Sourced from coverage's changelog.

Version 6.4.2 — 2022-07-12

• Updated for a small change in Python 3.11.0 beta 4: modules now start with a line with line number 0, which is ignored. This line cannnot be executed, so coverage totals were thrown off. This line is now ignored by coverage.py, but this also means that truly empty modules (like __init__.py) have no lines in them, rather than one phantom line. Fixes issue 1419_.

• Internal debugging data added to sys.modules is now an actual module, to avoid confusing code that examines everything in sys.modules. Thanks, Yilei Yang (pull 1399_).

.. _pull 1399: nedbat/coveragepy#1399 .. _issue 1419: nedbat/coveragepy#1419

.. _changes_6-4-1:

Version 6.4.1 — 2022-06-02

• Greatly improved performance on PyPy, and other environments that need the pure Python trace function. Thanks, Carl Friedrich Bolz-Tereick (pull 1381_ and pull 1388). Slightly improved performance when using the C trace function, as most environments do. Closes issue 1339.

• The conditions for using tomllib from the standard library have been made more precise, so that 3.11 alphas will continue to work. Closes issue 1390_.

.. _issue 1339: nedbat/coveragepy#1339 .. _pull 1381: nedbat/coveragepy#1381 .. _pull 1388: nedbat/coveragepy#1388 .. _issue 1390: nedbat/coveragepy#1390

.. _changes_64:

Version 6.4 — 2022-05-22

• A new setting, :ref:config_run_sigterm, controls whether a SIGTERM signal handler is used. In 6.3, the signal handler was always installed, to capture data at unusual process ends. Unfortunately, this introduced other problems (see issue 1310_). Now the signal handler is only used if you opt-in by setting [run] sigterm = true.

• Small changes to the HTML report:

... (truncated)

• 8ab9ff1 docs: latest sample HTML report
• ee751cf docs: prep for 6.4.2
• 413ccb7 build: run tests on nightly versions every day
• d890bff docs: update the 3.11 version
• 0d64498 fix: 3.11.0b4 has 0-numbered lines. Fixes #1419
• 297b70e build: styfle/[email protected] now accepts 'all'
• ef25867 build(deps): bump actions/dependency-review-action from 1 to 2 (#1404)
• b1f9cc0 build(deps): bump styfle/cancel-workflow-action from 0.9.1 to 0.10.0 (#1412)
• f75d60a style: use new regex match object group access
• 8447c99 test: copying pycache was causing race conditions, and was unneeded anyway.
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pre-commit's releases.

pre-commit v2.20.0

Features

• Expose source and object-name (positional args) of prepare-commit-msg hook as PRE_COMMIT_COMIT_MSG_SOURCE and PRE_COMMIT_COMMIT_OBJECT_NAME.
  • #2407 PR by @​M-Whitaker.
  • #2406 issue by @​M-Whitaker.

Fixes

• Fix language: ruby installs when --user-install is set in gemrc.
  • #2394 PR by @​narpfel.
  • #2393 issue by @​narpfel.
• Adjust pty setup for solaris.
  • #2390 PR by @​gaige.
  • #2389 issue by @​gaige.
• Remove unused --config option from gc, sample-config, validate-config, validate-manifest sub-commands.
  • #2429 PR by @​asottile.

pre-commit v2.19.0

Features

• Allow multiple outputs from language: dotnet hooks.
  • #2332 PR by @​WallucePinkham.
• Add more information to healthy() failure.
  • #2348 PR by @​asottile.
• Upgrade ruby-build.
  • #2342 PR by @​jalessio.
• Add pre-commit validate-config / pre-commit validate-manifest and deprecate pre-commit-validate-config and pre-commit-validate-manifest.
  • #2362 PR by @​asottile.

Fixes

• Fix pre-push when pushed ref contains spaces.
  • #2345 PR by @​wwade.
  • #2344 issue by @​wwade.

Updating

• Change pre-commit-validate-config / pre-commit-validate-manifest to pre-commit validate-config / pre-commit validate-manifest.
  • #2362 PR by @​asottile.

pre-commit v2.18.1

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

pre-commit v2.18.0

Features

• Keep GIT_HTTP_PROXY_AUTHMETHOD in git environ.
  • #2272 PR by @​VincentBerthier.
  • #2271 issue by @​VincentBerthier.
• Support both cs and coursier executables for coursier hooks.
  • #2293 PR by @​Holzhaus.
• Include more information in errors for language_version / additional_dependencies for languages which do not support them.
  • #2315 PR by @​asottile.

... (truncated)

Sourced from pre-commit's changelog.

2.20.0 - 2022-07-10

Features

• Expose source and object-name (positional args) of prepare-commit-msg hook as PRE_COMMIT_COMIT_MSG_SOURCE and PRE_COMMIT_COMMIT_OBJECT_NAME.
  • #2407 PR by @​M-Whitaker.
  • #2406 issue by @​M-Whitaker.

Fixes

• Fix language: ruby installs when --user-install is set in gemrc.
  • #2394 PR by @​narpfel.
  • #2393 issue by @​narpfel.
• Adjust pty setup for solaris.
  • #2390 PR by @​gaige.
  • #2389 issue by @​gaige.
• Remove unused --config option from gc, sample-config, validate-config, validate-manifest sub-commands.
  • #2429 PR by @​asottile.

2.19.0 - 2022-05-05

Features

• Allow multiple outputs from language: dotnet hooks.
  • #2332 PR by @​WallucePinkham.
• Add more information to healthy() failure.
  • #2348 PR by @​asottile.
• Upgrade ruby-build.
  • #2342 PR by @​jalessio.
• Add pre-commit validate-config / pre-commit validate-manifest and deprecate pre-commit-validate-config and pre-commit-validate-manifest.
  • #2362 PR by @​asottile.

Fixes

• Fix pre-push when pushed ref contains spaces.
  • #2345 PR by @​wwade.
  • #2344 issue by @​wwade.

Updating

• Change pre-commit-validate-config / pre-commit-validate-manifest to pre-commit validate-config / pre-commit validate-manifest.
  • #2362 PR by @​asottile.

2.18.1 - 2022-04-02

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

... (truncated)

• 78a2d86 v2.20.0
• e3dc5b7 Merge pull request #2454 from pre-commit/asottile-patch-1
• ebce88c remove warnings checks
• d6cc8a1 Merge pull request #2453 from hroncok/python3.11
• 901e831 Tests: Adjust traceback regexes to allow Python 3.11+ ^^^^^^^
• 98bb7e6 Merge pull request #2440 from pre-commit/pre-commit-ci-update-config
• 706d1e9 Merge pull request #2439 from pre-commit/all-repos_autofix_type-checking
• 3ebd101 [pre-commit.ci] pre-commit autoupdate
• d8b5930 remove imports from TYPE_CHECKING (py37+)
• 170335c Merge pull request #2429 from pre-commit/remove-config-option-when-unused
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from coverage's changelog.

Version 6.4.1 — 2022-06-02

• Greatly improved performance on PyPy, and other environments that need the pure Python trace function. Thanks, Carl Friedrich Bolz-Tereick (pull 1381_ and pull 1388). Slightly improved performance when using the C trace function, as most environments do. Closes issue 1339.

• The conditions for using tomllib from the standard library have been made more precise, so that 3.11 alphas will continue to work. Closes issue 1390_.

