Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Repository problems

These problems occurred while renovating this repository. View logs.

• WARN: Unexpected range error

Pending Approval

These branches will be created by Renovate only once you click their checkbox below.

• chore(deps): update actions/cache action to v4
• chore(deps): update actions/checkout action to v4
• chore(deps): update actions/setup-python action to v5
• chore(deps): update actions/upload-artifact action to v4
• chore(deps): update aws-actions/amazon-ecr-login action to v2
• chore(deps): update aws-actions/configure-aws-credentials action to v4
• chore(deps): update dependency coveralls to v4
• chore(deps): update dependency cypress to v13
• chore(deps): update dependency flake8 to v7
• chore(deps): update dependency html-validate to v9
• chore(deps): update dependency moto to v5
• chore(deps): update dependency networkx to v3
• chore(deps): update dependency pytest to v8
• chore(deps): update dependency pytest-cov to v6
• chore(deps): update dependency pytest-env to v1
• chore(deps): update dependency pytest-xdist to v3
• chore(deps): update dependency types-mock to v5
• chore(deps): update dependency types-pytz to v2024
• chore(deps): update dorny/paths-filter action to v3
• chore(deps): update getsentry/action-github-app-token action to v3
• chore(deps): update github/codeql-action action to v3
• chore(deps): update mcr.microsoft.com/vscode/devcontainers/python docker tag to v1
• chore(deps): update postgres docker tag to v17
• chore(deps): update redis docker tag to v7
• fix(deps): update dependency aws-embedded-metrics to v3
• fix(deps): update dependency cypress-html-validate to v7
• fix(deps): update dependency environs to v11
• fix(deps): update dependency fido2 to v1
• fix(deps): update dependency flask to v3
• fix(deps): update dependency flask-marshmallow to v1
• fix(deps): update dependency flask-migrate to v4
• fix(deps): update dependency gevent to v24
• fix(deps): update dependency greenlet to v3
• fix(deps): update dependency jsonschema to v4
• fix(deps): update dependency markupsafe to v3
• fix(deps): update dependency marshmallow-sqlalchemy to v1
• fix(deps): update dependency more-itertools to v10
• fix(deps): update dependency notifications-python-client to v10
• fix(deps): update dependency pytz to v2024
• fix(deps): update dependency sqlalchemy to v2
• fix(deps): update dependency tldextract to v5
• 🔐 Create all pending approval PRs at once 🔐

Rate-Limited

These updates are currently rate-limited. Click on a checkbox below to force their creation now.

• chore(deps): update python:3.10-slim docker digest to bdc6c5b
• chore(deps): update all non-major github action dependencies (actions/cache, actions/checkout, actions/upload-artifact, aws-actions/configure-aws-credentials, cds-snc/notification-utils, github/codeql-action)
• 🔐 Create all rate-limited PRs at once 🔐

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

• fix(deps): update dependency werkzeug to v3.0.6 [security]
• chore(deps): update dependency black to v24 [security]
• fix(deps): update dependency gunicorn to v22 [security]
• fix(deps): update dependency idna to v3 [security]
• chore(deps): update python:3.10-alpine docker digest to 748b586
• chore(deps): update redis:6.2 docker digest to d74db71
• fix(deps): update flask-sqlalchemy digest to 3e3e92b
• fix(deps): update all patch dependencies (PyYAML, SQLAlchemy, cffi, mailparser, nodemailer, psycopg2-binary, pytest-mock-resources, snakeviz, types-boto, types-python-dateutil, types-redis, types-requests)
• fix(deps): update all minor dependencies (PyJWT, apig-wsgi, cachelib, certifi, click-datetime, flask-marshmallow, locust, marshmallow, newrelic, python)
• chore(deps): lock file maintenance
• Click on this checkbox to rebase all open PRs at once

