Skip to content

Commit 0bd9316

Browse files
dependabot[bot]dependabot[bot]
authored
Upgrade: [dependabot] - bump gitpython from 3.1.46 to 3.1.47 (#741)
Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.46 to 3.1.47. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gitpython-developers/GitPython/releases">gitpython's releases</a>.</em></p> <blockquote> <h2>3.1.47 - with security fixes</h2> <h2>Advisories</h2> <ul> <li><a href="https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4">https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4</a></li> <li><a href="https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485">https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485</a></li> </ul> <h2>What's Changed</h2> <ul> <li>Prepare next release by <a href="https://github.com/Byron"><code>@​Byron</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2095">gitpython-developers/GitPython#2095</a></li> <li>Bump git/ext/gitdb from <code>335c0f6</code> to <code>4c63ee6</code> by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2096">gitpython-developers/GitPython#2096</a></li> <li>DOC: README Add urls and updated a relative url by <a href="https://github.com/Timour-Ilyas"><code>@​Timour-Ilyas</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2098">gitpython-developers/GitPython#2098</a></li> <li>Fix GitConfigParser ignoring multiple [include] path entries by <a href="https://github.com/daniel7an"><code>@​daniel7an</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2100">gitpython-developers/GitPython#2100</a></li> <li>Switch back from Alpine to Debian for WSL by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2108">gitpython-developers/GitPython#2108</a></li> <li>Bump git/ext/gitdb from <code>4c63ee6</code> to <code>5c1b303</code> by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2106">gitpython-developers/GitPython#2106</a></li> <li>Run <code>gc.collect()</code> twice in <code>test_rename</code> on Python 3.12 by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2109">gitpython-developers/GitPython#2109</a></li> <li>fix: guard AutoInterrupt terminate during interpreter shutdown by <a href="https://github.com/lweyrich1"><code>@​lweyrich1</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2105">gitpython-developers/GitPython#2105</a></li> <li>Improve CI infrastructure for pre-commit by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2110">gitpython-developers/GitPython#2110</a></li> <li>Bump the pre-commit group with 5 updates by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2111">gitpython-developers/GitPython#2111</a></li> <li>Upgrade Sphinx for 3.14 support; drop doc build support on 3.8; test 3.14 by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2112">gitpython-developers/GitPython#2112</a></li> <li>Fix <code>Repo.active_branch</code> resolution for reftable-backed repositories by <a href="https://github.com/Copilot"><code>@​Copilot</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2114">gitpython-developers/GitPython#2114</a></li> <li>docs: warn about GitDB performance with large commits by <a href="https://github.com/mvanhorn"><code>@​mvanhorn</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2115">gitpython-developers/GitPython#2115</a></li> <li>cmd: fix kwarg formatting in docstring example by <a href="https://github.com/UweSchwaeke"><code>@​UweSchwaeke</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2117">gitpython-developers/GitPython#2117</a></li> <li>Bump <a href="https://github.com/astral-sh/ruff-pre-commit">https://github.com/astral-sh/ruff-pre-commit</a> from v0.15.5 to 0.15.8 in the pre-commit group by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2122">gitpython-developers/GitPython#2122</a></li> <li>Add trailer support for commit creation by <a href="https://github.com/Krishnachaitanyakc"><code>@​Krishnachaitanyakc</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2116">gitpython-developers/GitPython#2116</a></li> <li>Harden commit trailer subprocess handling and align trailer I/O paths by <a href="https://github.com/Copilot"><code>@​Copilot</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2125">gitpython-developers/GitPython#2125</a></li> <li>git.cmd.Git.execute(..): fix <code>with_stdout=False</code> by <a href="https://github.com/ngie-eign"><code>@​ngie-eign</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2126">gitpython-developers/GitPython#2126</a></li> <li>Make sure that multi-options are checked after splitting them with <code>shlex</code> by <a href="https://github.com/Byron"><code>@​Byron</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2130">gitpython-developers/GitPython#2130</a></li> <li>Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4 by <a href="https://github.com/WesR"><code>@​WesR</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2131">gitpython-developers/GitPython#2131</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Timour-Ilyas"><code>@​Timour-Ilyas</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2098">gitpython-developers/GitPython#2098</a></li> <li><a href="https://github.com/daniel7an"><code>@​daniel7an</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2100">gitpython-developers/GitPython#2100</a></li> <li><a href="https://github.com/lweyrich1"><code>@​lweyrich1</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2105">gitpython-developers/GitPython#2105</a></li> <li><a href="https://github.com/Copilot"><code>@​Copilot</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2114">gitpython-developers/GitPython#2114</a></li> <li><a href="https://github.com/mvanhorn"><code>@​mvanhorn</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2115">gitpython-developers/GitPython#2115</a></li> <li><a href="https://github.com/UweSchwaeke"><code>@​UweSchwaeke</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2117">gitpython-developers/GitPython#2117</a></li> <li><a href="https://github.com/Krishnachaitanyakc"><code>@​Krishnachaitanyakc</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2116">gitpython-developers/GitPython#2116</a></li> <li><a href="https://github.com/ngie-eign"><code>@​ngie-eign</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2126">gitpython-developers/GitPython#2126</a></li> <li><a href="https://github.com/WesR"><code>@​WesR</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2131">gitpython-developers/GitPython#2131</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47">https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gitpython-developers/GitPython/commit/4199cb89755f705801a4cb241723325b46201f51"><code>4199cb8</code></a> bump version to 3.1.47</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/0f68db0710f9125762fca5dbc2328593537ae923"><code>0f68db0</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2131">#2131</a> from WesR/main</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/43d92dec4683568d11495956dd556161f17c3ea8"><code>43d92de</code></a> git.cmd: harden unsafe option canonicalization and isolate push test cases</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/9aed7cf8c20f69effcfcf7ebef09f312f73ab826"><code>9aed7cf</code></a> linter fix</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/142195888e713542189533a52cdfc333f05c3af6"><code>1421958</code></a> Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/da545232d0401fb9fb7660f9ff67991996674dda"><code>da54523</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2130">#2130</a> from gitpython-developers/fix-multi-options</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/c9a26789d88b18f8b4620f37307df2976292d2a0"><code>c9a2678</code></a> Make sure that multi-options are checked after splitting them with <code>shlex</code></li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/75e6c6bab4b3afab0bcb6bd6d2447b3e7eb6645c"><code>75e6c6b</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2126">#2126</a> from ngie-eign/fix-execute-with_stdout-no-issues</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/6fc474265d863cbb9fbabdbfcc957f27cea2b5c4"><code>6fc4742</code></a> test_avoids_changing...: don't leave test artifacts behind</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/d966a0deabe3c8cf09ba3d1b0f54a29bdbdb4f1d"><code>d966a0d</code></a> git.cmd.Git.execute(..): fix <code>with_stdout=False</code></li> <li>Additional commits viewable in <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitpython&package-manager=pip&previous-version=3.1.46&new-version=3.1.47)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/NHSDigital/electronic-prescription-service-api-regression-tests/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent 37e9148 commit 0bd9316

2 files changed

Lines changed: 6 additions & 6 deletions

File tree

poetry.lock

Lines changed: 5 additions & 5 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

pyproject.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@ behave-cucumber-formatter = "^1.0.1"
2121
allure-behave = "^2.15.3"
2222
black = "^26.3.1"
2323
semver = "^3.0.4"
24-
gitpython = "^3.1.46"
24+
gitpython = "^3.1.47"
2525
flake8 = "^7.3.0"
2626
pre-commit = "^4.5.1"
2727
isort = "^8.0.1"

0 commit comments

Comments
 (0)