.. _issue 1339: nedbat/coveragepy#1339 .. _pull 1381: nedbat/coveragepy#1381 .. _pull 1388: nedbat/coveragepy#1388 .. _issue 1390: nedbat/coveragepy#1390

.. _changes_64:

Version 6.4 — 2022-05-22

• A new setting, :ref:config_run_sigterm, controls whether a SIGTERM signal handler is used. In 6.3, the signal handler was always installed, to capture data at unusual process ends. Unfortunately, this introduced other problems (see issue 1310_). Now the signal handler is only used if you opt-in by setting [run] sigterm = true.

• Small changes to the HTML report:

  • Added links to next and previous file, and more keyboard shortcuts: [ and ] for next file and previous file; u for up to the index; and ? to open/close the help panel. Thanks, J. M. F. Tsang <pull 1364_>_.

  • The timestamp and version are displayed at the top of the report. Thanks, Ammar Askar <pull 1354_>. Closes issue 1351.

• A new debug option debug=sqldata adds more detail to debug=sql, logging all the data being written to the database.

• Previously, running coverage report (or any of the reporting commands) in an empty directory would create a .coverage data file. Now they do not, fixing issue 1328_.

• On Python 3.11, the [toml] extra no longer installs tomli, instead using tomllib from the standard library. Thanks Shantanu <pull 1359_>_.

• In-memory CoverageData objects now properly update(), closing issue 1323_.

... (truncated)

• e1bd756 docs: latest sample HTML report
• c930586 build: prep for 6.4.1
• 9b9142e build: more low-tech release automation
• 8c69146 build: use 3.11.0b3 in ci
• acf0b10 docs: performance improvements closed #1339
• 3a86ac8 test: 3.11.0b3 is out, so remove the workaround
• 3a23d8a fix: use tomli for [toml] under more precise conditions. #1390
• a8758a6 test: avoid a 3.11.0b2 bug
• 613191f chore: make upgrade
• 59ce1f4 test: benchmark for small local files: bug1339.py
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from coverage's changelog.

Version 6.4 — 2022-05-22

• A new setting, :ref:config_run_sigterm, controls whether a SIGTERM signal handler is used. In 6.3, the signal handler was always installed, to capture data at unusual process ends. Unfortunately, this introduced other problems (see issue 1310_). Now the signal handler is only used if you opt-in by setting [run] sigterm = true.

• Small changes to the HTML report:

  • Added links to next and previous file, and more keyboard shortcuts: [ and ] for next file and previous file; u for up to the index; and ? to open/close the help panel. Thanks, J. M. F. Tsang <pull 1364_>_.

  • The timestamp and version are displayed at the top of the report. Thanks, Ammar Askar <pull 1354_>. Closes issue 1351.

• A new debug option debug=sqldata adds more detail to debug=sql, logging all the data being written to the database.

• Previously, running coverage report (or any of the reporting commands) in an empty directory would create a .coverage data file. Now they do not, fixing issue 1328_.

• On Python 3.11, the [toml] extra no longer installs tomli, instead using tomllib from the standard library. Thanks Shantanu <pull 1359_>_.

• In-memory CoverageData objects now properly update(), closing issue 1323_.

.. _issue 1310: nedbat/coveragepy#1310 .. _issue 1323: nedbat/coveragepy#1323 .. _issue 1328: nedbat/coveragepy#1328 .. _issue 1351: nedbat/coveragepy#1351 .. _pull 1354: nedbat/coveragepy#1354 .. _pull 1359: nedbat/coveragepy#1359 .. _pull 1364: nedbat/coveragepy#1364

.. _changes_633:

Version 6.3.3 — 2022-05-12

• Fix: Coverage.py now builds successfully on CPython 3.11 (3.11.0b1) again. Closes issue 1367_. Some results for generators may have changed.

.. _issue 1367: nedbat/coveragepy#1367

... (truncated)

• e6df5b3 fix: don't create a data file when just trying to read one. #1328
• d849b25 docs: latest sample HTML report
• 3ab15f4 build: prep for 6.4
• b5a1102 docs: spell check
• 0d8c6cb docs: mention in the man page
• 2b0f584 build: more make targets for release steps
• c739564 docs: add a note about using --debug=trace to debug No Data. #1379
• 439ccad style(docs): use definition list for warnings
• a49ca09 feat: a new debug option sqldata shows all the data being written to the db.
• 8991e9d refactor: SqliteDb uses its debug object more like other code
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from coverage's changelog.

Version 6.3.3 — 2022-05-12

• Fix: Coverage.py now builds successfully on CPython 3.11 (3.11.0b1) again. Closes issue 1367_. Some results for generators may have changed.

.. _issue 1367: nedbat/coveragepy#1367

.. _changes_632:

Version 6.3.2 — 2022-02-20

• Fix: adapt to pypy3.9's decorator tracing behavior. It now traces function decorators like CPython 3.8: both the @-line and the def-line are traced. Fixes issue 1326_.

• Debug: added pybehave to the list of :ref:cmd_debug and :ref:cmd_run_debug options.

• Fix: show an intelligible error message if --concurrency=multiprocessing is used without a configuration file. Closes issue 1320_.

.. _issue 1320: nedbat/coveragepy#1320 .. _issue 1326: nedbat/coveragepy#1326

.. _changes_631:

Version 6.3.1 — 2022-02-01

• Fix: deadlocks could occur when terminating processes. Some of these deadlocks (described in issue 1310_) are now fixed.

• Fix: a signal handler was being set from multiple threads, causing an error: "ValueError: signal only works in main thread". This is now fixed, closing issue 1312_.

• Fix: --precision on the command-line was being ignored while considering --fail-under. This is now fixed, thanks to Marcelo Trylesinski <pull 1317_>_.

• Fix: releases no longer provide 3.11.0-alpha wheels. Coverage.py uses CPython internal fields which are moving during the alpha phase. Fixes issue 1316_.

.. _issue 1310: nedbat/coveragepy#1310 .. _issue 1312: nedbat/coveragepy#1312 .. _issue 1316: nedbat/coveragepy#1316

... (truncated)

• 99ab688 docs: latest sample
• c01fc71 build: prep for 6.3.3
• ce2d4ec build: don't make wheels for pre-release Pythons
• a9ecd8a build: add markdown summary to the action
• 3e6ff4f chore: make upgrade
• e5b91eb test: skip tests that fail until CPython #92236 is fixed
• 956f0fd fix: fix compilation errors on latest 3.11.0
• 9097c0d debug: incidental debug improvements in tracer.c
• 45ba7e7 build(deps): bump docker/setup-qemu-action from 1 to 2 (#1372)
• 9ef7d3c build: Set permissions for GitHub actions (#1369)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pre-commit's releases.

pre-commit v2.19.0

Features

• Allow multiple outputs from language: dotnet hooks.
  • #2332 PR by @​WallucePinkham.
• Add more information to healthy() failure.
  • #2348 PR by @​asottile.
• Upgrade ruby-build.
  • #2342 PR by @​jalessio.
• Add pre-commit validate-config / pre-commit validate-manifest and deprecate pre-commit-validate-config and pre-commit-validate-manifest.
  • #2362 PR by @​asottile.

Fixes

• Fix pre-push when pushed ref contains spaces.
  • #2345 PR by @​wwade.
  • #2344 issue by @​wwade.

