{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":101780532,"defaultBranch":"main","name":"rules_python","ownerLogin":"bazelbuild","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2017-08-29T16:05:33.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/11684617?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1715591138.0","currentOid":""},"activityList":{"items":[{"before":"62139c4877f982ef043ba571bd993070eff17380","after":null,"ref":"refs/heads/dependabot/pip/examples/bzlmod/jinja2-3.1.4","pushedAt":"2024-05-13T09:05:38.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"4320d7a0cbd648c45efb5834b74aec7d9f92901a","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1883-9fa38df4a18779f79280070a1728eb91a7b1512a","pushedAt":"2024-05-13T09:05:31.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"9fa38df4a18779f79280070a1728eb91a7b1512a","after":"4320d7a0cbd648c45efb5834b74aec7d9f92901a","ref":"refs/heads/main","pushedAt":"2024-05-13T09:05:30.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /examples/bzlmod (#1883)\n\nBumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/pallets/jinja/releases\">jinja2's\nreleases</a>.</em></p>\n<blockquote>\n<h2>3.1.4</h2>\n<p>This is the Jinja 3.1.4 security release, which fixes security issues\nand bugs but does not otherwise change behavior and should not result in\nbreaking changes.</p>\n<p>PyPI: <a\nhref=\"https://pypi.org/project/Jinja2/3.1.4/\">https://pypi.org/project/Jinja2/3.1.4/</a>\nChanges: <a\nhref=\"https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4\">https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4</a></p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with\n<code>/</code> solidus, <code>&gt;</code> greater-than sign, or\n<code>=</code> equals sign, in addition to disallowing spaces.\nRegardless of any validation done by Jinja, user input should never be\nused as keys to this filter, or must be separately validated first.\nGHSA-h75v-3vvj-5mfj</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's\nchangelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.4</h2>\n<p>Released 2024-05-05</p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with\n<code>/</code> solidus, <code>&gt;</code>\ngreater-than sign, or <code>=</code> equals sign, in addition to\ndisallowing spaces.\nRegardless of any validation done by Jinja, user input should never be\nused\nas keys to this filter, or must be separately validated first.\n:ghsa:<code>h75v-3vvj-5mfj</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/dd4a8b5466d8790540c181590b14db4d4d889d57\"><code>dd4a8b5</code></a>\nrelease version 3.1.4</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/0668239dc6b44ef38e7a6c9f91f312fd4ca581cb\"><code>0668239</code></a>\nMerge pull request from GHSA-h75v-3vvj-5mfj</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/d655030770081e2dfe46f90e27620472a502289d\"><code>d655030</code></a>\ndisallow invalid characters in keys to xmlattr filter</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/a7863ba9d3521f1450f821119c50d19d7ecea329\"><code>a7863ba</code></a>\nadd ghsa links</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/b5c98e78c2ee7d2bf0aa06d29ed9bf7082de9cf4\"><code>b5c98e7</code></a>\nstart version 3.1.4</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/da3a9f0b804199845fcb76f2e08748bdaeba93ee\"><code>da3a9f0</code></a>\nupdate project files (<a\nhref=\"https://redirect.github.com/pallets/jinja/issues/1968\">#1968</a>)</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/0ee5eb41d1a2d7d9a05a02dc26dd70e63aaaeeb1\"><code>0ee5eb4</code></a>\nsatisfy formatter, linter, and strict mypy</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/20477c63575175196bfc8103f223cc9f5642595d\"><code>20477c6</code></a>\nupdate project files (<a\nhref=\"https://redirect.github.com/pallets/jinja/issues/5457\">#5457</a>)</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/e491223739dedbb1f4fc6a71340c1484e149d947\"><code>e491223</code></a>\nupdate pyyaml dev dependency</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/36f98854c721f98ba103f97f65a8a098da5af0d7\"><code>36f9885</code></a>\nfix pr link</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/pallets/jinja/compare/3.1.3...3.1.4\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.3&new-version=3.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/bazelbuild/rules_python/network/alerts).\n\n</details>\n\nSigned-off-by: dependabot[bot] <support@github.com>\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /examples/bzlmod (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2281735899\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1883\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1883/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1883\">#1883</a>)"}},{"before":"58b3ef782238d7264850d473dc4645e7c9911f24","after":null,"ref":"refs/heads/dependabot/pip/examples/bzlmod/tests/dupe_requirements/cryptography-42.0.4","pushedAt":"2024-05-13T09:02:41.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":null,"after":"4320d7a0cbd648c45efb5834b74aec7d9f92901a","ref":"refs/heads/gh-readonly-queue/main/pr-1883-9fa38df4a18779f79280070a1728eb91a7b1512a","pushedAt":"2024-05-13T08:58:26.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /examples/bzlmod (#1883)\n\nBumps [jinja2](https://github.com/pallets/jinja) from 3.1.3 to 3.1.4.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/pallets/jinja/releases\">jinja2's\nreleases</a>.</em></p>\n<blockquote>\n<h2>3.1.4</h2>\n<p>This is the Jinja 3.1.4 security release, which fixes security issues\nand bugs but does not otherwise change behavior and should not result in\nbreaking changes.</p>\n<p>PyPI: <a\nhref=\"https://pypi.org/project/Jinja2/3.1.4/\">https://pypi.org/project/Jinja2/3.1.4/</a>\nChanges: <a\nhref=\"https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4\">https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4</a></p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with\n<code>/</code> solidus, <code>&gt;</code> greater-than sign, or\n<code>=</code> equals sign, in addition to disallowing spaces.\nRegardless of any validation done by Jinja, user input should never be\nused as keys to this filter, or must be separately validated first.\nGHSA-h75v-3vvj-5mfj</li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/pallets/jinja/blob/main/CHANGES.rst\">jinja2's\nchangelog</a>.</em></p>\n<blockquote>\n<h2>Version 3.1.4</h2>\n<p>Released 2024-05-05</p>\n<ul>\n<li>The <code>xmlattr</code> filter does not allow keys with\n<code>/</code> solidus, <code>&gt;</code>\ngreater-than sign, or <code>=</code> equals sign, in addition to\ndisallowing spaces.\nRegardless of any validation done by Jinja, user input should never be\nused\nas keys to this filter, or must be separately validated first.\n:ghsa:<code>h75v-3vvj-5mfj</code></li>\n</ul>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/dd4a8b5466d8790540c181590b14db4d4d889d57\"><code>dd4a8b5</code></a>\nrelease version 3.1.4</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/0668239dc6b44ef38e7a6c9f91f312fd4ca581cb\"><code>0668239</code></a>\nMerge pull request from GHSA-h75v-3vvj-5mfj</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/d655030770081e2dfe46f90e27620472a502289d\"><code>d655030</code></a>\ndisallow invalid characters in keys to xmlattr filter</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/a7863ba9d3521f1450f821119c50d19d7ecea329\"><code>a7863ba</code></a>\nadd ghsa links</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/b5c98e78c2ee7d2bf0aa06d29ed9bf7082de9cf4\"><code>b5c98e7</code></a>\nstart version 3.1.4</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/da3a9f0b804199845fcb76f2e08748bdaeba93ee\"><code>da3a9f0</code></a>\nupdate project files (<a\nhref=\"https://redirect.github.com/pallets/jinja/issues/1968\">#1968</a>)</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/0ee5eb41d1a2d7d9a05a02dc26dd70e63aaaeeb1\"><code>0ee5eb4</code></a>\nsatisfy formatter, linter, and strict mypy</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/20477c63575175196bfc8103f223cc9f5642595d\"><code>20477c6</code></a>\nupdate project files (<a\nhref=\"https://redirect.github.com/pallets/jinja/issues/5457\">#5457</a>)</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/e491223739dedbb1f4fc6a71340c1484e149d947\"><code>e491223</code></a>\nupdate pyyaml dev dependency</li>\n<li><a\nhref=\"https://github.com/pallets/jinja/commit/36f98854c721f98ba103f97f65a8a098da5af0d7\"><code>36f9885</code></a>\nfix pr link</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/pallets/jinja/compare/3.1.3...3.1.4\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=jinja2&package-manager=pip&previous-version=3.1.3&new-version=3.1.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/bazelbuild/rules_python/network/alerts).\n\n</details>\n\nSigned-off-by: dependabot[bot] <support@github.com>\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump jinja2 from 3.1.3 to 3.1.4 in /examples/bzlmod (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2281735899\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1883\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1883/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1883\">#1883</a>)"}},{"before":"9fa38df4a18779f79280070a1728eb91a7b1512a","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1894-407826adb4da6a62754e960c244e0f773602fe02","pushedAt":"2024-05-13T03:01:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"407826adb4da6a62754e960c244e0f773602fe02","after":"9fa38df4a18779f79280070a1728eb91a7b1512a","ref":"refs/heads/main","pushedAt":"2024-05-13T03:01:10.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"fix(bcr): add mandatory gazelle bcr presubmit attrs (#1894)\n\nThe same as in f1d1732b11929671110e6a1b845c8d1a1a67530f.\n\nFixes that were needed in\n[bazel/bazel-central-registry#2019](https://github.com/bazelbuild/bazel-central-registry/pull/2019).","shortMessageHtmlLink":"fix(bcr): add mandatory gazelle bcr presubmit attrs (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2291690258\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1894\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1894/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1894\">#1894</a>)"}},{"before":null,"after":"9fa38df4a18779f79280070a1728eb91a7b1512a","ref":"refs/heads/gh-readonly-queue/main/pr-1894-407826adb4da6a62754e960c244e0f773602fe02","pushedAt":"2024-05-13T02:54:14.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"fix(bcr): add mandatory gazelle bcr presubmit attrs (#1894)\n\nThe same as in f1d1732b11929671110e6a1b845c8d1a1a67530f.\n\nFixes that were needed in\n[bazel/bazel-central-registry#2019](https://github.com/bazelbuild/bazel-central-registry/pull/2019).","shortMessageHtmlLink":"fix(bcr): add mandatory gazelle bcr presubmit attrs (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2291690258\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1894\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1894/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1894\">#1894</a>)"}},{"before":"407826adb4da6a62754e960c244e0f773602fe02","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1893-6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","pushedAt":"2024-05-13T02:03:43.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","after":"407826adb4da6a62754e960c244e0f773602fe02","ref":"refs/heads/main","pushedAt":"2024-05-13T02:03:42.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"chore: release notes for 0.32.0 (#1893)\n\nUpdates release notes for 0.32.0","shortMessageHtmlLink":"chore: release notes for 0.32.0 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2291616134\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1893\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1893/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1893\">#1893</a>)"}},{"before":null,"after":"407826adb4da6a62754e960c244e0f773602fe02","ref":"refs/heads/gh-readonly-queue/main/pr-1893-6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","pushedAt":"2024-05-13T01:55:53.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"chore: release notes for 0.32.0 (#1893)\n\nUpdates release notes for 0.32.0","shortMessageHtmlLink":"chore: release notes for 0.32.0 (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2291616134\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1893\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1893/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1893\">#1893</a>)"}},{"before":"6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1878-4c4c06c22badec4c6fa6840d22128806d67f6916","pushedAt":"2024-05-12T23:37:36.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"4c4c06c22badec4c6fa6840d22128806d67f6916","after":"6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","ref":"refs/heads/main","pushedAt":"2024-05-12T23:37:35.