Bump pylint from 3.3.8 to 3.3.9#270
Conversation
dependabot
Bot
added
dependencies
🛡️ Bandit Scan Results SummaryWe found 2 High, 2 Medium, and 1 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
senzingdevops
left a comment
senzingdevops
left a comment
There was a problem hiding this comment.
Automated: approving this pull request because it includes a patch update
Bumps [pylint](https://github.com/pylint-dev/pylint) from 3.3.8 to 3.3.9. - [Release notes](https://github.com/pylint-dev/pylint/releases) - [Commits](pylint-dev/pylint@v3.3.8...v3.3.9) --- updated-dependencies: - dependency-name: pylint dependency-version: 3.3.9 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/pip/pylint-3.3.9
branch
from
77d44ef to
22d0b9d
Compare
🛡️ Bandit Scan Results SummaryWe found 2 High, 2 Medium, and 1 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
senzingdevops
left a comment
senzingdevops
left a comment
There was a problem hiding this comment.
Automated: approving this pull request because it includes a patch update
senzingdevops
left a comment
senzingdevops
left a comment
There was a problem hiding this comment.
Automated: approving this pull request because it includes a patch update
🛡️ Bandit Scan Results SummaryWe found 2 High, 2 Medium, and 1 Low severity issues. Detailed Findings
✨ About this ReportThis report was generated by the official Bandit GitHub Action to ensure our codebase stays secure. 📕 What is Bandit?Bandit is a tool designed to find common security issues in Python code. To learn more about how Bandit helps to keep Python code safe, visit the Bandit documentation. 👥 Community SupportGot questions or need help with Bandit Action?
|
2 participants
Rebasing might not happen immediately, so don't worry if this takes some time.
Note: if you make any changes to this PR yourself, they will take precedence over the rebase.
Bumps pylint from 3.3.8 to 3.3.9.
Commits
4cab7caBump pylint to 3.3.9, update changelog81fb483[Backport maintenance/3.3.x] Extend catching of ValueError to 3.12.5+ (#10611)1ef673b[Backport maintenance/3.3.x] Fix flagging undeprecated importlib.resources fu...194790cFix invalid refs in 3.3 whatsnew (#10578) (#10579)9823870fix: handleinconsistent-return-statementsfalse positive withquit()/`ex...16fe127fix: handle for-loop variable shadowing correctly (#10569) (#10571)6cf727cAdd sphinx reference for whatsnew 3.3 (#10564) (#10565)641a316Use custom backport action (#10536) (#10537)65efb67[fix] Better approach in 'unnecessary-list-index-lookup' to avoid crashes (#1...78444bbFix used-before-assignment for PEP 695 type aliases + parameters (#10488) (#1...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)