Merge pull request #681 from fedejaure/chore-update-deps

Update deps and minor fixes
fedejaure · Nov 15, 2024 · 066572e · 066572e
2 parents c40c660 + c14fdc4
commit 066572e
Show file tree

Hide file tree

Showing 19 changed files with 871 additions and 767 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4.1.6
+        uses: actions/checkout@v4.2.2
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL

diff --git a/.github/workflows/pre-commit-autoupdate.yml b/.github/workflows/pre-commit-autoupdate.yml
@@ -10,12 +10,12 @@ jobs:
     name: autoupdate
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.1.6
+      - uses: actions/checkout@v4.2.2
         with:
           ref: develop
 
       - name: Set up Python 3.9
-        uses: actions/setup-python@v5.1.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: 3.9
 
@@ -28,11 +28,12 @@ jobs:
 
       - name: Run autoupdate
         run: poetry run pre-commit autoupdate
+        continue-on-error: true
 
       - name: Run pre-commit
         run: poetry run pre-commit run --all-files
 
-      - uses: peter-evans/create-pull-request@v6.0.5
+      - uses: peter-evans/create-pull-request@v7.0.5
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           branch: chore-update-pre-commit-hooks

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -5,12 +5,16 @@ on:
     tags:
       - 'v*'
 
+permissions:
+  id-token: write
+  contents: write
+
 jobs:
   github_release:
     name: Create Github Release
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.1.6
+      - uses: actions/checkout@v4.2.2
 
       - name: Get version from tag
         id: tag_name

diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
@@ -14,10 +14,10 @@ jobs:
     name: Linting
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4.1.6
+      - uses: actions/checkout@v4.2.2
 
       - name: Set up Python 3.9
-        uses: actions/setup-python@v5.1.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: 3.9
 
@@ -42,10 +42,10 @@ jobs:
         python-version: ['3.9', '3.10', '3.11', '3.12']
       fail-fast: true
     steps:
-      - uses: actions/checkout@v4.1.6
+      - uses: actions/checkout@v4.2.2
 
       - name: Set up Python ${{ matrix.python-version }}
-        uses: actions/setup-python@v5.1.0
+        uses: actions/setup-python@v5.3.0
         with:
           python-version: ${{ matrix.python-version }}
 

diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -33,12 +33,12 @@ repos:
       - id: isort
         exclude: "^{{cookiecutter.project_name}}/"
   - repo: https://github.com/psf/black
-    rev: 24.4.2
+    rev: 24.10.0
     hooks:
       - id: black
         exclude: "^{{cookiecutter.project_name}}/"
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: v0.4.8
+    rev: v0.7.1
     hooks:
       - id: ruff
         args: [ --fix ]

diff --git a/.safety-policy.yml b/.safety-policy.yml
@@ -8,5 +8,5 @@ security: # configuration for the `safety check` command
         # We recommend making use of the optional `reason` and `expires` keys for each vulnerability that you ignore.
         70612:
             reason: we do not use the vulnerable function
-            expires: '2024-10-10'
+            expires: '2025-10-10'
     continue-on-vulnerability-error: False # Suppress non-zero exit codes when vulnerabilities are found. Enable this in pipelines and CI/CD processes if you want to pass builds that have vulnerabilities
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -11,30 +11,33 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - `.safety-policy.yml` file.
 
 ### Changed
-- typer from `^0.9.0` to `^0.12.3`.
-- coverage from `^7.4.1` to `^7.5.3`.
-- pytest-cov from `^4.1.0` to `^5.0.0`.
-- sphinx from `^7.2.6` to `^7.3.7`.
-- black from `^24.2.0` to `^24.4.2`.
-- mypy from `^1.8.0` to `^1.10.0`.
-- ruff from `^0.2.1` to `^0.4.8`.
-- safety from `^3.0.1` to `^3.2.1`.
-- pytest from `^8.0.1` to `^8.2.2`.
-- pre-commit from `^3.6.1` to `^3.7.1`.
-- xdoctest from `^1.1.3` to `^1.1.4`.
-- watchdog from `^4.0.0` to `^4.0.1`.
+- typer from `^0.9.0` to `^0.13.0`.
+- coverage from `^7.4.1` to `^7.6.7`.
+- pytest-cov from `^4.1.0` to `^6.0.0`.
+- sphinx from `^7.2.6` to `^7.4.7`.
+- black from `^24.2.0` to `^24.10.0`.
+- mypy from `^1.8.0` to `^1.13.0`.
+- ruff from `^0.2.1` to `^0.7.1`.
+- safety from `^3.0.1` to `^3.2.11`.
+- pytest from `^8.0.1` to `^8.3.3`.
+- pre-commit from `^3.6.1` to `^4.0.1`.
+- xdoctest from `^1.1.3` to `^1.2.0`.
+- watchdog from `^4.0.0` to `^6.0.0`.
 - poetry pre-commit hooks from `1.7.1` to `1.8.3`.
 - codecov/codecov-action from `v3.1.4` to `v4.4.1`.
-- actions/upload-artifact from `v4` to `v4.3.3`.
-- actions/download-artifact from `v4` to `v4.1.7`.
-- actions/setup-python from `v5.0.0` to `v5.1.0`.
+- actions/upload-artifact from `v4` to `v4.4.3`.
+- actions/download-artifact from `v4` to `v4.1.8`.
+- actions/setup-python from `v5.0.0` to `v5.3.0`.
 - mindsers/changelog-reader-action from `v2.2.2` to `v2.2.3`.
-- peter-evans/create-pull-request from `v6.0.0` to `v6.0.5`.
-- actions/checkout from `v4.1.1` to `v4.1.6`.
+- peter-evans/create-pull-request from `v6.0.0` to `v7.0.5`.
+- actions/checkout from `v4.1.1` to `v4.2.2`.
 
 ### Fixed
 - Citation abstract to be generated with `project_short_description`.
 - Docs `conf.py` to the linting target path.
+- Release workflow permissions.
+- Release Pypi.
+- Nox coverage session under an interactive execution.
 
 ## [3.0.1] - 2024-02-18
 ### Fixed

diff --git a/docs/requirements.txt b/docs/requirements.txt
@@ -1,2 +1,2 @@
-sphinx==7.3.7
+sphinx==7.4.7
 recommonmark==0.7.1