Updating

• Change pre-commit-validate-config / pre-commit-validate-manifest to pre-commit validate-config / pre-commit validate-manifest.
  • #2362 PR by @​asottile.

pre-commit v2.18.1

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

pre-commit v2.18.0

Features

• Keep GIT_HTTP_PROXY_AUTHMETHOD in git environ.
  • #2272 PR by @​VincentBerthier.
  • #2271 issue by @​VincentBerthier.
• Support both cs and coursier executables for coursier hooks.
  • #2293 PR by @​Holzhaus.
• Include more information in errors for language_version / additional_dependencies for languages which do not support them.
  • #2315 PR by @​asottile.
• Have autoupdate preferentially pick tags which look like versions when there are multiple equivalent tags.
  • #2312 PR by @​mblayman.
  • #2311 issue by @​mblayman.
• Upgrade ruby-build.
  • #2319 PR by @​jalessio.
• Add top level default_install_hook_types which will be installed when --hook-types is not specified in pre-commit install.
  • #2322 PR by @​asottile.

Fixes

• Fix typo in help message for --from-ref and --to-ref.
  • #2266 PR by @​leetrout.
• Prioritize binary builds for R dependencies.
  • #2277 PR by @​lorenzwalthert.
• Fix handling of git worktrees.
  • #2252 PR by @​daschuer.
• Fix handling of $R_HOME for R hooks.

... (truncated)

Sourced from pre-commit's changelog.

2.19.0 - 2022-05-05

Features

• Allow multiple outputs from language: dotnet hooks.
  • #2332 PR by @​WallucePinkham.
• Add more information to healthy() failure.
  • #2348 PR by @​asottile.
• Upgrade ruby-build.
  • #2342 PR by @​jalessio.
• Add pre-commit validate-config / pre-commit validate-manifest and deprecate pre-commit-validate-config and pre-commit-validate-manifest.
  • #2362 PR by @​asottile.

Fixes

• Fix pre-push when pushed ref contains spaces.
  • #2345 PR by @​wwade.
  • #2344 issue by @​wwade.

Updating

• Change pre-commit-validate-config / pre-commit-validate-manifest to pre-commit validate-config / pre-commit validate-manifest.
  • #2362 PR by @​asottile.

2.18.1 - 2022-04-02

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

2.18.0 - 2022-04-02

Features

• Keep GIT_HTTP_PROXY_AUTHMETHOD in git environ.
  • #2272 PR by @​VincentBerthier.
  • #2271 issue by @​VincentBerthier.
• Support both cs and coursier executables for coursier hooks.
  • #2293 PR by @​Holzhaus.
• Include more information in errors for language_version / additional_dependencies for languages which do not support them.
  • #2315 PR by @​asottile.
• Have autoupdate preferentially pick tags which look like versions when there are multiple equivalent tags.
  • #2312 PR by @​mblayman.
  • #2311 issue by @​mblayman.
• Upgrade ruby-build.
  • #2319 PR by @​jalessio.
• Add top level default_install_hook_types which will be installed when

... (truncated)

• cc9d950 v2.19.0
• 96bf685 fix non-unique id
• 1b86655 Merge pull request #2375 from pre-commit/search-the-tracker
• af46701 add search term required input to issue template
• bec1728 Merge pull request #2370 from pre-commit/pre-commit-ci-update-config
• 81129ce [pre-commit.ci] pre-commit autoupdate
• 7f18926 Merge pull request #2362 from pre-commit/deprecate-separate-entry-points
• 3929fe4 upgrade CI to ubuntu-latest / windows-latest
• 777ffdd deprecate pre-commit-validate-{config,manifest}
• e1ce4c0 Merge pull request #2349 from pre-commit/pre-commit-ci-update-config
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/checkout's releases.

v3.0.2

What's Changed

• Add set-safe-directory input to allow customers to take control. by @​TingluoHuang in actions/checkout#770
• Prepare changelog for v3.0.2. by @​TingluoHuang in actions/checkout#777

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.0.2

v3.0.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory
• Bumped various npm package versions

v3.0.0

• Updated to the node16 runtime by default
  • This requires a minimum Actions Runner version of v2.285.0 to run, which is by default available in GHES 3.4 or later.

v2.4.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

v2.4.0

• Convert SSH URLs like org-<ORG_ID>@github.com: to https://github.com/ - pr

v2.3.5

Update dependencies

v2.3.4

• Add missing awaits
• Swap to Environment Files

v2.3.3

• Remove Unneeded commit information from build logs
• Add Licensed to verify third party dependencies

v2.3.2

Add Third Party License Information to Dist Files

v2.3.1

Fix default branch resolution for .wiki and when using SSH

v2.3.0

Fallback to the default branch

v2.2.0

Fetch all history for all tags and branches when fetch-depth=0

v2.1.1

Changes to support GHES (here and here)

v2.1.0

• Group output

... (truncated)

Sourced from actions/checkout's changelog.

v3.0.2

• Add input set-safe-directory

v3.0.1

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory
• Bumped various npm package versions

v3.0.0

• Update to node 16

v2.3.1

• Fix default branch resolution for .wiki and when using SSH

v2.3.0

• Fallback to the default branch

v2.2.0

• Fetch all history for all tags and branches when fetch-depth=0

v2.1.1

• Changes to support GHES (here and here)

v2.1.0

• Group output
• Changes to support GHES alpha release
• Persist core.sshCommand for submodules
• Add support ssh
• Convert submodule SSH URL to HTTPS, when not using SSH
• Add submodule support
• Follow proxy settings
• Fix ref for pr closed event when a pr is merged
• Fix issue checking detached when git less than 2.22

v2.0.0

• Do not pass cred on command line
• Add input persist-credentials
• Fallback to REST API to download repo

• 2541b12 Prepare changelog for v3.0.2. (#777)
• 0ffe6f9 Add set-safe-directory input to allow customers to take control. (#770)
• dcd71f6 Enforce safe directory (#762)
• add3486 Patch to fix the dependbot alert. (#744)
• 5126516 Bump minimist from 1.2.5 to 1.2.6 (#741)
• d50f8ea Add v3.0 release information to changelog (#740)
• 2d1c119 update test workflows to checkout v3 (#709)
• a12a394 update readme for v3 (#708)
• 8f9e05e Update to node 16 (#689)
• See full diff in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-python's releases.

Add "cache-hit" output and fix "python-version" output for PyPy

This release introduces new output cache-hit (actions/setup-python#373) and fix python-version output for PyPy (actions/setup-python#365)

The cache-hit output contains boolean value indicating that an exact match was found for the key. It shows that the action uses already existing cache or not. The output is available only if cache is enabled.

The python-version contains version of Python or PyPy.

Support caching poetry dependencies and caching on GHES 3.5

• In the scope of this release, we added support for caching from GHES 3.5 and fixed the download issue for files > 2GB during restore.
• Caching poetry dependencies

steps:
- uses: actions/checkout@v3
- name: Install poetry
  run: pipx install poetry
- uses: actions/setup-python@v3
  with:
    python-version: '3.9'
    cache: 'poetry'
- run: poetry install
- run: poetry run pytest

v3.0.0

What's Changed

• Update default runtime to node16 (actions/setup-python#340)
• Update package-lock.json file version to 2, @types/node to 16.11.25 and typescript to 4.2.3 (actions/setup-python#341)
• Remove legacy pypy2 and pypy3 keywords (actions/setup-python#342)

Breaking Changes

With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.

