Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Pending Approval

These branches will be created by Renovate only once you click their checkbox below.

• chore(deps): update actions/checkout action to v4
• chore(deps): update actions/setup-python action to v5
• chore(deps): update aws-actions/amazon-ecr-login action to v2
• chore(deps): update aws-actions/configure-aws-credentials action to v4
• chore(deps): update dependency coveralls to v4
• chore(deps): update dependency pytest to v8
• chore(deps): update dependency pytest-cov to v6
• chore(deps): update dependency pytest-env to v1
• chore(deps): update getsentry/action-github-app-token action to v3
• chore(deps): update github/codeql-action action to v3
• fix(deps): update dependency environs to v14
• fix(deps): update dependency flask to v3
• fix(deps): update dependency gevent to v25
• 🔐 Create all pending approval PRs at once 🔐

Other Branches

These updates are pending. To force PRs open, click the checkbox below.

• fix(deps): update dependency requests to v2.32.4 [security]

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• fix(deps): update dependency gunicorn to v23 [security]
• chore(deps): update python:3.12-alpine3.20 docker digest to 25849f9
• chore(deps): update all non-major github action dependencies (actions/cache, actions/checkout, actions/setup-python, aws-actions/configure-aws-credentials, cds-snc/backstage-catalog-info-helper-action, github/codeql-action, ossf/scorecard-action, peter-evans/create-pull-request, python)
• fix(deps): update all patch dependencies (PyYAML, freezegun, pytest-env, pytest-mock)
• fix(deps): update all minor dependencies (gevent, mypy, newrelic, notifications-utils, poethepoet, pycryptodome, pytest, python, python-dotenv, requests-mock, ruff, types-requests)
• chore(deps): lock file maintenance
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

docker-compose

.devcontainer/docker-compose.yml

dockerfile

.devcontainer/Dockerfile

• mcr.microsoft.com/vscode/devcontainers/python 1-3.12

ci/Dockerfile

• python 3.12-alpine3.20@sha256:5049c050bdc68575a10bcb1885baa0689b6c15152d8a56a7e399fb49f783bf98

github-actions

.github/workflows/backstage-catalog-helper.yml

• actions/checkout b4ffde65f46336ab88eb53be808477a3936bae11
• cds-snc/backstage-catalog-info-helper-action v0.3.1
• peter-evans/create-pull-request v7.0.3@6cd32fd93684475c31847837f87bb135d40a2b79

.github/workflows/codeql.yml

• actions/checkout v3.6.0@f43a0e5ff2bd294095638e18286ca9a3d1956744
• github/codeql-action v2.26.9@d97ba04b39135f37e9d60c84a6995bb18b7ac328
• github/codeql-action v2.26.9@d97ba04b39135f37e9d60c84a6995bb18b7ac328
• github/codeql-action v2.26.9@d97ba04b39135f37e9d60c84a6995bb18b7ac328

.github/workflows/docker-vulnerability-scan.yml

• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f

.github/workflows/docker.yaml

• actions/checkout v3.6.0@f43a0e5ff2bd294095638e18286ca9a3d1956744
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• getsentry/action-github-app-token v2.0.0@97c9e23528286821f97fba885c1b1123284b29cc
• cds-snc/notification-pr-bot main
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f

.github/workflows/export_github_data.yml

• cds-snc/dns-proxy-action main
• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• cds-snc/github-repository-metadata-exporter main

.github/workflows/ossf-scorecard.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• ossf/scorecard-action 169c9b9248e36d400bebded8160c7fe2cbbc7762
• cds-snc/sentinel-forward-data-action main

.github/workflows/push.yml

• actions/checkout v3.6.0@f43a0e5ff2bd294095638e18286ca9a3d1956744
• actions/setup-python v4.8.0@b64ffcaf5b410884ad320a9cfac8866006a109aa
• actions/cache v4.2.0@1bd1e32a3bdc45362d1e726936510720a7c30a57
• cds-snc/notification-utils 52.0.16@f8de0602f5aa34ef1e62691c94b7d0764568f423
• python 3.12

.github/workflows/s3-backup.yml

• actions/checkout v4.2.2@11bd71901bbe5b1630ceea73d27597364c9af683
• aws-actions/configure-aws-credentials v4.1.0@ececac1a45f3b08a01d2dd070d28d111c5fe6722

pep621

pyproject.toml

• poetry-core >=1.7.1

poetry

pyproject.toml

• python ~3.12.7
• aws-xray-sdk ^2.14.0
• awscli-cwlogs 1.4.6
• environs ^11.2.1
• Flask 2.3.3
• Flask-Env 2.0.0
• gevent 24.2.1
• gunicorn 22.0.0
• newrelic 10.3.0
• notifications-utils 53.0.1
• pycryptodome *
• python-dotenv 1.0.1
• python-magic 0.4.27
• PyYAML 6.0.1
• requests *
• coveralls 1.11.1
• freezegun 1.5.1
• jinja2-cli 0.8.2
• monkeytype 23.3.0
• mypy 1.0.1
• poethepoet ^0.24.4
• pytest 7.2.0
• pytest-cov 3.0.0
• pytest-env 0.8.1
• pytest-mock 3.14.0
• requests-mock 1.10.0
• ruff ^0.8.2
• types-requests 2.28.11

renovate-config-presets

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository