{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":621903408,"defaultBranch":"main","name":"pywhy-stats","ownerLogin":"py-why","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2023-03-31T16:30:41.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/101266056?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1714972827.0","currentOid":""},"activityList":{"items":[{"before":"1f38270d94f614243b2ba64a2fa1b262174f1213","after":"17ce496193102072934747949260f50e97c5106c","ref":"refs/heads/gh-pages","pushedAt":"2024-06-18T06:06:05.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"adam2392","name":"Adam Li","path":"/adam2392","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/3460267?s=80&v=4"},"commit":{"message":"doc updates [skip ci]","shortMessageHtmlLink":"doc updates [skip ci]"}},{"before":"d7afa3487b14482ce87629e8d27f191976462c62","after":"1f38270d94f614243b2ba64a2fa1b262174f1213","ref":"refs/heads/gh-pages","pushedAt":"2024-05-22T06:06:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"adam2392","name":"Adam Li","path":"/adam2392","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/3460267?s=80&v=4"},"commit":{"message":"doc updates [skip ci]","shortMessageHtmlLink":"doc updates [skip ci]"}},{"before":null,"after":"2957dc7c9126f58f6a56d3804cf6c5f4f0f8cdec","ref":"refs/heads/dependabot/github_actions/peaceiris/actions-gh-pages-4","pushedAt":"2024-05-06T05:20:27.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump peaceiris/actions-gh-pages from 3 to 4\n\nBumps [peaceiris/actions-gh-pages](https://github.com/peaceiris/actions-gh-pages) from 3 to 4.\n- [Release notes](https://github.com/peaceiris/actions-gh-pages/releases)\n- [Changelog](https://github.com/peaceiris/actions-gh-pages/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/peaceiris/actions-gh-pages/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: peaceiris/actions-gh-pages\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump peaceiris/actions-gh-pages from 3 to 4"}},{"before":"10274886f406cbed054ab1c6695086f7c4133cd4","after":null,"ref":"refs/heads/dependabot/github_actions/abatilo/actions-poetry-3.0.0","pushedAt":"2024-05-03T19:34:08.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"4ca1bbdaa36a2ac18d56d4adbb585ea0a565bd53","after":"fcd82f88a9d9fdd0587129f9b5c5e89a317838f0","ref":"refs/heads/main","pushedAt":"2024-05-03T19:34:08.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump abatilo/actions-poetry from 2.3.0 to 3.0.0 (#34)\n\nBumps\r\n[abatilo/actions-poetry](https://github.com/abatilo/actions-poetry) from\r\n2.3.0 to 3.0.0.\r\n
\r\nRelease notes\r\n

Sourced from abatilo/actions-poetry's\r\nreleases.

\r\n
\r\n

v3.0.0

\r\n

3.0.0\r\n(2024-1-11)

\r\n

BREAKING CHANGE

\r\n

Use pipx to isolate poetry (#63)\r\n(7b6d33e)

\r\n

Functionality itself should expect to be the same but the affected\r\nvirtualenv is different and people might have depended on this behavior\r\nso we're considering this a breaking change.

\r\n

v2.4.0

\r\n

2.4.0\r\n(2023-12-29)

\r\n

Features

\r\n
    \r\n
  • Add ability to install plugins as part of the action setup (#66)\r\n(a5643c6)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=abatilo/actions-poetry&package-manager=github_actions&previous-version=2.3.0&new-version=3.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump abatilo/actions-poetry from 2.3.0 to 3.0.0 (#34)"}},{"before":"02fa33e9e57c3cd8deb7c17097f30542db233972","after":null,"ref":"refs/heads/dependabot/github_actions/softprops/action-gh-release-2","pushedAt":"2024-05-03T19:33:51.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"6a307755d962ac3ade953239ffa5c3e54e450f36","after":"4ca1bbdaa36a2ac18d56d4adbb585ea0a565bd53","ref":"refs/heads/main","pushedAt":"2024-05-03T19:33:50.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump softprops/action-gh-release from 1 to 2 (#36)\n\nBumps\r\n[softprops/action-gh-release](https://github.com/softprops/action-gh-release)\r\nfrom 1 to 2.\r\n
\r\nRelease notes\r\n

Sourced from softprops/action-gh-release's\r\nreleases.

\r\n
\r\n

v2.0.0

\r\n
    \r\n
  • update actions.yml declaration to node20 to address warnings
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from softprops/action-gh-release's\r\nchangelog.

\r\n
\r\n

0.1.12

\r\n
    \r\n
  • fix bug leading to empty strings subsituted for inputs users don't\r\nprovide breaking api calls #144
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • d99959e\r\nprep release
    • \r\n
  • 0e39c67\r\nmake pattern error opt in (#417)
    • \r\n
  • 20e085c\r\nkick off 2.0.1 release
    • \r\n
  • 9f5c4d3\r\nupdate changelog
    • \r\n
  • 0bea76b\r\nAdd support for make_latest property (#304)
    • \r\n
  • 762fe13\r\ntypo in changelog
    • \r\n
  • c0f2569\r\nremove unused script
    • \r\n
  • 5743e06\r\nupdate changelog
    • \r\n
  • fe71fd3\r\nDon't swallow errors (#384)
    • \r\n
  • 9150ab1\r\nrebuild and update changelog
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=softprops/action-gh-release&package-manager=github_actions&previous-version=1&new-version=2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump softprops/action-gh-release from 1 to 2 (#36)"}},{"before":"40093a68d13609eabd88153116e60158263e5146","after":null,"ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4","pushedAt":"2024-05-03T19:33:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"38690612c558eb080964a9fa022fdc0d6995592c","after":"6a307755d962ac3ade953239ffa5c3e54e450f36","ref":"refs/heads/main","pushedAt":"2024-05-03T19:33:30.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump codecov/codecov-action from 3 to 4 (#35)\n\nBumps\r\n[codecov/codecov-action](https://github.com/codecov/codecov-action) from\r\n3 to 4.\r\n
\r\nRelease notes\r\n

Sourced from codecov/codecov-action's\r\nreleases.

