darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2026-05-08 10:08:01 -04:00
Code Issues Packages Projects Releases Wiki Activity
14,082 Commits 121 Branches 61 Tags
main
Commit Graph

14082 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kenneth Kehl
32bd7af1b0 Merge pull request #2269 from GSA/update_mistune 
update mistune
 2026-05-07 07:40:09 -07:00
Kenneth Kehl
8c4a8ea43a update mako also 2026-05-07 07:23:10 -07:00
Kenneth Kehl
b52ece0f84 update mistune 2026-05-07 07:18:13 -07:00
Kenneth Kehl
9ccc698bb3 Merge pull request #2262 from GSA/dependabot/pip/mako-1.3.11 
Bump mako from 1.3.10 to 1.3.11
 2026-05-07 07:12:00 -07:00
Kenneth Kehl
bf60cdf9e4 Merge pull request #2264 from GSA/dependabot/pip/lxml-6.1.0 
Bump lxml from 6.0.2 to 6.1.0
 2026-04-22 09:41:20 -07:00
Kenneth Kehl
e3dabd1c1a ugh 2026-04-22 09:25:20 -07:00
Kenneth Kehl
c5b7a6e45c keep trying to upgrade poetry 2026-04-22 09:15:18 -07:00
Kenneth Kehl
47b28fc9f7 update poetry to 2.3.4 as well 2026-04-22 09:10:03 -07:00
Kenneth Kehl
620a730903 upgrade poetry-dotenv as well 2026-04-22 08:56:48 -07:00
dependabot[bot]
90ef879c60 Bump lxml from 6.0.2 to 6.1.0 
Bumps [lxml](https://github.com/lxml/lxml) from 6.0.2 to 6.1.0.
- [Release notes](https://github.com/lxml/lxml/releases)
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt)
- [Commits](https://github.com/lxml/lxml/compare/lxml-6.0.2...lxml-6.1.0)

---
updated-dependencies:
- dependency-name: lxml
  dependency-version: 6.1.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-21 22:49:51 +00:00
dependabot[bot]
7e24314397 Bump mako from 1.3.10 to 1.3.11 
Bumps [mako](https://github.com/sqlalchemy/mako) from 1.3.10 to 1.3.11.
- [Release notes](https://github.com/sqlalchemy/mako/releases)
- [Changelog](https://github.com/sqlalchemy/mako/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/mako/commits)

---
updated-dependencies:
- dependency-name: mako
  dependency-version: 1.3.11
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-16 22:49:54 +00:00
Kenneth Kehl
2090127c7a Merge pull request #2261 from GSA/dependabot/pip/pytest-9.0.3 
Bump pytest from 9.0.2 to 9.0.3
 2026-04-14 08:12:32 -07:00
dependabot[bot]
3d384f78ca Bump pytest from 9.0.2 to 9.0.3 
Bumps [pytest](https://github.com/pytest-dev/pytest) from 9.0.2 to 9.0.3.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest/compare/9.0.2...9.0.3)

---
updated-dependencies:
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-14 02:29:29 +00:00
Kenneth Kehl
c171648bb1 Merge pull request #2260 from GSA/dependabot/pip/cryptography-46.0.7 
Bump cryptography from 46.0.6 to 46.0.7
 2026-04-09 08:15:30 -07:00
dependabot[bot]
0de64dc74a Bump cryptography from 46.0.6 to 46.0.7 
Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.6 to 46.0.7.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/46.0.6...46.0.7)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.7
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-08 23:00:11 +00:00
dependabot[bot]
66e9ce1d39 Bump black from 26.1.0 to 26.3.1 (#2247) 
* Bump black from 26.1.0 to 26.3.1

Bumps [black](https://github.com/psf/black) from 26.1.0 to 26.3.1.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](https://github.com/psf/black/compare/26.1.0...26.3.1)

---
updated-dependencies:
- dependency-name: black
  dependency-version: 26.3.1
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>

* Updated lockfile

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Janousek <alex.janousek@gsa.gov>
 2026-04-06 15:04:55 -04:00
dependabot[bot]
e095649189 Bump pygments from 2.19.2 to 2.20.0 (#2257) 
Bumps [pygments](https://github.com/pygments/pygments) from 2.19.2 to 2.20.0.
- [Release notes](https://github.com/pygments/pygments/releases)
- [Changelog](https://github.com/pygments/pygments/blob/master/CHANGES)
- [Commits](https://github.com/pygments/pygments/compare/2.19.2...2.20.0)

