Skip to content

Commit 3b45827

Browse files
authored
Merge branch 'main' into feat/no-fix-licenses
2 parents 00d15db + 68557c3 commit 3b45827

7 files changed

Lines changed: 71 additions & 36 deletions

File tree

.github/PULL_REQUEST_TEMPLATE.md

Lines changed: 39 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,39 @@
1+
<!--🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅
2+
3+
You can expedite processing of your PR by using this template to provide context
4+
and additional information. Before actually opening a PR please make sure that it
5+
does NOT fall into any of the following categories
6+
7+
🚫 Spam PRs (accidental or intentional) - these will result in a 30-days or even
8+
∞ ban from interacting with the project depending on reoccurrence and severity.
9+
10+
🚫 Lazy typo fixing PRs - if you fix a typo in a file, your PR will only be merged
11+
if all other typos in the same file are also fixed with the same PR
12+
13+
🚫 If you fail to provide any _Description_ below, your PR will be considered spam.
14+
If you do not check the _Affirmation_ box below, your PR will not be merged.
15+
16+
🚫 If you do not check one of the _AI Tool Disclosure_ boxes below, your PR will
17+
not be merged. If you used AI tools to assist you in writing code, but fail to
18+
provide the required disclosure, your PR will not be merged.
19+
20+
🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅🔅-->
21+
22+
### Description
23+
24+
<!-- ✍️-->
25+
A clear and concise summary of the change and which issue (if any) it fixes. Should also include relevant motivation and context.
26+
27+
Resolves or fixes issue: <!-- ✍️ Add GitHub issue number in format `#0000` or `none` -->
28+
29+
### AI Tool Disclosure
30+
31+
- [ ] My contribution does not include any AI-generated content
32+
- [ ] My contribution includes AI-generated content, as disclosed below:
33+
- AI Tools: `[e.g. GitHub CoPilot, ChatGPT, JetBrains Junie etc.]`
34+
- LLMs and versions: `[e.g. GPT-4.1, Claude Haiku 4.5, Gemini 2.5 Pro etc.]`
35+
- Prompts: `[Summarize the key prompts or instructions given to the AI tools]`
36+
37+
### Affirmation
38+
39+
- [ ] My code follows the [CONTRIBUTING.md](https://github.com/CycloneDX/cyclonedx-python/blob/main/CONTRIBUTING.md) guidelines

.github/workflows/docker.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -48,7 +48,7 @@ jobs:
4848
steps:
4949
- name: Checkout code
5050
# see https://github.com/actions/checkout
51-
uses: actions/checkout@v5
51+
uses: actions/checkout@v6
5252
with:
5353
fetch-depth: 0
5454
- name: setup reports-dir
@@ -76,7 +76,7 @@ jobs:
7676
!failure() && !cancelled() &&
7777
steps.after-release.outputs.released
7878
# see https://github.com/actions/upload-artifact
79-
uses: actions/upload-artifact@v5
79+
uses: actions/upload-artifact@v6
8080
with:
8181
name: ${{ env.RUN_ARTIFACT_PYTHON_DIST }}
8282
path: ${{ env.DIST_SOURCE_DIR }}/
@@ -108,7 +108,7 @@ jobs:
108108
- name: Artifact reports
109109
if: ${{ ! cancelled() }}
110110
# see https://github.com/actions/upload-artifact
111-
uses: actions/upload-artifact@v5
111+
uses: actions/upload-artifact@v6
112112
with:
113113
name: ${{ env.REPORTS_ARTIFACT }}
114114
path: ${{ env.REPORTS_DIR }}