This new major release removes support of legacy pypy2 and pypy3 keywords. Please use more specific and flexible syntax to specify a PyPy version:

jobs:
  build:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        python-version:
        - 'pypy-2.7' # the latest available version of PyPy that supports Python 2.7
        - 'pypy-3.8' # the latest available version of PyPy that supports Python 3.8
        - 'pypy-3.8-v7.3.8' # Python 3.8 and PyPy 7.3.8
    steps:
    - uses: actions/checkout@v2
    - uses: actions/setup-python@v3
      with:
        python-version: ${{ matrix.python-version }}

See more usage examples in the documentation

... (truncated)

• 21c0493 Cache hit output (#373)
• 7933d5a Add pyton-version to setup PyPy output (#365)
• 7885ec3 Rework pipenv caching test (#375)
• 9c644ca Update README.md to fix setup-python version in example (#368)
• 3e8e90e dist fix (#367)
• 05fb98d Cache on ghes (#363)
• 6c56602 Merge pull request #281 from patrick91/feature/poetry-caching
• 9516be8 Merge pull request #358 from actions/brcrista/codeql-main
• 7aa3e95 Update dist
• 6c31eb3 Use \n instead of os.EOL
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pre-commit's releases.

pre-commit v2.18.1

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

pre-commit v2.18.0

Features

• Keep GIT_HTTP_PROXY_AUTHMETHOD in git environ.
  • #2272 PR by @​VincentBerthier.
  • #2271 issue by @​VincentBerthier.
• Support both cs and coursier executables for coursier hooks.
  • #2293 PR by @​Holzhaus.
• Include more information in errors for language_version / additional_dependencies for languages which do not support them.
  • #2315 PR by @​asottile.
• Have autoupdate preferentially pick tags which look like versions when there are multiple equivalent tags.
  • #2312 PR by @​mblayman.
  • #2311 issue by @​mblayman.
• Upgrade ruby-build.
  • #2319 PR by @​jalessio.
• Add top level default_install_hook_types which will be installed when --hook-types is not specified in pre-commit install.
  • #2322 PR by @​asottile.

Fixes

• Fix typo in help message for --from-ref and --to-ref.
  • #2266 PR by @​leetrout.
• Prioritize binary builds for R dependencies.
  • #2277 PR by @​lorenzwalthert.
• Fix handling of git worktrees.
  • #2252 PR by @​daschuer.
• Fix handling of $R_HOME for R hooks.
  • #2301 PR by @​jeff-m-sullivan.
  • #2300 issue by @​jeff-m-sullivan.
• Fix a rare race condition in change stashing.
  • #2323 PR by @​asottile.
  • #2287 issue by @​ian-h-chamberlain.

Updating

• Remove python3.6 support. Note that pre-commit still supports running hooks written in older versions, but pre-commit itself requires python 3.7+.
  • #2215 PR by @​asottile.
• pre-commit has migrated from the master branch to main.
  • #2302 PR by @​asottile.

Sourced from pre-commit's changelog.

2.18.1 - 2022-04-02

Fixes

• Fix regression for repo: local hooks running python<3.7
  • #2324 PR by @​asottile.

2.18.0 - 2022-04-02

Features

• Keep GIT_HTTP_PROXY_AUTHMETHOD in git environ.
  • #2272 PR by @​VincentBerthier.
  • #2271 issue by @​VincentBerthier.
• Support both cs and coursier executables for coursier hooks.
  • #2293 PR by @​Holzhaus.
• Include more information in errors for language_version / additional_dependencies for languages which do not support them.
  • #2315 PR by @​asottile.
• Have autoupdate preferentially pick tags which look like versions when there are multiple equivalent tags.
  • #2312 PR by @​mblayman.
  • #2311 issue by @​mblayman.
• Upgrade ruby-build.
  • #2319 PR by @​jalessio.
• Add top level default_install_hook_types which will be installed when --hook-types is not specified in pre-commit install.
  • #2322 PR by @​asottile.

Fixes

• Fix typo in help message for --from-ref and --to-ref.
  • #2266 PR by @​leetrout.
• Prioritize binary builds for R dependencies.
  • #2277 PR by @​lorenzwalthert.
• Fix handling of git worktrees.
  • #2252 PR by @​daschuer.
• Fix handling of $R_HOME for R hooks.
  • #2301 PR by @​jeff-m-sullivan.
  • #2300 issue by @​jeff-m-sullivan.
• Fix a rare race condition in change stashing.
  • #2323 PR by @​asottile.
  • #2287 issue by @​ian-h-chamberlain.

Updating

• Remove python3.6 support. Note that pre-commit still supports running hooks written in older versions, but pre-commit itself requires python 3.7+.
  • #2215 PR by @​asottile.
• pre-commit has migrated from the master branch to main.
  • #2302 PR by @​asottile.

• 0276e25 v2.18.1
• f5af0a9 Merge pull request #2324 from pre-commit/local-hooks-py27
• 1722448 fix python 2.7 repo: local hooks
• c5a39ae v2.18.0
• 3aa2ce8 Merge pull request #2323 from pre-commit/move-try-slightly
• a138c85 move patch discarding inside try for staged_files_only
• 7602abc Merge pull request #2322 from pre-commit/default-install-hook-types
• e11163d Merge pull request #2301 from jeff-m-sullivan/rscript-path
• d650160 Merge pull request #2252 from daschuer/worktree_fix
• fd0177a implement default_install_hook_types
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/setup-python's releases.

Support caching poetry dependencies and caching on GHES 3.5

• In the scope of this release, we added support for caching from GHES 3.5 and fixed the download issue for files > 2GB during restore.
• Caching poetry dependencies

steps:
- uses: actions/checkout@v3
- name: Install poetry
  run: pipx install poetry
- uses: actions/setup-python@v3
  with:
    python-version: '3.9'
    cache: 'poetry'
- run: poetry install
- run: poetry run pytest

v3.0.0

What's Changed

• Update default runtime to node16 (actions/setup-python#340)
• Update package-lock.json file version to 2, @types/node to 16.11.25 and typescript to 4.2.3 (actions/setup-python#341)
• Remove legacy pypy2 and pypy3 keywords (actions/setup-python#342)

Breaking Changes

With the update to Node 16, all scripts will now be run with Node 16 rather than Node 12.

This new major release removes support of legacy pypy2 and pypy3 keywords. Please use more specific and flexible syntax to specify a PyPy version:

jobs:
  build:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        python-version:
        - 'pypy-2.7' # the latest available version of PyPy that supports Python 2.7
        - 'pypy-3.8' # the latest available version of PyPy that supports Python 3.8
        - 'pypy-3.8-v7.3.8' # Python 3.8 and PyPy 7.3.8
    steps:
    - uses: actions/checkout@v2
    - uses: actions/setup-python@v3
      with:
        python-version: ${{ matrix.python-version }}

See more usage examples in the documentation

Update primary and restore keys for pip

In scope of this release we include a version of python in restore and primary cache keys for pip. Besides, we add temporary fix for Windows caching issue, that the pip cache dir command returns non zero exit code or writes to stderr. Moreover we updated node-fetch dependency.

