ba3062b654
rm copy
2025-03-04 10:01:45 +01:00
cc5133a5e4
clean up
2025-03-04 09:59:55 +01:00
0aec26705f
clean up
2025-03-03 21:31:58 +01:00
efa924613a
refactor: Extract version verification into reusable function in patch_test.go
2025-03-03 21:14:01 +01:00
1045dc169b
refactor: Improve version verification comments in patch test
2025-03-03 21:13:59 +01:00
84f4b5cd78
test: Add TODO comments for version verification in patch test
2025-03-03 21:12:38 +01:00
fc48cff153
fix: Implement atomic file write with temporary file in PatchWheel
2025-03-03 21:10:11 +01:00
4afaf98324
refactor: Improve wheel patching with TODO comment and minor code cleanup
2025-03-03 21:10:08 +01:00
bc1b339f6a
rename patchwheel to patch.go
2025-03-03 21:01:26 +01:00
c3b659c5e3
extract parse.go
2025-03-03 21:00:50 +01:00
97109ec438
test: Modify writeProjectFiles to handle errors internally in tests
2025-03-03 20:58:28 +01:00
ea5690eb67
refactor: Remove commented-out code and improve test setup comment
2025-03-03 20:58:27 +01:00
5689d6f7c2
formatting & clean up
2025-03-03 20:53:43 +01:00
613d38d79d
fix: Validate wheel metadata version and distribution against filename
2025-03-03 20:50:46 +01:00
19b330be01
fix: Resolve variable redeclaration issues in PatchWheel function
2025-03-03 20:49:25 +01:00
f5530d9ed4
feat: Enhance wheel filename parsing and add target wheel existence check
2025-03-03 20:48:37 +01:00
43be8ea727
refactor: Simplify wheel filename parsing and remove unused imports
2025-03-03 20:45:53 +01:00
a7e10066ca
feat: Add idempotency to PatchWheel and extract version from wheel filename
2025-03-03 20:42:22 +01:00
8d041437c7
refactor: Replace deprecated SetModTime with Modified field
2025-03-03 20:38:17 +01:00
040bd32424
fix: Remove duplicate import of 'os' in patchwheel_test.go
2025-03-03 20:38:14 +01:00
6babde4ae5
refactor: Update deprecated Go constructs to modern Go 1.24 practices
2025-03-03 20:37:05 +01:00
c8daa445b1
wip; add 2 digits after seconds; check outpout; use -q
2025-03-03 20:34:44 +01:00
010f88f84e
Added a warning when `config` section is used in apps ( #2416 )
...
## Changes
Added a warning when `config` section is used in apps
## Why
To avoid the confusion between using apps in DABs and outside of DABs,
we want to provide only one way of configuring apps runtime
configuration - by using `app.yml` file in the root of the app.
## Tests
Added acceptance tests
2025-03-03 16:40:28 +00:00
3888654ac6
Initial version
2025-03-03 17:25:12 +01:00
8b7e0ba683
test: Lock setuptools version in TestDefaultPython test ( #2421 )
...
## Changes
Lock setuptools version to 75.8.2 (latest as of March 3, 2025)
## Why
As part of the tests `uv install` was installing latest version of
setuptools which led to all tests started to fail on Feb 25 when 75.8.1
setuptools version was released and which changed the naming of the
output built artifacts
https://setuptools.pypa.io/en/stable/history.html#v75-8-1
This change prevents us from breakages like this.
## Tests
Existing tests pass
2025-03-03 15:53:58 +00:00
86d7606304
refactor: improve test command execution with runCmd and captureOutput helpers
2025-03-03 16:51:02 +01:00
8b91c207db
fix: Correct variable name in runCmd and update venv path in test
2025-03-03 16:50:43 +01:00
9c58b2eeaa
refactor: update tests to use t.TempDir(), uv, and pyproject.toml
2025-03-03 16:44:14 +01:00
c0cd244e22
refactor: Add context import and TODOs for test improvements
2025-03-03 16:44:05 +01:00
3b07265113
Restrict same name libraries check for only whl and jar types ( #2401 )
...
## Changes
Same name libraries check only valid for local libraries. Local
libraries are only supported for Whl and Jar types. Hence we can
restrict matching pattern only to these libraries.
