chore(deps): bump certifi from 2022.12.7 to 2024.12.14 in /docs

[dependabot]

Bumps certifi from 2022.12.7 to 2024.12.14.

Commits

• 4ba3900 2024.12.14 (#329)
• 9164660 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#331)
• 3dc3651 Bump pypa/gh-action-pypi-publish from 1.11.0 to 1.12.2 (#328)
• c5bf18d Bump pypa/gh-action-pypi-publish from 1.10.3 to 1.11.0 (#327)
• b908391 Bump actions/setup-python from 5.2.0 to 5.3.0 (#326)
• bc26b41 Bump actions/checkout from 4.2.1 to 4.2.2 (#325)
• 57afc22 Bump actions/upload-artifact from 4.4.1 to 4.4.3 (#323)
• a495091 test against 3.13 final
• 62f8144 Added 3.13 classifier (#322)
• 94d23a0 Bump pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3 (#321)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dryrunsecurity]

DryRun Security Summary

The code change updates the certifi package version in the docs/requirements.txt file to the latest version, which helps maintain the application's security by ensuring secure SSL/TLS connections.

Expand for full summary

Summary:

The provided code change is an update to the requirements.txt file in the docs/ directory, which involves updating the version of the certifi package from 2022.12.7 to 2024.12.14. From an application security perspective, this update is a positive change as it ensures the application is using the latest version of the certifi package, which provides a bundle of root certificates used for SSL/TLS connections. Keeping this package up-to-date is important to ensure the application can securely connect to external services and resources and mitigate potential security vulnerabilities that may arise from outdated certificates. Overall, this code change appears to be a routine dependency update that should not introduce any significant security concerns.

Files Changed:

• docs/requirements.txt: This file has been updated to use the latest version of the certifi package, which provides a bundle of root certificates used for SSL/TLS connections. Updating to the latest version of this package helps maintain the overall security posture of the application by ensuring the application can securely connect to external services and resources.

Code Analysis

We ran 9 analyzers against 1 file and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	1 finding

View PR in the DryRun Dashboard.