\r\n
\r\n

v4.0.0

\r\n

v4 of the Codecov Action uses the CLI as the\r\nunderlying upload. The CLI has helped to power new features including\r\nlocal upload, the global upload token, and new upcoming features.

\r\n

Breaking Changes

\r\n
    \r\n
  • The Codecov Action runs as a node20 action due to\r\nnode16 deprecation. See this\r\npost from GitHub on how to migrate.
    • \r\n
  • Tokenless uploading is unsupported. However, PRs made from forks to\r\nthe upstream public repos will support tokenless (e.g. contributors to\r\nOS projects do not need the upstream repo's Codecov token). This doc\r\nshows instructions on how to add the Codecov token.
    • \r\n
  • OS platforms have been added, though some may not be automatically\r\ndetected. To see a list of platforms, see our CLI download page
    • \r\n
  • Various arguments to the Action have been changed. Please be aware\r\nthat the arguments match with the CLI's needs
    • \r\n
\r\n

v3 versions and below will not have access to CLI\r\nfeatures (e.g. global upload token, ATS).

\r\n

What's Changed

\r\n
    \r\n
  • build(deps): bump openpgp from 5.8.0 to 5.9.0 by @​dependabot in codecov/codecov-action#985
    • \r\n
  • build(deps): bump actions/checkout from 3.0.0 to 3.5.3 by @​dependabot in codecov/codecov-action#1000
    • \r\n
  • build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 by @​dependabot in codecov/codecov-action#1006
    • \r\n
  • build(deps): bump tough-cookie from 4.0.0 to 4.1.3 by @​dependabot in codecov/codecov-action#1013
    • \r\n
  • build(deps-dev): bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in codecov/codecov-action#1024
    • \r\n
  • build(deps): bump node-fetch from 3.3.1 to 3.3.2 by @​dependabot in codecov/codecov-action#1031
    • \r\n
  • build(deps-dev): bump @​types/node from 20.1.4 to\r\n20.4.5 by @​dependabot in codecov/codecov-action#1032
    • \r\n
  • build(deps): bump github/codeql-action from 1.0.26 to 2.21.2 by @​dependabot in codecov/codecov-action#1033
    • \r\n
  • build commit,report and upload args based on codecovcli by @​dana-yaish in codecov/codecov-action#943
    • \r\n
  • build(deps-dev): bump @​types/node from 20.4.5 to\r\n20.5.3 by @​dependabot in codecov/codecov-action#1055
    • \r\n
  • build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 by @​dependabot in codecov/codecov-action#1051
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.3 to\r\n20.5.4 by @​dependabot in codecov/codecov-action#1058
    • \r\n
  • chore(deps): update outdated deps by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1059
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.4 to\r\n20.5.6 by @​dependabot in codecov/codecov-action#1060
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1065
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1064
    • \r\n
  • build(deps): bump actions/checkout from 3.5.3 to 3.6.0 by @​dependabot in codecov/codecov-action#1063
    • \r\n
  • build(deps-dev): bump eslint from 8.47.0 to 8.48.0 by @​dependabot in codecov/codecov-action#1061
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.6 to\r\n20.5.7 by @​dependabot in codecov/codecov-action#1062
    • \r\n
  • build(deps): bump openpgp from 5.9.0 to 5.10.1 by @​dependabot in codecov/codecov-action#1066
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.7 to\r\n20.5.9 by @​dependabot in codecov/codecov-action#1070
    • \r\n
  • build(deps): bump github/codeql-action from 2.21.4 to 2.21.5 by @​dependabot in codecov/codecov-action#1069
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1072
    • \r\n
  • Update README.md by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1073
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1071
    • \r\n
  • build(deps-dev): bump @​vercel/ncc from 0.36.1 to\r\n0.38.0 by @​dependabot in codecov/codecov-action#1074
    • \r\n
  • build(deps): bump @​actions/core from 1.10.0 to 1.10.1\r\nby @​dependabot\r\nin codecov/codecov-action#1081
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1080
    • \r\n
  • build(deps): bump actions/checkout from 3.6.0 to 4.0.0 by @​dependabot in codecov/codecov-action#1078
    • \r\n
  • build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @​dependabot in codecov/codecov-action#1077
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.9 to\r\n20.6.0 by @​dependabot in codecov/codecov-action#1075
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1079
    • \r\n
  • build(deps-dev): bump eslint from 8.48.0 to 8.49.0 by @​dependabot in codecov/codecov-action#1076
    • \r\n
  • use cli instead of node uploader by @​dana-yaish in codecov/codecov-action#1068
    • \r\n
  • chore(release): 4.0.0-beta.1 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1084
    • \r\n
  • not adding -n if empty to do-upload command by @​dana-yaish in codecov/codecov-action#1085
    • \r\n
  • 4.0.0-beta.2 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1086
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from codecov/codecov-action's\r\nchangelog.

\r\n
\r\n

4.0.0-beta.2

\r\n

Fixes

\r\n
    \r\n
  • #1085\r\nnot adding -n if empty to do-upload command
    • \r\n
\r\n

4.0.0-beta.1

\r\n

v4 represents a move from the universal uploader to the\r\nCodecov CLI.\r\nAlthough this will unlock new features for our users, the CLI is not yet\r\nat feature parity with the universal uploader.

