From 13ee0e29c9fd518f8b61dc161412eb095f88c534 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 2 May 2022 20:38:59 +0000 Subject: [PATCH] Bump bandit from 1.7.1 to 1.7.4 Bumps [bandit](https://github.com/PyCQA/bandit) from 1.7.1 to 1.7.4. - [Release notes](https://github.com/PyCQA/bandit/releases) - [Commits](https://github.com/PyCQA/bandit/compare/1.7.1...1.7.4) --- updated-dependencies: - dependency-name: bandit dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- poetry.lock | 23 ++++++++++++++--------- pyproject.toml | 2 +- 2 files changed, 15 insertions(+), 10 deletions(-) diff --git a/poetry.lock b/poetry.lock index 49a6732..cceaec1 100644 --- a/poetry.lock +++ b/poetry.lock @@ -66,11 +66,11 @@ testing = ["pytest", "pytest-flake8", "pytest-cov", "pytest-black (>=0.3.7)", "p [[package]] name = "bandit" -version = "1.7.1" +version = "1.7.4" description = "Security oriented static analyser for python code." category = "dev" optional = false -python-versions = ">=3.5" +python-versions = ">=3.7" [package.dependencies] colorama = {version = ">=0.3.9", markers = "platform_system == \"Windows\""} @@ -78,6 +78,11 @@ GitPython = ">=1.0.1" PyYAML = ">=5.3.1" stevedore = ">=1.20.0" +[package.extras] +test = ["coverage (>=4.5.4)", "fixtures (>=3.0.0)", "flake8 (>=4.0.0)", "stestr (>=2.5.0)", "testscenarios (>=0.5.0)", "testtools (>=2.3.0)", "toml", "beautifulsoup4 (>=4.8.0)", "pylint (==1.9.4)"] +toml = ["toml"] +yaml = ["pyyaml"] + [[package]] name = "beautifulsoup4" version = "4.9.3" @@ -969,11 +974,11 @@ pbr = ">=2.0.0,<2.1.0 || >2.1.0" [[package]] name = "tablib" -version = "3.1.0" +version = "3.2.1" description = "Format agnostic tabular data library (XLS, JSON, YAML, CSV)" category = "main" optional = false -python-versions = ">=3.6" +python-versions = ">=3.7" [package.dependencies] openpyxl = {version = ">=2.6.0", optional = true, markers = "extra == \"xlsx\""} @@ -1179,7 +1184,7 @@ python-versions = "*" [metadata] lock-version = "1.1" python-versions = "^3.9" -content-hash = "9bd4d1be950742bce927a88d68fbd506f62faff4a02cbbe4fa7eef35696f3920" +content-hash = "8960d0faeca578d988e05213251a017e081bb1b14d786112001fd56fc7f2f779" [metadata.files] anyascii = [ @@ -1207,8 +1212,8 @@ attrs = [ {file = "backports.entry_points_selectable-1.1.1.tar.gz", hash = "sha256:914b21a479fde881635f7af5adc7f6e38d6b274be32269070c53b698c60d5386"}, ] bandit = [ - {file = "bandit-1.7.1-py3-none-any.whl", hash = "sha256:f5acd838e59c038a159b5c621cf0f8270b279e884eadd7b782d7491c02add0d4"}, - {file = "bandit-1.7.1.tar.gz", hash = "sha256:a81b00b5436e6880fa8ad6799bc830e02032047713cbb143a12939ac67eb756c"}, + {file = "bandit-1.7.4-py3-none-any.whl", hash = "sha256:412d3f259dab4077d0e7f0c11f50f650cc7d10db905d98f6520a95a18049658a"}, + {file = "bandit-1.7.4.tar.gz", hash = "sha256:2d63a8c573417bae338962d4b9b06fbc6080f74ecd955a092849e1e65c717bd2"}, ] beautifulsoup4 = [ {file = "beautifulsoup4-4.9.3-py2-none-any.whl", hash = "sha256:4c98143716ef1cb40bf7f39a8e3eec8f8b009509e74904ba3a7b315431577e35"}, @@ -1617,8 +1622,8 @@ stevedore = [ {file = "stevedore-3.5.0.tar.gz", hash = "sha256:f40253887d8712eaa2bb0ea3830374416736dc8ec0e22f5a65092c1174c44335"}, ] tablib = [ - {file = "tablib-3.1.0-py3-none-any.whl", hash = "sha256:26141c9cf2d5904a2228d3f5d45f8a46a3f3f2f0fbb4c33b4a1c1ddca9f31348"}, - {file = "tablib-3.1.0.tar.gz", hash = "sha256:d64c9f6712918a3d90ec5d71b44b8bab1083e3609e4844ad2be80eb633e097ed"}, + {file = "tablib-3.2.1-py3-none-any.whl", hash = "sha256:870d7e688f738531a14937a055e8bba404fbc388e77d4d500b2c904075d1019c"}, + {file = "tablib-3.2.1.tar.gz", hash = "sha256:a57f2770b8c225febec1cb1e65012a69cf30dd28be810e0ff98d024768c7d0f1"}, ] telepath = [ {file = "telepath-0.2-py35-none-any.whl", hash = "sha256:801615094d3d964e178183099bf04020f4ff9c84ec43945d40b096df0a5767ee"}, diff --git a/pyproject.toml b/pyproject.toml index 65fb096..9a4c968 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -30,7 +30,7 @@ wagtail = '^2.13' psycopg2 = '>=2.8.6' [tool.poetry.dev-dependencies] -bandit = "^1.7.0" +bandit = "^1.7.4" black = {version = "^21.7b0", allow-prereleases = true} darglint = "^1.8.0" django-debug-toolbar = "*"