From 50cce1649e03758227d5cdf0d0cdeb558aa4e76e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 13 Oct 2023 14:59:05 +0100
Subject: [PATCH] Bump pip-licenses from 3.5.5 to 4.3.3 (#187)
Bumps [pip-licenses](https://github.com/raimon49/pip-licenses) from
3.5.5 to 4.3.3.
Release notes
Sourced from pip-licenses's
releases.
4.3.3
- Always terminate
--allow-only and
--fail-on messages with a newline
- Always terminate files created with
--output-file with
a newline
4.3.2
- Better handling extracting URLs from
Project-URL
4.3.1
- Fix to treat package names as normalized as in PEP 503 with
--packages and --ignore-packages option
4.3.0
- Implement new option
--no-version
4.2.0
- Implement new option
--with-maintainers
- Implement new option
--python
- Allow version spec in
--ignore-packages parameters
- When the
Author field is UNKNOWN, the
output is automatically completed from Author-email
- When the
home-page field is UNKNOWN, the
output is automatically completed from Project-URL
4.1.0
- Support case-insensitive license name matching around
--fail-on and --allow-only parameters
4.0.3
- Escape unicode output (to e.g.
&[#123](https://github.com/raimon49/pip-licenses/issues/123);)
in the html output
4.0.2
- Add type annotations and code formatter
4.0.1
- Fix "pip-licenses" is missing in output of
pip-licenses --with-system option
4.0.0
- Support for Python 3.11
- Dropped support Python 3.7
- Migrate Docker base image from Alpine to Debian 11-slim
- Breaking changes
- Does not work with PTable and depends on prettytable
- Depend on importlib_metadata rather than pip
Changelog
Sourced from pip-licenses's
changelog.
4.3.3
- Always terminate
--allow-only and
--fail-on messages with a newline
- Always terminate files created with
--output-file with
a newline
4.3.2
- Better handling extracting URLs from
Project-URL
4.3.1
- Fix to treat package names as normalized as in PEP 503 with
--packages and --ignore-packages option
4.3.0
- Implement new option
--no-version
4.2.0
- Implement new option
--with-maintainers
- Implement new option
--python
- Allow version spec in
--ignore-packages parameters
- When the
Author field is UNKNOWN, the
output is automatically completed from Author-email
- When the
home-page field is UNKNOWN, the
output is automatically completed from Project-URL
4.1.0
- Support case-insensitive license name matching around
--fail-on and --allow-only parameters
4.0.3
- Escape unicode output (to e.g.
&[#123](https://github.com/raimon49/pip-licenses/issues/123);)
in the html output
4.0.2
- Add type annotations and code formatter
4.0.1
- Fix "pip-licenses" is missing in output of
pip-licenses --with-system option
4.0.0
- Support for Python 3.11
- Dropped support Python 3.7
- Migrate Docker base image from Alpine to Debian 11-slim
- Breaking changes
- Does not work with PTable and depends on prettytable
- Depend on importlib_metadata rather than pip
Commits
8a4b453
Merge pull request #173
from raimon49/release-4.3.3985fbca
Bump version to 4.3.3629a433
Terminate --allow-only and --fail-on messages with a newlinec1d5e6c
Merge pull request #170
from raimon49/dependabot/pip/cryptography-41.0.3a6454fb
Bump cryptography from 41.0.2 to 41.0.3d49aea3
Merge pull request #169
from raimon49/dependabot/pip/certifi-2023.7.2296158b8
Bump certifi from 2022.12.7 to 2023.7.22549c95a
Merge pull request #168
from raimon49/dependabot/pip/pygments-2.15.0619d074
Bump pygments from 2.13.0 to 2.15.01d01e74
Merge pull request #167
from raimon49/dependabot/pip/cryptography-41.0.2- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
poetry.lock | 40 +++++++++++++++++++++++++++++-----------
pyproject.toml | 2 +-
2 files changed, 30 insertions(+), 12 deletions(-)
diff --git a/poetry.lock b/poetry.lock
index dbe91746a..54b63210a 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -810,20 +810,20 @@ files = [
[[package]]
name = "pip-licenses"
-version = "3.5.5"
+version = "4.3.3"
description = "Dump the software license list of Python packages installed with pip."
