Commit Graph

561 Commits

Author SHA1 Message Date
dependabot[bot]
f681f53b05 Bump freezegun from 1.5.3 to 1.5.4 (#1879)
Bumps [freezegun](https://github.com/spulec/freezegun) from 1.5.3 to 1.5.4.
- [Release notes](https://github.com/spulec/freezegun/releases)
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG)
- [Commits](https://github.com/spulec/freezegun/compare/1.5.3...1.5.4)

---
updated-dependencies:
- dependency-name: freezegun
  dependency-version: 1.5.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-31 13:55:17 +00:00
dependabot[bot]
3a3228a9df Bump regex from 2024.11.6 to 2025.7.33 (#1878)
Bumps [regex](https://github.com/mrabarnett/mrab-regex) from 2024.11.6 to 2025.7.33.
- [Changelog](https://github.com/mrabarnett/mrab-regex/blob/hg/changelog.txt)
- [Commits](https://github.com/mrabarnett/mrab-regex/compare/2024.11.6...2025.7.33)

---
updated-dependencies:
- dependency-name: regex
  dependency-version: 2025.7.33
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-31 13:45:52 +00:00
dependabot[bot]
21a5e15dbc Bump sqlalchemy from 2.0.41 to 2.0.42 (#1871)
Bumps [sqlalchemy](https://github.com/sqlalchemy/sqlalchemy) from 2.0.41 to 2.0.42.
- [Release notes](https://github.com/sqlalchemy/sqlalchemy/releases)
- [Changelog](https://github.com/sqlalchemy/sqlalchemy/blob/main/CHANGES.rst)
- [Commits](https://github.com/sqlalchemy/sqlalchemy/commits)

---
updated-dependencies:
- dependency-name: sqlalchemy
  dependency-version: 2.0.42
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-31 13:36:11 +00:00
dependabot[bot]
8035ffa7d0 Bump aiohttp from 3.12.14 to 3.12.15 (#1870)
---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.12.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-31 13:26:43 +00:00
dependabot[bot]
c7ea96e6c2 Bump faker from 37.4.2 to 37.5.3 (#1880)
Bumps [faker](https://github.com/joke2k/faker) from 37.4.2 to 37.5.3.
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/joke2k/faker/compare/v37.4.2...v37.5.3)

---
updated-dependencies:
- dependency-name: faker
  dependency-version: 37.5.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-07-31 09:18:06 -04:00
dependabot[bot]
4d59273f23 Bump moto from 5.1.8 to 5.1.9
Bumps [moto](https://github.com/getmoto/moto) from 5.1.8 to 5.1.9.
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](https://github.com/getmoto/moto/compare/5.1.8...5.1.9)

---
updated-dependencies:
- dependency-name: moto
  dependency-version: 5.1.9
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-30 16:52:22 +00:00
Carlo Costino
c6ae9636c2 Downgrade Python to 3.12.9 again
This changeset puts us back to Python 3.12.9 since we are still wrestling with certificate validation errors in Python 3.13 and no easy way to test things without breaking our deployment flow currently.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
2025-07-30 12:27:34 -04:00
Kenneth Kehl
1ff90843d7 try initializing new relic after we monkeypatch 2025-07-29 07:55:48 -07:00
Kenneth Kehl
e7cee89624 upgrade to python 3.13.2 2025-07-28 11:52:45 -07:00
Kenneth Kehl
143d57440c try gevent 2025-07-28 08:52:02 -07:00
dependabot[bot]
8c9f6bb9ab Bump newrelic from 10.14.0 to 10.15.0
Bumps [newrelic](https://github.com/newrelic/newrelic-python-agent) from 10.14.0 to 10.15.0.
- [Release notes](https://github.com/newrelic/newrelic-python-agent/releases)
- [Commits](https://github.com/newrelic/newrelic-python-agent/compare/v10.14.0...v10.15.0)

---
updated-dependencies:
- dependency-name: newrelic
  dependency-version: 10.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-25 21:51:24 +00:00
dependabot[bot]
e4a71b7c64 Bump numpy from 2.3.1 to 2.3.2
Bumps [numpy](https://github.com/numpy/numpy) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/numpy/numpy/releases)
- [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst)
- [Commits](https://github.com/numpy/numpy/compare/v2.3.1...v2.3.2)

