Skip to content

Comments

Bump the actions group with 3 updates#4334

Merged
jtraglia merged 1 commit intodevfrom
dependabot/pip/actions-7e473ec406
May 20, 2025
Merged

Bump the actions group with 3 updates#4334
jtraglia merged 1 commit intodevfrom
dependabot/pip/actions-7e473ec406

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 19, 2025

Bumps the actions group with 3 updates: pycryptodome, setuptools and mkdocs-material.

Updates pycryptodome from 3.22.0 to 3.23.0

Release notes

Sourced from pycryptodome's releases.

v3.23.0 - Dunkerque

New features

  • Added cipher modes Key Wrap (KW, RFC3394) and Key Wrap with Padding (KWP, RFC5649). Both are defined also in NIST SP 800-38F.
  • Wheels for Windows ARM.

Resolved issues

  • GH#862: For HashEdDSA and Ed448, sign() and verify() modified the state of the XOF.
Changelog

Sourced from pycryptodome's changelog.

3.23.0 (17 May 2025) ++++++++++++++++++++++++++

New features

  • Added cipher modes Key Wrap (KW, RFC3394) and Key Wrap with Padding (KWP, RFC5649). Both are defined also in NIST SP 800-38F.
  • Wheels for Windows ARM.

Resolved issues

  • GH#862: For HashEdDSA and Ed448, sign() and verify() modified the state of the XOF.
Commits

Updates setuptools from 80.4.0 to 80.7.1

Changelog

Sourced from setuptools's changelog.

v80.7.1

Bugfixes

  • Only attempt to fetch eggs for unsatisfied requirements. (#4998)
  • In installer, when discovering egg dists, let metadata discovery search each egg. (#4998)

v80.7.0

Features

  • Removed usage of pkg_resources from installer. Set an official deadline on the installer deprecation to 2025-10-31. (#4997)

Misc

v80.6.0

Features

  • Added a build dependency on coherent.licensed to inject the declared license text at build time. (#4981)

Misc

v80.5.0

Features

  • Replaced more references to pkg_resources with importlib equivalents. (#3085)

Misc

... (truncated)

Commits

Updates mkdocs-material from 9.6.13 to 9.6.14

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.6.14

  • Fixed #8215: Social plugin crashes when CairoSVG is updated to 2.8
Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.6.14 (2025-05-13)

  • Fixed #8215: Social plugin crashes when CairoSVG is updated to 2.8

mkdocs-material-9.6.13 (2025-05-10)

  • Fixed #8204: Annotations showing list markers in print view
  • Fixed #8153: Improve style of cardinality symbols in Mermaid.js ER diagrams

mkdocs-material-9.6.12 (2025-04-17)

  • Fixed #8158: Flip footnote back reference icon for right-to-left languages

mkdocs-material-9.6.11 (2025-04-01)

  • Updated Docker image to latest Alpine Linux
  • Bump required Jinja version to 3.1
  • Fixed #8133: Jinja filter items not available (9.6.10 regression)
  • Fixed #8128: Search plugin not entirely disabled via enabled setting

mkdocs-material-9.6.10 (2025-03-30)

This version is a pure refactoring release, and does not contain new features or bug fixes. It strives to improve the compatibility of our templates with alternative Jinja-like template engines that we're currently exploring, including minijinja.

Additionally, it replaces several instances of Python function invocations with idiomatic use of template filters. All instances where variables have been mutated inside templates have been replaced. Most changes have been made in partials, and only a few in blocks, and all of them are fully backward compatible, so no changes to overrides are necessary.

Note that this release does not replace the Jinja template engine with minijinja. However, our templates are now 99% compatible with minijinja, which means we can explore alternative Jinja-compatible implementations. Additionally, immutability and removal of almost all Python function invocations means much more idiomatic templating.

mkdocs-material-9.6.9 (2025-03-17)

  • Updated Serbo-Croatian translations
  • Fixed #8086: Custom SVG icons containing hashes break rendering
  • Fixed #8067: Drawer has gap on right side in Firefox on some OSs

mkdocs-material-9.6.8+insiders-4.53.16 (2025-03-13)

  • Fixed #8019: Tooltips have precedence over instant previews

mkdocs-material-9.6.8 (2025-03-13)

... (truncated)

Commits
  • 2e9bd81 Prepare 9.6.14 release
  • e45972a Fixed social plugin crashing for CairoSVG >= 2.8
  • bce053a Fixed social plugin crashing for CairoSVG >= 2.8
  • ca65624 Updated changelog
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the actions group with 3 updates: [pycryptodome](https://github.com/Legrandin/pycryptodome), [setuptools](https://github.com/pypa/setuptools) and [mkdocs-material](https://github.com/squidfunk/mkdocs-material).


Updates `pycryptodome` from 3.22.0 to 3.23.0
- [Release notes](https://github.com/Legrandin/pycryptodome/releases)
- [Changelog](https://github.com/Legrandin/pycryptodome/blob/master/Changelog.rst)
- [Commits](Legrandin/pycryptodome@v3.22.0...v3.23.0)

Updates `setuptools` from 80.4.0 to 80.7.1
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v80.4.0...v80.7.1)

Updates `mkdocs-material` from 9.6.13 to 9.6.14
- [Release notes](https://github.com/squidfunk/mkdocs-material/releases)
- [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG)
- [Commits](squidfunk/mkdocs-material@9.6.13...9.6.14)

---
updated-dependencies:
- dependency-name: pycryptodome
  dependency-version: 3.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: setuptools
  dependency-version: 80.7.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: mkdocs-material
  dependency-version: 9.6.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python labels May 19, 2025
@jtraglia jtraglia merged commit ad88450 into dev May 20, 2025
12 checks passed
@jtraglia jtraglia deleted the dependabot/pip/actions-7e473ec406 branch May 20, 2025 03:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant