From 5067c08b042b6de9b40b8521766dbb949e838b41 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 6 Feb 2025 14:46:52 -0700 Subject: [PATCH 1/6] build: bump the python-dependencies group across 2 directories with 9 updates (#132) Bumps the python-dependencies group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [pre-commit](https://github.com/pre-commit/pre-commit) | `4.0.1` | `4.1.0` | | [pytest](https://github.com/pytest-dev/pytest) | `8.3.3` | `8.3.4` | | [black](https://github.com/psf/black) | `24.10.0` | `25.1.0` | | [nbmake](https://github.com/treebeardtech/nbmake) | `1.5.4` | `1.5.5` | | [matplotlib](https://github.com/matplotlib/matplotlib) | `3.9.2` | `3.10.0` | | [python-semantic-release](https://github.com/python-semantic-release/python-semantic-release) | `9.14.0` | `9.17.0` | | [numpy](https://github.com/numpy/numpy) | `2.1.3` | `2.2.2` | | [setuptools](https://github.com/pypa/setuptools) | `75.6.0` | `75.8.0` | | [click](https://github.com/pallets/click) | `8.1.7` | `8.1.8` | Bumps the python-dependencies group with 3 updates in the /tests directory: [pytest](https://github.com/pytest-dev/pytest), [nbmake](https://github.com/treebeardtech/nbmake) and [matplotlib](https://github.com/matplotlib/matplotlib). Updates `pre-commit` from 4.0.1 to 4.1.0 - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md) - [Commits](https://github.com/pre-commit/pre-commit/compare/v4.0.1...v4.1.0) Updates `pytest` from 8.3.3 to 8.3.4 - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.3.3...8.3.4) Updates `black` from 24.10.0 to 25.1.0 - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/24.10.0...25.1.0) Updates `nbmake` from 1.5.4 to 1.5.5 - [Release notes](https://github.com/treebeardtech/nbmake/releases) - [Commits](https://github.com/treebeardtech/nbmake/compare/v1.5.4...v1.5.5) Updates `matplotlib` from 3.9.2 to 3.10.0 - [Release notes](https://github.com/matplotlib/matplotlib/releases) - [Commits](https://github.com/matplotlib/matplotlib/compare/v3.9.2...v3.10.0) Updates `python-semantic-release` from 9.14.0 to 9.17.0 - [Release notes](https://github.com/python-semantic-release/python-semantic-release/releases) - [Changelog](https://github.com/python-semantic-release/python-semantic-release/blob/master/CHANGELOG.rst) - [Commits](https://github.com/python-semantic-release/python-semantic-release/compare/v9.14...v9.17) Updates `numpy` from 2.1.3 to 2.2.2 - [Release notes](https://github.com/numpy/numpy/releases) - [Changelog](https://github.com/numpy/numpy/blob/main/doc/RELEASE_WALKTHROUGH.rst) - [Commits](https://github.com/numpy/numpy/compare/v2.1.3...v2.2.2) Updates `setuptools` from 75.6.0 to 75.8.0 - [Release notes](https://github.com/pypa/setuptools/releases) - [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst) - [Commits](https://github.com/pypa/setuptools/compare/v75.6.0...v75.8.0) Updates `click` from 8.1.7 to 8.1.8 - [Release notes](https://github.com/pallets/click/releases) - [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/click/compare/8.1.7...8.1.8) Updates `pytest` from 8.3.3 to 8.3.4 - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.3.3...8.3.4) Updates `nbmake` from 1.5.4 to 1.5.5 - [Release notes](https://github.com/treebeardtech/nbmake/releases) - [Commits](https://github.com/treebeardtech/nbmake/compare/v1.5.4...v1.5.5) Updates `matplotlib` from 3.9.2 to 3.10.0 - [Release notes](https://github.com/matplotlib/matplotlib/releases) - [Commits](https://github.com/matplotlib/matplotlib/compare/v3.9.2...v3.10.0) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:development update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: pytest dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-dependencies - dependency-name: black dependency-type: direct:development update-type: version-update:semver-major dependency-group: python-dependencies - dependency-name: nbmake dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-dependencies - dependency-name: matplotlib dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: python-semantic-release