Detected dependencies

devcontainer

.devcontainer/devcontainer.json

• ghcr.io/devcontainers/features/node 1

docker-compose

.devcontainer/docker-compose.yml

• postgres 11.22-bullseye@sha256:c886a3236b3d11abc302e64309186c90a69b49e53ccff23fd8c8b057b5b4bce9
• redis 6.2@sha256:7919fdd5300e7abf7ae95919e6f144b37c55df16553302dbbcc7495a5aa0c079

docker-compose.yml

• postgres 11.16@sha256:5d2aa4a7b5f9bdadeddcf87cf7f90a176737a02a30d917de4ab2e6a329bd2d45
• redis 6.2@sha256:7919fdd5300e7abf7ae95919e6f144b37c55df16553302dbbcc7495a5aa0c079

dockerfile

.devcontainer/Dockerfile

• mcr.microsoft.com/vscode/devcontainers/python 0-3.10@sha256:ef9cc483a593c95e1e83f2cf00b6a0e1ec7df43344416a41ccb3a88aef27beac

ci/Dockerfile

• python 3.10-alpine3.16@sha256:afe68972cc00883d70b3760ee0ffbb7375cf09706c122dda7063ffe64c5be21b

ci/Dockerfile.lambda

• python 3.10-slim@sha256:61912260e578182d00b5e163eb4cfb13b35fb8782c98d1df9ed584cec8939097

ci/Dockerfile.test

• python 3.10-alpine@sha256:7edffe5acc6a2c4c009fece2fbdc85f04fde4c8481202473b880ef3f8fbb2939

local/Dockerfile

• python 3.10-alpine@sha256:7edffe5acc6a2c4c009fece2fbdc85f04fde4c8481202473b880ef3f8fbb2939

tests-perf/ops/Dockerfile

• python 3.10-alpine3.16@sha256:afe68972cc00883d70b3760ee0ffbb7375cf09706c122dda7063ffe64c5be21b

github-actions

.github/workflows/ai-code-scanner.yml

• actions/checkout v3
• cds-snc/cds-ai-codereviewer main

.github/workflows/build_and_push_performance_test.yml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• dorny/paths-filter v2.12.0@7267a8516b6f92bdb098633497bad573efdbf271
• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7

.github/workflows/codeql.yml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• github/codeql-action v2.24.10@ffd3158cb9024ebd018dbf20756f28befbd168c7
• github/codeql-action v2.24.10@ffd3158cb9024ebd018dbf20756f28befbd168c7
• github/codeql-action v2.24.10@ffd3158cb9024ebd018dbf20756f28befbd168c7

.github/workflows/docker-vulnerability-scan.yml

• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f

.github/workflows/docker.yaml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• aws-actions/configure-aws-credentials master
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• cds-snc/terraform-tools-setup v1
• kota65535/github-openvpn-connect-action cd2ed8a90cc7b060dc4e001143e811b5f7ea0af5
• getsentry/action-github-app-token v1.0.6@38a3ce582e170ddfe8789f509597c6944f2292a9
• cds-snc/notification-pr-bot main
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f

.github/workflows/lambda_production.yml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7
• cds-snc/security-tools v3.2.0@34794baf2af592913bb5b51d8df4f8d0acc49b6f

.github/workflows/lambda_staging.yml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• aws-actions/configure-aws-credentials v2.2.0@5fd3084fc36e372ff1fff382a39b10d03659f355
• aws-actions/amazon-ecr-login v1.7.1@5a88a04c91d5c6f97aae0d9be790e64d9b1d47b7

.github/workflows/performance.yml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• actions/setup-python v4.8.0@b64ffcaf5b410884ad320a9cfac8866006a109aa
• actions/cache v3.3.3@e12d46a63a90f2fae62d114769bbf2a179198b5c

.github/workflows/secret.yaml

• actions/checkout main
• cdssnc/seekret-github-action sha256:0aee6df949373ef6df26d35f6207b56f897ddd1caa030646d7421b0afb717665

