA/bandit#1155</a></li> <li>Bump docker/build-push-action from 6.2.0 to 6.3.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1157">PyCQA/bandit#1157</a></li> <li>Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1156">PyCQA/bandit#1156</a></li> <li>Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1158">PyCQA/bandit#1158</a></li> <li>Bump docker/login-action from 3.2.0 to 3.3.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1159">PyCQA/bandit#1159</a></li> <li>Bump docker/build-push-action from 6.3.0 to 6.5.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1160">PyCQA/bandit#1160</a></li> <li>Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1163">PyCQA/bandit#1163</a></li> <li>Bump docker/build-push-action from 6.5.0 to 6.6.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1166">PyCQA/bandit#1166</a></li> <li>Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1165">PyCQA/bandit#1165</a></li> <li>Bump docker/build-push-action from 6.6.1 to 6.7.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1168">PyCQA/bandit#1168</a></li> <li>Use consistent file naming of docs by <a href="https://github.com/ericwb"><code>@ericwb</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1170">PyCQA/bandit#1170</a></li> <li>Pytorch Load / Save Plugin by <a href="https://github.com/lukehinds"><code>@lukehinds</code></a> in <a href="https://redirect.github.com/PyCQA/bandit/pull/1114">PyCQA/bandit#1114</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Lucas-C"><code>@Lucas-C</code></a> made their first contribution in <a href="https://redirect.github.com/PyCQA/bandit/pull/757">PyCQA/bandit#757</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10">https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/PyCQA/bandit/commit/36fd65054fc8864b4037d0918904f9331512feb5"><code>36fd650</code></a> Pytorch Load / Save Plugin (<a href="https://redirect.github.com/PyCQA/bandit/issues/1114">#1114</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/4ac55dfaaacf2083497831294b2dcd7e679f8428"><code>4ac55df</code></a> Use consistent file naming of docs (<a href="https://redirect.github.com/PyCQA/bandit/issues/1170">#1170</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/68022aa1d626a7702e3154987f4be278484033fb"><code>68022aa</code></a> Bump docker/build-push-action from 6.6.1 to 6.7.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1168">#1168</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/77566a00b6c2486049247acdf6dab327dc03845b"><code>77566a0</code></a> Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1165">#1165</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/221ced660e04fe84d617e625114afa7fdbe173f3"><code>221ced6</code></a> Bump docker/build-push-action from 6.5.0 to 6.6.1 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1166">#1166</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/701b7d541723f7543663f7798a5266f5141f3212"><code>701b7d5</code></a> Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1163">#1163</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/320495c4cf0c14f1b376d5699b581b994f509af4"><code>320495c</code></a> Bump docker/build-push-action from 6.3.0 to 6.5.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1160">#1160</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/90490c705926432df1922e5b73b94d0e21958c1a"><code>90490c7</code></a> Bump docker/login-action from 3.2.0 to 3.3.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1159">#1159</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/708ab749502d79556eae5778561a7ae16b31be22"><code>708ab74</code></a> Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1158">#1158</a>)</li> <li><a href="https://github.com/PyCQA/bandit/commit/89d2345a8edbd6e1ade45e01919462910ed47ce3"><code>89d2345</code></a> Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 (<a href="https://redirect.github.com/PyCQA/bandit/issues/1156">#1156</a>)</li> <li>Additional commits viewable in <a href="https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information
1 parent
2ae46ff
commit 01c1354