Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

build(deps): bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.0#122

Merged
mergify[bot] merged 1 commit intomaininstructlab/eval:mainfrom
dependabot/github_actions/pypa/gh-action-pypi-publish-1.10.0instructlab/eval:dependabot/github_actions/pypa/gh-action-pypi-publish-1.10.0Copy head branch name to clipboard
Sep 3, 2024
Merged

build(deps): bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.0#122
mergify[bot] merged 1 commit intomaininstructlab/eval:mainfrom
dependabot/github_actions/pypa/gh-action-pypi-publish-1.10.0instructlab/eval:dependabot/github_actions/pypa/gh-action-pypi-publish-1.10.0Copy head branch name to clipboard

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 2, 2024

Bumps pypa/gh-action-pypi-publish from 1.9.0 to 1.10.0.

Release notes

Sourced from pypa/gh-action-pypi-publish's releases.

v1.10.0

🔏 Anything fancy, eh?

This time, @​woodruffw💰 implemented support for PEP 740 attestations functionality in #236 and #245. This is a big deal, as it is a huge step forward to replacing what the deprecated GPG signatures used to provide in a more meaningful way.

🙏 Please, thank William for working on this amazing improvement for the ecosystem! The overall effort is tracked @ pypi/warehouse#15871, by the way.

🪞 Full Diff: pypa/gh-action-pypi-publish@v1.9.0...v1.10.0

🧔‍♂️ Release Manager: @​webknjaz 🇺🇦

Commits
  • 8a08d61 Expose PEP 740 attestations functionality
  • fb9fc6a Merge pull request #245 from trail-of-forks/ww/bump-twine
  • 4d020ff requirements: re-compile requirements with latest twine
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.0
7ddff27 
Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases)
- [Commits](pypa/gh-action-pypi-publish@ec4db0b...8a08d61)

---
updated-dependencies:
- dependency-name: pypa/gh-action-pypi-publish
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Sep 2, 2024
@mergify mergify bot added the CI/CD Affects CI/CD configuration label Sep 2, 2024
@mergify mergify bot added the one-approval label Sep 3, 2024
@mergify mergify bot merged commit cd16f11 into main Sep 3, 2024
@mergify mergify bot removed the one-approval label Sep 3, 2024
@dependabot dependabot bot deleted the dependabot/github_actions/pypa/gh-action-pypi-publish-1.10.0 branch September 3, 2024 21:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

2 more reviewers

@danmcp danmcp danmcp approved these changes

@nathan-weinberg nathan-weinberg nathan-weinberg approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

CI/CD Affects CI/CD configuration dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@danmcp @nathan-weinberg

Comments

Close sidebar
Morty Proxy This is a proxified and sanitized view of the page, visit original site.