---
updated-dependencies:
- dependency-name: pygments
  dependency-version: 2.20.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-03 15:05:40 -04:00
Kenneth Kehl
7a0e43f474 Merge pull request #2259 from GSA/dependabot/pip/poetry-2.3.3 
Bump poetry from 2.3.1 to 2.3.3
 2026-04-02 09:01:57 -07:00
dependabot[bot]
eab4e45450 Bump poetry from 2.3.1 to 2.3.3 
Bumps [poetry](https://github.com/python-poetry/poetry) from 2.3.1 to 2.3.3.
- [Release notes](https://github.com/python-poetry/poetry/releases)
- [Changelog](https://github.com/python-poetry/poetry/blob/main/CHANGELOG.md)
- [Commits](https://github.com/python-poetry/poetry/compare/2.3.1...2.3.3)

---
updated-dependencies:
- dependency-name: poetry
  dependency-version: 2.3.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-02 15:53:53 +00:00
Kenneth Kehl
412b36f5cf Merge pull request #2258 from GSA/dependabot/pip/aiohttp-3.13.4 
Bump aiohttp from 3.13.3 to 3.13.4
 2026-04-02 08:49:32 -07:00
dependabot[bot]
9fc9c1dcf1 Bump aiohttp from 3.13.3 to 3.13.4 
---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.13.4
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-01 22:16:05 +00:00
Kenneth Kehl
11030c0a0d Merge pull request #2256 from GSA/dependabot/pip/cryptography-46.0.6 
Bump cryptography from 46.0.5 to 46.0.6
 2026-03-30 07:40:38 -07:00
dependabot[bot]
6ede7e5b1b Bump cryptography from 46.0.5 to 46.0.6 
Bumps [cryptography](https://github.com/pyca/cryptography) from 46.0.5 to 46.0.6.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/46.0.5...46.0.6)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.6
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-29 03:31:08 +00:00
Kenneth Kehl
a8060cec04 Merge pull request #2254 from GSA/daily_scans_requests 
daily scan work
 2026-03-26 14:58:47 -07:00
Kenneth Kehl
76df6bbabe run pip-audit only on production code 2026-03-26 10:24:43 -07:00
Kenneth Kehl
b4196f1c5e run pip-audit only on production code 2026-03-26 10:19:15 -07:00
Kenneth Kehl
dbfe67db31 run pip-audit only on production code 2026-03-26 10:07:16 -07:00
Kenneth Kehl
2f7afb4d57 daily scan work 2026-03-26 08:49:16 -07:00
Kenneth Kehl
bdd4b67414 Merge pull request #2251 from GSA/daily_scans_pyjwt 
upgrade github-script to version 7
 2026-03-18 07:27:48 -07:00
Kenneth Kehl
3d5c6be492 upgrade pyasn1 as well due to pip-audit finding 2026-03-17 14:26:06 -07:00
Kenneth Kehl
f85184ed62 upgrade github-script to version 7 2026-03-17 14:20:46 -07:00
Kenneth Kehl
ee922d735f Merge pull request #2249 from GSA/daily_scans_pyjwt 
fix test for pyjwt upgrade
 2026-03-17 12:03:12 -07:00
Kenneth Kehl
af4a47dd7f fix test for pyjwt upgrade 2026-03-17 08:24:17 -07:00
Kenneth Kehl
268136b1b5 fix test for pyjwt upgrade 2026-03-17 08:15:56 -07:00
Kenneth Kehl
773460dcaf fix test for pyjwt upgrade 2026-03-17 08:03:37 -07:00
Kenneth Kehl
d033af8f76 fix test for pyjwt upgrade 2026-03-17 07:51:12 -07:00
Alex Janousek
776a33a9e3 Disable automatic version updates from dependabot (#2246) 2026-03-02 13:56:56 -05:00
dependabot[bot]
931c7791ba Bump virtualenv from 21.0.0 to 21.1.0 (#2244) 
* Bump virtualenv from 21.0.0 to 21.1.0

Bumps [virtualenv](https://github.com/pypa/virtualenv) from 21.0.0 to 21.1.0.
- [Release notes](https://github.com/pypa/virtualenv/releases)
- [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst)
- [Commits](https://github.com/pypa/virtualenv/compare/21.0.0...21.1.0)

---
updated-dependencies:
- dependency-name: virtualenv
  dependency-version: 21.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Fix build errors

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Alex Janousek <alex.janousek@gsa.gov>
 2026-03-02 11:55:43 -05:00
dependabot[bot]
1dfafb7728 Bump certifi from 2026.1.4 to 2026.2.25 (#2241) 
Bumps [certifi](https://github.com/certifi/python-certifi) from 2026.1.4 to 2026.2.25.
- [Commits](https://github.com/certifi/python-certifi/compare/2026.01.04...2026.02.25)

---
updated-dependencies:
- dependency-name: certifi
  dependency-version: 2026.2.25
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-27 11:53:04 -05:00
dependabot[bot]
a1569223b8 Bump sqlalchemy from 2.0.46 to 2.0.47 (#2243) 
Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 2.0.46 to 2.0.47.
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

