From 7eef69573dec925d8e4777639f717dcb0cf9fe78 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 21 Jul 2025 17:00:43 +0000 Subject: [PATCH 1/2] Bump virtualenv from 20.31.2 to 20.32.0 Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.31.2 to 20.32.0. - [Release notes](https://github.com/pypa/virtualenv/releases) - [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst) - [Commits](https://github.com/pypa/virtualenv/compare/20.31.2...20.32.0) --- updated-dependencies: - dependency-name: virtualenv dependency-version: 20.32.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- poetry.lock | 8 ++++---- pyproject.toml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/poetry.lock b/poetry.lock index d0ea05911..ff6508615 100644 --- a/poetry.lock +++ b/poetry.lock @@ -4958,14 +4958,14 @@ files = [ [[package]] name = "virtualenv" -version = "20.31.2" +version = "20.32.0" description = "Virtual Python Environment builder" optional = false python-versions = ">=3.8" groups = ["main", "dev"] files = [ - {file = "virtualenv-20.31.2-py3-none-any.whl", hash = "sha256:36efd0d9650ee985f0cad72065001e66d49a6f24eb44d98980f630686243cf11"}, - {file = "virtualenv-20.31.2.tar.gz", hash = "sha256:e10c0a9d02835e592521be48b332b6caee6887f332c111aa79a09b9e79efc2af"}, + {file = "virtualenv-20.32.0-py3-none-any.whl", hash = "sha256:2c310aecb62e5aa1b06103ed7c2977b81e042695de2697d01017ff0f1034af56"}, + {file = "virtualenv-20.32.0.tar.gz", hash = "sha256:886bf75cadfdc964674e6e33eb74d787dff31ca314ceace03ca5810620f4ecf0"}, ] [package.dependencies] @@ -5513,4 +5513,4 @@ cffi = ["cffi (>=1.11)"] [metadata] lock-version = "2.1" python-versions = "^3.12.9" -content-hash = "c37c3f72a7eddbde3d96de818f1b2d8e86cb1b4448cc548f687cafa6bb42211e" +content-hash = "a69abbfa7247c82b575c87ccbefa7419f3a8f4445cdffaa9af4af6c2c09d2d34" diff --git a/pyproject.toml b/pyproject.toml index d950a4789..1048703d2 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -75,7 +75,7 @@ jinja2 = "^3.1.6" redis = "^5.0.8" requests = "^2.32.4" flask-socketio = "^5.5.1" -virtualenv = "^20.31.2" +virtualenv = "^20.32.0" marshmallow-enum = "^1.5.1" awscli = "^1.40.36" typing-extensions = "^4.14.1" From c6da71e4f7dc664a43c6792b8d5700dd47ab9e18 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 21 Jul 2025 21:28:23 +0000 Subject: [PATCH 2/2] Bump cyclonedx-python-lib from 10.4.1 to 11.0.0 Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 10.4.1 to 11.0.0. - [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases) - [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md) - [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v10.4.1...v11.0.0) --- updated-dependencies: - dependency-name: cyclonedx-python-lib dependency-version: 11.0.0 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- poetry.lock | 20 ++++++++++---------- pyproject.toml | 2 +- 2 files changed, 11 insertions(+), 11 deletions(-) diff --git a/poetry.lock b/poetry.lock index ff6508615..75056ed72 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1145,26 +1145,26 @@ test-randomorder = ["pytest-randomly"] [[package]] name = "cyclonedx-python-lib" -version = "10.4.1" +version = "11.0.0" description = "Python library for CycloneDX" optional = false python-versions = "<4.0,>=3.9" groups = ["dev"] files = [ - {file = "cyclonedx_python_lib-10.4.1-py3-none-any.whl", hash = "sha256:1073d5855cdab02b7367f037c47cb46f4c82cadbc745e063edbb9160290efda2"}, - {file = "cyclonedx_python_lib-10.4.1.tar.gz", hash = "sha256:ee017dee867ffb9b449b955161fd235a7c6245e87a5169998e10a0ce61292efb"}, + {file = "cyclonedx_python_lib-11.0.0-py3-none-any.whl", hash = "sha256:4bcaebf381daf63c8a9badc7a7132704ed461b6822c4cc513beeb28ff95d7858"}, + {file = "cyclonedx_python_lib-11.0.0.tar.gz", hash = "sha256:d51d456c01cfc42378a2282ef35858fc809162ef13d8cce2af6c4d16f788217e"}, ] [package.dependencies] license-expression = ">=30,<31" packageurl-python = ">=0.11,<2" -py-serializable = ">=2.0.0,<3.0.0" +py-serializable = ">=2.1.0,<3.0.0" sortedcontainers = ">=2.4.0,<3.0.0" typing_extensions = {version = ">=4.6,<5.0", markers = "python_version < \"3.13\""} [package.extras] -json-validation = ["jsonschema[format] (>=4.18,<5.0)", "referencing (>=0.28.4)"] -validation = ["jsonschema[format] (>=4.18,<5.0)", "lxml (>=4,<7)", "referencing (>=0.28.4)"] +json-validation = ["jsonschema[format-nongpl] (>=4.25,<5.0)", "referencing (>=0.28.4)"] +validation = ["jsonschema[format-nongpl] (>=4.25,<5.0)", "lxml (>=4,<7)", "referencing (>=0.28.4)"] xml-validation = ["lxml (>=4,<7)"] [[package]] @@ -3586,14 +3586,14 @@ files = [ [[package]] name = "py-serializable" -version = "2.0.0" +version = "2.1.0" description = "Library for serializing and deserializing Python Objects to and from JSON and XML." optional = false python-versions = "<4.0,>=3.8" groups = ["dev"] files = [ - {file = "py_serializable-2.0.0-py3-none-any.whl", hash = "sha256:1721e4c0368adeec965c183168da4b912024702f19e15e13f8577098b9a4f8fe"}, - {file = "py_serializable-2.0.0.tar.gz", hash = "sha256:e9e6491dd7d29c31daf1050232b57f9657f9e8a43b867cca1ff204752cf420a5"}, + {file = "py_serializable-2.1.0-py3-none-any.whl", hash = "sha256:b56d5d686b5a03ba4f4db5e769dc32336e142fc3bd4d68a8c25579ebb0a67304"}, + {file = "py_serializable-2.1.0.tar.gz", hash = "sha256:9d5db56154a867a9b897c0163b33a793c804c80cee984116d02d49e4578fc103"}, ] [package.dependencies] @@ -5513,4 +5513,4 @@ cffi = ["cffi (>=1.11)"] [metadata] lock-version = "2.1" python-versions = "^3.12.9" -content-hash = "a69abbfa7247c82b575c87ccbefa7419f3a8f4445cdffaa9af4af6c2c09d2d34" +content-hash = "6abf626cf2fee8ccaaee2087f0cf37244b829e7cbcace1287c7807747e70bd5c" diff --git a/pyproject.toml b/pyproject.toml index 1048703d2..2a0b2880e 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -87,7 +87,7 @@ pytest = "^8.4.0" awscli = "^1.33.32" bandit = "*" black = "^25.1.0" -cyclonedx-python-lib = "^10.4.1" +cyclonedx-python-lib = "^11.0.0" cloudfoundry-client = "*" exceptiongroup = "==1.3.0" flake8 = "^7.3.0"