Update several dependencies.

ICTU · Dec 23, 2024 · 64395c9 · 64395c9
1 parent f745b29
commit 64395c9
Show file tree

Hide file tree

Showing 33 changed files with 72 additions and 66 deletions.
diff --git a/.github/workflows/api_server.yml b/.github/workflows/api_server.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies, run unit tests and check quality

diff --git a/.github/workflows/application-tests-quality.yml b/.github/workflows/application-tests-quality.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies and check quality

diff --git a/.github/workflows/collector.yml b/.github/workflows/collector.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies, run unit tests and check quality

diff --git a/.github/workflows/documentation.yml b/.github/workflows/documentation.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies, run unit tests and check quality

diff --git a/.github/workflows/feature-tests-quality.yml b/.github/workflows/feature-tests-quality.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies and check quality

diff --git a/.github/workflows/feature-tests.yml b/.github/workflows/feature-tests.yml
@@ -15,7 +15,7 @@ jobs:
           username: ${{ secrets.DOCKER_USERNAME }}
           password: ${{ secrets.DOCKER_PASSWORD }}
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Run feature tests

diff --git a/.github/workflows/notifier.yml b/.github/workflows/notifier.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies, run unit tests and check quality

diff --git a/.github/workflows/release-quality.yml b/.github/workflows/release-quality.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies and check quality

diff --git a/.github/workflows/shared_code.yml b/.github/workflows/shared_code.yml
@@ -10,7 +10,7 @@ jobs:
     steps:
       - uses: actions/[email protected]
       - name: Install uv
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Install dependencies, run unit tests and check quality

diff --git a/.github/workflows/sonarcloud.yml b/.github/workflows/sonarcloud.yml
@@ -26,7 +26,7 @@ jobs:
           fetch-depth: 0 # Disabling shallow clone is recommended for improving relevancy of reporting
       - name: Install uv
         if: env.SONAR_TOKEN != null
-        uses: astral-sh/setup-uv@v4
+        uses: astral-sh/setup-uv@v5
         with:
           version: "0.4.22"
       - name: Set up Node

diff --git a/ci/update-indirect-dependencies.sh b/ci/update-indirect-dependencies.sh
@@ -7,9 +7,9 @@ set -e
 (cd components/api_server; ci/pip-compile.sh; ci/pip-install.sh) &
 (cd components/collector; ci/pip-compile.sh; ci/pip-install.sh) &
 (cd components/notifier;  ci/pip-compile.sh; ci/pip-install.sh) &
-(cd components/frontend; rm package-lock.json; npm install --ignore-scripts) &
-(cd components/renderer; rm package-lock.json; npm install --ignore-scripts) &
-(cd docs; rm package-lock.json; npm install --ignore-scripts) &
+(cd components/frontend; rm -f package-lock.json; npm install --ignore-scripts) &
+(cd components/renderer; rm -f package-lock.json; npm install --ignore-scripts) &
+(cd docs; rm -f package-lock.json; npm install --ignore-scripts) &
 (cd docs; ci/pip-compile.sh; ci/pip-install.sh) &
 (cd release; ci/pip-compile.sh; ci/pip-install.sh) &
 (cd tests/application_tests; ci/pip-compile.sh; ci/pip-install.sh) &

diff --git a/components/api_server/pyproject.toml b/components/api_server/pyproject.toml
@@ -27,7 +27,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/components/api_server/requirements/requirements-dev.txt b/components/api_server/requirements/requirements-dev.txt
@@ -766,9 +766,9 @@ unittest-xml-reporting==3.2.0 \
     --hash=sha256:edd8d3170b40c3a81b8cf910f46c6a304ae2847ec01036d02e9c0f9b85762d28 \
     --hash=sha256:f3d7402e5b3ac72a5ee3149278339db1a8f932ee405f48bcb9c681372f2717d5
     # via api-server (pyproject.toml)
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via
     #   requests
     #   types-requests

diff --git a/components/api_server/requirements/requirements.txt b/components/api_server/requirements/requirements.txt
@@ -565,9 +565,9 @@ setuptools==75.6.0 \
     # via
     #   zope-event
     #   zope-interface
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
 zope-event==5.0 \
     --hash=sha256:2832e95014f4db26c47a13fdaef84cef2f4df37e66b59d8f1f4a8f319a632c26 \

