Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add dependabot to monitor GitHub Actions and Python dependencies #713

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Add dependabot to monitor GitHub Actions and Python dependencies #713

wants to merge 3 commits into from

Commits on Dec 27, 2023

  1. Add dependabot to monitor GHAs and Python deps 

    Signed-off-by: Pedro Kaj Kjellerup Nacht <[email protected]>
    @pnacht
    pnacht committed Dec 27, 2023
    Configuration menu
    Copy the full SHA
    0675575 View commit details
    Browse the repository at this point in the history

  2. Bump GitHub Actions to latest versions 

    Bumps the github-actions group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https:/actions/checkout) | `3` | `4` |
| [actions/github-script](https:/actions/github-script) | `6` | `7` |
| [actions/cache](https:/actions/cache) | `2` | `3` |
| [peter-evans/create-pull-request](https:/peter-evans/create-pull-request) | `4` | `5` |
| [actions/stale](https:/actions/stale) | `5` | `9` |


Updates `actions/checkout` from 3 to 4
- [Release notes](https:/actions/checkout/releases)
- [Changelog](https:/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v3...v4)

Updates `actions/github-script` from 6 to 7
- [Release notes](https:/actions/github-script/releases)
- [Commits](actions/github-script@v6...v7)

Updates `actions/cache` from 2 to 3
- [Release notes](https:/actions/cache/releases)
- [Changelog](https:/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@v2...v3)

Updates `peter-evans/create-pull-request` from 4 to 5
- [Release notes](https:/peter-evans/create-pull-request/releases)
- [Commits](peter-evans/create-pull-request@v4...v5)

Updates `actions/stale` from 5 to 9
- [Release notes](https:/actions/stale/releases)
- [Changelog](https:/actions/stale/blob/main/CHANGELOG.md)
- [Commits](actions/stale@v5...v9)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: peter-evans/create-pull-request
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 27, 2023
    Configuration menu
    Copy the full SHA
    7707e03 View commit details
    Browse the repository at this point in the history

  3. Bump Python dependencies to latest versions 

    Updates the requirements on [scipy](https:/scipy/scipy), [numpy](https:/numpy/numpy), [black](https:/psf/black), [isort](https:/pycqa/isort) and [flake8](https:/pycqa/flake8) to permit the latest version.

Updates `scipy` to 1.11.4
- [Release notes](https:/scipy/scipy/releases)
- [Commits](scipy/scipy@v1.9.2...v1.11.4)

Updates `numpy` to 1.26.2
- [Release notes](https:/numpy/numpy/releases)
- [Changelog](https:/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](numpy/numpy@v1.24.3...v1.26.2)

Updates `black` from 22.3.0 to 23.12.1
- [Release notes](https:/psf/black/releases)
- [Changelog](https:/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@22.3.0...23.12.1)

Updates `isort` from 5.10.1 to 5.13.2
- [Release notes](https:/pycqa/isort/releases)
- [Changelog](https:/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](PyCQA/isort@5.10.1...5.13.2)

Updates `flake8` from 4.0.1 to 6.1.0
- [Commits](PyCQA/flake8@4.0.1...6.1.0)

---
updated-dependencies:
- dependency-name: scipy
  dependency-type: direct:production
  dependency-group: python
- dependency-name: numpy
  dependency-type: direct:production
  dependency-group: python
- dependency-name: black
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: python
- dependency-name: isort
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: flake8
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: python
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    @dependabot
    dependabot[bot] authored Dec 27, 2023
    Configuration menu
    Copy the full SHA
    23997dc View commit details
    Browse the repository at this point in the history