## Tests
Existing acceptance tests pass
2025-03-03 15:34:41 +00:00
5276a5b461
refactor: Move version parsing logic from parseMetadata to caller
2025-03-03 16:20:01 +01:00
64e7ad779a
refactor: Add context import and comment for version parsing in patchwheel.go
2025-03-03 16:19:54 +01:00
174db9432c
feat: add context parameter to PatchWheel function
2025-03-03 16:17:29 +01:00
fd8f65a9da
refactor: Simplify version parsing and add logging in PatchWheel
2025-03-03 16:17:13 +01:00
c814e86cf4
refactor: use constant for "Name:" prefix in metadata parsing
2025-03-03 16:13:52 +01:00
b9357fa8d2
refactor: simplify Name field parsing in parseMetadata function
2025-03-03 16:13:14 +01:00
8bcf9ac2fe
clean up
2025-03-03 16:12:32 +01:00
965b250d89
refactor: simplify version parsing in parseMetadata function
2025-03-03 16:06:49 +01:00
cfbe899116
wip
2025-03-03 16:05:18 +01:00
807a37b36a
Add the `auth.EnvVars` function ( #2403 )
...
## Changes
This PR adds the auth.EnvVars function, which is a list of all
environment variables that the SDK uses to read auth configuration.
This is useful for spawning subprocesses since you can unset all auth
environment variables to clean up the environment before configuring the
auth.
It's used in #2278 today and will also be useful for the `databricks
bundle exec` command.
## Tests
Unit test.
2025-03-03 14:58:43 +00:00
5c146ca57a
Synchronize logging in cmdio ( #2418 )
...
## Changes
Add mutex synchronization in cmdio logger Log() method.
## Why
Since we issue multiple calls to underlying writer, we should lock the
whole method, otherwise we can get broken messages. One that can be
easily reproduced today is
```
hyperfine -m 100 --show-output 'go test ./acceptance -run ^TestAccept$/^bundle$/^artifacts$/^whl_multiple$ -count=1'
...
-Uploading my_test_code-0.0.1-py3-none-any.whl...
-Uploading my_test_code_2-0.0.1-py3-none-any.whl...
+Uploading my_test_code-0.0.1-py3-none-any.whl...Uploading my_test_code_2-0.0.1-py3-none-any.whl...
Error: Command terminated with non-zero exit code 1 in benchmark iteration 54. Use the '-i'/'--ignore-failure' option if you want to ignore this. Alternatively, use the '--show-output' option to debug what went wrong.
```
An alternative could be to prepare a message fully in a local buffer and
write it in one call (I’m assuming underlying writer is still
synchronized). However, that’s more complicated and unclear if it’s
worth it, perf-wise.
## Tests
With this change I’m running the same hyperfine command with 1000
iterations with no failures.
2025-03-03 13:42:43 +00:00
e4cd782852
Remove bundle.{Parallel,ReadOnlyBundle} ( #2414 )
...
## Changes
- Remove bundle.Parallel & bundle.ReadOnlyBundle.
- Add bundle.ApplyParallel, as a helper to migrate from bundle.Parallel.
- Keep ReadOnlyMutator as a separate type but it's now a subtype of
Mutator so it works on regular *Bundle. Having it as a separate type
prevents non-readonly mutators being passed to ApplyParallel
- validate.Validate becomes a function (was Mutator).
## Why
This a follow up to #2390 where we removed most of the tools to
construct chains of mutators. Same motivation applies here.
When it comes to read-only bundles, it's a leaky abstraction -- since
it's a shallow copy, it does not actually guarantee or enforce readonly
access to bundle. A better approach would be to run parallel operations
on independent narrowly-focused deep-copied structs, with just enough
information to carry out the task (this is not implemented here, but the
eventual goal). Now that we can just write regular code in phases and
not limited to mutator interface, we can switch to that approach.
## Tests
Existing tests.
---------
Co-authored-by: shreyas-goenka <88374338+shreyas-goenka@users.noreply.github.com>
2025-03-03 13:35:36 +00:00
2c5b61538d
acc: Prevent regex in test.toml from consuming too much ( #2417 )
...
The original regex can consume both lines and sometimes it does.
2025-03-03 12:55:52 +00:00
25a7e0a72b
Do not use `.MustString()` in auth interpolation warning ( #2412 )
...
## Why
Addresses post merge feedback from
https://github.com/databricks/cli/pull/2399#discussion_r1975091730
## Tests
N/A
2025-03-03 12:03:46 +00:00
8f8f24c3a9
Convert python wheel tests to acceptance ( #2396 )
...