diff --git a/components/collector/pyproject.toml b/components/collector/pyproject.toml
@@ -27,7 +27,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/components/frontend/package-lock.json b/components/frontend/package-lock.json
diff --git a/components/frontend/package.json b/components/frontend/package.json
@@ -59,8 +59,8 @@
         "@testing-library/user-event": "^14.5.2",
         "eslint": "^9.17.0",
         "eslint-config-prettier": "^9.1.0",
-        "eslint-plugin-jest": "^28.9.0",
-        "eslint-plugin-n": "^17.15.0",
+        "eslint-plugin-jest": "^28.10.0",
+        "eslint-plugin-n": "^17.15.1",
         "eslint-plugin-prettier": "^5.2.1",
         "eslint-plugin-promise": "^7.2.1",
         "eslint-plugin-react": "^7.37.2",

diff --git a/components/notifier/pyproject.toml b/components/notifier/pyproject.toml
@@ -20,7 +20,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/components/notifier/requirements/requirements-dev.txt b/components/notifier/requirements/requirements-dev.txt
@@ -831,9 +831,9 @@ unittest-xml-reporting==3.2.0 \
     --hash=sha256:edd8d3170b40c3a81b8cf910f46c6a304ae2847ec01036d02e9c0f9b85762d28 \
     --hash=sha256:f3d7402e5b3ac72a5ee3149278339db1a8f932ee405f48bcb9c681372f2717d5
     # via notifier (pyproject.toml)
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
 yarl==1.18.3 \
     --hash=sha256:00e5a1fea0fd4f5bfa7440a47eff01d9822a65b4488f7cff83155a0f31a2ecba \

diff --git a/components/notifier/requirements/requirements.txt b/components/notifier/requirements/requirements.txt
@@ -492,9 +492,9 @@ requests==2.32.3 \
     --hash=sha256:55365417734eb18255590a9ff9eb97e9e1da868d4ccd6402399eaf68af20a760 \
     --hash=sha256:70761cfe03c773ceb22aa2f671b4757976145175cdfca038c02654d061d6dcc6
     # via pymsteams
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
 yarl==1.18.3 \
     --hash=sha256:00e5a1fea0fd4f5bfa7440a47eff01d9822a65b4488f7cff83155a0f31a2ecba \

diff --git a/components/renderer/package-lock.json b/components/renderer/package-lock.json
diff --git a/components/renderer/package.json b/components/renderer/package.json
@@ -5,7 +5,7 @@
     "type": "module",
     "proxy": "http://localhost:9000",
     "dependencies": {
-        "@braintree/sanitize-url": "^7.1.0",
+        "@braintree/sanitize-url": "^7.1.1",
         "express": "^4.21.2",
         "puppeteer-core": "^23.11.0"
     }

diff --git a/components/shared_code/pyproject.toml b/components/shared_code/pyproject.toml
@@ -23,7 +23,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pydantic==2.10.4",     # Needed because pipx needs to inject Pydantic into the mpyp venv, see ci/quality.sh
     "pyproject-fmt==2.5.0",

diff --git a/docs/pyproject.toml b/docs/pyproject.toml
@@ -22,7 +22,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pydantic==2.10.4",     # Needed because pipx needs to inject Pydantic into the mpyp venv, see ci/quality.sh
     "pyproject-fmt==2.5.0",