---
updated-dependencies:
- dependency-name: numpy
  dependency-version: 2.3.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-24 21:10:50 +00:00
Kenneth Kehl
3f68657607 revert truststore 2025-07-24 10:01:03 -07:00
Kenneth Kehl
7df39121d4 ugh move dependency 2025-07-24 09:13:00 -07:00
Kenneth Kehl
99c3f41178 merge from main 2025-07-23 15:02:09 -07:00
dependabot[bot]
365e47e7fe Bump eventlet from 0.40.1 to 0.40.2
Bumps [eventlet](https://github.com/eventlet/eventlet) from 0.40.1 to 0.40.2.
- [Changelog](https://github.com/eventlet/eventlet/blob/master/NEWS)
- [Commits](https://github.com/eventlet/eventlet/compare/0.40.1...0.40.2)

---
updated-dependencies:
- dependency-name: eventlet
  dependency-version: 0.40.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-22 22:03:27 +00:00
Kenneth Kehl
e16c4fe277 try using truststore 2025-07-22 10:44:14 -07:00
Kenneth Kehl
72f2ccb91a revert pip-system-certs 2025-07-22 09:42:37 -07:00
Kenneth Kehl
51437226d0 update to latest on main 2025-07-22 07:09:52 -07:00
dependabot[bot]
c6da71e4f7 Bump cyclonedx-python-lib from 10.4.1 to 11.0.0
Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 10.4.1 to 11.0.0.
- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases)
- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v10.4.1...v11.0.0)

---
updated-dependencies:
- dependency-name: cyclonedx-python-lib
  dependency-version: 11.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 21:28:23 +00:00
Kenneth Kehl
620a62a8e9 add system certs package 2025-07-21 11:09:08 -07:00
dependabot[bot]
7eef69573d Bump virtualenv from 20.31.2 to 20.32.0
Bumps [virtualenv](https://github.com/pypa/virtualenv) from 20.31.2 to 20.32.0.
- [Release notes](https://github.com/pypa/virtualenv/releases)
- [Changelog](https://github.com/pypa/virtualenv/blob/main/docs/changelog.rst)
- [Commits](https://github.com/pypa/virtualenv/compare/20.31.2...20.32.0)

---
updated-dependencies:
- dependency-name: virtualenv
  dependency-version: 20.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 17:00:43 +00:00
dependabot[bot]
2d404037cf Bump phonenumbers from 9.0.9 to 9.0.10
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 9.0.9 to 9.0.10.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v9.0.9...r9.0.10)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 14:23:51 +00:00
dependabot[bot]
caac56f980 Bump jsonschema from 4.24.1 to 4.25.0
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.24.1 to 4.25.0.
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/python-jsonschema/jsonschema/compare/v4.24.1...v4.25.0)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 4.25.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-21 13:27:34 +00:00
dependabot[bot]
37a63b4512 Bump s3transfer from 0.13.0 to 0.13.1
Bumps [s3transfer](https://github.com/boto/s3transfer) from 0.13.0 to 0.13.1.
- [Changelog](https://github.com/boto/s3transfer/blob/develop/CHANGELOG.rst)
- [Commits](https://github.com/boto/s3transfer/compare/0.13.0...0.13.1)

---
updated-dependencies:
- dependency-name: s3transfer
  dependency-version: 0.13.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-18 21:23:19 +00:00
dependabot[bot]
3cd6544884 Bump jsonschema from 4.24.0 to 4.24.1
Bumps [jsonschema](https://github.com/python-jsonschema/jsonschema) from 4.24.0 to 4.24.1.
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/python-jsonschema/jsonschema/compare/v4.24.0...v4.24.1)

---
updated-dependencies:
- dependency-name: jsonschema
  dependency-version: 4.24.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-17 21:39:46 +00:00
dependabot[bot]
bc537e375d Bump faker from 37.4.0 to 37.4.2
Bumps [faker](https://github.com/joke2k/faker) from 37.4.0 to 37.4.2.
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/joke2k/faker/compare/v37.4.0...v37.4.2)