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"chore: bump toolchain versions (#1878)\n\nBump toolchain versions to use the latest available releases.\n\n* `3.8 -> 3.8.19`\n* `3.9 -> 3.9.19`\n* `3.10 -> 3.10.14`\n* `3.11 -> 3.11.9`\n* `3.12 -> 3.12.3`\n* Use release `20240224` to pick up some security fixes\n\nFixes #1785","shortMessageHtmlLink":"chore: bump toolchain versions (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2280003874\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1878\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1878/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1878\">#1878</a>)"}},{"before":null,"after":"6aecae3aaf39fe1909ce62302b3f72b9ebb6b778","ref":"refs/heads/gh-readonly-queue/main/pr-1878-4c4c06c22badec4c6fa6840d22128806d67f6916","pushedAt":"2024-05-12T23:30:34.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"chore: bump toolchain versions (#1878)\n\nBump toolchain versions to use the latest available releases.\n\n* `3.8 -> 3.8.19`\n* `3.9 -> 3.9.19`\n* `3.10 -> 3.10.14`\n* `3.11 -> 3.11.9`\n* `3.12 -> 3.12.3`\n* Use release `20240224` to pick up some security fixes\n\nFixes #1785","shortMessageHtmlLink":"chore: bump toolchain versions (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2280003874\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1878\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1878/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1878\">#1878</a>)"}},{"before":"4c4c06c22badec4c6fa6840d22128806d67f6916","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1874-01ae7e7222e9b754b21e2561cc48a9ffb039036e","pushedAt":"2024-05-12T22:45:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"d2c00eb66935bd8f1fbb8eb6269d411546ad0870","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1878-4c4c06c22badec4c6fa6840d22128806d67f6916","pushedAt":"2024-05-12T22:45:11.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"01ae7e7222e9b754b21e2561cc48a9ffb039036e","after":"4c4c06c22badec4c6fa6840d22128806d67f6916","ref":"refs/heads/main","pushedAt":"2024-05-12T22:45:10.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"fix(whl_library): stop duplicating deps in whl_library (#1874)\n\nBefore this PR we would incorrectly add deps to the platform-specific\nlist if there were multiple entries in the `METADATA` file. It seems\nthat some projects (e.g. [opencv-python]) have multiple entries in their\nMETADATA file to help SAT solvers with selecting the right version when\ndifferent interpreter versions are used.\n\nIn our case, we will have only one version of a given package because we\nare operating with a locked dependency list, so we should ensure that we\ndo not have duplicates across the lists. With this PR we are solving\nthis during the construction of the dependency sets so that the internal\nmodel is always consistent.\n\nFixes #1873\n\n[opencv-python]: https://pypi.org/project/opencv-python/","shortMessageHtmlLink":"fix(whl_library): stop duplicating deps in whl_library (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2278697577\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1874\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1874/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1874\">#1874</a>)"}},{"before":null,"after":"d2c00eb66935bd8f1fbb8eb6269d411546ad0870","ref":"refs/heads/gh-readonly-queue/main/pr-1878-4c4c06c22badec4c6fa6840d22128806d67f6916","pushedAt":"2024-05-12T22:40:05.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"chore: bump toolchain versions (#1878)\n\nBump toolchain versions to use the latest available releases.\n\n* `3.8 -> 3.8.19`\n* `3.9 -> 3.9.19`\n* `3.10 -> 3.10.14`\n* `3.11 -> 3.11.9`\n* `3.12 -> 3.12.3`\n* Use release `20240224` to pick up some security fixes\n\nFixes #1785","shortMessageHtmlLink":"chore: bump toolchain versions (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2280003874\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1878\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1878/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1878\">#1878</a>)"}},{"before":null,"after":"4c4c06c22badec4c6fa6840d22128806d67f6916","ref":"refs/heads/gh-readonly-queue/main/pr-1874-01ae7e7222e9b754b21e2561cc48a9ffb039036e","pushedAt":"2024-05-12T22:36:22.