dependabot[bot]
40f31c3078
Bump slsa-framework/slsa-github-generator from 1.5.0 to 1.6.0
...
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator ) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases )
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md )
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.5.0...v1.6.0 )
---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-01 16:56:43 +00:00
David Lord
d0bf462866
Merge branch '2.3.x'
2023-05-09 12:38:00 -07:00
David Lord
4911012cf4
update workflows
...
update publish parameter names
remove pip update
2023-05-09 12:37:33 -07:00
David Lord
7b31099252
Merge pull request #5106 from pallets/dependabot/github_actions/pypa/gh-action-pypi-publish-1.8.5
...
Bump pypa/gh-action-pypi-publish from 1.8.4 to 1.8.5
2023-05-01 10:22:01 -07:00
dependabot[bot]
dcd25d8f07
Bump actions/checkout from 3.5.0 to 3.5.2
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8f4b7f8486...8e5e7e5ab8
2023-05-01 17:18:16 +00:00
dependabot[bot]
ec8ca69195
Bump pypa/gh-action-pypi-publish from 1.8.4 to 1.8.5
...
Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish ) from 1.8.4 to 1.8.5.
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases )
- [Commits](29930c9cf5...0bf742be3e
2023-05-01 16:57:14 +00:00
dependabot[bot]
b7b753b96c
Bump actions/setup-python from 4.5.0 to 4.6.0
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](d27e3f3d7c...57ded4d7d5
2023-05-01 16:57:10 +00:00
David Lord
2e8fe7b2f2
drop support for python 3.7
2023-04-20 11:09:55 -07:00
David Lord
9659b11a45
remove pypy 3.8 and 3.7 from tests
2023-04-20 10:15:58 -07:00
David Lord
f7d9956c0f
use oidc instead of token
2023-04-13 08:18:14 -07:00
David Lord
a361ef6368
Merge pull request #5038 from pallets/dependabot/github_actions/pypa/gh-action-pypi-publish-1.8.4
...
Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.8.4
2023-04-03 06:19:09 -07:00
David Lord
c2688e4f06
Merge pull request #5040 from pallets/dependabot/github_actions/actions/cache-3.3.1
...
Bump actions/cache from 3.2.6 to 3.3.1
2023-04-03 06:18:57 -07:00
dependabot[bot]
4909e8ff86
Bump actions/cache from 3.2.6 to 3.3.1
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.2.6 to 3.3.1.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](69d9d449ac...88522ab9f3
2023-04-01 16:57:11 +00:00
dependabot[bot]
6a6c83789f
Bump actions/checkout from 3.3.0 to 3.5.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.3.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](ac59398561...8f4b7f8486
2023-04-01 16:57:06 +00:00
dependabot[bot]
29676a273a
Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.8.4
...
Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish ) from 1.6.4 to 1.8.4.
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases )
- [Commits](c7f29f7ade...29930c9cf5
2023-04-01 16:57:01 +00:00
David Lord
2f67e0fe4a
Merge pull request #5005 from pallets/dependabot/github_actions/slsa-framework/slsa-github-generator-1.5.0
...
Bump slsa-framework/slsa-github-generator from 1.4.0 to 1.5.0
2023-03-01 09:04:40 -08:00
dependabot[bot]
b8eb83940c
Bump actions/cache from 3.2.4 to 3.2.6
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.2.4 to 3.2.6.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](627f0f41f6...69d9d449ac
2023-03-01 16:57:34 +00:00
dependabot[bot]
3cdcc729a7
Bump slsa-framework/slsa-github-generator from 1.4.0 to 1.5.0
...
Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator ) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases )
- [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md )
- [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.4.0...v1.5.0 )
---
updated-dependencies:
- dependency-name: slsa-framework/slsa-github-generator
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-03-01 16:57:31 +00:00
David Lord
88069bd417
Merge pull request #4959 from pallets/dependabot/github_actions/actions/cache-3.2.4
...