optional = false
-python-versions = "~=3.7"
+python-versions = "~=3.8"
files = [
- {file = "pip-licenses-3.5.5.tar.gz", hash = "sha256:748cfd7aca6e05032f9fa85691301295f4d943e87955be6914ca49abe3c075a4"},
- {file = "pip_licenses-3.5.5-py3-none-any.whl", hash = "sha256:6129c116bab2b202d90d6e3a96092df4ad84c0c4d57bb70192fc03f8bf06d181"},
+ {file = "pip-licenses-4.3.3.tar.gz", hash = "sha256:d14447094135eb5e43e4d9e1e3bcdb17a05751a9199df2d07f043a542c241c7a"},
+ {file = "pip_licenses-4.3.3-py3-none-any.whl", hash = "sha256:1b697cace3149d7d380307bb1f1e0505f0db98f25fada64d32b7e6240f37f72c"},
]
[package.dependencies]
-PTable = "*"
+prettytable = ">=2.3.0"
[package.extras]
-test = ["docutils", "pytest-cov", "pytest-pycodestyle", "pytest-runner"]
+test = ["docutils", "mypy", "pytest-cov", "pytest-pycodestyle", "pytest-runner"]
[[package]]
name = "pkgutil-resolve-name"
@@ -896,15 +896,22 @@ pyyaml = ">=5.1"
virtualenv = ">=20.10.0"
[[package]]
-name = "ptable"
-version = "0.9.2"
+name = "prettytable"
+version = "3.9.0"
description = "A simple Python library for easily displaying tabular data in a visually appealing ASCII table format"
optional = false
-python-versions = "*"
+python-versions = ">=3.8"
files = [
- {file = "PTable-0.9.2.tar.gz", hash = "sha256:aa7fc151cb40f2dabcd2275ba6f7fd0ff8577a86be3365cd3fb297cbe09cc292"},
+ {file = "prettytable-3.9.0-py3-none-any.whl", hash = "sha256:a71292ab7769a5de274b146b276ce938786f56c31cf7cea88b6f3775d82fe8c8"},
+ {file = "prettytable-3.9.0.tar.gz", hash = "sha256:f4ed94803c23073a90620b201965e5dc0bccf1760b7a7eaf3158cab8aaffdf34"},
]
+[package.dependencies]
+wcwidth = "*"
+
+[package.extras]
+tests = ["pytest", "pytest-cov", "pytest-lazy-fixture"]
+
[[package]]
name = "pycodestyle"
version = "2.7.0"
@@ -1524,6 +1531,17 @@ platformdirs = ">=3.9.1,<4"
docs = ["furo (>=2023.7.26)", "proselint (>=0.13)", "sphinx (>=7.1.2)", "sphinx-argparse (>=0.4)", "sphinxcontrib-towncrier (>=0.2.1a0)", "towncrier (>=23.6)"]
test = ["covdefaults (>=2.3)", "coverage (>=7.2.7)", "coverage-enable-subprocess (>=1)", "flaky (>=3.7)", "packaging (>=23.1)", "pytest (>=7.4)", "pytest-env (>=0.8.2)", "pytest-freezer (>=0.4.8)", "pytest-mock (>=3.11.1)", "pytest-randomly (>=3.12)", "pytest-timeout (>=2.1)", "setuptools (>=68)", "time-machine (>=2.10)"]
+[[package]]
+name = "wcwidth"
+version = "0.2.8"
+description = "Measures the displayed width of unicode strings in a terminal"
+optional = false
+python-versions = "*"
+files = [
+ {file = "wcwidth-0.2.8-py2.py3-none-any.whl", hash = "sha256:77f719e01648ed600dfa5402c347481c0992263b81a027344f3e1ba25493a704"},
+ {file = "wcwidth-0.2.8.tar.gz", hash = "sha256:8705c569999ffbb4f6a87c6d1b80f324bd6db952f5eb0b95bc07517f4c1813d4"},
+]
+
[[package]]
name = "wrapt"
version = "1.15.0"
@@ -1626,4 +1644,4 @@ testing = ["big-O", "jaraco.functools", "jaraco.itertools", "more-itertools", "p
[metadata]
lock-version = "2.0"
python-versions = "^3.8"
-content-hash = "7f758aa4e651a02823e645d006e6c341d77285d41cb275aec7be0a36c2ac74bc"
+content-hash = "544d102238a0217bdb896ca2f08c32a3ce3bb39178b497d9af5eec41481b07f2"
diff --git a/pyproject.toml b/pyproject.toml
index 0c3870d96..550ea8a7c 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -39,7 +39,7 @@ cfn-lint = "^0.77.10"
[tool.poetry.dev-dependencies]
flake8 = "^3.7.9"
black = "^19.10b0"
-pip-licenses = "^3.5.3"
+pip-licenses = "^4.3.3"
jinja2 = "^2.11.1"
[tool.poetry.scripts]