\r\n

Breaking Changes

\r\n
    \r\n
  • No current support for aarch64 and alpine\r\narchitectures.
    • \r\n
  • Tokenless uploading is unsuported
    • \r\n
  • Various arguments to the Action have been removed
    • \r\n
\r\n

3.1.4

\r\n

Fixes

\r\n
    \r\n
  • #967\r\nFix typo in README.md
    • \r\n
  • #971\r\nfix: add back in working dir
    • \r\n
  • #969\r\nfix: CLI option names for uploader
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #970\r\nbuild(deps-dev): bump @​types/node from 18.15.12 to\r\n18.16.3
    • \r\n
  • #979\r\nbuild(deps-dev): bump @​types/node from 20.1.0 to\r\n20.1.2
    • \r\n
  • #981\r\nbuild(deps-dev): bump @​types/node from 20.1.2 to\r\n20.1.4
    • \r\n
\r\n

3.1.3

\r\n

Fixes

\r\n
    \r\n
  • #960\r\nfix: allow for aarch64 build
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #957\r\nbuild(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
    • \r\n
  • #958\r\nbuild(deps): bump openpgp from 5.7.0 to 5.8.0
    • \r\n
  • #959\r\nbuild(deps-dev): bump @​types/node from 18.15.10 to\r\n18.15.12
    • \r\n
\r\n

3.1.2

\r\n

Fixes

\r\n
    \r\n
  • #718\r\nUpdate README.md
    • \r\n
  • #851\r\nRemove unsupported path_to_write_report argument
    • \r\n
  • #898\r\ncodeql-analysis.yml
    • \r\n
  • #901\r\nUpdate README to contain correct information - inputs and negate\r\nfeature
    • \r\n
  • #955\r\nfix: add in all the extra arguments for uploader
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #819\r\nbuild(deps): bump openpgp from 5.4.0 to 5.5.0
    • \r\n
  • #835\r\nbuild(deps): bump node-fetch from 3.2.4 to 3.2.10
    • \r\n
  • #840\r\nbuild(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
    • \r\n
  • #841\r\nbuild(deps): bump @​actions/core from 1.9.1 to 1.10.0
    • \r\n
  • #843\r\nbuild(deps): bump @​actions/github from 5.0.3 to 5.1.1
    • \r\n
  • #869\r\nbuild(deps): bump node-fetch from 3.2.10 to 3.3.0
    • \r\n
  • #872\r\nbuild(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
    • \r\n
  • #879\r\nbuild(deps): bump decode-uri-component from 0.2.0 to 0.2.2
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • e0b68c6\r\nfix: show both token uses in readme (#1250)
    • \r\n
  • 1f9f557\r\nAdd all args (#1245)
    • \r\n
  • 09686fc\r\nUpdate README.md (#1243)
    • \r\n
  • f30e495\r\nfix: update action.yml (#1240)
    • \r\n
  • a7b945c\r\nfix: allow for other archs (#1239)
    • \r\n
  • 98ab2c5\r\nUpdate package.json (#1238)
    • \r\n
  • 43235cc\r\nUpdate README.md (#1237)
    • \r\n
  • 0cf8684\r\nchore(ci): bump to node20 (#1236)
    • \r\n
  • 8e1e730\r\nbuild(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.19.1 to 6.20.0 ...
    • \r\n
  • 61293af\r\nbuild(deps-dev): bump @​typescript-eslint/parser from\r\n6.19.1 to 6.20.0 (#1235)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump codecov/codecov-action from 3 to 4 (#35)"}},{"before":"6d582fb7ff9dfa144db15d7aa1d8d3029972b34d","after":null,"ref":"refs/heads/dependabot/github_actions/actions/download-artifact-4","pushedAt":"2024-05-03T19:33:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"be89a0ebf7112593ab83efe3fcfcc3c5e98cdbf7","after":"38690612c558eb080964a9fa022fdc0d6995592c","ref":"refs/heads/main","pushedAt":"2024-05-03T19:33:04.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump actions/download-artifact from 3 to 4 (#32)\n\nBumps\r\n[actions/download-artifact](https://github.com/actions/download-artifact)\r\nfrom 3 to 4.\r\n
\r\nRelease notes\r\n

Sourced from actions/download-artifact's\r\nreleases.

\r\n
\r\n

v4.0.0

\r\n

What's Changed

\r\n

The release of upload-artifact@v4 and download-artifact@v4 are major\r\nchanges to the backend architecture of Artifacts. They have numerous\r\nperformance and behavioral improvements.

\r\n

For more information, see the @​actions/artifact\r\ndocumentation.

\r\n

New Contributors

\r\n
    \r\n
  • @​bflad made\r\ntheir first contribution in actions/download-artifact#194
    • \r\n
\r\n

