Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump keyring from 25.2.1 to 25.4.1 #18630

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 24, 2024

Bumps keyring from 25.2.1 to 25.4.1.

Changelog

Sourced from keyring's changelog.

v25.4.1

Bugfixes

  • Fixed ValueError for AnonymousCredentials in CLI. (#694)

v25.4.0

Features

  • Refined type spec and interfaces on credential objects. Introduced AnonymousCredential to model a secret without a username. (#689)

v25.3.0

Features

  • Deprecated support for empty usernames. Now all backends will reject an empty string as input for the 'username' field when setting a password. Later this deprecation will become a more visible user warning and even later an error. If this warning is triggered in your environment, please consider using a static value (even 'username') or comment in the issue and describe the use-case that demands support for empty usernames. (#668)
Commits
  • 24ec25d Finalize
  • 5bc7149 Merge pull request #695 from ffissore/anon-fix
  • e9f7851 Add another test to cover Credential._vars.
  • b75609e Add news fragment.
  • ef69469 Move class-specific behaviors into the classes.
  • c5c06ce Merge branch 'test/694' into anon-fix
  • 41892e7 Add test for get_credential with no username.
  • bd2a372 Not accessing credentials.username if credentials is an instance of `Anon...
  • 0041050 Finalize
  • 98f027b Merge pull request #691 from Avasam/add-typed-libraries-to-type-checking
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

@dependabot dependabot bot requested a review from a team as a code owner September 24, 2024 15:23
@dependabot dependabot bot added Changed Required label for PR that categorizes merge commit message as "Changed" for changelog dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Sep 24, 2024
Copy link

socket-security bot commented Sep 24, 2024

Removed dependencies detected. Learn more about Socket for GitHub ↗︎

🚮 Removed packages: pypi/keyring@25.2.1

View full report↗︎

@github-actions github-actions bot added the merge_conflict Branch has conflicts that prevent merge to main label Sep 26, 2024
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

@dependabot dependabot bot force-pushed the dependabot/pip/keyring-25.4.1 branch from 5e071fd to d37cfd3 Compare October 1, 2024 20:24
@github-actions github-actions bot removed the merge_conflict Branch has conflicts that prevent merge to main label Oct 1, 2024
Copy link
Contributor

github-actions bot commented Oct 1, 2024

Conflicts have been resolved. A maintainer will review the pull request shortly.

@github-actions github-actions bot added the merge_conflict Branch has conflicts that prevent merge to main label Oct 10, 2024
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

@dependabot dependabot bot force-pushed the dependabot/pip/keyring-25.4.1 branch from d37cfd3 to d89a8ac Compare October 15, 2024 20:58
Copy link
Contributor

Conflicts have been resolved. A maintainer will review the pull request shortly.

@github-actions github-actions bot removed the merge_conflict Branch has conflicts that prevent merge to main label Oct 15, 2024
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

@github-actions github-actions bot added the merge_conflict Branch has conflicts that prevent merge to main label Oct 16, 2024
@hoffmang9
Copy link
Member

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/pip/keyring-25.4.1 branch from d89a8ac to 6efcafa Compare October 16, 2024 21:37
@github-actions github-actions bot removed the merge_conflict Branch has conflicts that prevent merge to main label Oct 16, 2024
Copy link
Contributor

Conflicts have been resolved. A maintainer will review the pull request shortly.

@github-actions github-actions bot added the merge_conflict Branch has conflicts that prevent merge to main label Oct 17, 2024
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

Bumps [keyring](https://github.com/jaraco/keyring) from 25.2.1 to 25.4.1.
- [Release notes](https://github.com/jaraco/keyring/releases)
- [Changelog](https://github.com/jaraco/keyring/blob/main/NEWS.rst)
- [Commits](jaraco/keyring@v25.2.1...v25.4.1)

---
updated-dependencies:
- dependency-name: keyring
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/keyring-25.4.1 branch from 6efcafa to ee635db Compare October 22, 2024 20:43
@github-actions github-actions bot removed the merge_conflict Branch has conflicts that prevent merge to main label Oct 22, 2024
Copy link
Contributor

Conflicts have been resolved. A maintainer will review the pull request shortly.

@github-actions github-actions bot added the merge_conflict Branch has conflicts that prevent merge to main label Oct 23, 2024
Copy link
Contributor

This pull request has conflicts, please resolve those before we can evaluate the pull request.

Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 29, 2024

Superseded by #18794.

@dependabot dependabot bot closed this Oct 29, 2024
@dependabot dependabot bot deleted the dependabot/pip/keyring-25.4.1 branch October 29, 2024 20:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Changed Required label for PR that categorizes merge commit message as "Changed" for changelog dependencies Pull requests that update a dependency file merge_conflict Branch has conflicts that prevent merge to main python Pull requests that update Python code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant