MLE-26598 Merging master to dev, bumping pytest#133
Conversation
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.18.8 to 1.18.9. - [Release notes](https://github.com/sparklemotion/nokogiri/releases) - [Changelog](https://github.com/sparklemotion/nokogiri/blob/main/CHANGELOG.md) - [Commits](sparklemotion/nokogiri@v1.18.8...v1.18.9) --- updated-dependencies: - dependency-name: nokogiri dependency-version: 1.18.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
…ri-1.18.9 Bump nokogiri from 1.18.8 to 1.18.9 in /docs
Merge 1.3.0 into master
Bumps [rexml](https://github.com/ruby/rexml) from 3.3.9 to 3.4.2. - [Release notes](https://github.com/ruby/rexml/releases) - [Changelog](https://github.com/ruby/rexml/blob/master/NEWS.md) - [Commits](ruby/rexml@v3.3.9...v3.4.2) --- updated-dependencies: - dependency-name: rexml dependency-version: 3.4.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
MLE-26598 Merge release/1.3.1 into master
|
Copyright Validation Results ⏭️ Skipped (Excluded) Files
✅ All files have valid copyright headers! |
There was a problem hiding this comment.
Pull request overview
This PR upgrades the Python development environment and test dependencies to address security vulnerabilities. The minimum Python version is bumped from 3.9 to 3.10 to support pytest 9, which resolves a high-severity vulnerability in pytest 7.
Changes:
- Upgraded pytest from version 7.4.0 to 9.0.2 to address security vulnerability
- Bumped minimum Python version from 3.9 to 3.10 to support pytest 9
- Incremented package version from 1.3.0 to 1.3.1
Reviewed changes
Copilot reviewed 2 out of 3 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| pyproject.toml | Updated Python version requirement, pytest version, and package version |
| CONTRIBUTING.md | Updated Java requirement from "8 or higher" to "17" |
| Before running any tests, first deploy the test application: | ||
|
|
||
| - Use Java 8 or higher | ||
| - Use Java 17 |
There was a problem hiding this comment.
The Java version requirement change from 'Java 8 or higher' to 'Java 17' is not mentioned in the PR description or title. This appears to be an unrelated change that should either be removed from this PR or documented in the description explaining why the Java version requirement is being updated.
| - Use Java 17 | |
| - Use Java 8 or higher |
pytest 7 has a high vulnerability, though it's a test dependency. This bumps it to the latest version. Also bumping the Python version needed for development to 3.10 to support pytest 9.
rjrudin
force-pushed
the
feature/pytest-bump
branch
from
2e00af9 to
61bd288
Compare
2 participants
pytest 7 has a high vulnerability, though it's a test dependency. This bumps it to the latest version. Also bumping the Python version needed for development to 3.10 to support pytest 9.