Full Changelog: https://github.com/actions/download-artifact/compare/v3...v4.0.0

\r\n

v3.0.2

\r\n
    \r\n
  • Bump @actions/artifact to v1.1.1 - actions/download-artifact#195
    • \r\n
  • Fixed a bug in Node16 where if an HTTP download finished too quickly\r\n(<1ms, e.g. when it's mocked) we attempt to delete a temp file that\r\nhas not been created yet actions/toolkit#1278
    • \r\n
\r\n

v3.0.1

\r\n
    \r\n
  • Bump\r\n@​actions/core to 1.10.0
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 7a1cd32\r\nMerge pull request #246\r\nfrom actions/v4-beta
    • \r\n
  • 8f32874\r\nlicensed cache
    • \r\n
  • b5ff844\r\nMerge pull request #245\r\nfrom actions/robherley/v4-documentation
    • \r\n
  • f07a0f7\r\nUpdate README.md
    • \r\n
  • 7226129\r\nupdate test workflow to use different artifact names for matrix
    • \r\n
  • ada9446\r\nupdate docs and bump @​actions/artifact
    • \r\n
  • 7eafc8b\r\nMerge pull request #244\r\nfrom actions/robherley/bump-toolkit
    • \r\n
  • 3132d12\r\nconsume latest toolkit
    • \r\n
  • 5be1d38\r\nMerge pull request #243\r\nfrom actions/robherley/v4-beta-updates
    • \r\n
  • 465b526\r\nconsume latest @​actions/toolkit
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/download-artifact&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n> **Note**\r\n> Automatic rebases have been disabled on this pull request as it has\r\nbeen open for over 30 days.\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump actions/download-artifact from 3 to 4 (#32)"}},{"before":"14dc68ed14271d6bb4fda37a6f3ccd3dd6101c91","after":null,"ref":"refs/heads/dependabot/github_actions/actions/upload-artifact-4","pushedAt":"2024-05-03T19:32:31.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"1562e8b54d5441a18eaa181de4060806269c0468","after":"be89a0ebf7112593ab83efe3fcfcc3c5e98cdbf7","ref":"refs/heads/main","pushedAt":"2024-05-03T19:32:30.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump actions/upload-artifact from 3 to 4 (#31)\n\nBumps\r\n[actions/upload-artifact](https://github.com/actions/upload-artifact)\r\nfrom 3 to 4.\r\n
\r\nRelease notes\r\n

Sourced from actions/upload-artifact's\r\nreleases.

\r\n
\r\n

v4.0.0

\r\n

What's Changed

\r\n

The release of upload-artifact@v4 and download-artifact@v4 are major\r\nchanges to the backend architecture of Artifacts. They have numerous\r\nperformance and behavioral improvements.

\r\n

For more information, see the @​actions/artifact\r\ndocumentation.

\r\n

New Contributors

\r\n
    \r\n
  • @​vmjoseph\r\nmade their first contribution in actions/upload-artifact#464
    • \r\n
\r\n

Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v4.0.0

\r\n

v3.1.3

\r\n

What's Changed

\r\n
    \r\n
  • chore(github): remove trailing whitespaces by @​ljmf00 in actions/upload-artifact#313
    • \r\n
  • Bump @​actions/artifact version to v1.1.2 by @​bethanyj28 in actions/upload-artifact#436
    • \r\n
\r\n

Full Changelog: https://github.com/actions/upload-artifact/compare/v3...v3.1.3

\r\n

v3.1.2

\r\n
    \r\n
  • Update all @actions/* NPM packages to their latest\r\nversions- #374
    • \r\n
  • Update all dev dependencies to their most recent versions - #375
    • \r\n
\r\n

v3.1.1

\r\n
    \r\n
  • Update actions/core package to latest version to remove\r\nset-output deprecation warning #351
    • \r\n
\r\n