Update actions/cache version to 1.0.8

We have updated actions/cache dependency version to 1.0.8 to support 10GB cache upload

Support caching dependencies

... (truncated)

• 9c644ca Update README.md to fix setup-python version in example (#368)
• 3e8e90e dist fix (#367)
• 05fb98d Cache on ghes (#363)
• 6c56602 Merge pull request #281 from patrick91/feature/poetry-caching
• 9516be8 Merge pull request #358 from actions/brcrista/codeql-main
• 7aa3e95 Update dist
• 6c31eb3 Use \n instead of os.EOL
• 7a37d78 Update dist
• e4be7a4 Initialise pyproject.toml
• aac0ef9 Build and format
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/cache's releases.

v3.0.1

• Added support for caching from GHES 3.5.
• Fixed download issue for files > 2GB during restore.

v3.0.0

• This change adds a minimum runner version(node12 -> node16), which can break users using an out-of-date/fork of the runner. This would be most commonly affecting users on GHES 3.3 or before, as those runners do not support node16 actions and they can use actions from github.com via github connect or manually copying the repo to their GHES instance.

• Few dependencies and cache action usage examples have also been updated.

v2.1.7

Support 10GB cache upload using the latest version 1.0.8 of @actions/cache

v2.1.6

• Catch unhandled "bad file descriptor" errors that sometimes occurs when the cache server returns non-successful response (actions/cache#596)

v2.1.5

• Fix permissions error seen when extracting caches with GNU tar that were previously created using BSD tar (actions/cache#527)

v2.1.4

• Make caching more verbose #650
• Use GNU tar on macOS if available #701

v2.1.3

• Upgrades @actions/core to v1.2.6 for CVE-2020-15228. This action was not using the affected methods.
• Fix error handling in uploadChunk where 400-level errors were not being detected and handled correctly

v2.1.2

• Adds input to limit the chunk upload size, useful for self-hosted runners with slower upload speeds
• No-op when executing on GHES

v2.1.1

• Update @actions/cache package to v1.0.2 which allows cache action to use posix format when taring files.

v2.1.0

• Replaces the http-client with the Azure Storage SDK for NodeJS when downloading cache content from Azure. This should help improve download performance and reliability as the SDK downloads files in 4 MB chunks, which can be parallelized and retried independently
• Display download progress and speed

Sourced from actions/cache's changelog.

3.0.1

• Added support for caching from GHES 3.5.
• Fixed download issue for files > 2GB during restore.

• 136d96b Enabling actions/cache for GHES based on presence of AC service (#774)
• 7d4f40b Bumping up the version to fix download issue for files > 2 GB. (#775)
• 2d8d0d1 Updated what's new. (#771)
• 7799d86 Updated the usage and docs to the major version release. (#770)
• 4b0cf6c Merge pull request #769 from actions/users/ashwinsangem/bump_major_version
• 60c606a Update licensed files
• b6e9a91 Revert "Updated to the latest version."
• c842503 Updated to the latest version.
• 2b7da2a Bumped up to a major version.
• deae296 Merge pull request #651 from magnetikonline/fix-golang-windows-example
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from coverage's changelog.

Version 7.0.3 — 2023-01-03

• Fix: when using pytest-cov or pytest-xdist, or perhaps both, the combining step could fail with assert row is not None using 7.0.2. This was due to a race condition that has always been possible and is still possible. In 7.0.1 and before, the error was silently swallowed by the combining code. Now it will produce a message "Couldn't combine data file" and ignore the data file as it used to do before 7.0.2. Closes issue 1522_.

.. _issue 1522: nedbat/coveragepy#1522

.. _changes_7-0-2:

Version 7.0.2 — 2023-01-02

• Fix: when using the [run] relative_files = True setting, a relative [paths] pattern was still being made absolute. This is now fixed, closing issue 1519_.

• Fix: if Python doesn't provide tomllib, then TOML configuration files can only be read if coverage.py is installed with the [toml] extra. Coverage.py will raise an error if TOML support is not installed when it sees your settings are in a .toml file. But it didn't understand that [tools.coverage] was a valid section header, so the error wasn't reported if you used that header, and settings were silently ignored. This is now fixed, closing issue 1516_.

• Fix: adjusted how decorators are traced on PyPy 7.3.10, fixing issue 1515_.

• Fix: the coverage lcov report did not properly implement the --fail-under=MIN option. This has been fixed.

• Refactor: added many type annotations, including a number of refactorings. This should not affect outward behavior, but they were a bit invasive in some places, so keep your eyes peeled for oddities.

• Refactor: removed the vestigial and long untested support for Jython and IronPython.

.. _issue 1515: nedbat/coveragepy#1515 .. _issue 1516: nedbat/coveragepy#1516 .. _issue 1519: nedbat/coveragepy#1519

.. _changes_7-0-1:

Version 7.0.1 — 2022-12-23

... (truncated)

• 2ff9098 docs: prep for 7.0.3
• 1f34d8b fix: race condition on data file shouldn't break combining. #1522
• 85170bf build: two-step combines for speed
• 1605f07 mypy: misc.py, test_misc.py
• 4f3ccf2 refactor: a better way to have maybe-importable third-party modules
• 98301ed mypy: test_config.py, test_context.py
• 9d2e1b0 mypy: test_concurrency.py, test_python.py
• c3ee30c refactor(test): use tmp_path instead of tmpdir
• 0b05b45 mypy: test_annotate.py test_arcs.py test_collector.py
• 2090f79 style: better
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from pre-commit's releases.

pre-commit v2.21.0

Features

• Require new-enough virtualenv to prevent 3.10 breakage
  • #2467 PR by @​asottile.
• Respect aliases with SKIP for environment install.
  • #2480 PR by @​kmARC.
  • #2478 issue by @​kmARC.
• Allow pre-commit run --files against unmerged paths.
  • #2484 PR by @​asottile.
• Also apply regex warnings to repo: local hooks.
  • #2524 PR by @​chrisRedwine.
  • #2521 issue by @​asottile.
• rust is now a "first class" language -- supporting language_version and installation when not present.
  • #2534 PR by @​Holzhaus.
• r now uses more-reliable binary installation.
  • #2460 PR by @​lorenzwalthert.
• GIT_ALLOW_PROTOCOL is now passed through for git operations.
  • #2555 PR by @​asottile.
• GIT_ASKPASS is now passed through for git operations.
  • #2564 PR by @​mattp-.
• Remove toml dependency by using cargo add directly.
  • #2568 PR by @​m-rsha.
• Support dotnet hooks which have dotted prefixes.
  • #2641 PR by @​rkm.
  • #2629 issue by @​rkm.

Fixes

• Properly adjust --commit-msg-filename if run from a sub directory.
  • #2459 PR by @​asottile.
• Simplify --intent-to-add detection by using git diff.
  • #2580 PR by @​m-rsha.
• Fix R.exe selection on windows.
  • #2605 PR by @​lorenzwalthert.
  • #2599 issue by @​SInginc.
• Skip default nuget source when installing dotnet packages.
  • #2642 PR by @​rkm.

pre-commit v2.20.0

Features

• Expose source and object-name (positional args) of prepare-commit-msg hook as PRE_COMMIT_COMIT_MSG_SOURCE and PRE_COMMIT_COMMIT_OBJECT_NAME.
  • #2407 PR by @​M-Whitaker.
  • #2406 issue by @​M-Whitaker.

Fixes

• Fix language: ruby installs when --user-install is set in gemrc.
  • #2394 PR by @​narpfel.
  • #2393 issue by @​narpfel.
• Adjust pty setup for solaris.
  • #2390 PR by @​gaige.
  • #2389 issue by @​gaige.

