django-test-migrations icon indicating copy to clipboard operation
django-test-migrations copied to clipboard

Published 20 hours ago verified publisher icon wemake-services

Bump safety from 2.2.1 to 2.3.1

Open dependabot[bot] opened this issue 3 years ago • 1 comments

Bumps safety from 2.2.1 to 2.3.1.

Release notes

Sourced from safety's releases.

2.3.1

No release notes provided.

2.3.0

What's Changed

Full Changelog: https://github.com/pyupio/safety/compare/2.2.1...2.3.0

Changelog

Sourced from safety's changelog.

[2.3.1] - 2022-10-05

  • Add safety.alerts module to setup.cfg

[2.3.0] - 2022-10-05

  • Safety can now create GitHub PRs and Issues for vulnerabilities directly, with the new safety alert subcommand.
  • Support for GitHub PR and Issue alerting has been added to the GitHub Action.
Commits
  • 6631403 Fix bugged 2.3.0 release - safety.alerts module not included in setup.cfg
  • 12cd289 Version 2.3.0
  • 43dd831 Fix workflows for master -> main rename
  • 40fb27a Merge pull request #415 from pyupio/develop
  • 679cd54 Add dataclasses requirement to test_requirements.txt
  • 1134fb9 Fix test case with expanded more_info_url
  • 320aa5c Merge branch 'main' into develop
  • 195aefc Merge pull request #411 from cb22/develop
  • 1172ea6 Handle cvss3 score being None it utils too
  • 5717d5a Handle when optional extras are not installed
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Oct 06 '22 02:10 dependabot[bot]

Codecov Report

Merging #319 (64de3ac) into master (6ad964f) will not change coverage. The diff coverage is n/a.

@@            Coverage Diff            @@
##            master      #319   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           17        17           
  Lines          322       322           
  Branches        45        45           
=========================================
  Hits           322       322

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

codecov[bot] avatar Oct 06 '22 02:10 codecov[bot]