This changeset updates several Python dependencies that Dependabot has flagged for updating. This includes a major version bump of notifications-python-client, which is mostly just formatted string updates that should not have any adverse effects for us.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
This changeset updates several Python dependencies that Dependabot has flagged.
It also ignores a pip-audit report of idna, which incorrectly flagged the version we are on as having been affected by PYSEC-2024-60; this was fixed in version 3.7 of idna, which we are currently using. We will update the action again once the audit flag is corrected and/or another fix version is released (if needed).
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
This changeset updates several Python dependencies that Dependabot had flagged for updating. It includes a few others that we are getting ahead of, as well.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
The npm install line needs to be run within the context of the nvm-managed Node.js and should happen after that environment is initialized but before the build step. This also adds a couple more Python dependency updates that Dependabot flagged as well.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
This changeset updates Python dependencies that Dependabot has flagged in addition to several others that were due for updates. It also reformats a test file via black.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
This changeset updates a couple of dependencies flagged by Dependabot and fixes an end-to-end test that needed to be updated with the one-off send filename changes.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
This changeset updates several Python dependencies that Dependabot flagged for updates due to end-to-end tests still failing in Dependabot PRs.
Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>