.github/workflows/shellcheck.yml

• actions/checkout v2.7.0@ee0669bd1cc54295c223e0bb666b733df41de1c5

.github/workflows/test.yaml

• actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
• actions/setup-python v4.8.0@b64ffcaf5b410884ad320a9cfac8866006a109aa
• actions/cache v3.3.3@e12d46a63a90f2fae62d114769bbf2a179198b5c
• actions/upload-artifact v3.1.3@a8a3f3ad30e3422c9c7b888a15615d19a852ae32
• cds-snc/notification-utils 52.4.0
• postgres 11.22-bullseye@sha256:c886a3236b3d11abc302e64309186c90a69b49e53ccff23fd8c8b057b5b4bce9

npm

tests_cypress/package.json

• cypress-axe ^1.4.0
• cypress-html-validate ^5.1.2
• cypress-recurse ^1.23.0
• imap-simple ^5.1.0
• jsonwebtoken ^9.0.0
• mailparser ^3.5.0
• nodemailer ^6.9.2
• axe-core ^4.10.0
• cypress ^12.16.0
• html-validate ^7.7.1

pep621

pyproject.toml

• poetry >=1.3.2

poetry

pyproject.toml

• python ~3.10.9
• apig-wsgi 2.18.0
• boto 2.49.0
• cffi 1.17.0
• celery 5.4.0
• docopt 0.6.2
• environs 9.5.0
• fido2 0.9.3
• Flask-Bcrypt 1.0.1
• Flask-Migrate 2.7.0
• Flask-SQLAlchemy 500e732dd1b975a56ab06a46bd1a20a21e682262
• Flask 2.3.3
• click-datetime 0.2
• gevent 23.9.1
• gunicorn 20.1.0
• iso8601 2.1.0
• jsonschema 3.2.0
• marshmallow-sqlalchemy 0.30.0
• marshmallow 3.22.0
• python-magic 0.4.27
• psycopg2-binary 2.9.9
• PyJWT 2.9.0
• pytz 2021.3
• PyYAML 6.0.1
• cachelib 0.12.0
• SQLAlchemy 1.4.52
• newrelic 10.3.0
• notifications-python-client 6.4.1
• python-dotenv 1.0.1
• pwnedpasswords 2.0.0
• tldextract 3.5.0
• nanoid 2.0.0
• unidecode 1.3.8
• more-itertools 8.14.0
• awscli-cwlogs 1.4.6
• aws-embedded-metrics 1.0.8
• Werkzeug 3.0.4
• MarkupSafe 2.1.5
• itsdangerous 2.2.0
• typing-extensions 4.12.2
• greenlet 2.0.2
• simple-salesforce ^1.12.3
• certifi ^2024.0.0
• idna 2.10
• flask-marshmallow 0.14.0
• aws-xray-sdk 2.14.0
• flake8 6.1.0
• gprof2dot 2024.6.6
• isort 5.13.2
• moto 4.2.14
• idna 2.10
• pytest 7.4.4
• pytest-env 0.8.2
• pytest-mock 3.14.0
• pytest-cov 3.0.0
• coveralls 3.3.1
• pytest-xdist 2.5.0
• freezegun 1.5.1
• requests-mock 1.12.1
• snakeviz 2.2.0
• strict-rfc3339 0.7
• rfc3987 1.3.8
• jinja2-cli 0.8.2
• black 23.12.1
• locust 2.31.3
• mypy 1.5
• sqlalchemy-stubs 0.4
• sqlalchemy2-stubs 0.0.2a38
• networkx 2.8.8
• pytest-mock-resources 2.12.0
• types-boto 2.49.18.9
• types-mock 4.0.15.2
• types-python-dateutil 2.9.0.20240316
• types-pytz 2022.7.1.2
• types-requests 2.32.0.20240712
• types-redis 4.6.0.20240425

---

• Check this box to trigger a request for Renovate to run again on this repository