dependency-type: direct:development update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: numpy dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: setuptools dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-dependencies - dependency-name: click dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-dependencies - dependency-name: pytest dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-dependencies - dependency-name: nbmake dependency-type: direct:production update-type: version-update:semver-patch dependency-group: python-dependencies - dependency-name: matplotlib dependency-type: direct:production update-type: version-update:semver-minor dependency-group: python-dependencies ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements-dev.txt | 12 ++++++------ requirements.txt | 6 +++--- tests/requirements.txt | 6 +++--- 3 files changed, 12 insertions(+), 12 deletions(-) diff --git a/requirements-dev.txt b/requirements-dev.txt index 454e305..6d97dc3 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -1,12 +1,12 @@ pyyaml==6.0.2 -pre-commit==4.0.1 +pre-commit==4.1.0 pyproject_hooks==1.2.0 -pytest==8.3.3 +pytest==8.3.4 pytest-cov==6.0.0 -black==24.10.0 -nbmake==1.5.4 -matplotlib==3.9.2 -python-semantic-release==9.14.0 +black==25.1.0 +nbmake==1.5.5 +matplotlib==3.10.0 +python-semantic-release==9.17.0 h5py==3.12.1 openpyxl==3.1.5 tabulate==0.9.0 diff --git a/requirements.txt b/requirements.txt index c59fdd4..d68a78e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ -numpy==2.1.3 +numpy==2.2.2 pandas==2.2.3 pybind11==2.13.6 -setuptools==75.6.0 -click==8.1.7 +setuptools==75.8.0 +click==8.1.8 diff --git a/tests/requirements.txt b/tests/requirements.txt index d3fd045..89b01f4 100644 --- a/tests/requirements.txt +++ b/tests/requirements.txt @@ -1,9 +1,9 @@ -pytest==8.3.3 +pytest==8.3.4 pytest-cov==6.0.0 h5py==3.12.1 openpyxl==3.1.5 tabulate==0.9.0 pyyaml==6.0.2 lasio==0.31 -nbmake==1.5.4 -matplotlib==3.9.2 +nbmake==1.5.5 +matplotlib==3.10.0 From 536854a1f4a70ba98d5c1042c4f75d661a549191 Mon Sep 17 00:00:00 2001 From: David Hart Date: Thu, 6 Feb 2025 14:56:46 -0700 Subject: [PATCH 2/6] ci: Update dependencies --- pyproject.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pyproject.toml b/pyproject.toml index da5c36b..0abc778 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -26,7 +26,7 @@ classifiers = [ [project.optional-dependencies] formats = ['h5py', 'openpyxl', 'tabulate', 'pyyaml', 'lasio'] -examples = ['nbmake', 'matplotlib'] +examples = ['nbmake', 'matplotlib', 'plotly'] tests = ['pytest', 'pytest-cov'] devel = [ 'pyyaml', From 21a45da65fcccd1b36be95c31495d788957976fa Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 6 Feb 2025 15:17:34 -0700 Subject: [PATCH 3/6] ci: bump the actions-dependencies group across 1 directory with 8 updates (#131) Bumps the actions-dependencies group with 8 updates in the / directory: | Package | From | To | | --- | --- | --- | | [step-security/harden-runner](https://github.com/step-security/harden-runner) | `2.10.2` | `2.10.4` | | [github/codeql-action](https://github.com/github/codeql-action) | `3.27.5` | `3.28.8` | | [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.4.3` | `4.6.0` | | [pypa/cibuildwheel](https://github.com/pypa/cibuildwheel) | `2.21.3` | `2.22.0` | | [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) | `1.12.2` | `1.12.4` | | [python-semantic-release/python-semantic-release](https://github.com/python-semantic-release/python-semantic-release) | `9.14.0` | `9.17.0` | | [actions/setup-python](https://github.com/actions/setup-python) | `5.3.0` | `5.4.0` | | [codecov/codecov-action](https://github.com/codecov/codecov-action) | `5.0.7` | `5.3.1` | Updates `step-security/harden-runner` from 2.10.2 to 2.10.4 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/0080882f6c36860b6ba35c610c98ce87d4e2f26f...cb605e52c26070c328afc4562f0b4ada7618a84e) Updates `github/codeql-action` from 3.27.5 to 3.28.8 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/f09c1c0a94de965c15400f5634aa42fac8fb8f88...dd746615b3b9d728a6a37ca2045b68ca76d4841a) Updates `actions/upload-artifact` from 4.4.3 to 4.6.0 - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882...65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08) Updates `pypa/cibuildwheel` from 2.21.3 to 2.22.0 - [Release notes](https://github.com/pypa/cibuildwheel/releases) - [Changelog](https://github.com/pypa/cibuildwheel/blob/main/docs/changelog.md) - [Commits](https://github.com/pypa/cibuildwheel/compare/7940a4c0e76eb2030e473a5f864f291f63ee879b...ee63bf16da6cddfb925f542f2c7b59ad50e93969) Updates `pypa/gh-action-pypi-publish` from 1.12.2 to 1.12.4 - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](https://github.com/pypa/gh-action-pypi-publish/compare/15c56dba361d8335944d31a2ecd17d700fc7bcbc...76f52bc884231f62b9a034ebfe128415bbaabdfc) Updates `python-semantic-release/python-semantic-release` from 9.14.0 to 9.17.0 - [Release notes](https://github.com/python-semantic-release/python-semantic-release/releases) - [Changelog](https://github.com/python-semantic-release/python-semantic-release/blob/master/CHANGELOG.rst) - [Commits](https://github.com/python-semantic-release/python-semantic-release/compare/825655a47c9f7496f99ab144d28c424d40333a8a...cdfda70b6df73f3e4917cfd498f4bf9fed29ea08) Updates `actions/setup-python` from 5.3.0 to 5.4.0 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/0b93645e9fea7318ecaed2b359559ac225c90a2b...42375524e23c412d93fb67b49958b491fce71c38) Updates `codecov/codecov-action` from 5.0.7 to 5.3.1 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/codecov/codecov-action/compare/015f24e6818733317a2da2edd6290ab26238649a...13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-dependencies - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies - dependency-name: pypa/cibuildwheel dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-dependencies - dependency-name: python-semantic-release/python-semantic-release dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-dependencies ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: David Hart --- .github/workflows/codeql.yml | 6 +++--- .github/workflows/dependency-review.yml | 2 +- .github/workflows/gh-pages.yml | 2 +- .github/workflows/publish-release.yml | 22 +++++++++++----------- .github/workflows/scorecard.yml | 6 +++--- .github/workflows/semantic-release.yml | 4 ++-- .github/workflows/test-continuous.yml | 6 +++--- .github/workflows/test-matrix.yml | 10 +++++----- 8 files changed, 29 insertions(+), 29 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index a950496..d9c2f3a 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -55,7 +55,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block @@ -72,7 +72,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5 + uses: github/codeql-action/init@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8 with: languages: ${{ matrix.language }} build-mode: ${{ matrix.build-mode }} @@ -96,6 +96,6 @@ jobs: python3 setup.py build_ext - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5 + uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 21a469b..1b495db 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit diff --git a/.github/workflows/gh-pages.yml b/.github/workflows/gh-pages.yml index e8b4042..ef8bbbf 100644 --- a/.github/workflows/gh-pages.yml +++ b/.github/workflows/gh-pages.yml @@ -45,7 +45,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block diff --git a/.github/workflows/publish-release.yml b/.github/workflows/publish-release.yml index f2058fa..db49bb5 100644 --- a/.github/workflows/publish-release.yml +++ b/.github/workflows/publish-release.