summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Bump slsa-framework/slsa-github-generator from 1.5.0 to 1.6.0HEADmaindependabot[bot]2023-05-151-1/+1
| | | | | | | | | | | | | | | Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.5.0 to 1.6.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.5.0...v1.6.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Use trusted publishing for PyPIWilliam Woodruff2023-05-141-4/+2
|
* Fix multi-frame Zstandard response decodingRogdham2023-05-143-2/+27
|
* Update mypy to 1.3.0 (#3025)Hasan Ramezani2023-05-111-1/+1
|
* Document common 2.0 upgrading issuesQuentin Pradet2023-05-083-3/+90
| | | Co-authored-by: Nate Prewitt <nate.prewitt@gmail.com>
* Release 2.0.22.0.2Seth Michael Larson2023-05-033-7/+9
|
* Reflect removal of `strict` in the 2.0.0 changelogIllia Volochii2023-05-031-1/+2
|
* Continue reading the response stream if there is buffered decompressed dataSeth Michael Larson2023-05-033-1/+53
|
* Show urllib3.request() in README (#3006)Franek Magiera2023-05-021-2/+1
| | | Since version 2.0 a top level request method can be used for HTTP calls.
* Fix flaky test_ssl_failure_midway_through_connThomas Grainger2023-04-301-14/+12
|
* Release 2.0.12.0.1Seth Michael Larson2023-04-304-3/+11
|
* Improve assert_fingerprint changelog and testsQuentin Pradet2023-04-293-30/+32
|
* Fix HTTPResponse.read(0) when underlying buffer is empty (#2998)Quentin Pradet2023-04-293-1/+7
|
* Ensure SSLSocket is closed after failure verifying cert hostname or fingerprintThomas Grainger2023-04-293-28/+65
|
* Delete 0002-Stop-relying-on-removed-DEFAULT_CIPHERS.patch (#2996)Thomas Grainger2023-04-282-35/+0
|
* Release 2.0.02.0.0Seth Michael Larson2023-04-264-70/+61
|
* Remove outdated sponsorship tiersSeth Michael Larson2023-04-261-39/+2
|
* Release 2.0.0a42.0.0a4Seth Michael Larson2023-04-257-6/+10
|
* Bump actions/setup-python from 4.5.0 to 4.6.0dependabot[bot]2023-04-244-6/+6
| | | | | | | | | | | | | | Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.5.0 to 4.6.0. - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/d27e3f3d7c64b4bbf8e4abfb9b63b83e846e0435...57ded4d7d5e986d7296eab16560982c6dd7c923b) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump github/codeql-action from 2.2.9 to 2.3.0dependabot[bot]2023-04-241-3/+3
| | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.9 to 2.3.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/04df1262e6247151b5ac09cd2c303ac36ad3f62b...b2c19fb9a2a485599ccf4ed5d65527d94bc57226) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Fix InsecureRequestWarning warnings in test suiteThomas Grainger2023-04-245-10/+20
| | | Co-authored-by: Seth Michael Larson <sethmichaellarson@gmail.com>
* Add backoff jitter to Retry (#2952)Tom McTiernan2023-04-243-5/+45
|
* Remove last requests patchQuentin Pradet2023-04-232-43/+0
|
* Fix io_refs bug with pyopenssl.WrappedSocket and ↵Thomas Grainger2023-04-224-28/+91
| | | | securetransport.WrappedSocket.close()
* Remove dummy setup.py file (#2976)Thomas Grainger2023-04-216-64/+3
| | | GitHub Actions is dropping support for Python 2.7, making this difficult to test. Thankfully, Python 2.7 only accounts for 4% of our total downloads. The share of users using an ancient pip is probably even smaller.
* Pin virtualenv to fix Python 2.7 CI (#2977)Thomas Grainger2023-04-211-1/+6
|
* Fix 'ssl_version' option deprecated warningThomas Grainger2023-04-184-12/+50
|
* Remove id-token permission from SLSA build partlaurentsimon2023-04-181-4/+2
|
* Run coverage step even if some jobs have failedQuentin Pradet2023-04-182-8/+1
| | | | | | | We often have transient failures that don't affect coverage, and knowing the current coverage even with failures is useful. We also removed an unused codecov.yml file.