v3.1.0

\r\n

What's Changed

\r\n
    \r\n
  • Bump @​actions/artifact to v1.1.0 (actions/upload-artifact#327)\r\n
      \r\n
    • Adds checksum headers on artifact upload (actions/toolkit#1095)\r\n(actions/toolkit#1063)
      • \r\n
    \r\n
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • c7d193f\r\nMerge pull request #466\r\nfrom actions/v4-beta
    • \r\n
  • 13131bb\r\nlicensed cache
    • \r\n
  • 4a6c273\r\nMerge branch 'main' into v4-beta
    • \r\n
  • f391bb9\r\nMerge pull request #465\r\nfrom actions/robherley/v4-documentation
    • \r\n
  • 9653d03\r\nApply suggestions from code review
    • \r\n
  • 875b630\r\nadd limitations section
    • \r\n
  • ecb2146\r\nadd compression example
    • \r\n
  • 5e7604f\r\ntrim some repeated info
    • \r\n
  • d6437d0\r\nnaming
    • \r\n
  • 1b56155\r\ns/v4-beta/v4/g
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/upload-artifact&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump actions/upload-artifact from 3 to 4 (#31)"}},{"before":null,"after":"02fa33e9e57c3cd8deb7c17097f30542db233972","ref":"refs/heads/dependabot/github_actions/softprops/action-gh-release-2","pushedAt":"2024-03-11T05:31:25.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump softprops/action-gh-release from 1 to 2\n\nBumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 1 to 2.\n- [Release notes](https://github.com/softprops/action-gh-release/releases)\n- [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/softprops/action-gh-release/compare/v1...v2)\n\n---\nupdated-dependencies:\n- dependency-name: softprops/action-gh-release\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump softprops/action-gh-release from 1 to 2"}},{"before":null,"after":"40093a68d13609eabd88153116e60158263e5146","ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4","pushedAt":"2024-02-05T05:53:08.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump codecov/codecov-action from 3 to 4\n\nBumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3 to 4.\n- [Release notes](https://github.com/codecov/codecov-action/releases)\n- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/codecov/codecov-action/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: codecov/codecov-action\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump codecov/codecov-action from 3 to 4"}},{"before":"3625078d0a7f8704216d563dc146e6648b066975","after":"d7afa3487b14482ce87629e8d27f191976462c62","ref":"refs/heads/gh-pages","pushedAt":"2024-01-20T06:06:20.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"adam2392","name":"Adam Li","path":"/adam2392","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/3460267?s=80&v=4"},"commit":{"message":"doc updates [skip ci]","shortMessageHtmlLink":"doc updates [skip ci]"}},{"before":"3cec5708c5829e0a94bf536951170aaaad18638c","after":null,"ref":"refs/heads/dependabot/github_actions/abatilo/actions-poetry-2.4.0","pushedAt":"2024-01-15T05:20:19.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":null,"after":"10274886f406cbed054ab1c6695086f7c4133cd4","ref":"refs/heads/dependabot/github_actions/abatilo/actions-poetry-3.0.0","pushedAt":"2024-01-15T05:20:15.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump abatilo/actions-poetry from 2.3.0 to 3.0.0\n\nBumps [abatilo/actions-poetry](https://github.com/abatilo/actions-poetry) from 2.3.0 to 3.0.0.\n- [Release notes](https://github.com/abatilo/actions-poetry/releases)\n- [Changelog](https://github.com/abatilo/actions-poetry/blob/master/.releaserc)\n- [Commits](https://github.com/abatilo/actions-poetry/compare/v2.3.0...v3.0.0)\n\n---\nupdated-dependencies:\n- dependency-name: abatilo/actions-poetry\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump abatilo/actions-poetry from 2.3.0 to 3.0.0"}},{"before":"696d43e60b5c15f82207d30a72ed25d89d3c6201","after":"3625078d0a7f8704216d563dc146e6648b066975","ref":"refs/heads/gh-pages","pushedAt":"2024-01-01T06:06:09.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"adam2392","name":"Adam Li","path":"/adam2392","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/3460267?s=80&v=4"},"commit":{"message":"doc updates [skip ci]","shortMessageHtmlLink":"doc updates [skip ci]"}},{"before":null,"after":"3cec5708c5829e0a94bf536951170aaaad18638c","ref":"refs/heads/dependabot/github_actions/abatilo/actions-poetry-2.4.0","pushedAt":"2024-01-01T05:49:10.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump abatilo/actions-poetry from 2.3.0 to 2.4.0\n\nBumps [abatilo/actions-poetry](https://github.com/abatilo/actions-poetry) from 2.3.0 to 2.4.0.\n- [Release notes](https://github.com/abatilo/actions-poetry/releases)\n- [Changelog](https://github.com/abatilo/actions-poetry/blob/master/.releaserc)\n- [Commits](https://github.com/abatilo/actions-poetry/compare/v2.3.0...v2.4.0)\n\n---\nupdated-dependencies:\n- dependency-name: abatilo/actions-poetry\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump abatilo/actions-poetry from 2.3.0 to 2.4.0"}},{"before":null,"after":"6d582fb7ff9dfa144db15d7aa1d8d3029972b34d","ref":"refs/heads/dependabot/github_actions/actions/download-artifact-4","pushedAt":"2023-12-18T05:37:59.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/download-artifact from 3 to 4\n\nBumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3 to 4.\n- [Release notes](https://github.com/actions/download-artifact/releases)\n- [Commits](https://github.com/actions/download-artifact/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: actions/download-artifact\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/download-artifact from 3 to 4"}},{"before":null,"after":"14dc68ed14271d6bb4fda37a6f3ccd3dd6101c91","ref":"refs/heads/dependabot/github_actions/actions/upload-artifact-4","pushedAt":"2023-12-18T05:37:56.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/upload-artifact from 3 to 4\n\nBumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3 to 4.\n- [Release notes](https://github.com/actions/upload-artifact/releases)\n- [Commits](https://github.com/actions/upload-artifact/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: actions/upload-artifact\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/upload-artifact from 3 to 4"}},{"before":"46c50f594dd55bc42abc0902900f9df2c0e653b0","after":null,"ref":"refs/heads/dependabot/pip/pillow-10.0.1","pushedAt":"2023-12-13T17:42:23.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"55933f631cd12728f61cbe7e748a7028f53387cc","after":"1562e8b54d5441a18eaa181de4060806269c0468","ref":"refs/heads/main","pushedAt":"2023-12-13T17:42:22.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump pillow from 9.5.0 to 10.0.1 (#29)\n\nBumps [pillow](https://github.com/python-pillow/Pillow) from 9.5.0 to\r\n10.0.1.\r\n
\r\nRelease notes\r\n

Sourced from pillow's\r\nreleases.

\r\n
\r\n

10.0.1

\r\n

https://pillow.readthedocs.io/en/stable/releasenotes/10.0.1.html

\r\n

Changes

\r\n
    \r\n
  • Updated libwebp to 1.3.2 #7395\r\n[@​radarhere]
    • \r\n
  • Updated zlib to 1.3 #7344\r\n[@​radarhere]
    • \r\n
\r\n

10.0.0

\r\n

https://pillow.readthedocs.io/en/stable/releasenotes/10.0.0.html

\r\n

Changes

\r\n
    \r\n
  • Fixed deallocating mask images #7246\r\n[@​radarhere]
    • \r\n
  • Added ImageFont.MAX_STRING_LENGTH #7244\r\n[@​radarhere]
    • \r\n
  • Fix Windows build with pyproject.toml #7230\r\n[@​nulano]
    • \r\n
  • Do not close provided file handles with libtiff #7199\r\n[@​radarhere]
    • \r\n
  • Convert to HSV if mode is HSV in getcolor() #7226\r\n[@​radarhere]
    • \r\n
  • Added alpha_only argument to getbbox() #7123\r\n[@​radarhere]
    • \r\n
  • Prioritise speed in repr_png #7242\r\n[@​radarhere]
    • \r\n
  • Limit size even if one dimension is zero in decompression bomb check\r\n#7235\r\n[@​radarhere]
    • \r\n
  • Restored 32-bit support #7234\r\n[@​radarhere]
    • \r\n
  • Removed deleted file from codecov.yml and increased coverage\r\nthreshold #7232\r\n[@​radarhere]
    • \r\n
  • Removed support for 32-bit #7228\r\n[@​radarhere]
    • \r\n
  • Use --config-settings instead of deprecated --global-option #7171\r\n[@​radarhere]
    • \r\n
  • Better C integer definitions #6645\r\n[@​Yay295]
    • \r\n
  • Fixed finding dependencies on Cygwin #7175\r\n[@​radarhere]
    • \r\n
  • Improved checks in font_render #7218\r\n[@​radarhere]
    • \r\n
  • Change grabclipboard() to use PNG compression on macOS\r\n#7219\r\n[@​abey79]
    • \r\n
  • Added PyPy 3.10 and removed PyPy 3.8 #7216\r\n[@​radarhere]
    • \r\n
  • Added in_place argument to ImageOps.exif_transpose() #7092\r\n[@​radarhere]
    • \r\n
  • Corrected error code #7177\r\n[@​radarhere]
    • \r\n
  • Use "not in" #7174\r\n[@​radarhere]
    • \r\n
  • Only call text_layout once in getmask2 #7206\r\n[@​radarhere]
    • \r\n
  • Fixed calling putpalette() on L and LA images before load() #7187\r\n[@​radarhere]
    • \r\n
  • Removed unused INT64 definition #7180\r\n[@​radarhere]
    • \r\n
  • Updated xz to 5.4.3 #7136\r\n[@​radarhere]
    • \r\n
  • Fixed saving TIFF multiframe images with LONG8 tag types #7078\r\n[@​radarhere]
    • \r\n
  • Do not set size unnecessarily if image fails to open #7056\r\n[@​radarhere]
    • \r\n
  • Removed unused code #7210\r\n[@​radarhere]
    • \r\n
  • Removed unused variables #7205\r\n[@​radarhere]
    • \r\n
  • Fixed signedness comparison warning #7203\r\n[@​radarhere]
    • \r\n
  • Fixed combining single duration across duplicate APNG frames #7146\r\n[@​radarhere]
    • \r\n
  • Remove temporary file when error is raised #7148\r\n[@​radarhere]
    • \r\n
  • Do not use temporary file when grabbing clipboard on Linux #7200\r\n[@​radarhere]
    • \r\n
  • If the clipboard fails to open on Windows, wait and try again #7141\r\n[@​radarhere]
    • \r\n
  • Fixed saving multiple 1 mode frames to GIF #7181\r\n[@​radarhere]
    • \r\n
  • Replaced absolute PIL import with relative import #7173\r\n[@​radarhere]
    • \r\n
  • Removed files and types override #7194\r\n[@​radarhere]
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from pillow's\r\nchangelog.

\r\n
\r\n

10.0.1 (2023-09-15)

\r\n
    \r\n
  • \r\n

    Updated libwebp to 1.3.2 #7395\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Updated zlib to 1.3 #7344\r\n[radarhere]

    \r\n
    • \r\n
\r\n

10.0.0 (2023-07-01)

\r\n
    \r\n
  • \r\n

    Fixed deallocating mask images #7246\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Added ImageFont.MAX_STRING_LENGTH #7244\r\n[radarhere, hugovk]

    \r\n
    • \r\n
  • \r\n

    Fix Windows build with pyproject.toml #7230\r\n[hugovk, nulano, radarhere]

    \r\n
    • \r\n
  • \r\n

    Do not close provided file handles with libtiff #7199\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Convert to HSV if mode is HSV in getcolor() #7226\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Added alpha_only argument to getbbox() #7123\r\n[radarhere. hugovk]

    \r\n
    • \r\n
  • \r\n

    Prioritise speed in repr_png #7242\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Do not use CFFI access by default on PyPy #7236\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Limit size even if one dimension is zero in decompression bomb check\r\n#7235\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Use --config-settings instead of deprecated --global-option #7171\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Better C integer definitions #6645\r\n[Yay295, hugovk]

    \r\n
    • \r\n
  • \r\n

    Fixed finding dependencies on Cygwin #7175\r\n[radarhere]

    \r\n
    • \r\n
  • \r\n

    Changed grabclipboard() to use PNG instead of JPG compression on\r\nmacOS #7219\r\n[abey79, radarhere]

    \r\n
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • e34d346\r\nUpdated order
    • \r\n
  • a62f240\r\n10.0.1 version bump
    • \r\n
  • d50250d\r\nAdded release notes for 10.0.1
    • \r\n
  • b4c7d4b\r\nUpdate CHANGES.rst [ci skip]
    • \r\n
  • 730f746\r\nUpdated libwebp to 1.3.2
    • \r\n
  • b0e2804\r\nUpdated zlib to 1.3
    • \r\n
  • 6e28ed1\r\n10.0.0 version bump
    • \r\n
  • c827f3b\r\nMerge pull request #7246\r\nfrom radarhere/deallocate
    • \r\n
  • 39a3b1d\r\nFixed deallocating mask images
    • \r\n
  • 8c1dc81\r\nUpdate CHANGES.rst [ci skip]
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pillow&package-manager=pip&previous-version=9.5.0&new-version=10.0.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/py-why/pywhy-stats/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nSigned-off-by: Patrick Blöbaum <51325689+bloebp@users.noreply.github.com>\r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>\r\nCo-authored-by: Patrick Blöbaum <51325689+bloebp@users.noreply.github.com>","shortMessageHtmlLink":"Bump pillow from 9.5.0 to 10.0.1 (#29)"}},{"before":"0246ff650e711223edd4dad2361df9a716a9af16","after":null,"ref":"refs/heads/dependabot/pip/gitpython-3.1.37","pushedAt":"2023-12-13T17:31:39.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"681f2827183fe4827c9f4a01286d79756e265eb3","after":"55933f631cd12728f61cbe7e748a7028f53387cc","ref":"refs/heads/main","pushedAt":"2023-12-13T17:31:38.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump gitpython from 3.1.32 to 3.1.37 (#30)\n\nBumps [gitpython](https://github.com/gitpython-developers/GitPython)\r\nfrom 3.1.32 to 3.1.37.\r\n
\r\nRelease notes\r\n

Sourced from gitpython's\r\nreleases.