---
updated-dependencies:
- dependency-name: faker
  dependency-version: 37.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-15 21:38:58 +00:00
ccostino
011801c89b Merge pull request #1834 from GSA/dependabot/pip/certifi-2025.7.14
Bump certifi from 2025.7.9 to 2025.7.14
2025-07-15 09:19:31 -04:00
dependabot[bot]
707f33ba3a Bump certifi from 2025.7.9 to 2025.7.14
Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.7.9 to 2025.7.14.
- [Commits](https://github.com/certifi/python-certifi/compare/2025.07.09...2025.07.14)

---
updated-dependencies:
- dependency-name: certifi
  dependency-version: 2025.7.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-15 03:22:00 +00:00
dependabot[bot]
5907782ab9 Bump freezegun from 1.5.2 to 1.5.3
Bumps [freezegun](https://github.com/spulec/freezegun) from 1.5.2 to 1.5.3.
- [Release notes](https://github.com/spulec/freezegun/releases)
- [Changelog](https://github.com/spulec/freezegun/blob/master/CHANGELOG)
- [Commits](https://github.com/spulec/freezegun/compare/1.5.2...1.5.3)

---
updated-dependencies:
- dependency-name: freezegun
  dependency-version: 1.5.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-15 02:07:19 +00:00
dependabot[bot]
19efb98a7b Bump alembic from 1.16.3 to 1.16.4
Bumps [alembic](https://github.com/sqlalchemy/alembic) from 1.16.3 to 1.16.4.
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

---
updated-dependencies:
- dependency-name: alembic
  dependency-version: 1.16.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-11 13:35:37 +00:00
dependabot[bot]
c86e46670a Bump aiohttp from 3.12.13 to 3.12.14
Bumps [aiohttp](https://github.com/aio-libs/aiohttp) from 3.12.13 to 3.12.14.
- [Release notes](https://github.com/aio-libs/aiohttp/releases)
- [Changelog](https://github.com/aio-libs/aiohttp/blob/master/CHANGES.rst)
- [Commits](https://github.com/aio-libs/aiohttp/compare/v3.12.13...v3.12.14)

---
updated-dependencies:
- dependency-name: aiohttp
  dependency-version: 3.12.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-10 21:36:19 +00:00
dependabot[bot]
81bd37add7 Bump certifi from 2025.6.15 to 2025.7.9
Bumps [certifi](https://github.com/certifi/python-certifi) from 2025.6.15 to 2025.7.9.
- [Commits](https://github.com/certifi/python-certifi/compare/2025.06.15...2025.07.09)

---
updated-dependencies:
- dependency-name: certifi
  dependency-version: 2025.7.9
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-09 21:10:04 +00:00
dependabot[bot]
8a6d97fbca Bump alembic from 1.16.2 to 1.16.3
Bumps [alembic](https://github.com/sqlalchemy/alembic) from 1.16.2 to 1.16.3.
- [Release notes](https://github.com/sqlalchemy/alembic/releases)
- [Changelog](https://github.com/sqlalchemy/alembic/blob/main/CHANGES)
- [Commits](https://github.com/sqlalchemy/alembic/commits)

---
updated-dependencies:
- dependency-name: alembic
  dependency-version: 1.16.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-09 17:03:34 +00:00
dependabot[bot]
dab8f4ef49 Bump cyclonedx-python-lib from 10.3.0 to 10.4.1
Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 10.3.0 to 10.4.1.
- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases)
- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v10.3.0...v10.4.1)