... (truncated)

Sourced from pre-commit's changelog.

2.21.0 - 2022-12-25

Features

• Require new-enough virtualenv to prevent 3.10 breakage
  • #2467 PR by @​asottile.
• Respect aliases with SKIP for environment install.
  • #2480 PR by @​kmARC.
  • #2478 issue by @​kmARC.
• Allow pre-commit run --files against unmerged paths.
  • #2484 PR by @​asottile.
• Also apply regex warnings to repo: local hooks.
  • #2524 PR by @​chrisRedwine.
  • #2521 issue by @​asottile.
• rust is now a "first class" language -- supporting language_version and installation when not present.
  • #2534 PR by @​Holzhaus.
• r now uses more-reliable binary installation.
  • #2460 PR by @​lorenzwalthert.
• GIT_ALLOW_PROTOCOL is now passed through for git operations.
  • #2555 PR by @​asottile.
• GIT_ASKPASS is now passed through for git operations.
  • #2564 PR by @​mattp-.
• Remove toml dependency by using cargo add directly.
  • #2568 PR by @​m-rsha.
• Support dotnet hooks which have dotted prefixes.
  • #2641 PR by @​rkm.
  • #2629 issue by @​rkm.

Fixes

• Properly adjust --commit-msg-filename if run from a sub directory.
  • #2459 PR by @​asottile.
• Simplify --intent-to-add detection by using git diff.
  • #2580 PR by @​m-rsha.
• Fix R.exe selection on windows.
  • #2605 PR by @​lorenzwalthert.
  • #2599 issue by @​SInginc.
• Skip default nuget source when installing dotnet packages.
  • #2642 PR by @​rkm.

2.20.0 - 2022-07-10

Features

• Expose source and object-name (positional args) of prepare-commit-msg hook as PRE_COMMIT_COMIT_MSG_SOURCE and PRE_COMMIT_COMMIT_OBJECT_NAME.
  • #2407 PR by @​M-Whitaker.
  • #2406 issue by @​M-Whitaker.

Fixes

... (truncated)

• 40c5bda v2.21.0
• bb27ea3 Merge pull request #2642 from rkm/fix/dotnet-nuget-config
• c38e0c7 dotnet: ignore nuget source during tool install
• bce513f Merge pull request #2641 from rkm/fix/dotnet-tool-prefix
• e904628 fix dotnet hooks with prefixes
• d7b8b12 Merge pull request #2646 from pre-commit/pre-commit-ci-update-config
• 94b6178 [pre-commit.ci] pre-commit autoupdate
• b474a83 Merge pull request #2643 from pre-commit/pre-commit-ci-update-config
• a179808 [pre-commit.ci] pre-commit autoupdate
• 3aa6206 Merge pull request #2605 from lorenzwalthert/r/fix-exe
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from towncrier's releases.

Towncrier 22.12.0

towncrier 22.12.0 (2022-12-21)

Features

• Added --keep option to the build command that allows generating a newsfile, but keeps the newsfragments in place. This option can not be used together with --yes. ([#129](https://github.com/twisted/towncrier/issues/129) <https://github.com/hawkowl/towncrier/issues/129>_)

• Python 3.11 is now officially supported. ([#427](https://github.com/twisted/towncrier/issues/427) <https://github.com/hawkowl/towncrier/issues/427>_)

• You can now create fragments that are not associated with issues. Start the name of the fragment with + (e.g. +anything.feature). The content of these orphan news fragments will be included in the release notes, at the end of the category corresponding to the file extension.

  To help quickly create a unique orphan news fragment, towncrier create +.feature will append a random string to the base name of the file, to avoid name collisions. ([#428](https://github.com/twisted/towncrier/issues/428) <https://github.com/hawkowl/towncrier/issues/428>_)

Improved Documentation

• Improved contribution documentation. ([#415](https://github.com/twisted/towncrier/issues/415) <https://github.com/hawkowl/towncrier/issues/415>_)
• Correct a typo in the readme that incorrectly documented custom fragments in a format that does not work. ([#424](https://github.com/twisted/towncrier/issues/424) <https://github.com/hawkowl/towncrier/issues/424>_)
• The documentation has been restructured and (hopefully) improved. ([#435](https://github.com/twisted/towncrier/issues/435) <https://github.com/hawkowl/towncrier/issues/435>_)
• Added a Markdown-based how-to guide. ([#436](https://github.com/twisted/towncrier/issues/436) <https://github.com/hawkowl/towncrier/issues/436>_)
• Defining custom fragments using a TOML array is not deprecated anymore. ([#438](https://github.com/twisted/towncrier/issues/438) <https://github.com/hawkowl/towncrier/issues/438>_)

Deprecations and Removals

• Default branch for towncrier check is now "origin/main" instead of "origin/master". If "origin/main" does not exist, fallback to "origin/master" with a deprecation warning. ([#400](https://github.com/twisted/towncrier/issues/400) <https://github.com/hawkowl/towncrier/issues/400>_)

22.12.0rc1

towncrier 22.12.0rc1 (2022-12-20)

Features

• Added --keep option to the build command that allows generating a newsfile, but keeps the newsfragments in place. This option can not be used together with --yes. ([#129](https://github.com/twisted/towncrier/issues/129) <https://github.com/hawkowl/towncrier/issues/129>_)

• Python 3.11 is now officially supported. ([#427](https://github.com/twisted/towncrier/issues/427) <https://github.com/hawkowl/towncrier/issues/427>_)

• You can now create fragments that are not associated with issues. Start the name of the fragment with + (e.g. +anything.feature). The content of these orphan news fragments will be included in the release notes, at the end of the category corresponding to the file extension.

  To help quickly create a unique orphan news fragment, towncrier create +.feature will append a random string to the base name of the file, to avoid name collisions. ([#428](https://github.com/twisted/towncrier/issues/428) <https://github.com/hawkowl/towncrier/issues/428>_)

Improved Documentation

... (truncated)

Sourced from towncrier's changelog.

towncrier 22.12.0 (2022-12-21)

No changes since the previous release candidate.

towncrier 22.12.0rc1 (2022-12-20)

Features

• Added --keep option to the build command that allows generating a newsfile, but keeps the newsfragments in place. This option can not be used together with --yes. ([#129](https://github.com/twisted/towncrier/issues/129) <https://github.com/hawkowl/towncrier/issues/129>_)

• Python 3.11 is now officially supported. ([#427](https://github.com/twisted/towncrier/issues/427) <https://github.com/hawkowl/towncrier/issues/427>_)

• You can now create fragments that are not associated with issues. Start the name of the fragment with + (e.g. +anything.feature). The content of these orphan news fragments will be included in the release notes, at the end of the category corresponding to the file extension.