---
updated-dependencies:
- dependency-name: sqlalchemy
  dependency-version: 2.0.47
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-27 11:49:56 -05:00
dependabot[bot]
03f28ca25a Bump bandit from 1.9.3 to 1.9.4 (#2239) 
Bumps [bandit](https://github.com/PyCQA/bandit) from 1.9.3 to 1.9.4.
- [Release notes](https://github.com/PyCQA/bandit/releases)
- [Commits](https://github.com/PyCQA/bandit/compare/1.9.3...1.9.4)

---
updated-dependencies:
- dependency-name: bandit
  dependency-version: 1.9.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-26 13:47:06 -05:00
dependabot[bot]
99f325f5fd Bump virtualenv from 20.38.0 to 21.0.0 (#2240) 
Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.38.0 to 21.0.0.
- [Release notes](https://github.com/pypa/virtualenv/releases)
- [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst)
- [Commits](https://github.com/pypa/virtualenv/compare/20.38.0...21.0.0)

---
updated-dependencies:
- dependency-name: virtualenv
  dependency-version: 21.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-26 13:43:42 -05:00
dependabot[bot]
24294972c5 Bump isort from 7.0.0 to 8.0.0 (#2237) 
Bumps [isort](https://github.com/PyCQA/isort) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/PyCQA/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](https://github.com/PyCQA/isort/compare/7.0.0...8.0.0)

---
updated-dependencies:
- dependency-name: isort
  dependency-version: 8.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-26 17:10:43 +00:00
dependabot[bot]
ff2e8a1c17 Bump faker from 40.4.0 to 40.5.1 (#2235) 
Bumps [faker](https://github.com/joke2k/faker) from 40.4.0 to 40.5.1.
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/joke2k/faker/compare/v40.4.0...v40.5.1)

---
updated-dependencies:
- dependency-name: faker
  dependency-version: 40.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-26 17:02:19 +00:00
dependabot[bot]
d6c216c157 Bump newrelic from 11.4.0 to 11.5.0 (#2233) 
Bumps [newrelic](https://github.com/newrelic/newrelic-python-agent) from 11.4.0 to 11.5.0.
- [Release notes](https://github.com/newrelic/newrelic-python-agent/releases)
- [Commits](https://github.com/newrelic/newrelic-python-agent/compare/v11.4.0...v11.5.0)

---
updated-dependencies:
- dependency-name: newrelic
  dependency-version: 11.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-26 16:53:52 +00:00
Alex Janousek
8420d602a2 Updaed poetry (#2238) 2026-02-25 13:02:45 -08:00
dependabot[bot]
9250b19fbf Bump flask from 3.1.2 to 3.1.3 (#2231) 
Bumps [flask](https://github.com/pallets/flask) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/pallets/flask/releases)
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/flask/compare/3.1.2...3.1.3)

---
updated-dependencies:
- dependency-name: flask
  dependency-version: 3.1.3
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-23 13:34:52 -05:00
dependabot[bot]
b90e103d03 Bump filelock from 3.24.2 to 3.24.3 (#2232) 
Bumps [filelock](https://github.com/tox-dev/py-filelock) from 3.24.2 to 3.24.3.
- [Release notes](https://github.com/tox-dev/py-filelock/releases)
- [Changelog](https://github.com/tox-dev/filelock/blob/main/docs/changelog.rst)
- [Commits](https://github.com/tox-dev/py-filelock/compare/3.24.2...3.24.3)

---
updated-dependencies:
- dependency-name: filelock
  dependency-version: 3.24.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-23 13:32:48 -05:00
dependabot[bot]
dbebb24690 Bump regex from 2026.1.15 to 2026.2.19 (#2234) 
Bumps [regex](https://github.com/mrabarnett/mrab-regex) from 2026.1.15 to 2026.2.19.
- [Changelog](https://github.com/mrabarnett/mrab-regex/blob/hg/changelog.txt)
- [Commits](https://github.com/mrabarnett/mrab-regex/compare/2026.1.15...2026.2.19)

---
updated-dependencies:
- dependency-name: regex
  dependency-version: 2026.2.19
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-23 13:28:38 -05:00
dependabot[bot]
e4c61ca897 Bump virtualenv from 20.37.0 to 20.38.0 (#2229) 
Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.37.0 to 20.38.0.
- [Release notes](https://github.com/pypa/virtualenv/releases)
- [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst)
- [Commits](https://github.com/pypa/virtualenv/compare/20.37.0...20.38.0)

---
updated-dependencies:
- dependency-name: virtualenv
  dependency-version: 20.38.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-20 11:23:19 -05:00