.github/workflows/python.yml

Lines changed: 11 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -52,7 +52,7 @@ jobs:
5252
steps:
5353
- name: Checkout
5454
# see https://github.com/actions/checkout
55-
uses: actions/checkout@v5
55+
uses: actions/checkout@v6
5656
- name: Setup Python Environment
5757
# see https://github.com/actions/setup-python
5858
uses: actions/setup-python@v6
@@ -75,7 +75,7 @@ jobs:
7575
steps:
7676
- name: Checkout
7777
# see https://github.com/actions/checkout
78-
uses: actions/checkout@v5
78+
uses: actions/checkout@v6
7979
- name: Setup Python Environment
8080
# see https://github.com/actions/setup-python
8181
uses: actions/setup-python@v6
@@ -98,7 +98,7 @@ jobs:
9898
steps:
9999
- name: Checkout
100100
# see https://github.com/actions/checkout
101-
uses: actions/checkout@v5
101+
uses: actions/checkout@v6
102102
- name: Setup Python Environment
103103
# see https://github.com/actions/setup-python
104104
uses: actions/setup-python@v6
@@ -131,7 +131,7 @@ jobs:
131131
steps:
132132
- name: Checkout
133133
# see https://github.com/actions/checkout
134-
uses: actions/checkout@v5
134+
uses: actions/checkout@v6
135135
- name: Setup Python Environment
136136
# see https://github.com/actions/setup-python
137137
uses: actions/setup-python@v6
@@ -154,7 +154,7 @@ jobs:
154154
steps:
155155
- name: Checkout
156156
# see https://github.com/actions/checkout
157-
uses: actions/checkout@v5
157+
uses: actions/checkout@v6
158158
- name: Setup Python Environment
159159
# see https://github.com/actions/setup-python
160160
uses: actions/setup-python@v6
@@ -187,7 +187,7 @@ jobs:
187187
steps:
188188
- name: Checkout
189189
# see https://github.com/actions/checkout
190-
uses: actions/checkout@v5
190+
uses: actions/checkout@v6
191191
- name: Setup Python Environment
192192
# see https://github.com/actions/setup-python
193193
uses: actions/setup-python@v6
@@ -217,21 +217,14 @@ jobs:
217217
- "3.10"
218218
- "3.9" # lowest supported -- handled in include
219219
exclude:
220-
- os: macos-latest
220+
- os: macos-latest # macos-latest is incompatible with some PY versions
221221
python-version: "3.10"
222-
- os: macos-latest
222+
- os: macos-latest # macos-latest is incompatible with some PY versions
223223
python-version: "3.9"
224-
include:
225-
- os: macos-13
226-
python-version: "3.10"
227-
unittest-args: []
228-
- os: macos-13
229-
python-version: "3.9"
230-
unittest-args: []
231224
steps:
232225
- name: Checkout
233226
# see https://github.com/actions/checkout
234-
uses: actions/checkout@v5
227+
uses: actions/checkout@v6
235228
- name: Create reports directory
236229
run: mkdir ${{ env.REPORTS_DIR }}
237230
- name: Setup Python Environment
@@ -269,7 +262,7 @@ jobs:
269262
- name: Artifact reports
270263
if: ${{ ! cancelled() }}
271264
# see https://github.com/actions/upload-artifact
272-
uses: actions/upload-artifact@v5
265+
uses: actions/upload-artifact@v6
273266
with:
274267
name: '${{ env.TESTS_REPORTS_ARTIFACT }}_bnt_${{ matrix.os }}_py${{ matrix.python-version }}'
275268
path: ${{ env.REPORTS_DIR }}
@@ -283,7 +276,7 @@ jobs:
283276
steps:
284277
- name: fetch test artifacts
285278
# see https://github.com/actions/download-artifact
286-
uses: actions/download-artifact@v6
279+
uses: actions/download-artifact@v7
287280
with:
288281
pattern: '${{ env.TESTS_REPORTS_ARTIFACT }}_bnt_*'
289282
merge-multiple: true

.github/workflows/release.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -60,7 +60,7 @@ env:
6060
REPORTS_DIR: CI_reports
6161
DIST_DIR: dist
6262
DIST_ARTIFACT: python-dist
63-
PYTHON_VERSION_DEFAULT: "3.12"
63+
PYTHON_VERSION_DEFAULT: "3.14"
6464
POETRY_VERSION: "1.8.1"
6565