## Changes
Rewrite bundle/tests/python_wheel_test.go into acceptance tests. The
same configs are used, but the test now runs 'bundle deploy' and in
addition to checking the files on the file system, also checks that the
files were uploaded and records jobs/create request.
There is a new test helper bin/find.py which filters out paths based on
regex, asserts on number of expected results. I've added it because
'find' on Windows behaves differently, so this helps avoid
cross-platform differences.
2025-03-03 11:09:25 +00:00
03e4bb2575
Update warning for includes outside root to only mention databricks.yml ( #2411 )
...
## Why
Addresses feedback from this thread:
https://github.com/databricks/cli/pull/2389#discussion_r1975760462 .
2025-03-03 09:21:39 +00:00
b95662c18e
build(deps): bump docker/setup-qemu-action from 3.3.0 to 3.6.0 ( #2410 )
...
Bumps
[docker/setup-qemu-action](https://github.com/docker/setup-qemu-action )
from 3.3.0 to 3.6.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/setup-qemu-action/releases ">docker/setup-qemu-action's
releases</a>.</em></p>
<blockquote>
<h2>v3.6.0</h2>
<ul>
<li>Display binfmt version by <a
href="https://github.com/crazy-max "><code>@crazy-max</code></a> in <a
href="https://redirect.github.com/docker/setup-qemu-action/pull/202 ">docker/setup-qemu-action#202</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-qemu-action/compare/v3.5.0...v3.6.0 ">https://github.com/docker/setup-qemu-action/compare/v3.5.0...v3.6.0 </a></p>
<h2>v3.5.0</h2>
<ul>
<li>Bump <code>@docker/actions-toolkit</code> from 0.54.0 to 0.56.0 in
<a
href="https://redirect.github.com/docker/setup-qemu-action/pull/205 ">docker/setup-qemu-action#205</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-qemu-action/compare/v3.4.0...v3.5.0 ">https://github.com/docker/setup-qemu-action/compare/v3.4.0...v3.5.0 </a></p>
<h2>v3.4.0</h2>
<ul>
<li>Bump <code>@docker/actions-toolkit</code> from 0.49.0 to 0.54.0 in
<a
href="https://redirect.github.com/docker/setup-qemu-action/pull/193 ">docker/setup-qemu-action#193</a>
<a
href="https://redirect.github.com/docker/setup-qemu-action/pull/197 ">docker/setup-qemu-action#197</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/docker/setup-qemu-action/compare/v3.3.0...v3.4.0 ">https://github.com/docker/setup-qemu-action/compare/v3.3.0...v3.4.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="29109295f8https://redirect.github.com/docker/setup-qemu-action/issues/202 ">#202</a>
from crazy-max/binfmt-version</li>
<li><a
href="7ffe24aa9a17bc18bb055964de0df5https://redirect.github.com/docker/setup-qemu-action/issues/205 ">#205</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="862b6633f8138de3b6464574d27a47https://redirect.github.com/docker/setup-qemu-action/issues/195 ">#195</a>
from radarhere/patch-1</li>
<li><a
href="7a38281c35https://redirect.github.com/docker/setup-qemu-action/issues/197 ">#197</a>
from docker/dependabot/npm_and_yarn/docker/actions-to...</li>
<li><a
href="7a1c63f9e52825a1268f53851d1459...29109295f8https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=docker/setup-qemu-action&package-manager=github_actions&previous-version=3.3.0&new-version=3.6.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-03 08:53:36 +00:00
44eb875fca
build(deps): bump actions/upload-artifact from 4.6.0 to 4.6.1 ( #2408 )
...
Bumps
[actions/upload-artifact](https://github.com/actions/upload-artifact )
from 4.6.0 to 4.6.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/upload-artifact/releases ">actions/upload-artifact's
releases</a>.</em></p>
<blockquote>
<h2>v4.6.1</h2>
<h2>What's Changed</h2>
<ul>
<li>Update to use artifact 2.2.2 package by <a
href="https://github.com/yacaovsnc "><code>@yacaovsnc</code></a> in <a
href="https://redirect.github.com/actions/upload-artifact/pull/673 ">actions/upload-artifact#673</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/upload-artifact/compare/v4...v4.6.1 ">https://github.com/actions/upload-artifact/compare/v4...v4.6.1 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4cec3d8aa0https://redirect.github.com/actions/upload-artifact/issues/673 ">#673</a>
from actions/yacaovsnc/artifact_2.2.2</li>
<li><a
href="e9fad966ccb26fd06e9d65c4c4a1dd...4cec3d8aa0https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=4.6.0&new-version=4.6.1 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-03 08:52:47 +00:00
ab5c21176b
build(deps): bump golangci/golangci-lint-action from 6.2.0 to 6.5.0 ( #2409 )
...