---
updated-dependencies:
- dependency-name: cyclonedx-python-lib
  dependency-version: 10.4.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-09 16:54:47 +00:00
dependabot[bot]
ff06e1771c Bump phonenumbers from 9.0.8 to 9.0.9
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 9.0.8 to 9.0.9.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v9.0.8...v9.0.9)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-08 21:53:09 +00:00
Alex Janousek
e67f9eec25 Merge pull request #1811 from GSA/dependabot/pip/bandit-1.8.6
Bump bandit from 1.8.5 to 1.8.6
2025-07-08 08:29:34 -04:00
Alex Janousek
ba4a1fe78e Merge pull request #1812 from GSA/dependabot/pip/moto-5.1.8
Bump moto from 5.1.6 to 5.1.8
2025-07-08 08:29:11 -04:00
dependabot[bot]
ce8996850a Bump cloudfoundry-client from 1.38.5 to 1.38.6
---
updated-dependencies:
- dependency-name: cloudfoundry-client
  dependency-version: 1.38.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-08 01:53:02 +00:00
dependabot[bot]
9a0662974b Bump moto from 5.1.6 to 5.1.8
---
updated-dependencies:
- dependency-name: moto
  dependency-version: 5.1.8
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-08 01:52:54 +00:00
dependabot[bot]
cae5d4d5fe Bump bandit from 1.8.5 to 1.8.6
---
updated-dependencies:
- dependency-name: bandit
  dependency-version: 1.8.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-08 00:20:06 +00:00
dependabot[bot]
13bf758f4b Bump typing-extensions from 4.14.0 to 4.14.1
Bumps [typing-extensions](https://github.com/python/typing_extensions) from 4.14.0 to 4.14.1.
- [Release notes](https://github.com/python/typing_extensions/releases)
- [Changelog](https://github.com/python/typing_extensions/blob/main/CHANGELOG.md)
- [Commits](https://github.com/python/typing_extensions/compare/4.14.0...4.14.1)

---
updated-dependencies:
- dependency-name: typing-extensions
  dependency-version: 4.14.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-04 21:09:19 +00:00
dependabot[bot]
fb31550ef3 Bump cryptography from 45.0.4 to 45.0.5
Bumps [cryptography](https://github.com/pyca/cryptography) from 45.0.4 to 45.0.5.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/45.0.4...45.0.5)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 45.0.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-02 21:40:47 +00:00
dependabot[bot]
cb04cd21aa Bump pytest-xdist from 3.7.0 to 3.8.0
Bumps [pytest-xdist](https://github.com/pytest-dev/pytest-xdist) from 3.7.0 to 3.8.0.
- [Release notes](https://github.com/pytest-dev/pytest-xdist/releases)
- [Changelog](https://github.com/pytest-dev/pytest-xdist/blob/master/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest-xdist/compare/v3.7.0...v3.8.0)

---
updated-dependencies:
- dependency-name: pytest-xdist
  dependency-version: 3.8.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-01 21:26:31 +00:00
dependabot[bot]
9742c42e46 Bump cyclonedx-python-lib from 10.2.0 to 10.3.0
Bumps [cyclonedx-python-lib](https://github.com/CycloneDX/cyclonedx-python-lib) from 10.2.0 to 10.3.0.
- [Release notes](https://github.com/CycloneDX/cyclonedx-python-lib/releases)
- [Changelog](https://github.com/CycloneDX/cyclonedx-python-lib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/CycloneDX/cyclonedx-python-lib/compare/v10.2.0...v10.3.0)

---
updated-dependencies:
- dependency-name: cyclonedx-python-lib
  dependency-version: 10.3.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-07-01 00:56:28 +00:00
Kenneth Kehl
12b0934513 upgrade to python 3.12.9 2025-06-27 07:15:58 -07:00
Kenneth Kehl
56e18515db upgrade to python 3.12.9 2025-06-27 07:07:32 -07:00
dependabot[bot]
e41956f556 Bump lxml from 5.4.0 to 6.0.0
Bumps [lxml](https://github.com/lxml/lxml) from 5.4.0 to 6.0.0.
- [Release notes](https://github.com/lxml/lxml/releases)
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt)
- [Commits](https://github.com/lxml/lxml/compare/lxml-5.4.0...lxml-6.0.0)

---
updated-dependencies:
- dependency-name: lxml
  dependency-version: 6.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-06-26 21:28:09 +00:00
Kenneth Kehl
c3bc9e52ca upgrade to python 3.12.7 2025-06-26 07:16:07 -07:00
dependabot[bot]
5448e60a31 Bump phonenumbers from 9.0.7 to 9.0.8
Bumps [phonenumbers](https://github.com/daviddrysdale/python-phonenumbers) from 9.0.7 to 9.0.8.
- [Commits](https://github.com/daviddrysdale/python-phonenumbers/compare/v9.0.7...v9.0.8)

---
updated-dependencies:
- dependency-name: phonenumbers
  dependency-version: 9.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-06-26 13:45:59 +00:00