6666
permissions: {}
@@ -71,7 +71,7 @@ jobs:
7171
steps:
7272
- name: Checkout code
7373
# see https://github.com/actions/checkout
74-
uses: actions/checkout@v5
74+
uses: actions/checkout@v6
7575
- name: Setup Python Environment
7676
# see https://github.com/actions/setup-python
7777
uses: actions/setup-python@v6
@@ -94,7 +94,7 @@ jobs:
9494
steps:
9595
- name: Checkout
9696
# see https://github.com/actions/checkout
97-
uses: actions/checkout@v5
97+
uses: actions/checkout@v6
9898
- name: Setup Python Environment
9999
# see https://github.com/actions/setup-python
100100
uses: actions/setup-python@v6
@@ -132,7 +132,7 @@ jobs:
132132
steps:
133133
- name: Checkout code
134134
# see https://github.com/actions/checkout
135-
uses: actions/checkout@v5
135+
uses: actions/checkout@v6
136136
with:
137137
fetch-depth: 0
138138
- name: Setup python
@@ -184,7 +184,7 @@ jobs:
184184
!failure() && !cancelled() &&
185185
steps.release.outputs.released == 'true'
186186
# see https://github.com/actions/upload-artifact
187-
uses: actions/upload-artifact@v5
187+
uses: actions/upload-artifact@v6
188188
with:
189189
name: ${{ env.DIST_ARTIFACT }}
190190
path: ${{ env.DIST_DIR }}/
@@ -220,7 +220,7 @@ jobs:
220220
echo "GHCR_REPO=${GHCR_REPO@L}" >> "${GITHUB_ENV}"
221221
- name: Checkout code (${{ env.TAG }})
222222
# see https://github.com/actions/checkout
223-
uses: actions/checkout@v5
223+
uses: actions/checkout@v6
224224
with:
225225
ref: ${{ needs.release-PyPI.outputs.tag }}
226226
- name: setup dirs
@@ -229,7 +229,7 @@ jobs:
229229
mkdir "$DIST_DIR"
230230
- name: Fetch python dist artifact
231231
# see https://github.com/actions/download-artifact
232-
uses: actions/download-artifact@v6
232+
uses: actions/download-artifact@v7
233233
with:
234234
name: ${{ env.DIST_ARTIFACT }}
235235
path: ${{ env.DIST_DIR }}/
@@ -262,7 +262,7 @@ jobs:
262262
- name: Artifact reports
263263
if: ${{ ! cancelled() }}
264264
# see https://github.com/actions/upload-artifact
265-
uses: actions/upload-artifact@v5
265+
uses: actions/upload-artifact@v6
266266
with:
267267
name: ${{ env.ARTIFACT_DOCKER_SBOM }}
268268
path: ${{ env.REPORTS_DIR }}/*.bom.*

.readthedocs.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -6,9 +6,9 @@ version: 2
66

77
# Set the version of Python and other tools you might need
88
build:
9-
os: ubuntu-22.04
9+
os: ubuntu-lts-latest
1010
tools:
11-
python: "3.9"
11+
python: "3.14"
1212
# You can also specify other tool versions:
1313
# nodejs: "16"
1414
# rust: "1.55"

docs/requirements.txt

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,3 @@
11
m2r2>=0.3.2
2-
sphinx>=7.2.6,<9
3-
sphinx-rtd-theme>=2.0.0,<3
2+
sphinx>=8,<9
3+
sphinx-rtd-theme>=3,<4

pyproject.toml

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -92,11 +92,14 @@ pep8-naming = "0.15.1"
9292
flake8-logging = "1.8.0"
9393
isort = "6.1.0"
9494
autopep8 = "2.3.2"
95-
mypy = "1.18.2"
95+
mypy = "1.19.1"
9696
bandit = "1.8.6"
9797
tomli = { version = "^2.0.1", python = "<3.11" }
9898
tox = "4.30.3"
99-
pyupgrade = "3.21.0"
99+
pyupgrade = [
100+
{ version = "3.21.0", python = "<3.10" },
101+
{ version = "3.21.2", python = ">=3.10" },
102+
]
100103
deptry = "0.23.1"
101104
# for tests, use the GPL-version of jsonschema format validators - they are faster
102105
jsonschema = { version = "*", extras = ["format"] }
@@ -111,7 +114,7 @@ pip = ">=23.0"
111114
pipenv = ">=2023.11.5"
112115
poetry = "^1.7"
113116
pdm = "^2.11"
114-
uv = "0.9.9" # keep pinned to exact version, until a v1.0.0 is released
117+
uv = "0.9.13" # keep pinned to exact version, until a v1.0.0 is released
115118

116119

117120

0 commit comments

Comments
 (0)