josh/gh-audit issues and pull requests

#114 - Use ubuntu-24.04-arm

Issue - State: closed - Opened by josh 12 days ago

#113 - Lock Actions OS

Issue - State: closed - Opened by josh 19 days ago

#112 - Bump wrapt from 1.17.1 to 1.17.2

Pull Request - State: closed - Opened by dependabot[bot] 22 days ago
Labels: dependencies, python

#111 - Bump wrapt from 1.17.0 to 1.17.1

Pull Request - State: closed - Opened by dependabot[bot] 25 days ago
Labels: dependencies, python

#110 - Bump ruff from 0.8.4 to 0.9.1

Pull Request - State: closed - Opened by dependabot[bot] 25 days ago
Labels: dependencies, python

#109 - Bump mypy from 1.14.0 to 1.14.1

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago
Labels: dependencies, python

#108 - Branch Rulesets

Issue - State: closed - Opened by josh about 1 month ago
Labels: bug

#107 - Rework PAT rules

Issue - State: closed - Opened by josh about 1 month ago

#106 - cachix over magic-nix-cache-action

Issue - State: closed - Opened by josh about 1 month ago

#105 - Ensure job timeouts on private repo

Issue - State: closed - Opened by josh about 1 month ago

#104 - Bump astral-sh/setup-uv from 4 to 5

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, github_actions

#103 - Bump urllib3 from 2.2.3 to 2.3.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, python

#102 - Bump mypy from 1.13.0 to 1.14.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, python

#101 - Bump click from 8.1.7 to 8.1.8

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, python

#100 - Disable missing-shfmt/shellcheck when treefmt is used

Issue - State: closed - Opened by josh about 2 months ago
Labels: bug

#99 - Bump certifi from 2024.8.30 to 2024.12.14

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, python

#98 - Bump cryptography from 43.0.3 to 44.0.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, python

#97 - Bump pyjwt from 2.10.0 to 2.10.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, python

#96 - Bump astral-sh/setup-uv from 3 to 4

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, github_actions

#95 - Bump ruff from 0.7.0 to 0.8.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, python

#94 - Bump wrapt from 1.16.0 to 1.17.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago
Labels: dependencies, python

#93 - Bump deprecated from 1.2.14 to 1.2.15

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#92 - Bump pyjwt from 2.9.0 to 2.10.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#91 - Bump pygithub from 2.4.0 to 2.5.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#90 - Bump mypy from 1.12.1 to 1.13.0

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago
Labels: dependencies, python

#89 - Rule: flake.nix should set up Renovate

Issue - State: closed - Opened by josh 4 months ago
Labels: enhancement

#88 - Bump ruff from 0.6.9 to 0.7.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#87 - Bump mypy from 1.12.0 to 1.12.1

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#86 - Bump cryptography from 43.0.1 to 43.0.3

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#85 - Tag stable projects

Issue - State: closed - Opened by josh 4 months ago

#84 - Bump mypy from 1.11.2 to 1.12.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#83 - Projects without types-* don't need to ignore Dependabot types-*

Issue - State: closed - Opened by josh 4 months ago

#82 - Slow down ruff upgrades

Issue - State: closed - Opened by josh 4 months ago

#81 - Bump ruff from 0.6.8 to 0.6.9

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#80 - Bump charset-normalizer from 3.3.2 to 3.4.0

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#79 - astral-sh/setup-uv replaces setup-python

Issue - State: closed - Opened by josh 4 months ago

#78 - Bump ruff from 0.6.5 to 0.6.8

Pull Request - State: closed - Opened by dependabot[bot] 4 months ago
Labels: dependencies, python

#77 - Rule: Avoid requests

Issue - State: closed - Opened by josh 4 months ago

#76 - Ignore forks

Issue - State: closed - Opened by josh 4 months ago

#75 - Bump ruff from 0.6.4 to 0.6.5

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#74 - Bump urllib3 from 2.2.2 to 2.2.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#73 - Bump idna from 3.8 to 3.10

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#72 - Bump astral-sh/setup-uv from 2 to 3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#71 - Weekly Dependabot schedule

Issue - State: closed - Opened by josh 5 months ago

#70 - devenv

Issue - State: closed - Opened by josh 5 months ago

#69 - Bump cffi from 1.17.0 to 1.17.1

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#68 - Bump ruff from 0.6.3 to 0.6.4

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#67 - Bump astral-sh/setup-uv from 1 to 2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, github_actions