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"fix(whl_library): stop duplicating deps in whl_library (#1874)\n\nBefore this PR we would incorrectly add deps to the platform-specific\nlist if there were multiple entries in the `METADATA` file. It seems\nthat some projects (e.g. [opencv-python]) have multiple entries in their\nMETADATA file to help SAT solvers with selecting the right version when\ndifferent interpreter versions are used.\n\nIn our case, we will have only one version of a given package because we\nare operating with a locked dependency list, so we should ensure that we\ndo not have duplicates across the lists. With this PR we are solving\nthis during the construction of the dependency sets so that the internal\nmodel is always consistent.\n\nFixes #1873\n\n[opencv-python]: https://pypi.org/project/opencv-python/","shortMessageHtmlLink":"fix(whl_library): stop duplicating deps in whl_library (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2278697577\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1874\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1874/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1874\">#1874</a>)"}},{"before":"6c67fe7d5e7945608b7f7fb169b1f37589a37353","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1883-01ae7e7222e9b754b21e2561cc48a9ffb039036e","pushedAt":"2024-05-12T09:29:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"892d676eb9eaa122e642b467d769ead31f4be491","after":null,"ref":"refs/heads/dependabot/pip/docs/sphinx/idna-3.7","pushedAt":"2024-05-12T09:29:21.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"01ae7e7222e9b754b21e2561cc48a9ffb039036e","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1851-18d379e068339762a61dac8faf75ae3d1e11b282","pushedAt":"2024-05-12T09:29:14.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"18d379e068339762a61dac8faf75ae3d1e11b282","after":"01ae7e7222e9b754b21e2561cc48a9ffb039036e","ref":"refs/heads/main","pushedAt":"2024-05-12T09:29:13.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"build(deps): bump idna from 3.6 to 3.7 in /docs/sphinx (#1851)\n\nBumps [idna](https://github.com/kjd/idna) from 3.6 to 3.7.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/kjd/idna/releases\">idna's\nreleases</a>.</em></p>\n<blockquote>\n<h2>v3.7</h2>\n<h2>What's Changed</h2>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could take\nexceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n<p><strong>Full Changelog</strong>: <a\nhref=\"https://github.com/kjd/idna/compare/v3.6...v3.7\">https://github.com/kjd/idna/compare/v3.6...v3.7</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/kjd/idna/blob/master/HISTORY.rst\">idna's\nchangelog</a>.</em></p>\n<blockquote>\n<p>3.7 (2024-04-11)\n++++++++++++++++</p>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could\ntake exceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/1d365e17e10d72d0b7876316fc7b9ca0eebdd38d\"><code>1d365e1</code></a>\nRelease v3.7</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/c1b3154939907fab67c5754346afaebe165ce8e6\"><code>c1b3154</code></a>\nMerge pull request <a\nhref=\"https://redirect.github.com/kjd/idna/issues/172\">#172</a> from\nkjd/optimize-contextj</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/0394ec76ff022813e770ba1fd89658790ea35623\"><code>0394ec7</code></a>\nMerge branch 'master' into optimize-contextj</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/cd58a23173d2b0a40b95ee680baf3e59e8d33966\"><code>cd58a23</code></a>\nMerge pull request <a\nhref=\"https://redirect.github.com/kjd/idna/issues/152\">#152</a> from\nelliotwutingfeng/dev</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/5beb28b9dd77912c0dd656d8b0fdba3eb80222e7\"><code>5beb28b</code></a>\nMore efficient resolution of joiner contexts</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/1b121483ed04d9576a1291758f537e1318cddc8b\"><code>1b12148</code></a>\nUpdate ossf/scorecard-action to v2.3.1</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/d516b874c3388047934938a500c7488d52c4e067\"><code>d516b87</code></a>\nUpdate Github actions/checkout to v4</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/c095c75943413c75ebf8ac74179757031b7f80b7\"><code>c095c75</code></a>\nMerge branch 'master' into dev</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/60a0a4cb61ec6834d74306bd8a1fa46daac94c98\"><code>60a0a4c</code></a>\nFix typo in GitHub Actions workflow key</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/5918a0ef8034379c2e409ae93ee11d24295bb201\"><code>5918a0e</code></a>\nMerge branch 'master' into dev</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/kjd/idna/compare/v3.6...v3.7\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=idna&package-manager=pip&previous-version=3.6&new-version=3.