Bump bandit from 1.7.8 to 1.7.10

[dependabot[bot]]

Bumps bandit from 1.7.8 to 1.7.10.

Release notes

Sourced from bandit's releases.

1.7.10

What's Changed

• Bump docker/build-push-action from 5.4.0 to 6.0.0 by @​dependabot in PyCQA/bandit#1147
• Suggested small refactors in assignments by @​ericwb in PyCQA/bandit#1150
• Performance improvement in blacklist function by @​ericwb in PyCQA/bandit#1148
• Add test for usage of FTP_TLS by @​ericwb in PyCQA/bandit#1149
• New check: B113: TrojanSource - Bidirectional control characters by @​Lucas-C in PyCQA/bandit#757
• Bump docker/build-push-action from 6.0.0 to 6.1.0 by @​dependabot in PyCQA/bandit#1152
• feat(plugins): add support for httpx in B113 by @​mkniewallner in PyCQA/bandit#1060
• Nit: remove unused variable by @​ericwb in PyCQA/bandit#1153
• Add recent releases to version choice in bug report by @​ericwb in PyCQA/bandit#1151
• Bump docker/build-push-action from 6.1.0 to 6.2.0 by @​dependabot in PyCQA/bandit#1155
• Bump docker/build-push-action from 6.2.0 to 6.3.0 by @​dependabot in PyCQA/bandit#1157
• Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @​dependabot in PyCQA/bandit#1156
• Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by @​dependabot in PyCQA/bandit#1158
• Bump docker/login-action from 3.2.0 to 3.3.0 by @​dependabot in PyCQA/bandit#1159
• Bump docker/build-push-action from 6.3.0 to 6.5.0 by @​dependabot in PyCQA/bandit#1160
• Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 by @​dependabot in PyCQA/bandit#1163
• Bump docker/build-push-action from 6.5.0 to 6.6.1 by @​dependabot in PyCQA/bandit#1166
• Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by @​dependabot in PyCQA/bandit#1165
• Bump docker/build-push-action from 6.6.1 to 6.7.0 by @​dependabot in PyCQA/bandit#1168
• Use consistent file naming of docs by @​ericwb in PyCQA/bandit#1170
• Pytorch Load / Save Plugin by @​lukehinds in PyCQA/bandit#1114

New Contributors

• @​Lucas-C made their first contribution in PyCQA/bandit#757

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10

1.7.9

What's Changed

• Bump docker/build-push-action from 5.1.0 to 5.2.0 by @​dependabot in PyCQA/bandit#1117
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1119
• New logo for Bandit based on raccoon by @​ericwb in PyCQA/bandit#1121
• Start testing on Python 3.13 by @​ericwb in PyCQA/bandit#1122
• Bump docker/build-push-action from 5.2.0 to 5.3.0 by @​dependabot in PyCQA/bandit#1123
• Bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @​dependabot in PyCQA/bandit#1124
• Bump docker/login-action from 3.0.0 to 3.1.0 by @​dependabot in PyCQA/bandit#1125
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1126
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1127
• Bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @​dependabot in PyCQA/bandit#1130
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1131
• Bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @​dependabot in PyCQA/bandit#1132
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1133
• Updates banner logo so it renders well in dark mode by @​ericwb in PyCQA/bandit#1134
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1135
• Add a sponsor section to README by @​ericwb in PyCQA/bandit#1137
• Ensure sarif extra is included as part of doc build by @​ericwb in PyCQA/bandit#1139
• Bump docker/login-action from 3.1.0 to 3.2.0 by @​dependabot in PyCQA/bandit#1142
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1143

... (truncated)

Commits

• 36fd650 Pytorch Load / Save Plugin (#1114)
• 4ac55df Use consistent file naming of docs (#1170)
• 68022aa Bump docker/build-push-action from 6.6.1 to 6.7.0 (#1168)
• 77566a0 Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 (#1165)
• 221ced6 Bump docker/build-push-action from 6.5.0 to 6.6.1 (#1166)
• 701b7d5 Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 (#1163)
• 320495c Bump docker/build-push-action from 6.3.0 to 6.5.0 (#1160)
• 90490c7 Bump docker/login-action from 3.2.0 to 3.3.0 (#1159)
• 708ab74 Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 (#1158)
• 89d2345 Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 (#1156)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)