diff --git a/docs/requirements/requirements-dev.txt b/docs/requirements/requirements-dev.txt
@@ -207,9 +207,9 @@ imagesize==1.4.1 \
     --hash=sha256:0d8d18d08f840c19d0ee7ca1fd82490fdc3729b7ac93f49870406ddde8ef8d8b \
     --hash=sha256:69150444affb9cb0d5cc5a92b3676f0b2fb7cd9ae39e947a5e11a36b4497cd4a
     # via sphinx
-jinja2==3.1.4 \
-    --hash=sha256:4a3aee7acbbe7303aede8e9648d13b8bf88a429282aa6122a993f0ac800cb369 \
-    --hash=sha256:bc5dd2abb727a5319567b7a813e6a2e7318c39f4f487cfe6c89c6f9c7d25197d
+jinja2==3.1.5 \
+    --hash=sha256:8fefff8dc3034e27bb80d67c671eb8a9bc424c0ef4c0826edbff304cceff43bb \
+    --hash=sha256:aba0f4dc9ed8013c424088f68a5c226f7d6097ed89b246d7749c2ec4175c6adb
     # via
     #   myst-parser
     #   sphinx
@@ -677,7 +677,7 @@ unittest-xml-reporting==3.2.0 \
     --hash=sha256:edd8d3170b40c3a81b8cf910f46c6a304ae2847ec01036d02e9c0f9b85762d28 \
     --hash=sha256:f3d7402e5b3ac72a5ee3149278339db1a8f932ee405f48bcb9c681372f2717d5
     # via docs (pyproject.toml)
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
diff --git a/docs/requirements/requirements.txt b/docs/requirements/requirements.txt
@@ -153,9 +153,9 @@ imagesize==1.4.1 \
     --hash=sha256:0d8d18d08f840c19d0ee7ca1fd82490fdc3729b7ac93f49870406ddde8ef8d8b \
     --hash=sha256:69150444affb9cb0d5cc5a92b3676f0b2fb7cd9ae39e947a5e11a36b4497cd4a
     # via sphinx
-jinja2==3.1.4 \
-    --hash=sha256:4a3aee7acbbe7303aede8e9648d13b8bf88a429282aa6122a993f0ac800cb369 \
-    --hash=sha256:bc5dd2abb727a5319567b7a813e6a2e7318c39f4f487cfe6c89c6f9c7d25197d
+jinja2==3.1.5 \
+    --hash=sha256:8fefff8dc3034e27bb80d67c671eb8a9bc424c0ef4c0826edbff304cceff43bb \
+    --hash=sha256:aba0f4dc9ed8013c424088f68a5c226f7d6097ed89b246d7749c2ec4175c6adb
     # via
     #   myst-parser
     #   sphinx
@@ -479,7 +479,7 @@ typing-extensions==4.12.2 \
     # via
     #   pydantic
     #   pydantic-core
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
diff --git a/release/pyproject.toml b/release/pyproject.toml
@@ -13,7 +13,7 @@ optional-dependencies.tools = [
     "bandit==1.8.0",
     "bump-my-version==0.29.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/tests/application_tests/pyproject.toml b/tests/application_tests/pyproject.toml
@@ -17,7 +17,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/tests/application_tests/requirements/requirements-dev.txt b/tests/application_tests/requirements/requirements-dev.txt
@@ -194,9 +194,9 @@ typing-extensions==4.12.2 \
     --hash=sha256:04e5ca0351e0f3f85c6853954072df659d0d13fac324d0072316b67d7794700d \
     --hash=sha256:1a7ead55c7e559dd4dee8856e3a88b41225abfe1ce8df57b7c13915fe121ffb8
     # via selenium
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via
     #   requests
     #   selenium

diff --git a/tests/application_tests/requirements/requirements.txt b/tests/application_tests/requirements/requirements.txt
@@ -190,9 +190,9 @@ typing-extensions==4.12.2 \
     --hash=sha256:04e5ca0351e0f3f85c6853954072df659d0d13fac324d0072316b67d7794700d \
     --hash=sha256:1a7ead55c7e559dd4dee8856e3a88b41225abfe1ce8df57b7c13915fe121ffb8
     # via selenium
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via
     #   requests
     #   selenium

diff --git a/tests/feature_tests/pyproject.toml b/tests/feature_tests/pyproject.toml
@@ -22,7 +22,7 @@ optional-dependencies.dev = [
 optional-dependencies.tools = [
     "bandit==1.8.0",
     "fixit==2.1.0",
-    "mypy==1.13.0",
+    "mypy==1.14.0",
     "pip-audit==2.7.3",
     "pyproject-fmt==2.5.0",
     "ruff==0.8.4",

diff --git a/tests/feature_tests/requirements/requirements-dev.txt b/tests/feature_tests/requirements/requirements-dev.txt
@@ -551,9 +551,9 @@ unittest-xml-reporting==3.2.0 \
     --hash=sha256:edd8d3170b40c3a81b8cf910f46c6a304ae2847ec01036d02e9c0f9b85762d28 \
     --hash=sha256:f3d7402e5b3ac72a5ee3149278339db1a8f932ee405f48bcb9c681372f2717d5
     # via feature-tests (pyproject.toml)
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via
     #   requests
     #   types-requests

diff --git a/tests/feature_tests/requirements/requirements.txt b/tests/feature_tests/requirements/requirements.txt
@@ -339,9 +339,9 @@ typing-extensions==4.12.2 \
     --hash=sha256:04e5ca0351e0f3f85c6853954072df659d0d13fac324d0072316b67d7794700d \
     --hash=sha256:1a7ead55c7e559dd4dee8856e3a88b41225abfe1ce8df57b7c13915fe121ffb8
     # via asserts
-urllib3==2.2.3 \
-    --hash=sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac \
-    --hash=sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9
+urllib3==2.3.0 \
+    --hash=sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df \
+    --hash=sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d
     # via requests
 zope-event==5.0 \
     --hash=sha256:2832e95014f4db26c47a13fdaef84cef2f4df37e66b59d8f1f4a8f319a632c26 \