From 511078dd8d323c8d2827af77af61e40b93a2972d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Jun 2024 22:28:37 +0000 Subject: [PATCH] build(deps): bump the minimum-runtime-dependencies group across 2 directories with 4 updates Updates the requirements on [securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]](https://github.com/secure-systems-lab/securesystemslib), [tuf](https://github.com/theupdateframework/python-tuf), [ruff](https://github.com/astral-sh/ruff) and [securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]](https://github.com/secure-systems-lab/securesystemslib) to permit the latest version. Updates `securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]` to 1.1.0 - [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases) - [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md) - [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v0.31.0...v1.1.0) Updates `tuf` to 5.0.0 - [Release notes](https://github.com/theupdateframework/python-tuf/releases) - [Changelog](https://github.com/theupdateframework/python-tuf/blob/develop/docs/CHANGELOG.md) - [Commits](https://github.com/theupdateframework/python-tuf/compare/v3.1.0...v5.0.0) Updates `ruff` from 0.4.4 to 0.4.10 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.4...v0.4.10) Updates `tuf` to 5.0.0 - [Release notes](https://github.com/theupdateframework/python-tuf/releases) - [Changelog](https://github.com/theupdateframework/python-tuf/blob/develop/docs/CHANGELOG.md) - [Commits](https://github.com/theupdateframework/python-tuf/compare/v3.1.0...v5.0.0) Updates `ruff` from 0.4.4 to 0.4.10 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/v0.4.4...v0.4.10) Updates `securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]` to 1.1.0 - [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases) - [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md) - [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v0.31.0...v1.1.0) --- updated-dependencies: - dependency-name: securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore] dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: tuf dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minimum-runtime-dependencies - dependency-name: tuf dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-patch dependency-group: minimum-runtime-dependencies - dependency-name: securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] dependency-type: direct:production dependency-group: minimum-runtime-dependencies ... Signed-off-by: dependabot[bot] --- repo/pyproject.toml | 6 +++--- signer/pyproject.toml | 6 +++--- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/repo/pyproject.toml b/repo/pyproject.toml index 0f48866e..395b6671 100644 --- a/repo/pyproject.toml +++ b/repo/pyproject.toml @@ -11,8 +11,8 @@ name = "tuf-on-ci" description = "TUF-on-CI repository tools, intended to be executed on a CI system" readme = "README.md" dependencies = [ - "securesystemslib[awskms, azurekms, gcpkms, sigstore, pynacl] ~= 0.31.0", - "tuf ~= 3.1", + "securesystemslib[awskms, azurekms, gcpkms, sigstore, pynacl] ~= 1.1.0", + "tuf ~= 5.0", "click ~= 8.1", ] requires-python = ">=3.10" @@ -29,7 +29,7 @@ tuf-on-ci-update-targets = "tuf_on_ci:update_targets" [project.optional-dependencies] lint = [ "mypy == 1.10.0", - "ruff == 0.4.4", + "ruff == 0.4.10", ] [tool.hatch.version] diff --git a/signer/pyproject.toml b/signer/pyproject.toml index 3aaa153b..a850e306 100644 --- a/signer/pyproject.toml +++ b/signer/pyproject.toml @@ -9,8 +9,8 @@ readme = "README.md" dependencies = [ "packaging >= 23.2,< 25.0", "platformdirs ~= 4.2", - "securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] ~= 0.31.0", - "tuf ~= 3.1", + "securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] >= 0.31,< 1.2", + "tuf >= 3.1,< 6.0", "click ~= 8.1", ] requires-python = ">=3.10" @@ -24,7 +24,7 @@ tuf-on-ci-sign = "tuf_on_ci_sign:sign" [project.optional-dependencies] lint = [ "mypy == 1.10.0", - "ruff == 0.4.4", + "ruff == 0.4.10", ] [tool.hatch.version]