Bump actions/cache from 3.2.3 to 3.2.4
2023-02-01 08:55:09 -08:00
dependabot[bot]
74c256872b
Bump actions/cache from 3.2.3 to 3.2.4
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3.2.3 to 3.2.4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](58c146cc91...627f0f41f6
2023-02-01 16:01:30 +00:00
dependabot[bot]
94a23a3e24
Bump actions/setup-python from 4.4.0 to 4.5.0
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 4.4.0 to 4.5.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](5ccb29d877...d27e3f3d7c
2023-02-01 16:01:23 +00:00
David Lord
ef85270d9a
Merge branch '2.2.x'
2023-01-20 13:50:23 -08:00
David Lord
0b4b61146f
build, provenance, publish workflow
2023-01-20 13:45:15 -08:00
David Lord
6d6d986fc5
switch to pyproject.toml
2023-01-18 10:32:51 -08:00
David Lord
9da947a279
set workflow permissions
2023-01-09 12:45:16 -08:00
David Lord
3812a52e96
Merge branch '2.2.x'
2023-01-09 12:39:48 -08:00
David Lord
2a9d16d011
update tested python versions
...
test 3.11 final
test 3.12 dev
update for tox 4
2023-01-09 10:37:59 -08:00
dependabot[bot]
bb1f83c265
Bump dessant/lock-threads from 3 to 4
...
Bumps [dessant/lock-threads](https://github.com/dessant/lock-threads ) from 3 to 4.
- [Release notes](https://github.com/dessant/lock-threads/releases )
- [Changelog](https://github.com/dessant/lock-threads/blob/master/CHANGELOG.md )
- [Commits](https://github.com/dessant/lock-threads/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: dessant/lock-threads
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-01-01 16:01:00 +00:00
David Lord
50df54e4c7
explain workflow
2022-07-04 08:35:36 -07:00
dependabot[bot]
2589328485
Bump actions/setup-python from 3 to 4
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-07-01 16:05:52 +00:00
dependabot[bot]
9f4f559f59
Bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-04-01 16:04:08 +00:00
dependabot[bot]
7dc26a1f41
Bump actions/setup-python from 2 to 3
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 2 to 3.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-01 16:04:16 +00:00
David Lord
e37e87140e
Merge branch '2.0.x'
2022-02-09 07:37:43 -08:00
David Lord
925674761e
cache pip with setup-python action
2022-02-08 12:26:25 -08:00
David Lord
66f2ac6696
update tool config
2022-01-13 14:42:36 -08:00
David Lord
9e00becf3a
update option names for v3
2021-12-22 15:53:23 -08:00
dependabot[bot]
a65683a65c
Bump dessant/lock-threads from 2 to 3
...
Bumps [dessant/lock-threads](https://github.com/dessant/lock-threads ) from 2 to 3.
- [Release notes](https://github.com/dessant/lock-threads/releases )
- [Changelog](https://github.com/dessant/lock-threads/blob/master/CHANGELOG.md )
- [Commits](https://github.com/dessant/lock-threads/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: dessant/lock-threads
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-22 23:43:55 +00:00
David Lord
ea66c68553
Merge branch '2.0.x'
2021-11-15 13:26:06 -08:00
David Lord
4e8787b915
test min/dev versions of pallets deps
2021-11-15 13:08:34 -08:00
David Lord
e609dddd60
drop Python 3.6
2021-11-11 16:11:43 -08:00
David Lord
1f40c77f1d
test Python 3.10 and 3.11
2021-11-05 09:13:55 -07:00
David Lord
52adf2ec21
rename default branch in files
2021-05-11 15:18:41 -07:00
pgjones
f405c6f19e
Initial typing support
...
This enables type checking in CI and marks the project as typed.
2021-04-26 17:20:24 +01:00
David Lord
8d9501598f
use rtd to build docs for prs
...
skip code tests when only docs change
2021-02-16 08:36:14 -08:00
David Lord
bfd4dc6d30
update test config
2021-02-08 18:17:45 -08:00
Pedro Lourenço
0855252f8c
Fix ci environment command syntax ( #3836 )
2020-11-17 09:58:43 -08:00
Pedro Lourenço
d6b974f821
update deprecated set-env ci command ( #3835 )
2020-11-17 09:38:38 -08:00
David Lord
b2464883ce
reduce lock schedule to daily
2020-11-14 05:38:05 -08:00
David Lord
f325b8b5be
add lock threads workflow
2020-11-13 16:28:13 -08:00
David Lord
7a444c5dab
update tests for new werkzeug client ( #3827 )
...
Flask's client.open mirrors Werkzeug's for processing an existing
environ.
Always test with latest code for other Pallets projects. This will
be changed back once the new versions are released.
2020-11-04 18:00:21 -08:00