* Fix test_ssl_object_attributesThomas Grainger2023-04-151-2/+5
| | | Co-authored-by: Seth Michael Larson <sethmichaellarson@gmail.com>
* Bump Ubuntu version in integration testsQuentin Pradet2023-04-141-1/+1
| | | Ubuntu 18.04 is gone: https://github.blog/changelog/2022-08-09-github-actions-the-ubuntu-18-04-actions-runner-image-is-being-deprecated-and-will-be-removed-by-12-1-22/
* Remove the 'pool' deprecation warning from test suiteThomas Grainger2023-04-142-3/+2
|
* Update mypy to 1.2.0Hasan Ramezani2023-04-134-5/+5
|
* Avoid distutils deprecation warning by dropping pytest-freezegunThomas Grainger2023-04-123-4/+5
|
* Fixed coverage regression when zstd >= 0.20 is installedTAHRI Ahmed R2023-03-311-0/+9
|
* Add dependency-name: * to Dependabot ignoreSeth Michael Larson2023-03-281-1/+2
|
* Change the pip install for urllib3 2.0 to a working examplewim glenn2023-03-271-1/+1
|
* Bump github/codeql-action from 2.2.7 to 2.2.9dependabot[bot]2023-03-271-3/+3
| | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.7 to 2.2.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/168b99b3c22180941ae7dbdd5f5c9678ede476ba...04df1262e6247151b5ac09cd2c303ac36ad3f62b) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump actions/checkout from 3.4.0 to 3.5.0dependabot[bot]2023-03-277-9/+9
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.4.0 to 3.5.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/24cb9080177205b6e8c946b17badbe402adc938f...8f4b7f84864484a7bf31766abe9204da3cbe65b3) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump pypa/gh-action-pypi-publish from 1.8.1 to 1.8.3dependabot[bot]2023-03-271-1/+1
| | | | | | | | | | | | | | Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.1 to 1.8.3. - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](https://github.com/pypa/gh-action-pypi-publish/compare/a3a3bafbb3e5a75a854ae1bc53ae128cf22c4af4...48b317d84d5f59668bb13be49d1697e36b3ad009) --- updated-dependencies: - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump pypa/gh-action-pypi-publish from 1.7.1 to 1.8.1dependabot[bot]2023-03-251-1/+1
| | | | | | | | | | | | | | Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.7.1 to 1.8.1. - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](https://github.com/pypa/gh-action-pypi-publish/compare/22b4d1f12511f2696162c08546dafbaa903448a2...a3a3bafbb3e5a75a854ae1bc53ae128cf22c4af4) --- updated-dependencies: - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump actions/checkout from 3.2.0 to 3.4.0dependabot[bot]2023-03-257-9/+9
| | | | | | | | | | | | | | | Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.4.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/755da8c3cf115ac066823e79a1e1788f8940201b...24cb9080177205b6e8c946b17badbe402adc938f) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump github/codeql-action from 2.2.5 to 2.2.7dependabot[bot]2023-03-181-3/+3
| | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/32dc499307d133bb5085bae78498c0ac2cf762d5...168b99b3c22180941ae7dbdd5f5c9678ede476ba) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump github/codeql-action from 2.2.5 to 2.2.6dependabot[bot]2023-03-181-3/+3
| | | | | | | | | | | | | | | Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.6. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/32dc499307d133bb5085bae78498c0ac2cf762d5...16964e90ba004cdf0cd845b866b5df21038b7723) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
* Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.7.1dependabot[bot]2023-03-181-1/+1
| | | | | | | | | | | | | | Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.6.4 to 1.7.1. - [Release notes](https://github.com/pypa/gh-action-pypi-publish/releases) - [Commits](https://github.com/pypa/gh-action-pypi-publish/compare/c7f29f7adef1a245bd91520e94867e5c6eedddcc...22b4d1f12511f2696162c08546dafbaa903448a2) --- updated-dependencies: - dependency-name: pypa/gh-action-pypi-publish dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
* Skip resource warnings in tests checking non-deprecated TLS versions Illia Volochii2023-03-181-2/+2
|
* Add 1.26.15 release to mainSeth Michael Larson2023-03-101-0/+8
|
* Use the default attestation nameSeth Michael Larson2023-03-071-1/+0
|
* Update mypy to 1.1.1Hasan Ramezani2023-03-072-2/+2
|
* Bump slsa-framework/slsa-github-generator from 1.4.0 to 1.5.0dependabot[bot]2023-03-061-1/+1
| | | | | | | | | | | | | | | Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
View Lorry Controller Status