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nYou can trigger a rebase of this PR by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/bazelbuild/rules_python/network/alerts).\n\n</details>\n\n> **Note**\n> Automatic rebases have been disabled on this pull request as it has\nbeen open for over 30 days.\n\nSigned-off-by: dependabot[bot] <support@github.com>\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump idna from 3.6 to 3.7 in /docs/sphinx (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2239034532\" data-permission-text=\"Title is private\" data-url=\"https://github.com/bazelbuild/rules_python/issues/1851\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/bazelbuild/rules_python/pull/1851/hovercard\" href=\"https://github.com/bazelbuild/rules_python/pull/1851\">#1851</a>)"}},{"before":"28180f7a57cc2b9106c8dfca0fd3f94439daf990","after":null,"ref":"refs/heads/dependabot/pip/tests/integration/pip_repository_entry_points/idna-3.7","pushedAt":"2024-05-12T09:28:41.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"18d379e068339762a61dac8faf75ae3d1e11b282","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1846-5565bf6a45d61d25456cc689266c1d7a3f6a0422","pushedAt":"2024-05-12T09:28:35.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"5565bf6a45d61d25456cc689266c1d7a3f6a0422","after":"18d379e068339762a61dac8faf75ae3d1e11b282","ref":"refs/heads/main","pushedAt":"2024-05-12T09:28:34.000Z","pushType":"merge_queue_merge","commitsCount":1,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"},"commit":{"message":"build(deps): bump idna from 3.3 to 3.7 in /tests/integration/pip_repository_entry_points (#1846)\n\nBumps [idna](https://github.com/kjd/idna) from 3.3 to 3.7.\n<details>\n<summary>Release notes</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/kjd/idna/releases\">idna's\nreleases</a>.</em></p>\n<blockquote>\n<h2>v3.7</h2>\n<h2>What's Changed</h2>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could take\nexceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n<p><strong>Full Changelog</strong>: <a\nhref=\"https://github.com/kjd/idna/compare/v3.6...v3.7\">https://github.com/kjd/idna/compare/v3.6...v3.7</a></p>\n</blockquote>\n</details>\n<details>\n<summary>Changelog</summary>\n<p><em>Sourced from <a\nhref=\"https://github.com/kjd/idna/blob/master/HISTORY.rst\">idna's\nchangelog</a>.</em></p>\n<blockquote>\n<p>3.7 (2024-04-11)\n++++++++++++++++</p>\n<ul>\n<li>Fix issue where specially crafted inputs to encode() could\ntake exceptionally long amount of time to process. [CVE-2024-3651]</li>\n</ul>\n<p>Thanks to Guido Vranken for reporting the issue.</p>\n<p>3.6 (2023-11-25)\n++++++++++++++++</p>\n<ul>\n<li>Fix regression to include tests in source distribution.</li>\n</ul>\n<p>3.5 (2023-11-24)\n++++++++++++++++</p>\n<ul>\n<li>Update to Unicode 15.1.0</li>\n<li>String codec name is now &quot;idna2008&quot; as overriding the\nsystem codec\n&quot;idna&quot; was not working.</li>\n<li>Fix typing error for codec encoding</li>\n<li>&quot;setup.cfg&quot; has been added for this release due to some\ndownstream\nlack of adherence to PEP 517. Should be removed in a future release\nso please prepare accordingly.</li>\n<li>Removed reliance on a symlink for the &quot;idna-data&quot; tool to\ncomport\nwith PEP 517 and the Python Packaging User Guide for sdist\narchives.</li>\n<li>Added security reporting protocol for project</li>\n</ul>\n<p>Thanks Jon Ribbens, Diogo Teles Sant'Anna, Wu Tingfeng for\ncontributions\nto this release.