\r\n
\r\n

3.1.37 - a proper fix CVE-2023-41040

\r\n

What's Changed

\r\n
    \r\n
  • Improve Python version and OS compatibility, fixing deprecations by\r\n@​EliahKagan in\r\ngitpython-developers/GitPython#1654
    • \r\n
  • Better document env_case test/fixture and cwd by @​EliahKagan in gitpython-developers/GitPython#1657
    • \r\n
  • Remove spurious executable permissions by @​EliahKagan in gitpython-developers/GitPython#1658
    • \r\n
  • Fix up checks in Makefile and make them portable by @​EliahKagan in gitpython-developers/GitPython#1661
    • \r\n
  • Fix URLs that were redirecting to another license by @​EliahKagan in gitpython-developers/GitPython#1662
    • \r\n
  • Assorted small fixes/improvements to root dir docs by @​EliahKagan in gitpython-developers/GitPython#1663
    • \r\n
  • Use venv instead of virtualenv in test_installation by @​EliahKagan in gitpython-developers/GitPython#1664
    • \r\n
  • Omit py_modules in setup by @​EliahKagan in gitpython-developers/GitPython#1665
    • \r\n
  • Don't track code coverage temporary files by @​EliahKagan in gitpython-developers/GitPython#1666
    • \r\n
  • Configure tox by @​EliahKagan in gitpython-developers/GitPython#1667
    • \r\n
  • Format tests with black and auto-exclude untracked paths by @​EliahKagan in gitpython-developers/GitPython#1668
    • \r\n
  • Upgrade and broaden flake8, fixing style problems and bugs by @​EliahKagan in gitpython-developers/GitPython#1673
    • \r\n
  • Fix rollback bug in SymbolicReference.set_reference by @​EliahKagan in gitpython-developers/GitPython#1675
    • \r\n
  • Remove @NoEffect annotations by @​EliahKagan in gitpython-developers/GitPython#1677
    • \r\n
  • Add more checks for the validity of refnames by @​facutuesca in gitpython-developers/GitPython#1672
    • \r\n
\r\n

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.36...3.1.37

\r\n

3.1.35 - a fix for CVE-2023-41040

\r\n

What's Changed

\r\n
    \r\n
  • Bump actions/checkout from 3 to 4 by @​dependabot in gitpython-developers/GitPython#1643
    • \r\n
  • Fix 'Tree' object has no attribute '_name' when submodule path is\r\nnormal path by @​CosmosAtlas in\r\ngitpython-developers/GitPython#1645
    • \r\n
  • Fix CVE-2023-41040 by @​facutuesca in gitpython-developers/GitPython#1644
    • \r\n
  • Only make config more permissive in tests that need it by @​EliahKagan in gitpython-developers/GitPython#1648
    • \r\n
  • Added test for PR #1645\r\nsubmodule path by @​CosmosAtlas in\r\ngitpython-developers/GitPython#1647
    • \r\n
  • Fix Windows environment variable upcasing bug by @​EliahKagan in gitpython-developers/GitPython#1650
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​CosmosAtlas\r\nmade their first contribution in gitpython-developers/GitPython#1645
    • \r\n
  • @​facutuesca made\r\ntheir first contribution in gitpython-developers/GitPython#1644
    • \r\n
\r\n

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35

\r\n

3.1.34 - fix resource leaking

\r\n

What's Changed

\r\n
    \r\n
  • util: close lockfile after opening successfully by @​skshetry in gitpython-developers/GitPython#1639
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​skshetry\r\nmade their first contribution in gitpython-developers/GitPython#1639
    • \r\n
\r\n

