From 7657c90f9225b38cacf3580181bae36d7b73c5e7 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 03:16:54 +0000 Subject: [PATCH 1/8] build(deps-dev): bump tblib from 1.7.0 to 3.2.2 Bumps [tblib](https://github.com/ionelmc/python-tblib) from 1.7.0 to 3.2.2. - [Release notes](https://github.com/ionelmc/python-tblib/releases) - [Changelog](https://github.com/ionelmc/python-tblib/blob/master/CHANGELOG.rst) - [Commits](https://github.com/ionelmc/python-tblib/compare/v1.7.0...v3.2.2) --- updated-dependencies: - dependency-name: tblib dependency-version: 3.2.2 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- poetry.lock | 12 ++++++------ pyproject.toml | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/poetry.lock b/poetry.lock index ff257339..7c88881d 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1010,11 +1010,11 @@ description = "Cross-platform colored terminal text." optional = false python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7" groups = ["main", "dev"] -markers = "platform_system == \"Windows\" or sys_platform == \"win32\"" files = [ {file = "colorama-0.4.6-py2.py3-none-any.whl", hash = "sha256:4f1d9991f5acc0ca119f9d443620b77f9d6b33703e51011c16baf57afb285fc6"}, {file = "colorama-0.4.6.tar.gz", hash = "sha256:08695f5cb7ed6e0531a20572697297273c47b8cae5a63ffc6d6ed5c201be6e44"}, ] +markers = {main = "sys_platform == \"win32\" or platform_system == \"Windows\"", dev = "platform_system == \"Windows\" or sys_platform == \"win32\""} [[package]] name = "coverage" @@ -4908,14 +4908,14 @@ yaml = ["pyyaml"] [[package]] name = "tblib" -version = "1.7.0" +version = "3.2.2" description = "Traceback serialization library." optional = false -python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*" +python-versions = ">=3.9" groups = ["dev"] files = [ - {file = "tblib-1.7.0-py2.py3-none-any.whl", hash = "sha256:289fa7359e580950e7d9743eab36b0691f0310fce64dee7d9c31065b8f723e23"}, - {file = "tblib-1.7.0.tar.gz", hash = "sha256:059bd77306ea7b419d4f76016aef6d7027cc8a0785579b5aad198803435f882c"}, + {file = "tblib-3.2.2-py3-none-any.whl", hash = "sha256:26bdccf339bcce6a88b2b5432c988b266ebbe63a4e593f6b578b1d2e723d2b76"}, + {file = "tblib-3.2.2.tar.gz", hash = "sha256:e9a652692d91bf4f743d4a15bc174c0b76afc750fe8c7b6d195cc1c1d6d2ccec"}, ] [[package]] @@ -5341,4 +5341,4 @@ type = ["pytest-mypy"] [metadata] lock-version = "2.1" python-versions = "~3.13" -content-hash = "852907aa6d64adf7b13ddd47120162e96d70351e3c9c2b38ae0f7af8752d82e4" +content-hash = "de8eef5e9d8d3ce20ff516bad9050aed9d33a00bca7e127c59b9187b2342d523" diff --git a/pyproject.toml b/pyproject.toml index 23fa6fcf..6216c960 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -77,7 +77,7 @@ isort = "^7.0.0" pep8-naming = "^0.15.1" pytest = "^9.0.2" pytest-django = "^4.12.0" -tblib = "^1.7.0" +tblib = "^3.2.2" toml = "^0.10.2" urllib3 = "^2.6.2" django-slowtests = "^1.1.1" From 7658948578266110cd6b270fc19953e42f52e9d0 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 03:17:21 +0000 Subject: [PATCH 2/8] build(deps): bump django-modeltranslation from 0.19.19 to 0.20.2 Bumps [django-modeltranslation](https://github.com/deschler/django-modeltranslation) from 0.19.19 to 0.20.2. - [Release notes](https://github.com/deschler/django-modeltranslation/releases) - [Changelog](https://github.com/deschler/django-modeltranslation/blob/master/CHANGELOG.md) - [Commits](https://github.com/deschler/django-modeltranslation/compare/v0.19.19...v0.20.2) --- updated-dependencies: - dependency-name: django-modeltranslation dependency-version: 0.20.2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- poetry.lock | 6 +++--- pyproject.toml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/poetry.lock b/poetry.lock index 7c88881d..8a3e4e59 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1473,14 +1473,14 @@ requests = ["requests (>=2.24)"] [[package]] name = "django-modeltranslation" -version = "0.19.19" +version = "0.20.2" description = "Translates Django models using a registration approach." optional = false python-versions = "<4,>=3.10" groups = ["main"] files = [ - {file = "django_modeltranslation-0.19.19-py3-none-any.whl", hash = "sha256:55ac2ce47486b9e8ca18b155f7705170a53b7e1346bf7bf89304e99787486e8f"}, - {file = "django_modeltranslation-0.19.19.tar.gz", hash = "sha256:26dd8454f19540a2eb05e303608a2d89dd80aacb75ab95f8ea272cf4324d2644"}, + {file = "django_modeltranslation-0.20.2-py3-none-any.whl", hash = "sha256:964385c3cf3a584f564e995f2e9ff0e961d0297ef04ff51821ac529e12064290"}, + {file = "django_modeltranslation-0.20.2.tar.gz", hash = "sha256:d687bdcae9305dcdc8d644b75f1d687f355073e82049f4b9c4ba0feb347a0980"}, ] [package.dependencies] diff --git a/pyproject.toml b/pyproject.toml index 6216c960..f7161426 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -16,7 +16,7 @@ django-cors-headers = "^4.9.0" django-extensions = "^4.1.0" django-filter = "^25.2" django-mjml = { extras = ["requests"], version = "^1.1" } -django-modeltranslation = "^0.19.19" +django-modeltranslation = "^0.20.2" django-redis = "^6.0.0" django-simple-history = "^3.11.0" django-stdimage = "^6.0.2" From efd7cd23ce4ecfe88ab5c7032fb825c8683da62d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 03:17:47 +0000 Subject: [PATCH 3/8] build(deps-dev): bump bandit from 1.9.2 to 1.9.4 Bumps [bandit](https://github.com/PyCQA/bandit) from 1.9.2 to 1.9.4. - [Release notes](https://github.com/PyCQA/bandit/releases) - [Commits](https://github.com/PyCQA/bandit/compare/1.9.2...1.9.4) --- updated-dependencies: - dependency-name: bandit dependency-version: 1.9.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- poetry.lock | 6 +++--- pyproject.toml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/poetry.lock b/poetry.lock index 8a3e4e59..c4f9973e 100644 --- a/poetry.lock +++ b/poetry.lock @@ -356,14 +356,14 @@ files = [ [[package]] name = "bandit" -version = "1.9.2" +version = "1.9.4" description = "Security oriented static analyser for python code." optional = false python-versions = ">=3.10" groups = ["dev"] files = [ - {file = "bandit-1.9.2-py3-none-any.whl", hash = "sha256:bda8d68610fc33a6e10b7a8f1d61d92c8f6c004051d5e946406be1fb1b16a868"}, - {file = "bandit-1.9.2.tar.gz", hash = "sha256:32410415cd93bf9c8b91972159d5cf1e7f063a9146d70345641cd3877de348ce"}, + {file = "bandit-1.9.4-py3-none-any.whl", hash = "sha256:f89ffa663767f5a0585ea075f01020207e966a9c0f2b9ef56a57c7963a3f6f8e"}, + {file = "bandit-1.9.4.tar.gz", hash = "sha256:b589e5de2afe70bd4d53fa0c1da6199f4085af666fde00e8a034f152a52cd628"}, ] [package.dependencies] diff --git a/pyproject.toml b/pyproject.toml index f7161426..b4659b35 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -61,7 +61,7 @@ jsonschema = "^4.25.1" lxml = "^6.0.2" [tool.poetry.group.dev.dependencies] -bandit = "^1.7.3" +bandit = "^1.9.4" black = "^26.1.0" coverage = { extras = ["toml"], version = "^7.13" } dj-inmemorystorage = "^2.1.0" From 5139d88e01ae9f53326f49574aa652dc23f3a74d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 03:18:11 +0000 Subject: [PATCH 4/8] build(deps): bump single-source from 0.3.0 to 0.4.0 Bumps [single-source](https://github.com/rabbit72/single-source) from 0.3.0 to 0.4.0. - [Release notes](https://github.com/rabbit72/single-source/releases) - [Commits](https://github.com/rabbit72/single-source/compare/v0.3.0...v0.4.0) --- updated-dependencies: - dependency-name: single-source dependency-version: 0.4.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- poetry.lock | 8 ++++---- pyproject.toml | 2 +- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/poetry.lock b/poetry.lock index c4f9973e..27f0f5ef 100644 --- a/poetry.lock +++ b/poetry.lock @@ -4803,14 +4803,14 @@ files = [ [[package]] name = "single-source" -version = "0.3.0" +version = "0.4.0" description = "Access to the project version in Python code for PEP 621-style projects" optional = false -python-versions = ">=3.6,<4.0" +python-versions = "<4.0,>=3.8" groups = ["main"] files = [ - {file = "single-source-0.3.0.tar.gz", hash = "sha256:b12705af958ca99d56ea9ce40bd9cc749378f4fe7ad03b1f9067e29daceef27d"}, - {file = "single_source-0.3.0-py3-none-any.whl", hash = "sha256:7bc87168ced50f638b6ab0cda4cc1ce9e80ee0e1220014397050d336d021a597"}, + {file = "single_source-0.4.0-py3-none-any.whl", hash = "sha256:38880b16e6e0ca2e012f85dc3820eb31999ace5f1d9a588395ea38f8bd0775f5"}, + {file = "single_source-0.4.0.tar.gz", hash = "sha256:7917aa113bda60072f01952e2966cd7247f0ec16fe52a1555f3c066b553e98b4"}, ] [[package]] diff --git a/pyproject.toml b/pyproject.toml index b4659b35..33f654b5 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -36,7 +36,7 @@ python-keycloak = "^7.1.1" redis = "^6.4.0" serializers = "^0.2.4" shortuuid = "^1.0.1" -single-source = "^0.3.0" +single-source = "^0.4.0" whitenoise = { extras = ["brotli"], version = "^6.0.0" } babel = "^2.18.0" mixpanel-utils = "^2.2.5" From f07e798d239dac44d40ff6172d4f32ff0e97bc09 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 03:18:35 +0000 Subject: [PATCH 5/8] build(deps): bump mistralai from 1.10.0 to 1.12.4 Bumps [mistralai](https://github.com/mistralai/client-python) from 1.10.0 to 1.12.4. - [Release notes](https://github.com/mistralai/client-python/releases) - [Changelog](https://github.com/mistralai/client-python/blob/v1.12.4/RELEASES.md) - [Commits](https://github.com/mistralai/client-python/compare/v1.10.0...v1.12.4) --- updated-dependencies: - dependency-name: mistralai dependency-version: 1.12.4 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- poetry.lock | 12 ++++++------ pyproject.toml | 2 +- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/poetry.lock b/poetry.lock index 27f0f5ef..9c3beffe 100644 --- a/poetry.lock +++ b/poetry.lock @@ -2953,14 +2953,14 @@ files = [ [[package]] name = "mistralai" -version = "1.10.0" +version = "1.12.4" description = "Python Client SDK for the Mistral AI API." optional = false -python-versions = ">=3.9" +python-versions = ">=3.10" groups = ["main"] files = [ - {file = "mistralai-1.10.0-py3-none-any.whl", hash = "sha256:fd37d15f077375f77cbfbbb57abed6b2c6ae0a3db39cf4815400742441b3b60a"}, - {file = "mistralai-1.10.0.tar.gz", hash = "sha256:c92e9a5ec7057577b326d47a4b1c186f42660bccbe95167fc25c686fe658ad23"}, + {file = "mistralai-1.12.4-py3-none-any.whl", hash = "sha256:7b69fcbc306436491ad3377fbdead527c9f3a0ce145ec029bf04c6308ff2cca6"}, + {file = "mistralai-1.12.4.tar.gz", hash = "sha256:e52b53bab58025dcd208eeac13e3c3df5778d4112eeca1f08124096c7738929f"}, ] [package.dependencies] @@ -2970,15 +2970,15 @@ invoke = ">=2.2.0,<3.0.0" opentelemetry-api = ">=1.33.1,<2.0.0" opentelemetry-exporter-otlp-proto-http = ">=1.37.0,<2.0.0" opentelemetry-sdk = ">=1.33.1,<2.0.0" -opentelemetry-semantic-conventions = ">=0.59b0,<0.60" pydantic = ">=2.10.3" python-dateutil = ">=2.8.2" pyyaml = ">=6.0.2,<7.0.0" typing-inspection = ">=0.4.0" [package.extras] -agents = ["authlib (>=1.5.2,<2.0)", "griffe (>=1.7.3,<2.0)", "mcp (>=1.0,<2.0) ; python_version >= \"3.10\""] +agents = ["authlib (>=1.5.2,<2.0)", "griffe (>=1.7.3,<2.0)", "mcp (>=1.0,<2.0)"] gcp = ["google-auth (>=2.27.0)", "requests (>=2.32.3)"] +realtime = ["websockets (>=13.0)"] [[package]] name = "mixpanel-utils" diff --git a/pyproject.toml b/pyproject.toml index 33f654b5..95ae0766 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -47,7 +47,7 @@ parameterized = "^0.9.0" django-prometheus = "^2.3.1" pymediawiki = "^0.7.4" pgvector = "^0.2.4" -mistralai = "^1.8.2" +mistralai = "^1.12.4" setuptools = "^82.0.0" django-debug-toolbar = "^6.1.0" uvicorn = "^0.32.1" From 868639dd16420db829d17d5f4f1a4c7180f48d9e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 12 Mar 2026 21:10:37 +0000 Subject: [PATCH 6/8] build(deps-dev): bump black from 26.1.0 to 26.3.1 Bumps [black](https://github.com/psf/black) from 26.1.0 to 26.3.1. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/26.1.0...26.3.1) --- updated-dependencies: - dependency-name: black dependency-version: 26.3.1 dependency-type: direct:development ... Signed-off-by: dependabot[bot] --- poetry.lock | 60 +++++++++++++++++++++++++------------------------- pyproject.toml | 2 +- 2 files changed, 31 insertions(+), 31 deletions(-) diff --git a/poetry.lock b/poetry.lock index 9c3beffe..0250430b 100644 --- a/poetry.lock +++ b/poetry.lock @@ -416,39 +416,39 @@ files = [ [[package]] name = "black" -version = "26.1.0" +version = "26.3.1" description = "The uncompromising code formatter." optional = false python-versions = ">=3.10" groups = ["dev"] files = [ - {file = "black-26.1.0-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:ca699710dece84e3ebf6e92ee15f5b8f72870ef984bf944a57a777a48357c168"}, - {file = "black-26.1.0-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:5e8e75dabb6eb83d064b0db46392b25cabb6e784ea624219736e8985a6b3675d"}, - {file = "black-26.1.0-cp310-cp310-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:eb07665d9a907a1a645ee41a0df8a25ffac8ad9c26cdb557b7b88eeeeec934e0"}, - {file = "black-26.1.0-cp310-cp310-win_amd64.whl", hash = "sha256:7ed300200918147c963c87700ccf9966dceaefbbb7277450a8d646fc5646bf24"}, - {file = "black-26.1.0-cp310-cp310-win_arm64.whl", hash = "sha256:c5b7713daea9bf943f79f8c3b46f361cc5229e0e604dcef6a8bb6d1c37d9df89"}, - {file = "black-26.1.0-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:3cee1487a9e4c640dc7467aaa543d6c0097c391dc8ac74eb313f2fbf9d7a7cb5"}, - {file = "black-26.1.0-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:d62d14ca31c92adf561ebb2e5f2741bf8dea28aef6deb400d49cca011d186c68"}, - {file = "black-26.1.0-cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:fb1dafbbaa3b1ee8b4550a84425aac8874e5f390200f5502cf3aee4a2acb2f14"}, - {file = "black-26.1.0-cp311-cp311-win_amd64.whl", hash = "sha256:101540cb2a77c680f4f80e628ae98bd2bd8812fb9d72ade4f8995c5ff019e82c"}, - {file = "black-26.1.0-cp311-cp311-win_arm64.whl", hash = "sha256:6f3977a16e347f1b115662be07daa93137259c711e526402aa444d7a88fdc9d4"}, - {file = "black-26.1.0-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:6eeca41e70b5f5c84f2f913af857cf2ce17410847e1d54642e658e078da6544f"}, - {file = "black-26.1.0-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:dd39eef053e58e60204f2cdf059e2442e2eb08f15989eefe259870f89614c8b6"}, - {file = "black-26.1.0-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:9459ad0d6cd483eacad4c6566b0f8e42af5e8b583cee917d90ffaa3778420a0a"}, - {file = "black-26.1.0-cp312-cp312-win_amd64.whl", hash = "sha256:a19915ec61f3a8746e8b10adbac4a577c6ba9851fa4a9e9fbfbcf319887a5791"}, - {file = "black-26.1.0-cp312-cp312-win_arm64.whl", hash = "sha256:643d27fb5facc167c0b1b59d0315f2674a6e950341aed0fc05cf307d22bf4954"}, - {file = "black-26.1.0-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:ba1d768fbfb6930fc93b0ecc32a43d8861ded16f47a40f14afa9bb04ab93d304"}, - {file = "black-26.1.0-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:2b807c240b64609cb0e80d2200a35b23c7df82259f80bef1b2c96eb422b4aac9"}, - {file = "black-26.1.0-cp313-cp313-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:1de0f7d01cc894066a1153b738145b194414cc6eeaad8ef4397ac9abacf40f6b"}, - {file = "black-26.1.0-cp313-cp313-win_amd64.whl", hash = "sha256:91a68ae46bf07868963671e4d05611b179c2313301bd756a89ad4e3b3db2325b"}, - {file = "black-26.1.0-cp313-cp313-win_arm64.whl", hash = "sha256:be5e2fe860b9bd9edbf676d5b60a9282994c03fbbd40fe8f5e75d194f96064ca"}, - {file = "black-26.1.0-cp314-cp314-macosx_10_15_x86_64.whl", hash = "sha256:9dc8c71656a79ca49b8d3e2ce8103210c9481c57798b48deeb3a8bb02db5f115"}, - {file = "black-26.1.0-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:b22b3810451abe359a964cc88121d57f7bce482b53a066de0f1584988ca36e79"}, - {file = "black-26.1.0-cp314-cp314-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:53c62883b3f999f14e5d30b5a79bd437236658ad45b2f853906c7cbe79de00af"}, - {file = "black-26.1.0-cp314-cp314-win_amd64.whl", hash = "sha256:f016baaadc423dc960cdddf9acae679e71ee02c4c341f78f3179d7e4819c095f"}, - {file = "black-26.1.0-cp314-cp314-win_arm64.whl", hash = "sha256:66912475200b67ef5a0ab665011964bf924745103f51977a78b4fb92a9fc1bf0"}, - {file = "black-26.1.0-py3-none-any.whl", hash = "sha256:1054e8e47ebd686e078c0bb0eaf31e6ce69c966058d122f2c0c950311f9f3ede"}, - {file = "black-26.1.0.tar.gz", hash = "sha256:d294ac3340eef9c9eb5d29288e96dc719ff269a88e27b396340459dd85da4c58"}, + {file = "black-26.3.1-cp310-cp310-macosx_10_9_x86_64.whl", hash = "sha256:86a8b5035fce64f5dcd1b794cf8ec4d31fe458cf6ce3986a30deb434df82a1d2"}, + {file = "black-26.3.1-cp310-cp310-macosx_11_0_arm64.whl", hash = "sha256:5602bdb96d52d2d0672f24f6ffe5218795736dd34807fd0fd55ccd6bf206168b"}, + {file = "black-26.3.1-cp310-cp310-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:6c54a4a82e291a1fee5137371ab488866b7c86a3305af4026bdd4dc78642e1ac"}, + {file = "black-26.3.1-cp310-cp310-win_amd64.whl", hash = "sha256:6e131579c243c98f35bce64a7e08e87fb2d610544754675d4a0e73a070a5aa3a"}, + {file = "black-26.3.1-cp310-cp310-win_arm64.whl", hash = "sha256:5ed0ca58586c8d9a487352a96b15272b7fa55d139fc8496b519e78023a8dab0a"}, + {file = "black-26.3.1-cp311-cp311-macosx_10_9_x86_64.whl", hash = "sha256:28ef38aee69e4b12fda8dba75e21f9b4f979b490c8ac0baa7cb505369ac9e1ff"}, + {file = "black-26.3.1-cp311-cp311-macosx_11_0_arm64.whl", hash = "sha256:bf9bf162ed91a26f1adba8efda0b573bc6924ec1408a52cc6f82cb73ec2b142c"}, + {file = "black-26.3.1-cp311-cp311-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:474c27574d6d7037c1bc875a81d9be0a9a4f9ee95e62800dab3cfaadbf75acd5"}, + {file = "black-26.3.1-cp311-cp311-win_amd64.whl", hash = "sha256:5e9d0d86df21f2e1677cc4bd090cd0e446278bcbbe49bf3659c308c3e402843e"}, + {file = "black-26.3.1-cp311-cp311-win_arm64.whl", hash = "sha256:9a5e9f45e5d5e1c5b5c29b3bd4265dcc90e8b92cf4534520896ed77f791f4da5"}, + {file = "black-26.3.1-cp312-cp312-macosx_10_13_x86_64.whl", hash = "sha256:b5e6f89631eb88a7302d416594a32faeee9fb8fb848290da9d0a5f2903519fc1"}, + {file = "black-26.3.1-cp312-cp312-macosx_11_0_arm64.whl", hash = "sha256:41cd2012d35b47d589cb8a16faf8a32ef7a336f56356babd9fcf70939ad1897f"}, + {file = "black-26.3.1-cp312-cp312-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:0f76ff19ec5297dd8e66eb64deda23631e642c9393ab592826fd4bdc97a4bce7"}, + {file = "black-26.3.1-cp312-cp312-win_amd64.whl", hash = "sha256:ddb113db38838eb9f043623ba274cfaf7d51d5b0c22ecb30afe58b1bb8322983"}, + {file = "black-26.3.1-cp312-cp312-win_arm64.whl", hash = "sha256:dfdd51fc3e64ea4f35873d1b3fb25326773d55d2329ff8449139ebaad7357efb"}, + {file = "black-26.3.1-cp313-cp313-macosx_10_13_x86_64.whl", hash = "sha256:855822d90f884905362f602880ed8b5df1b7e3ee7d0db2502d4388a954cc8c54"}, + {file = "black-26.3.1-cp313-cp313-macosx_11_0_arm64.whl", hash = "sha256:8a33d657f3276328ce00e4d37fe70361e1ec7614da5d7b6e78de5426cb56332f"}, + {file = "black-26.3.1-cp313-cp313-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:f1cd08e99d2f9317292a311dfe578fd2a24b15dbce97792f9c4d752275c1fa56"}, + {file = "black-26.3.1-cp313-cp313-win_amd64.whl", hash = "sha256:c7e72339f841b5a237ff14f7d3880ddd0fc7f98a1199e8c4327f9a4f478c1839"}, + {file = "black-26.3.1-cp313-cp313-win_arm64.whl", hash = "sha256:afc622538b430aa4c8c853f7f63bc582b3b8030fd8c80b70fb5fa5b834e575c2"}, + {file = "black-26.3.1-cp314-cp314-macosx_10_15_x86_64.whl", hash = "sha256:2d6bfaf7fd0993b420bed691f20f9492d53ce9a2bcccea4b797d34e947318a78"}, + {file = "black-26.3.1-cp314-cp314-macosx_11_0_arm64.whl", hash = "sha256:f89f2ab047c76a9c03f78d0d66ca519e389519902fa27e7a91117ef7611c0568"}, + {file = "black-26.3.1-cp314-cp314-manylinux2014_x86_64.manylinux_2_17_x86_64.manylinux_2_28_x86_64.whl", hash = "sha256:b07fc0dab849d24a80a29cfab8d8a19187d1c4685d8a5e6385a5ce323c1f015f"}, + {file = "black-26.3.1-cp314-cp314-win_amd64.whl", hash = "sha256:0126ae5b7c09957da2bdbd91a9ba1207453feada9e9fe51992848658c6c8e01c"}, + {file = "black-26.3.1-cp314-cp314-win_arm64.whl", hash = "sha256:92c0ec1f2cc149551a2b7b47efc32c866406b6891b0ee4625e95967c8f4acfb1"}, + {file = "black-26.3.1-py3-none-any.whl", hash = "sha256:2bd5aa94fc267d38bb21a70d7410a89f1a1d318841855f698746f8e7f51acd1b"}, + {file = "black-26.3.1.tar.gz", hash = "sha256:2c50f5063a9641c7eed7795014ba37b0f5fa227f3d408b968936e24bc0566b07"}, ] [package.dependencies] @@ -457,13 +457,13 @@ mypy-extensions = ">=0.4.3" packaging = ">=22.0" pathspec = ">=1.0.0" platformdirs = ">=2" -pytokens = ">=0.3.0" +pytokens = ">=0.4.0,<0.5.0" [package.extras] colorama = ["colorama (>=0.4.3)"] d = ["aiohttp (>=3.10)"] jupyter = ["ipython (>=7.8.0)", "tokenize-rt (>=3.2.0)"] -uvloop = ["uvloop (>=0.15.2)"] +uvloop = ["uvloop (>=0.15.2) ; sys_platform != \"win32\"", "winloop (>=0.5.0) ; sys_platform == \"win32\""] [[package]] name = "boto3" diff --git a/pyproject.toml b/pyproject.toml index 95ae0766..89a4553a 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -62,7 +62,7 @@ lxml = "^6.0.2" [tool.poetry.group.dev.dependencies] bandit = "^1.9.4" -black = "^26.1.0" +black = "^26.3.1" coverage = { extras = ["toml"], version = "^7.13" } dj-inmemorystorage = "^2.1.0" factory-boy = "^3.2.0" From 1d6c4c59894f2f5b8ffc6bf1c0ea83d51ad0520c Mon Sep 17 00:00:00 2001 From: Sam Onaisi Date: Fri, 13 Mar 2026 14:57:10 +0100 Subject: [PATCH 7/8] lock --- poetry.lock | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/poetry.lock b/poetry.lock index 0250430b..7edf4b7b 100644 --- a/poetry.lock +++ b/poetry.lock @@ -1010,11 +1010,11 @@ description = "Cross-platform colored terminal text." optional = false python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7" groups = ["main", "dev"] +markers = "platform_system == \"Windows\" or sys_platform == \"win32\"" files = [ {file = "colorama-0.4.6-py2.py3-none-any.whl", hash = "sha256:4f1d9991f5acc0ca119f9d443620b77f9d6b33703e51011c16baf57afb285fc6"}, {file = "colorama-0.4.6.tar.gz", hash = "sha256:08695f5cb7ed6e0531a20572697297273c47b8cae5a63ffc6d6ed5c201be6e44"}, ] -markers = {main = "sys_platform == \"win32\" or platform_system == \"Windows\"", dev = "platform_system == \"Windows\" or sys_platform == \"win32\""} [[package]] name = "coverage" @@ -5341,4 +5341,4 @@ type = ["pytest-mypy"] [metadata] lock-version = "2.1" python-versions = "~3.13" -content-hash = "de8eef5e9d8d3ce20ff516bad9050aed9d33a00bca7e127c59b9187b2342d523" +content-hash = "ba8c11f118dc46087443bc8c53f304532450e14167caba9d6107f1e0f38709bc" From a68d18edbba1b2d81041ca8503c342483ba3dd0f Mon Sep 17 00:00:00 2001 From: Sam Onaisi Date: Fri, 13 Mar 2026 15:06:00 +0100 Subject: [PATCH 8/8] lint and format --- projects/settings/base.py | 4 ++-- projects/settings/local.py | 4 ++-- projects/settings/production.py | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/projects/settings/base.py b/projects/settings/base.py index 396b387f..5a5bf425 100644 --- a/projects/settings/base.py +++ b/projects/settings/base.py @@ -348,7 +348,7 @@ "AUTH_HEADER_TYPES": ("Bearer", "JWT", "Invite", "Service"), "USER_ID_FIELD": "keycloak_account__keycloak_id", "USER_ID_CLAIM": "sub", - "TOKEN_TYPE_CLAIM": "typ", + "TOKEN_TYPE_CLAIM": "typ", # nosec "AUTH_TOKEN_CLASSES": ("apps.accounts.authentication.BearerToken",), "ALGORITHM": "RS256", "VERIFYING_KEY": KEYCLOAK_PUBLIC_KEY, @@ -656,7 +656,7 @@ "client_email": "lpi-accounts@lpi-accounts-391112.iam.gserviceaccount.com", "client_id": "111578588399348351692", "auth_uri": "https://accounts.google.com/o/oauth2/auth", - "token_uri": "https://oauth2.googleapis.com/token", + "token_uri": "https://oauth2.googleapis.com/token", # nosec "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs", "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/lpi-accounts%40lpi-accounts-391112.iam.gserviceaccount.com", } diff --git a/projects/settings/local.py b/projects/settings/local.py index 91382127..779f55bd 100644 --- a/projects/settings/local.py +++ b/projects/settings/local.py @@ -21,7 +21,7 @@ "OPTIONS": { "endpoint_url": "http://localhost:9000", "access_key": "minioadmin", - "secret_key": "minioadmin", + "secret_key": "minioadmin", # nosec "bucket_name": "projects", "proxies": {"http": "http://minio:9000"}, "default_acl": None, @@ -68,7 +68,7 @@ "AUTH_HEADER_TYPES": ("Bearer", "JWT", "Invite", "Service"), "USER_ID_FIELD": "keycloak_account__keycloak_id", "USER_ID_CLAIM": "sub", - "TOKEN_TYPE_CLAIM": "typ", + "TOKEN_TYPE_CLAIM": "typ", # nosec "AUTH_TOKEN_CLASSES": ("apps.accounts.authentication.BearerToken",), "ALGORITHM": "RS256", "VERIFYING_KEY": KEYCLOAK_PUBLIC_KEY, diff --git a/projects/settings/production.py b/projects/settings/production.py index 4e28d297..11c93d40 100644 --- a/projects/settings/production.py +++ b/projects/settings/production.py @@ -23,7 +23,7 @@ "client_email": "lpi-accounts@lpi-accounts-357713.iam.gserviceaccount.com", "client_id": "100628103603802804718", "auth_uri": "https://accounts.google.com/o/oauth2/auth", - "token_uri": "https://oauth2.googleapis.com/token", + "token_uri": "https://oauth2.googleapis.com/token", # nosec "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs", "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/lpi-accounts%40lpi-accounts-357713.iam.gserviceaccount.com", }