Bumps
[golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action )
from 6.2.0 to 6.5.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/golangci/golangci-lint-action/releases ">golangci/golangci-lint-action's
releases</a>.</em></p>
<blockquote>
<h2>v6.5.0</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>feat: verify with the JSONSchema by default by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1171 ">golangci/golangci-lint-action#1171</a></li>
</ul>
<h3>Dependencies</h3>
<ul>
<li>build(deps): bump <code>@octokit/request-error</code> from 5.1.0 to
5.1.1 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1169 ">golangci/golangci-lint-action#1169</a></li>
<li>build(deps): bump <code>@octokit/endpoint</code> from 9.0.5 to
9.0.6 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1170 ">golangci/golangci-lint-action#1170</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golangci/golangci-lint-action/compare/v6.4.1...v6.5.0 ">https://github.com/golangci/golangci-lint-action/compare/v6.4.1...v6.5.0 </a></p>
<h2>v6.4.1</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>fix: use config arg for verify by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1168 ">golangci/golangci-lint-action#1168</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golangci/golangci-lint-action/compare/v6.4.0...v6.4.1 ">https://github.com/golangci/golangci-lint-action/compare/v6.4.0...v6.4.1 </a></p>
<h2>v6.4.0</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>chore: extract patch related code by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1166 ">golangci/golangci-lint-action#1166</a></li>
<li>feat: add an option to verify with the JSONSchema by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1167 ">golangci/golangci-lint-action#1167</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golangci/golangci-lint-action/compare/v6.3.3...v6.4.0 ">https://github.com/golangci/golangci-lint-action/compare/v6.3.3...v6.4.0 </a></p>
<h2>v6.3.3</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>fix: go.mod parsing by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1165 ">golangci/golangci-lint-action#1165</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/golangci/golangci-lint-action/compare/v6.3.2...v6.3.3 ">https://github.com/golangci/golangci-lint-action/compare/v6.3.2...v6.3.3 </a></p>
<h2>v6.3.2</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<h3>Changes</h3>
<ul>
<li>fix: path patch by <a
href="https://github.com/ldez "><code>@ldez</code></a> in <a
href="https://redirect.github.com/golangci/golangci-lint-action/pull/1162 ">golangci/golangci-lint-action#1162</a></li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="2226d7cb068d744d5b7fhttps://redirect.github.com/golangci/golangci-lint-action/issues/1171 ">#1171</a>)</li>
<li><a
href="0e58f8e7abhttps://redirect.github.com/golangci/golangci-lint-action/issues/1170 ">#1170</a>)</li>
<li><a
href="6a3fb764d5https://redirect.github.com/golangci/golangci-lint-action/issues/1169 ">#1169</a>)</li>
<li><a
href="696fa5c0e780284ede25818ec4d51a1c50240be2https://redirect.github.com/golangci/golangci-lint-action/issues/1168 ">#1168</a>)</li>
<li><a
href="0adbc47a59f7463c56f6https://redirect.github.com/golangci/golangci-lint-action/issues/1167 ">#1167</a>)</li>
<li>Additional commits viewable in <a
href="ec5d18412c...2226d7cb06https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=6.2.0&new-version=6.5.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-03 08:50:37 +00:00
3fc74ddf06
build(deps): bump actions/setup-python from 5.3.0 to 5.4.0 ( #2407 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python )
from 5.3.0 to 5.4.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/actions/setup-python/releases ">actions/setup-python's
releases</a>.</em></p>
<blockquote>
<h2>v5.4.0</h2>
<h2>What's Changed</h2>
<h3>Enhancements:</h3>
<ul>
<li>Update cache error message by <a
href="https://github.com/aparnajyothi-y "><code>@aparnajyothi-y</code></a>
in <a
href="https://redirect.github.com/actions/setup-python/pull/968 ">actions/setup-python#968</a></li>
<li>Enhance Workflows: Add Ubuntu-24, Remove Python 3.8 by <a