</p>\n<p>3.4 (2022-09-14)\n++++++++++++++++</p>\n<ul>\n<li>Update to Unicode 15.0.0</li>\n<li>Migrate to pyproject.toml for build information (PEP 621)</li>\n<li>Correct another instance where generic exception was raised instead\nof\nIDNAError for malformed input</li>\n<li>Source distribution uses zeroized file ownership for improved\nreproducibility</li>\n</ul>\n<p>Thanks to Seth Michael Larson for contributions to this release.</p>\n</blockquote>\n</details>\n<details>\n<summary>Commits</summary>\n<ul>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/1d365e17e10d72d0b7876316fc7b9ca0eebdd38d\"><code>1d365e1</code></a>\nRelease v3.7</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/c1b3154939907fab67c5754346afaebe165ce8e6\"><code>c1b3154</code></a>\nMerge pull request <a\nhref=\"https://redirect.github.com/kjd/idna/issues/172\">#172</a> from\nkjd/optimize-contextj</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/0394ec76ff022813e770ba1fd89658790ea35623\"><code>0394ec7</code></a>\nMerge branch 'master' into optimize-contextj</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/cd58a23173d2b0a40b95ee680baf3e59e8d33966\"><code>cd58a23</code></a>\nMerge pull request <a\nhref=\"https://redirect.github.com/kjd/idna/issues/152\">#152</a> from\nelliotwutingfeng/dev</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/5beb28b9dd77912c0dd656d8b0fdba3eb80222e7\"><code>5beb28b</code></a>\nMore efficient resolution of joiner contexts</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/1b121483ed04d9576a1291758f537e1318cddc8b\"><code>1b12148</code></a>\nUpdate ossf/scorecard-action to v2.3.1</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/d516b874c3388047934938a500c7488d52c4e067\"><code>d516b87</code></a>\nUpdate Github actions/checkout to v4</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/c095c75943413c75ebf8ac74179757031b7f80b7\"><code>c095c75</code></a>\nMerge branch 'master' into dev</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/60a0a4cb61ec6834d74306bd8a1fa46daac94c98\"><code>60a0a4c</code></a>\nFix typo in GitHub Actions workflow key</li>\n<li><a\nhref=\"https://github.com/kjd/idna/commit/5918a0ef8034379c2e409ae93ee11d24295bb201\"><code>5918a0e</code></a>\nMerge branch 'master' into dev</li>\n<li>Additional commits viewable in <a\nhref=\"https://github.com/kjd/idna/compare/v3.3...v3.7\">compare\nview</a></li>\n</ul>\n</details>\n<br />\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=idna&package-manager=pip&previous-version=3.3&new-version=3.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n<details>\n<summary>Dependabot commands and options</summary>\n<br />\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after\nyour CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge\nand block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating\nit. You can achieve the same result by closing it manually\n- `@dependabot show <dependency name> ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the\n[Security Alerts\npage](https://github.com/bazelbuild/rules_python/network/alerts).\n\n</details>\n\nSigned-off-by: dependabot[bot] <support@github.com>\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump idna from 3.3 to 3.7 in /tests/integration/pip_repo…"}},{"before":"9c2f6ff23dffbe55f25d3b9c777fbcdd743250bc","after":null,"ref":"refs/heads/dependabot/pip/examples/pip_repository_annotations/idna-3.7","pushedAt":"2024-05-12T09:24:44.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"d0139a9a0d0d2abca9b3f7855a0af50b2b519a23","after":null,"ref":"refs/heads/dependabot/pip/tests/integration/pip_repository_entry_points/jinja2-3.1.4","pushedAt":"2024-05-12T09:24:43.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"5565bf6a45d61d25456cc689266c1d7a3f6a0422","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1847-bb16941f39a0d73332b5f6173e9cdb8620be4eeb","pushedAt":"2024-05-12T09:24:37.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}},{"before":"bb16941f39a0d73332b5f6173e9cdb8620be4eeb","after":null,"ref":"refs/heads/gh-readonly-queue/main/pr-1880-985031f1102cbb364ac14c266932ca29c1162aba","pushedAt":"2024-05-12T09:24:37.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"github-merge-queue[bot]","name":null,"path":"/apps/github-merge-queue","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/9919?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAESDJtsgA","startCursor":null,"endCursor":null}},"title":"Activity · bazelbuild/rules_python"}