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.33...3.1.34

\r\n

v3.1.33 - with security fix

\r\n

What's Changed

\r\n
    \r\n
  • WIP Quick doc by @​LeoDaCoda in gitpython-developers/GitPython#1608
    • \r\n
  • Partial clean up wrt mypy and black by @​bodograumann\r\nin gitpython-developers/GitPython#1617
    • \r\n
  • Disable merge_includes in config writers by @​bodograumann\r\nin gitpython-developers/GitPython#1618
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b27a89f\r\nfix makefile to compare commit hashes only
    • \r\n
  • 0bd2890\r\nprepare next release
    • \r\n
  • 832b6ee\r\nremove unnecessary list comprehension to fix CI
    • \r\n
  • e98f57b\r\nMerge pull request #1672\r\nfrom trail-of-forks/robust-refname-checks
    • \r\n
  • 1774f1e\r\nMerge pull request #1677\r\nfrom EliahKagan/no-noeffect
    • \r\n
  • a4701a0\r\nRemove @NoEffect annotations
    • \r\n
  • d40320b\r\nMerge pull request #1675\r\nfrom EliahKagan/rollback
    • \r\n
  • d1c1f31\r\nMerge pull request #1673\r\nfrom EliahKagan/flake8
    • \r\n
  • e480985\r\nTweak rollback logic in log.to_file
    • \r\n
  • ff84b26\r\nRefactor try-finally cleanup in git/
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitpython&package-manager=pip&previous-version=3.1.32&new-version=3.1.37)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/py-why/pywhy-stats/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump gitpython from 3.1.32 to 3.1.37 (#30)"}},{"before":"f8ebc51df2576befeb26dc8eb237e0d8065aa091","after":"46c50f594dd55bc42abc0902900f9df2c0e653b0","ref":"refs/heads/dependabot/pip/pillow-10.0.1","pushedAt":"2023-12-13T17:31:23.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/pip/pillow-10.0.1\n\nSigned-off-by: Patrick Blöbaum <51325689+bloebp@users.noreply.github.com>","shortMessageHtmlLink":"Merge branch 'main' into dependabot/pip/pillow-10.0.1"}},{"before":"32adf2b3a8330035b7c5738a7c7e19ca43f23da0","after":null,"ref":"refs/heads/dependabot/pip/urllib3-2.0.7","pushedAt":"2023-12-13T17:30:47.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"}},{"before":"bb7892de49721adf5f100f7db8e79de83cef20c1","after":"681f2827183fe4827c9f4a01286d79756e265eb3","ref":"refs/heads/main","pushedAt":"2023-12-13T17:30:46.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"bloebp","name":"Patrick Blöbaum","path":"/bloebp","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/51325689?s=80&v=4"},"commit":{"message":"Bump urllib3 from 2.0.4 to 2.0.7 (#28)\n\nBumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.4 to 2.0.7.\r\n
\r\nRelease notes\r\n

Sourced from urllib3's\r\nreleases.

\r\n
\r\n

2.0.7

\r\n
    \r\n
  • Made body stripped from HTTP requests changing the request method to\r\nGET after HTTP 303 "See Other" redirect responses.\r\n(GHSA-g4mx-q9vg-27p4)
    • \r\n
\r\n

2.0.6

\r\n
    \r\n
  • Added the Cookie header to the list of headers to strip\r\nfrom requests when redirecting to a different host. As before, different\r\nheaders can be set via Retry.remove_headers_on_redirect.\r\n(GHSA-v845-jxx5-vc9f)
    • \r\n
\r\n

2.0.5

\r\n
    \r\n
  • Allowed pyOpenSSL third-party module without any deprecation\r\nwarning. #3126
    • \r\n
  • Fixed default blocksize of HTTPConnection\r\nclasses to match high-level classes. Previously was 8KiB, now 16KiB. #3066
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from urllib3's\r\nchangelog.

\r\n
\r\n

2.0.7 (2023-10-17)

\r\n
    \r\n
  • Made body stripped from HTTP requests changing the request method to\r\nGET after HTTP 303 "See Other" redirect responses.
    • \r\n
\r\n

2.0.6 (2023-10-02)

\r\n
    \r\n
  • Added the Cookie header to the list of headers to strip\r\nfrom requests when redirecting to a different host. As before, different\r\nheaders can be set via\r\nRetry.remove_headers_on_redirect.
    • \r\n
\r\n

2.0.5 (2023-09-20)

\r\n
    \r\n
  • Allowed pyOpenSSL third-party module without any deprecation\r\nwarning. ([#3126](https://github.com/urllib3/urllib3/issues/3126)\r\n<https://github.com/urllib3/urllib3/issues/3126>__)
    • \r\n
  • Fixed default blocksize of HTTPConnection\r\nclasses to match high-level classes. Previously was 8KiB, now 16KiB.\r\n([#3066](https://github.com/urllib3/urllib3/issues/3066)\r\n<https://github.com/urllib3/urllib3/issues/3066>__)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 56f01e0\r\nRelease 2.0.7
    • \r\n
  • 4e50fbc\r\nMerge pull request from GHSA-g4mx-q9vg-27p4
    • \r\n
  • 80808b0\r\nFix docs build on Python 3.12 (#3144)
    • \r\n
  • f28deff\r\nAdd 1.26.17 to the current changelog
    • \r\n
  • 262e3e3\r\nRelease 2.0.6
    • \r\n
  • 644124e\r\nMerge pull request from GHSA-v845-jxx5-vc9f
    • \r\n
  • 740380c\r\nBump cryptography from 41.0.3 to 41.0.4 (#3131)
    • \r\n
  • d9f85a7\r\nRelease 2.0.5
    • \r\n
  • d41f412\r\nUndeprecate pyOpenSSL module (#3127)
    • \r\n
  • b6c04cb\r\nFix a link to "absolute URI" definition (#3128)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=urllib3&package-manager=pip&previous-version=2.0.4&new-version=2.0.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/py-why/pywhy-stats/network/alerts).\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump urllib3 from 2.0.4 to 2.0.7 (#28)"}},{"before":null,"after":"0246ff650e711223edd4dad2361df9a716a9af16","ref":"refs/heads/dependabot/pip/gitpython-3.1.37","pushedAt":"2023-12-13T17:05:46.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump gitpython from 3.1.32 to 3.1.37\n\nBumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.32 to 3.1.37.\n- [Release notes](https://github.com/gitpython-developers/GitPython/releases)\n- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)\n- [Commits](https://github.com/gitpython-developers/GitPython/compare/3.1.32...3.1.37)\n\n---\nupdated-dependencies:\n- dependency-name: gitpython\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump gitpython from 3.1.32 to 3.1.37"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEaBYinQA","startCursor":null,"endCursor":null}},"title":"Activity · py-why/pywhy-stats"}