href="https://github.com/priya-kinthali "><code>@priya-kinthali</code></a>
in <a
href="https://redirect.github.com/actions/setup-python/pull/985 ">actions/setup-python#985</a></li>
<li>Configure Dependabot settings by <a
href="https://github.com/HarithaVattikuti "><code>@HarithaVattikuti</code></a>
in <a
href="https://redirect.github.com/actions/setup-python/pull/1008 ">actions/setup-python#1008</a></li>
</ul>
<h3>Documentation changes:</h3>
<ul>
<li>Readme update - recommended permissions by <a
href="https://github.com/benwells "><code>@benwells</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/1009 ">actions/setup-python#1009</a></li>
<li>Improve Advanced Usage examples by <a
href="https://github.com/lrq3000 "><code>@lrq3000</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/645 ">actions/setup-python#645</a></li>
</ul>
<h3>Dependency updates:</h3>
<ul>
<li>Upgrade <code>undici</code> from 5.28.4 to 5.28.5 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/1012 ">actions/setup-python#1012</a></li>
<li>Upgrade <code>urllib3</code> from 1.25.9 to 1.26.19 in
/<strong>tests</strong>/data by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/895 ">actions/setup-python#895</a></li>
<li>Upgrade <code>actions/publish-immutable-action</code> from 0.0.3 to
0.0.4 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/1014 ">actions/setup-python#1014</a></li>
<li>Upgrade <code>@actions/http-client</code> from 2.2.1 to 2.2.3 by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/1020 ">actions/setup-python#1020</a></li>
<li>Upgrade <code>requests</code> from 2.24.0 to 2.32.2 in
/<strong>tests</strong>/data by <a
href="https://github.com/dependabot "><code>@dependabot</code></a> in <a
href="https://redirect.github.com/actions/setup-python/pull/1019 ">actions/setup-python#1019</a></li>
<li>Upgrade <code>@actions/cache</code> to <code>^4.0.0</code> by <a
href="https://github.com/priyagupta108 "><code>@priyagupta108</code></a>
in <a
href="https://redirect.github.com/actions/setup-python/pull/1007 ">actions/setup-python#1007</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/benwells "><code>@benwells</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/setup-python/pull/1009 ">actions/setup-python#1009</a></li>
<li><a
href="https://github.com/HarithaVattikuti "><code>@HarithaVattikuti</code></a>
made their first contribution in <a
href="https://redirect.github.com/actions/setup-python/pull/1008 ">actions/setup-python#1008</a></li>
<li><a href="https://github.com/lrq3000 "><code>@lrq3000</code></a> made
their first contribution in <a
href="https://redirect.github.com/actions/setup-python/pull/645 ">actions/setup-python#645</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/actions/setup-python/compare/v5...v5.4.0 ">https://github.com/actions/setup-python/compare/v5...v5.4.0 </a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="42375524e2https://redirect.github.com/actions/setup-python/issues/645 ">#645</a>)</li>
<li><a
href="709bfa58bahttps://redirect.github.com/actions/setup-python/issues/1019 ">#1019</a>)</li>
<li><a
href="ceb20b242dhttps://redirect.github.com/actions/setup-python/issues/1020 ">#1020</a>)</li>
<li><a
href="0dc2d2cf0chttps://redirect.github.com/actions/setup-python/issues/1014 ">#1014</a>)</li>
<li><a
href="feb9c6e7c6https://redirect.github.com/actions/setup-python/issues/895 ">#895</a>)</li>
<li><a
href="d0b4fc497ahttps://redirect.github.com/actions/setup-python/issues/1012 ">#1012</a>)</li>
<li><a
href="e3dfaac0fdhttps://redirect.github.com/actions/setup-python/issues/1008 ">#1008</a>)</li>
<li><a
href="b8cf3eb1ebhttps://redirect.github.com/actions/setup-python/issues/1007 ">#1007</a>)</li>
<li><a
href="1928ae624dhttps://redirect.github.com/actions/setup-python/issues/1009 ">#1009</a>)</li>
<li><a
href="3fddbee787https://redirect.github.com/actions/setup-python/issues/985 ">#985</a>)</li>
<li>Additional commits viewable in <a
href="0b93645e9f...42375524e2https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-python&package-manager=github_actions&previous-version=5.3.0&new-version=5.4.0 )](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-03-03 08:47:47 +00:00
Denis Bilenko
Andrew Nester
shreyas-goenka
dependabot[bot]