  To help quickly create a unique orphan news fragment, towncrier create +.feature will append a random string to the base name of the file, to avoid name collisions. ([#428](https://github.com/twisted/towncrier/issues/428) <https://github.com/hawkowl/towncrier/issues/428>_)

Improved Documentation

• Improved contribution documentation. ([#415](https://github.com/twisted/towncrier/issues/415) <https://github.com/hawkowl/towncrier/issues/415>_)
• Correct a typo in the readme that incorrectly documented custom fragments in a format that does not work. ([#424](https://github.com/twisted/towncrier/issues/424) <https://github.com/hawkowl/towncrier/issues/424>_)
• The documentation has been restructured and (hopefully) improved. ([#435](https://github.com/twisted/towncrier/issues/435) <https://github.com/hawkowl/towncrier/issues/435>_)
• Added a Markdown-based how-to guide. ([#436](https://github.com/twisted/towncrier/issues/436) <https://github.com/hawkowl/towncrier/issues/436>_)
• Defining custom fragments using a TOML array is not deprecated anymore. ([#438](https://github.com/twisted/towncrier/issues/438) <https://github.com/hawkowl/towncrier/issues/438>_)

Deprecations and Removals

• Default branch for towncrier check is now "origin/main" instead of "origin/master". If "origin/main" does not exist, fallback to "origin/master" with a deprecation warning. ([#400](https://github.com/twisted/towncrier/issues/400) <https://github.com/hawkowl/towncrier/issues/400>_)

Misc

• [#406](https://github.com/twisted/towncrier/issues/406) <https://github.com/hawkowl/towncrier/issues/406>, [#408](https://github.com/twisted/towncrier/issues/408) <https://github.com/hawkowl/towncrier/issues/408>, [#411](https://github.com/twisted/towncrier/issues/411) <https://github.com/hawkowl/towncrier/issues/411>, [#412](https://github.com/twisted/towncrier/issues/412) <https://github.com/hawkowl/towncrier/issues/412>, [#413](https://github.com/twisted/towncrier/issues/413) <https://github.com/hawkowl/towncrier/issues/413>, [#414](https://github.com/twisted/towncrier/issues/414) <https://github.com/hawkowl/towncrier/issues/414>, [#416](https://github.com/twisted/towncrier/issues/416) <https://github.com/hawkowl/towncrier/issues/416>, [#418](https://github.com/twisted/towncrier/issues/418) <https://github.com/hawkowl/towncrier/issues/418>, [#419](https://github.com/twisted/towncrier/issues/419) <https://github.com/hawkowl/towncrier/issues/419>, [#421](https://github.com/twisted/towncrier/issues/421) <https://github.com/hawkowl/towncrier/issues/421>, [#429](https://github.com/twisted/towncrier/issues/429) <https://github.com/hawkowl/towncrier/issues/429>, [#430](https://github.com/twisted/towncrier/issues/430) <https://github.com/hawkowl/towncrier/issues/430>, [#431](https://github.com/twisted/towncrier/issues/431) <https://github.com/hawkowl/towncrier/issues/431>, [#434](https://github.com/twisted/towncrier/issues/434) <https://github.com/hawkowl/towncrier/issues/434>, [#446](https://github.com/twisted/towncrier/issues/446) <https://github.com/hawkowl/towncrier/issues/446>, [#447](https://github.com/twisted/towncrier/issues/447) <https://github.com/hawkowl/towncrier/issues/447>

towncrier 22.8.0 (2022-08-29)

No significant changes since the previous release candidate.

... (truncated)

• b0e201f RST is hard.
• 2c611be Fix rst format.
• 76a2007 Fix typo.
• 62feaf6 Update version for final release.
• fbc4f1f Quick fix for incremental rc version normalization.
• 26a5eba Try latest incremental since a test is failing.
• 7cbec75 Create rc1.
• 3859e58 [pre-commit.ci] pre-commit autoupdate (#452)
• 3418975 Revert Generate coverage reports using only GitHub Actions (#455)
• 24f65a0 Add --keep option to allow to generate newsfile, but keep newsfragmen… (#453)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

• b7788fc Update version to remove "+dev" for releasing 0.991
• 6077d19 manually CP typeshed #9130
• ab0ea1e Fix crash with function redefinition (#14064)
• 592a9ce Fix another crash with report generation on namespace packages (#14063)
• 1650ae0 Update --no-warn-no-return docs for empty body changes (#14065)
• b9daa31 Don't ignore errors in files passed on the command line (#14060)
• 02fd8a5 Filter out wasm32 wheel in upload-pypi.py (#14035)
• 131c8d7 Fix crash on inference with recursive alias to recursive instance (#14038)
• 1368338 Change version to 0.991+dev in preparation for the point release
• b71dc3d Remove +dev from version
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from py-actions/py-dependency-install's releases.

v4

No release notes provided.

v4.0.0

CHANGELOG.md is available in the root of the repository

---

What's Changed

• Bump eslint-config-airbnb-base from 14.2.1 to 15.0.0 by @​dependabot in py-actions/py-dependency-install#116
• Bump eslint-config-prettier from 4.3.0 to 6.15.0 by @​dependabot in py-actions/py-dependency-install#114
• Bump prettier from 1.19.1 to 2.5.1 by @​dependabot in py-actions/py-dependency-install#120
• Bump eslint-plugin-react-hooks from 1.7.0 to 4.3.0 by @​dependabot in py-actions/py-dependency-install#119
• Bump eslint-plugin-html from 5.0.5 to 6.2.0 by @​dependabot in py-actions/py-dependency-install#118
• Bump eslint-plugin-promise from 4.3.1 to 6.0.0 by @​dependabot in py-actions/py-dependency-install#121
• Bump eslint-plugin-react from 7.27.1 to 7.28.0 by @​dependabot in py-actions/py-dependency-install#123
• Bump eslint-plugin-import from 2.25.3 to 2.25.4 by @​dependabot in py-actions/py-dependency-install#125
• Bump jest from 27.4.5 to 27.4.7 by @​dependabot in py-actions/py-dependency-install#127
• Bump jest from 27.4.7 to 27.5.0 by @​dependabot in py-actions/py-dependency-install#131
• Bump jest from 27.5.0 to 27.5.1 by @​dependabot in py-actions/py-dependency-install#132
• Bump @​actions/exec from 1.1.0 to 1.1.1 by @​dependabot in py-actions/py-dependency-install#139
• Bump prettier from 2.5.1 to 2.6.0 by @​dependabot in py-actions/py-dependency-install#138
• Bump prettier from 2.6.0 to 2.6.1 by @​dependabot in py-actions/py-dependency-install#140
• Bump minimist from 1.2.5 to 1.2.6 by @​dependabot in py-actions/py-dependency-install#141
• Bump eslint-plugin-react from 7.28.0 to 7.29.4 by @​dependabot in py-actions/py-dependency-install#137
• Bump eslint-plugin-react-hooks from 4.3.0 to 4.4.0 by @​dependabot in py-actions/py-dependency-install#142
• Bump ansi-regex from 3.0.0 to 3.0.1 by @​dependabot in py-actions/py-dependency-install#143
• Bump prettier from 2.6.1 to 2.6.2 by @​dependabot in py-actions/py-dependency-install#144
• Bump eslint-plugin-import from 2.25.4 to 2.26.0 by @​dependabot in py-actions/py-dependency-install#145
• Bump @​actions/core from 1.6.0 to 1.7.0 by @​dependabot in py-actions/py-dependency-install#147
• Bump jest from 27.5.1 to 28.0.0 by @​dependabot in py-actions/py-dependency-install#146
• Bump jest from 28.0.0 to 28.0.1 by @​dependabot in py-actions/py-dependency-install#148
• Bump eslint-plugin-react-hooks from 4.4.0 to 4.5.0 by @​dependabot in py-actions/py-dependency-install#150
• Bump jest from 28.0.1 to 28.0.2 by @​dependabot in py-actions/py-dependency-install#149
• Bump jest from 28.0.2 to 28.0.3 by @​dependabot in py-actions/py-dependency-install#151
• Bump @​actions/core from 1.7.0 to 1.8.0 by @​dependabot in py-actions/py-dependency-install#153
• Bump jest from 28.0.3 to 28.1.0 by @​dependabot in py-actions/py-dependency-install#152
• Bump @​actions/core from 1.8.0 to 1.8.2 by @​dependabot in py-actions/py-dependency-install#154
• Bump eslint-plugin-react from 7.29.4 to 7.30.0 by @​dependabot in py-actions/py-dependency-install#155
• Bump jest from 28.1.0 to 28.1.1 by @​dependabot in py-actions/py-dependency-install#156
• Bump prettier from 2.6.2 to 2.7.0 by @​dependabot in py-actions/py-dependency-install#157
• Bump @​actions/core from 1.8.2 to 1.9.0 by @​dependabot in py-actions/py-dependency-install#159
• Bump eslint-plugin-react-hooks from 4.5.0 to 4.6.0 by @​dependabot in py-actions/py-dependency-install#158
• Bump prettier from 2.7.0 to 2.7.1 by @​dependabot in py-actions/py-dependency-install#160
• Bump eslint-plugin-jsx-a11y from 6.5.1 to 6.6.0 by @​dependabot in py-actions/py-dependency-install#162
• Bump eslint-plugin-react from 7.30.0 to 7.30.1 by @​dependabot in py-actions/py-dependency-install#161
• Bump jest from 28.1.1 to 28.1.3 by @​dependabot in py-actions/py-dependency-install#164
• Bump eslint-plugin-html from 6.2.0 to 7.0.0 by @​dependabot in py-actions/py-dependency-install#165
• Bump eslint-plugin-jsx-a11y from 6.6.0 to 6.6.1 by @​dependabot in py-actions/py-dependency-install#166
• Bump eslint-plugin-html from 7.0.0 to 7.1.0 by @​dependabot in py-actions/py-dependency-install#167