#66 - git push requires write permission

Issue - State: closed - Opened by josh 5 months ago
Labels: bug

#65 - uv.lock

Issue - State: closed - Opened by josh 5 months ago
Labels: question

#64 - Standarize auto-merge workflow

Issue - State: closed - Opened by josh 5 months ago

#63 - Use Dependabot fetch-metadata

Issue - State: closed - Opened by josh 5 months ago

#62 - Required status checks

Issue - State: closed - Opened by josh 5 months ago

#61 - Restrict reusable workflow permissions

Issue - State: closed - Opened by josh 5 months ago

#60 - Restrict default workflow permissions

Issue - State: closed - Opened by josh 5 months ago - 2 comments

#59 - Use astral-sh/setup-uv

Issue - State: closed - Opened by josh 5 months ago

#58 - Bump cryptography from 43.0.0 to 43.0.1 in the pip group

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#57 - Configure Renovate

Pull Request - State: closed - Opened by renovate[bot] 5 months ago - 1 comment

#56 - Bump certifi from 2024.7.4 to 2024.8.30

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#55 - Bump ruff from 0.6.2 to 0.6.3

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#54 - Bump idna from 3.7 to 3.8

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#53 - Bump pygithub from 2.3.0 to 2.4.0

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#52 - Bump mypy from 1.11.1 to 1.11.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#51 - Bump ruff from 0.6.1 to 0.6.2

Pull Request - State: closed - Opened by dependabot[bot] 5 months ago
Labels: dependencies, python

#50 - Bump ruff from 0.6.0 to 0.6.1

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#50 - Bump ruff from 0.6.0 to 0.6.1

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#49 - Bump pyyaml from 6.0.1 to 6.0.2

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#48 - Bump ruff from 0.5.5 to 0.6.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#47 - Bump cffi from 1.16.0 to 1.17.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#46 - Bump pyjwt from 2.8.0 to 2.9.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#45 - Bump mypy from 1.10.1 to 1.11.1

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#44 - Bump ruff from 0.5.1 to 0.5.5

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#43 - Bump cryptography from 42.0.8 to 43.0.0

Pull Request - State: closed - Opened by dependabot[bot] 6 months ago
Labels: dependencies, python

#42 - Decide how to handle uv.lock files

Issue - State: closed - Opened by josh 7 months ago - 1 comment

#42 - Decide how to handle uv.lock files

Issue - State: closed - Opened by josh 7 months ago - 1 comment

#41 - Rule against specific rule

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#40 - Rule: Set UV_SYSTEM_PYTHON in Codespace secrets

Issue - State: closed - Opened by josh 7 months ago

#39 - Rule: Don't run on push and pull_request

Issue - State: closed - Opened by josh 7 months ago

#38 - Use gh token

Issue - State: closed - Opened by josh 7 months ago

#37 - Add nix config

Issue - State: closed - Opened by josh 7 months ago

#36 - Allow sorting by rule rather than repository

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#35 - Bump ruff from 0.5.0 to 0.5.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies, python

#34 - Audit requests usage

Issue - State: closed - Opened by josh 7 months ago

#33 - Rule: Ensure uv pip install is always against requirements.txt

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#32 - Rule: Skip "Push changes" step if nothing changed

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#31 - Rule: Avoid .devcontainers

Issue - State: closed - Opened by josh 7 months ago - 1 comment
Labels: enhancement

#30 - Rule: Secrets aren't exposed as environment variables to setup steps

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#29 - Bump certifi from 2024.6.2 to 2024.7.4 in the pip group

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#28 - Util: Detect if gh-pages is enabled

Issue - State: closed - Opened by josh 7 months ago - 3 comments
Labels: enhancement

#27 - Bump mypy from 1.10.0 to 1.10.1

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#26 - Bump ruff from 0.4.8 to 0.5.0

Pull Request - State: closed - Opened by dependabot[bot] 7 months ago
Labels: dependencies

#25 - Rule: Normalize python optional dependencies groups

Issue - State: closed - Opened by josh 7 months ago
Labels: enhancement

#24 - Bump urllib3 from 2.2.1 to 2.2.2 in the pip group

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#23 - Rule: Jobs that use git push should have concurrency group set

Issue - State: closed - Opened by josh 8 months ago
Labels: enhancement

#22 - Rule: Use python-version from pyproject.toml

Issue - State: closed - Opened by josh 8 months ago
Labels: enhancement

#21 - Bump typing-extensions from 4.12.0 to 4.12.2

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#20 - Bump certifi from 2024.2.2 to 2024.6.2

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#19 - Bump cryptography from 42.0.7 to 42.0.8

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#18 - Bump ruff from 0.4.7 to 0.4.8

Pull Request - State: closed - Opened by dependabot[bot] 8 months ago
Labels: dependencies

#17 - Rule: Repository size

Issue - State: closed - Opened by josh 8 months ago
Labels: enhancement

GitHub / josh/gh-audit issues and pull requests