Bump senzing from 0.2.17 to 4.0.1

[dependabot]

Bumps senzing from 0.2.17 to 4.0.1.

Release notes

Sourced from senzing's releases.

4.0.1

See CHANGELOG.md

4.0.0

See CHANGELOG.md

0.2.20

See CHANGELOG.md

0.2.19

See CHANGELOG.md

0.2.18

See CHANGELOG.md

Changelog

Sourced from senzing's changelog.

[4.0.1] - 2025-08-07

Added in 4.0.1

• Additional errors in szerror.py

[4.0.0] - 2025-08-05

Changed in 4.0.0

• For use with Senzing v4

[0.2.20] - 2025-07-19

Changed in 0.2.20

• szerror.py updated

[0.2.19] - 2025-07-16

Added in 0.2.19

• Added SzAbstractFactory.Destroy()

[0.2.18] - 2025-07-14

Added in 0.2.18

• SZ_REDO_DEFAULT_FLAGS

Commits

• 5b362ff 339 ant 1 (#341)
• fbc57c2 Bump senzing-core from 0.4.1 to 1.0.0 (#337)
• 33f96e4 Bump sphinx-jinja2-compat from 0.4.0 to 0.4.1 (#338)
• 0680cfc #298 Update documentation (#332)
• 124719a Bump actions/download-artifact from 4 to 5 (#335)
• d87adbe Bump sphinx-jinja2-compat from 0.3.0 to 0.4.0 (#334)
• 7331fef Bump virtualenv from 20.33.0 to 20.33.1 (#333)
• 64f9033 Bump build from 1.2.2.post1 to 1.3.0 (#330)
• 2c62bde Bump virtualenv from 20.32.0 to 20.33.0 (#329)
• ca64eb8 Bump coverage from 7.10.1 to 7.10.2 (#328)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🛡️ Bandit Scan Results Summary

We found 2 High, 2 Medium, and 1 Low severity issues.

Detailed Findings

---

Severity	Issue	File	Line	Confidence	More Info	Test ID
🟡 LOW	Consider possible security implications associated with the subprocess module.	sz_tools/_tool_helpers.py	10	HIGH	More Info	B404
⚪ MEDIUM	Possible SQL injection vector through string-based query construction.	sz_tools/_sz_database.py	354	LOW	More Info	B608
⚪ MEDIUM	Probable insecure usage of temp file/directory.	sz_tools/_tool_helpers.py	732	MEDIUM	More Info	B108
🔴 HIGH	Starting a process with a shell, possible injection detected, security issue.	sz_tools/_tool_helpers.py	658	HIGH	More Info	B605
🔴 HIGH	subprocess call with shell=True identified, security issue.	sz_tools/_tool_helpers.py	642	HIGH	More Info	B602

---

✨ About this Report

This report was generated by the official Bandit GitHub Action to ensure our codebase stays secure.

📕 What is Bandit?

Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation.

👥 Community Support

Got questions or need help with Bandit Action?

• Join our community on the Discord server.
• Share tips, get advice, and collaborate on security best practices.