Skip to content

build: dependabot deps bump#105

Open
BKDDFS wants to merge 25 commits intomainfrom
dev
Open

build: dependabot deps bump#105
BKDDFS wants to merge 25 commits intomainfrom
dev

Conversation

@BKDDFS
Copy link
Owner

@BKDDFS BKDDFS commented Feb 23, 2026

No description provided.

BKDDFS and others added 24 commits January 30, 2026 21:58
@BKDDFS
chore: bump version to 3.0.0
7c850c2
@BKDDFS
fix: add conventional commit prefix to Dependabot config (#81)
2c211e3 
Dependabot PRs fail the semantic-pull-request check because their
titles don't follow conventional commits format. Adding commit-message
prefix "build" makes Dependabot produce compliant titles.
@BKDDFS
Merge branch 'main' into dev
a02dea1
@BKDDFS
fix: set Dependabot target branch to dev (#85)
d373e82 
Dependabot PRs were targeting main which is protected. Setting
target-branch to dev to match the project's branching flow.
@dependabot
Bump actions/checkout from 6.0.1 to 6.0.2 (#72)
f62a706 
Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@8e8c483...de0fac2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: 6.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump opencv-python from 4.13.0.90 to 4.13.0.92 (#90)
b686f50 
Bumps [opencv-python](https://github.com/opencv/opencv-python) from 4.13.0.90 to 4.13.0.92.
- [Release notes](https://github.com/opencv/opencv-python/releases)
- [Commits](https://github.com/opencv/opencv-python/commits)

---
updated-dependencies:
- dependency-name: opencv-python
  dependency-version: 4.13.0.92
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump ruff from 0.14.14 to 0.15.0 (#89)
44bca77 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.14.14 to 0.15.0.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.14...0.15.0)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.15.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump onnxruntime-gpu from 1.23.2 to 1.24.1 (#91)
eb64eb8 
Bumps [onnxruntime-gpu](https://github.com/microsoft/onnxruntime) from 1.23.2 to 1.24.1.
- [Release notes](https://github.com/microsoft/onnxruntime/releases)
- [Changelog](https://github.com/microsoft/onnxruntime/blob/main/docs/ReleaseManagement.md)
- [Commits](microsoft/onnxruntime@v1.23.2...v1.24.1)

---
updated-dependencies:
- dependency-name: onnxruntime-gpu
  dependency-version: 1.24.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@BKDDFS
Merge branch 'main' into dev
78bc629
@dependabot
build: bump ruff from 0.15.0 to 0.15.1 (#97)
cbb2679 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.15.0 to 0.15.1.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.0...0.15.1)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.15.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump fastapi from 0.128.0 to 0.129.0 (#96)
6cd3861 
Bumps [fastapi](https://github.com/fastapi/fastapi) from 0.128.0 to 0.129.0.
- [Release notes](https://github.com/fastapi/fastapi/releases)
- [Commits](fastapi/fastapi@0.128.0...0.129.0)

---
updated-dependencies:
- dependency-name: fastapi
  dependency-version: 0.129.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump ty from 0.0.14 to 0.0.17 (#94)
e1fc3e0 
Bumps [ty](https://github.com/astral-sh/ty) from 0.0.14 to 0.0.17.
- [Release notes](https://github.com/astral-sh/ty/releases)
- [Changelog](https://github.com/astral-sh/ty/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ty@0.0.14...0.0.17)

---
updated-dependencies:
- dependency-name: ty
  dependency-version: 0.0.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump github/codeql-action from 3.32.0 to 4.32.3 (#93)
6c6a7fd 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.32.0 to 4.32.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@439137e...9e907b5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.3
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump aquasecurity/trivy-action from 0.33.1 to 0.34.0 (#95)
02085b9 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.33.1 to 0.34.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](aquasecurity/trivy-action@b6643a2...c1824fd)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-version: 0.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@BKDDFS
Merge branch 'main' into dev
2cdae85
@BKDDFS @claude
fix: remove trailing whitespace in codeql.yml
46cd6ee 
Fix pre-commit CI failure on PR #98 caused by trailing whitespace.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@BKDDFS @claude
fix: add missing newline at end of codeql.yml
f92f2ef 
The end-of-file-fixer hook requires a trailing newline.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@BKDDFS @claude
build: bump python base image from 3.13.11 to 3.13.12
a296a7b 
Addresses Trivy security alerts for gnutls, pip, and libxml2
vulnerabilities in the base Docker image.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@dependabot
build: bump onnxruntime-gpu from 1.24.1 to 1.24.2 (#104)
702a260 
Bumps [onnxruntime-gpu](https://github.com/microsoft/onnxruntime) from 1.24.1 to 1.24.2.
- [Release notes](https://github.com/microsoft/onnxruntime/releases)
- [Changelog](https://github.com/microsoft/onnxruntime/blob/main/docs/ReleaseManagement.md)
- [Commits](microsoft/onnxruntime@v1.24.1...v1.24.2)

---
updated-dependencies:
- dependency-name: onnxruntime-gpu
  dependency-version: 1.24.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump uvicorn from 0.40.0 to 0.41.0 (#103)
eb3de81 
Bumps [uvicorn](https://github.com/Kludex/uvicorn) from 0.40.0 to 0.41.0.
- [Release notes](https://github.com/Kludex/uvicorn/releases)
- [Changelog](https://github.com/Kludex/uvicorn/blob/main/docs/release-notes.md)
- [Commits](Kludex/uvicorn@0.40.0...0.41.0)

---
updated-dependencies:
- dependency-name: uvicorn
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump ruff from 0.15.1 to 0.15.2 (#102)
e038bdf 
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.15.1 to 0.15.2.
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.1...0.15.2)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.15.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump starlette from 0.50.0 to 0.52.1 (#101)
15be57e 
Bumps [starlette](https://github.com/Kludex/starlette) from 0.50.0 to 0.52.1.
- [Release notes](https://github.com/Kludex/starlette/releases)
- [Changelog](https://github.com/Kludex/starlette/blob/main/docs/release-notes.md)
- [Commits](Kludex/starlette@0.50.0...0.52.1)

---
updated-dependencies:
- dependency-name: starlette
  dependency-version: 0.52.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump github/codeql-action from 4.32.3 to 4.32.4 (#99)
6a346d7 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.3 to 4.32.4.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@9e907b5...89a39a4)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
build: bump onnxruntime from 1.23.2 to 1.24.2 (#100)
506af7d 
Bumps [onnxruntime](https://github.com/microsoft/onnxruntime) from 1.23.2 to 1.24.2.
- [Release notes](https://github.com/microsoft/onnxruntime/releases)
- [Changelog](https://github.com/microsoft/onnxruntime/blob/main/docs/ReleaseManagement.md)
- [Commits](microsoft/onnxruntime@v1.23.2...v1.24.2)

---
updated-dependencies:
- dependency-name: onnxruntime
  dependency-version: 1.24.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@codecov
Copy link

codecov bot commented Feb 23, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Feb 23, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@BKDDFS