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit - name: Setup | Checkout Code @@ -28,7 +28,7 @@ jobs: - name: Action | Build SDist run: pipx run build --sdist - name: Action | Upload Artifacts - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 with: name: dist-cibw-sdist path: dist/*.tar.gz @@ -42,15 +42,15 @@ jobs: os: [ubuntu-latest, windows-latest, macos-13, macos-14] steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit - name: Setup | Checkout Code uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Action | Build Wheels - uses: pypa/cibuildwheel@7940a4c0e76eb2030e473a5f864f291f63ee879b # v2.21.0 + uses: pypa/cibuildwheel@ee63bf16da6cddfb925f542f2c7b59ad50e93969 # v2.21.0 - name: Action | Upload Artifacts - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 with: name: dist-cibw-wheels-${{ matrix.os }}-${{ strategy.job-index }} path: ./wheelhouse/*.whl @@ -94,7 +94,7 @@ jobs: # - run: Compress-Archive -Path dist/sansmic -DestinationPath dist/sansmic-${{github.ref_name}}-standalone-win_amd64.zip # - name: Action | Upload Artifacts - # uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 + # uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 # with: # name: dist-exec-windows-latest # path: ./dist/sansmic-*-standalone-win_amd64.zip @@ -117,7 +117,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit @@ -162,7 +162,7 @@ jobs: steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit @@ -179,7 +179,7 @@ jobs: merge-multiple: true - name: Action | Publish distribution 📦 to TestPyPI - uses: pypa/gh-action-pypi-publish@15c56dba361d8335944d31a2ecd17d700fc7bcbc # release/v1 + uses: pypa/gh-action-pypi-publish@76f52bc884231f62b9a034ebfe128415bbaabdfc # release/v1 with: skip-existing: true print-hash: true @@ -201,7 +201,7 @@ jobs: steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit @@ -218,7 +218,7 @@ jobs: merge-multiple: true - name: Setup | Publish distribution 📦 to PyPI - uses: pypa/gh-action-pypi-publish@15c56dba361d8335944d31a2ecd17d700fc7bcbc # release/v1 + uses: pypa/gh-action-pypi-publish@76f52bc884231f62b9a034ebfe128415bbaabdfc # release/v1 with: attestations: true print-hash: true diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index c61cdcb..7e5feea 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -32,7 +32,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block @@ -77,7 +77,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 with: name: SARIF file path: results.sarif @@ -86,6 +86,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5 + uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8 with: sarif_file: results.sarif diff --git a/.github/workflows/semantic-release.yml b/.github/workflows/semantic-release.yml index 612fce6..8ecaad7 100644 --- a/.github/workflows/semantic-release.yml +++ b/.github/workflows/semantic-release.yml @@ -33,7 +33,7 @@ jobs: steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: egress-policy: audit @@ -58,7 +58,7 @@ jobs: - name: Action | Semantic Release - Update version id: semantic_release # Adjust tag with desired version if applicable. - uses: python-semantic-release/python-semantic-release@825655a47c9f7496f99ab144d28c424d40333a8a # v9.14.0 + uses: python-semantic-release/python-semantic-release@cdfda70b6df73f3e4917cfd498f4bf9fed29ea08 # v9.17.0 with: github_token: ${{ secrets.SEMANTIC_RELEASE_TOKEN }} git_committer_name: "github-actions" diff --git a/.github/workflows/test-continuous.yml b/.github/workflows/test-continuous.yml index 963c9bc..425a067 100644 --- a/.github/workflows/test-continuous.yml +++ b/.github/workflows/test-continuous.yml @@ -22,7 +22,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block @@ -43,7 +43,7 @@ jobs: submodules: recursive - name: Set up Python - uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0 + uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0 with: python-version: '3.12' @@ -70,7 +70,7 @@ jobs: - name: Upload coverage reports to Codecov continue-on-error: true - uses: codecov/codecov-action@015f24e6818733317a2da2edd6290ab26238649a # v5.0.7 + uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # v5.3.1 with: token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/test-matrix.yml b/.github/workflows/test-matrix.yml index 0d4efe4..f3a1329 100644 --- a/.github/workflows/test-matrix.yml +++ b/.github/workflows/test-matrix.yml @@ -28,7 +28,7 @@ jobs: runs-on: ${{ matrix.os }} steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block @@ -49,7 +49,7 @@ jobs: submodules: recursive - name: Setup | Set up Python - uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0 + uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0 with: python-version: ${{ matrix.version }} @@ -72,7 +72,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Setup | Harden Runner - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2 + uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4 with: disable-sudo: true egress-policy: block @@ -93,7 +93,7 @@ jobs: submodules: recursive - name: Setup | Set up Python - uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0 + uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0 with: python-version: '3.12' @@ -121,6 +121,6 @@ jobs: - name: Action | Upload coverage reports to Codecov if: success() || failure() continue-on-error: true - uses: codecov/codecov-action@015f24e6818733317a2da2edd6290ab26238649a # v5.0.7 + uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3 # v5.3.1 with: token: ${{ secrets.CODECOV_TOKEN }} From 85f5a6cced239fe90a021755853d74ae01ab25a4 Mon Sep 17 00:00:00 2001 From: David Hart Date: Thu, 6 Feb 2025 15:24:05 -0700 Subject: [PATCH 4/6] ci: Bad redirect --- .github/workflows/gh-pages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/gh-pages.yml b/.github/workflows/gh-pages.yml index ef8bbbf..cb6a8d0 100644 --- a/.github/workflows/gh-pages.yml +++ b/.github/workflows/gh-pages.yml @@ -33,7 +33,7 @@ concurrency: jobs: build: name: Build the documentation with Sphinx - uses: sandialabs/sansmic-ci/.github/workflows/build-sphinx-all.yml@main + uses: sandialabs/sansmic-docs/.github/workflows/build-sphinx-all.yml@main deploy: name: Deploy documentation to GitHub Pages From 2235733b9e8a0eed99ccb7abf473d45eea22d37b Mon Sep 17 00:00:00 2001 From: David Hart Date: Thu, 6 Feb 2025 15:29:09 -0700 Subject: [PATCH 5/6] ci: Force ipython version --- pyproject.toml | 4 +++- requirements-dev.txt | 1 + 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/pyproject.toml b/pyproject.toml index 0abc778..f9434e1 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -26,7 +26,7 @@ classifiers = [ [project.optional-dependencies] formats = ['h5py', 'openpyxl', 'tabulate', 'pyyaml', 'lasio'] -examples = ['nbmake', 'matplotlib', 'plotly'] +examples = ['nbmake', 'matplotlib', 'plotly', 'ipython>=8.0.1'] tests = ['pytest', 'pytest-cov'] devel = [ 'pyyaml', @@ -37,6 +37,8 @@ devel = [ 'black', 'pybind11', 'nbmake', + 'plotly', + 'ipython>=8.0.1', 'matplotlib', 'python-semantic-release', ] diff --git a/requirements-dev.txt b/requirements-dev.txt index 6d97dc3..f54a2f6 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -11,3 +11,4 @@ h5py==3.12.1 openpyxl==3.1.5 tabulate==0.9.0 lasio==0.31 +ipython>=8.0.1 \ No newline at end of file From 221c83d6d8bb71ccafd23ff4514c909836eacce2 Mon Sep 17 00:00:00 2001 From: David Hart Date: Thu, 6 Feb 2025 15:47:16 -0700 Subject: [PATCH 6/6] ci: Force ipython version --- docs/requirements.txt | 2 +- pyproject.toml | 4 ++-- requirements-dev.txt | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/docs/requirements.txt b/docs/requirements.txt index 93ab70e..bbb058c 100644 --- a/docs/requirements.txt +++ b/docs/requirements.txt @@ -11,4 +11,4 @@ matplotlib plotly seaborn pandoc -IPython +IPython>=8.10 diff --git a/pyproject.toml b/pyproject.toml index f9434e1..18d7ba5 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -26,7 +26,7 @@ classifiers = [ [project.optional-dependencies] formats = ['h5py', 'openpyxl', 'tabulate', 'pyyaml', 'lasio'] -examples = ['nbmake', 'matplotlib', 'plotly', 'ipython>=8.0.1'] +examples = ['nbmake', 'matplotlib', 'plotly', 'ipython>=8.10'] tests = ['pytest', 'pytest-cov'] devel = [ 'pyyaml', @@ -38,7 +38,7 @@ devel = [ 'pybind11', 'nbmake', 'plotly', - 'ipython>=8.0.1', + 'ipython>=8.10', 'matplotlib', 'python-semantic-release', ] diff --git a/requirements-dev.txt b/requirements-dev.txt index f54a2f6..006ae4c 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -11,4 +11,4 @@ h5py==3.12.1 openpyxl==3.1.5 tabulate==0.9.0 lasio==0.31 -ipython>=8.0.1 \ No newline at end of file +ipython>=8.10.0 \ No newline at end of file