From 1042c30bb4e71be3258e52b276b081de0cb7e48b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 2 Dec 2024 23:31:30 +0000 Subject: [PATCH] build(deps): bump the minimum-runtime-dependencies group across 2 directories with 4 updates Updates the requirements on [securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]](https://github.com/secure-systems-lab/securesystemslib), [tuf](https://github.com/theupdateframework/python-tuf), [ruff](https://github.com/astral-sh/ruff) and [securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]](https://github.com/secure-systems-lab/securesystemslib) to permit the latest version. Updates `securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore]` to 1.1.0 - [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases) - [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md) - [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v0.31.0...v1.1.0) Updates `tuf` to 5.1.0 - [Release notes](https://github.com/theupdateframework/python-tuf/releases) - [Changelog](https://github.com/theupdateframework/python-tuf/blob/develop/docs/CHANGELOG.md) - [Commits](https://github.com/theupdateframework/python-tuf/compare/v3.1.0...v5.1.0) Updates `ruff` from 0.7.1 to 0.8.1 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.7.1...0.8.1) Updates `tuf` to 5.1.0 - [Release notes](https://github.com/theupdateframework/python-tuf/releases) - [Changelog](https://github.com/theupdateframework/python-tuf/blob/develop/docs/CHANGELOG.md) - [Commits](https://github.com/theupdateframework/python-tuf/compare/v3.1.0...v5.1.0) Updates `ruff` from 0.7.1 to 0.8.1 - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](https://github.com/astral-sh/ruff/compare/0.7.1...0.8.1) Updates `securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore]` to 1.1.0 - [Release notes](https://github.com/secure-systems-lab/securesystemslib/releases) - [Changelog](https://github.com/secure-systems-lab/securesystemslib/blob/main/CHANGELOG.md) - [Commits](https://github.com/secure-systems-lab/securesystemslib/compare/v0.31.0...v1.1.0) --- updated-dependencies: - dependency-name: securesystemslib[awskms,azurekms,gcpkms,pynacl,sigstore] dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: tuf dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minimum-runtime-dependencies - dependency-name: tuf dependency-type: direct:production dependency-group: minimum-runtime-dependencies - dependency-name: ruff dependency-type: direct:production update-type: version-update:semver-minor dependency-group: minimum-runtime-dependencies - dependency-name: securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] dependency-type: direct:production dependency-group: minimum-runtime-dependencies ... Signed-off-by: dependabot[bot] --- repo/pyproject.toml | 6 +++--- signer/pyproject.toml | 6 +++--- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/repo/pyproject.toml b/repo/pyproject.toml index bf9dbc8..49b91bf 100644 --- a/repo/pyproject.toml +++ b/repo/pyproject.toml @@ -11,8 +11,8 @@ name = "tuf-on-ci" description = "TUF-on-CI repository tools, intended to be executed on a CI system" readme = "README.md" dependencies = [ - "securesystemslib[awskms, azurekms, gcpkms, sigstore, pynacl] ~= 0.31.0", - "tuf ~= 3.1", + "securesystemslib[awskms, azurekms, gcpkms, sigstore, pynacl] ~= 1.1.0", + "tuf ~= 5.1", "click ~= 8.1", ] requires-python = ">=3.10" @@ -30,7 +30,7 @@ tuf-on-ci-update-targets = "tuf_on_ci:update_targets" [project.optional-dependencies] lint = [ "mypy == 1.13.0", - "ruff == 0.7.1", + "ruff == 0.8.1", ] [tool.hatch.version] diff --git a/signer/pyproject.toml b/signer/pyproject.toml index 45d5456..49dbef5 100644 --- a/signer/pyproject.toml +++ b/signer/pyproject.toml @@ -9,8 +9,8 @@ readme = "README.md" dependencies = [ "packaging >= 23.2,< 25.0", "platformdirs ~= 4.2", - "securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] ~= 0.31.0", - "tuf ~= 3.1", + "securesystemslib[awskms,azurekms,gcpkms,hsm,sigstore] >= 0.31,< 1.2", + "tuf >= 3.1,< 6.0", "click ~= 8.1", ] requires-python = ">=3.9" @@ -24,7 +24,7 @@ tuf-on-ci-sign = "tuf_on_ci_sign:sign" [project.optional-dependencies] lint = [ "mypy == 1.13.0", - "ruff == 0.7.1", + "ruff == 0.8.1", ] [tool.hatch.version]