... (truncated)

Sourced from py-actions/py-dependency-install's changelog.

Changelog

v4.0.0

• update the GitHub Action to use node 16 environment from node 12 environment (addresses GitHub Actions node 12 deprecation warnings)
• add cPython 3.11.x interpreter support
• drop cPython 3.7.x interpreter support (may work, no longer tested)
• update CodeQL configuration
• dependency updates

v3.0.0

• add cPython 3.10.x interpreter support
• drop cPython 3.6.x interpreter support
• remove pypy3 interpreter CI tests (appears to be a bug in the actions/setup-python pypy3 install pipeline at the moment)
• update eslint-plugin-import to ^2.25.3
• update eslint-plugin-jsx-a11y to ^6.5.1
• update eslint-plugin-prettier to ^3.4.1
• update eslint-plugin-promise to ^4.3.1
• update eslint-plugin-react to ^7.27.1
• update jest to ^27.4.5

v2.1.0

• add cPython 3.9 interpreter CI testing
• add daily cron schedule CI testing
• update @​actions/core dependency to v1.2.6
• update @​zeit/ncc dependency to v0.22.3
• update eslint-config-airbnb-base dependency to v14.2.1
• update eslint-plugin-import dependency to v2.22.1
• update eslint-plugin-jsx-a11y dependency to v6.4.1
• update eslint-plugin-prettier dependency to v3.1.4
• update eslint-plugin-react dependency to v7.21.5
• update jest dependency to v26.6.3

v2.0.2

• add Quick Start section at the front of the docs
• expand documentation examples
• fix documentation of defaults in Action yaml file
• add cross-platform CI testing

v2.0.1

• expand documentation with examples of non-default requirements.txt file paths and optional install toggle definitions in the Action configuration

v2.0.0

• install/upgrade wheel by default (with option to toggle off)
• install/upgrade setuptools by default (with option to toggle off)

... (truncated)

• 9c419aa [README.md] updates for v4.0.0
• 845eb6b [CHANGELOG.md] v4.0.0
• 1295787 Merge pull request #193 from py-actions/dependency-updates
• 2c36d3f Merge pull request #194 from py-actions/chrissimpkins-patch-1
• 71dd8b7 Add codeql.yml
• b748a9a bump GHA dependency versions, update to node 16 env
• 63ac438 remove old CodeQL config
• e083742 [action.yml] bump to node 16
• 446fd4f update dist source
• 908fcfe bump package dependencies
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Sourced from actions/cache's releases.

v3.0.11

What's Changed

• Call out cache not saved on hit by @​Phantsure in actions/cache#946
• Update @​actions/core to 1.10.0 by @​rentziass in actions/cache#950
• Update cache to use @​actions/core@^1.10.0 by @​pdotl in actions/cache#956

New Contributors

• @​rentziass made their first contribution in actions/cache#950

Full Changelog: https://github.com/actions/cache/compare/v3...v3.0.11

v3.0.10

• Fix a bug with sorting inputs.
• Update definition for restore-keys in README.md

v3.0.9

• Enhanced the warning message for cache unavailability in case of GHES.

v3.0.8

What's Changed

• Fix zstd not working for windows on gnu tar in issues.
• Allow users to provide a custom timeout as input for aborting cache segment download using the environment variable SEGMENT_DOWNLOAD_TIMEOUT_MIN. Default is 60 minutes.

v3.0.7

What's Changed

• Fix for the download stuck problem has been added in actions/cache for users who were intermittently facing the issue. As part of this fix, new timeout has been introduced in the download step to stop the download if it doesn't complete within an hour and run the rest of the workflow without erroring out.

v3.0.6

What's Changed

• Add example for clojure lein project dependencies by @​shivamarora1 in PR actions/cache#835
• Update toolkit's cache npm module to latest. Bump cache version to v3.0.6 by @​pdotl in PR actions/cache#887
• Fix issue #809 where cache save/restore was failing for Amazon Linux 2 runners due to older tar version
• Fix issue #833 where cache save was not working for caching github workspace directory

New Contributors

• @​shivamarora1 made their first contribution in actions/cache#835
• @​pdotl made their first contribution in actions/cache#887

Full Changelog: https://github.com/actions/cache/compare/v3...v3.0.6

v3.0.5

Removed error handling by consuming actions/cache 3.0 toolkit, Now cache server error handling will be done by toolkit.

v3.0.4

In this release, we have fixed the tar creation error while trying to create it with path as ~/ home folder on ubuntu-latest.

v3.0.3

Fixed avoiding empty cache save when no files are available for caching. (actions/cache#624)

v3.0.2

... (truncated)

Sourced from actions/cache's changelog.

3.0.11

• Update toolkit version to 3.0.5 to include @actions/core@^1.10.0
• Update @actions/cache to use updated saveState and setOutput functions from @actions/core@^1.10.0

• 9b0c1fc Merge pull request #956 from actions/pdotl-version-bump
• 18103f6 Fix licensed status error
• 3e383cd Update RELEASES
• 43428ea toolkit versioon update and version bump for cache
• 1c73980 3.0.11
• a3f5edc Merge pull request #950 from rentziass/rentziass/update-actions-core
• 831ee69 Update licenses
• b9c8bfe Update @​actions/core to 1.10.0
• 0f20846 Merge pull request #946 from actions/Phantsure-patch-2
• 862fc14 Update README.md
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)