dikka/murmur
1
0
Fork 0
Code Issues 3 Pull requests Projects Releases 4 Packages Wiki Activity Actions

build(deps): bump gitpython from 3.1.46 to 3.1.47 in /poc/nemotron #23

Closed
dependabot[bot] wants to merge 1 commit from dependabot/uv/poc/nemotron/gitpython-3.1.47 into trunk
pull from: dependabot/uv/poc/nemotron/gitpython-3.1.47
merge into: dikka:trunk
Conversation 0 Commits 1 Files changed 1 +22 -27
dependabot[bot] commented 2026-04-26 01:24:45 +00:00 (Migrated from codeberg.org)
Copy link

Bumps gitpython from 3.1.46 to 3.1.47.

Release notes

Sourced from gitpython's releases.

3.1.47 - with security fixes

Advisories

What's Changed

New Contributors

Full Changelog: https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47

Commits
  • 4199cb8 bump version to 3.1.47
  • 0f68db0 Merge pull request #2131 from WesR/main
  • 43d92de git.cmd: harden unsafe option canonicalization and isolate push test cases
  • 9aed7cf linter fix
  • 1421958 Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4
  • da54523 Merge pull request #2130 from gitpython-developers/fix-multi-options
  • c9a2678 Make sure that multi-options are checked after splitting them with shlex
  • 75e6c6b Merge pull request #2126 from ngie-eign/fix-execute-with_stdout-no-issues
  • 6fc4742 test_avoids_changing...: don't leave test artifacts behind
  • d966a0d git.cmd.Git.execute(..): fix with_stdout=False
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.46 to 3.1.47. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/gitpython-developers/GitPython/releases">gitpython's releases</a>.</em></p> <blockquote> <h2>3.1.47 - with security fixes</h2> <h2>Advisories</h2> <ul> <li><a href="https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4">https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rpm5-65cw-6hj4</a></li> <li><a href="https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485">https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-x2qx-6953-8485</a></li> </ul> <h2>What's Changed</h2> <ul> <li>Prepare next release by <a href="https://github.com/Byron"><code>@​Byron</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2095">gitpython-developers/GitPython#2095</a></li> <li>Bump git/ext/gitdb from <code>335c0f6</code> to <code>4c63ee6</code> by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2096">gitpython-developers/GitPython#2096</a></li> <li>DOC: README Add urls and updated a relative url by <a href="https://github.com/Timour-Ilyas"><code>@​Timour-Ilyas</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2098">gitpython-developers/GitPython#2098</a></li> <li>Fix GitConfigParser ignoring multiple [include] path entries by <a href="https://github.com/daniel7an"><code>@​daniel7an</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2100">gitpython-developers/GitPython#2100</a></li> <li>Switch back from Alpine to Debian for WSL by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2108">gitpython-developers/GitPython#2108</a></li> <li>Bump git/ext/gitdb from <code>4c63ee6</code> to <code>5c1b303</code> by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2106">gitpython-developers/GitPython#2106</a></li> <li>Run <code>gc.collect()</code> twice in <code>test_rename</code> on Python 3.12 by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2109">gitpython-developers/GitPython#2109</a></li> <li>fix: guard AutoInterrupt terminate during interpreter shutdown by <a href="https://github.com/lweyrich1"><code>@​lweyrich1</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2105">gitpython-developers/GitPython#2105</a></li> <li>Improve CI infrastructure for pre-commit by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2110">gitpython-developers/GitPython#2110</a></li> <li>Bump the pre-commit group with 5 updates by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2111">gitpython-developers/GitPython#2111</a></li> <li>Upgrade Sphinx for 3.14 support; drop doc build support on 3.8; test 3.14 by <a href="https://github.com/EliahKagan"><code>@​EliahKagan</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2112">gitpython-developers/GitPython#2112</a></li> <li>Fix <code>Repo.active_branch</code> resolution for reftable-backed repositories by <a href="https://github.com/Copilot"><code>@​Copilot</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2114">gitpython-developers/GitPython#2114</a></li> <li>docs: warn about GitDB performance with large commits by <a href="https://github.com/mvanhorn"><code>@​mvanhorn</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2115">gitpython-developers/GitPython#2115</a></li> <li>cmd: fix kwarg formatting in docstring example by <a href="https://github.com/UweSchwaeke"><code>@​UweSchwaeke</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2117">gitpython-developers/GitPython#2117</a></li> <li>Bump <a href="https://github.com/astral-sh/ruff-pre-commit">https://github.com/astral-sh/ruff-pre-commit</a> from v0.15.5 to 0.15.8 in the pre-commit group by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2122">gitpython-developers/GitPython#2122</a></li> <li>Add trailer support for commit creation by <a href="https://github.com/Krishnachaitanyakc"><code>@​Krishnachaitanyakc</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2116">gitpython-developers/GitPython#2116</a></li> <li>Harden commit trailer subprocess handling and align trailer I/O paths by <a href="https://github.com/Copilot"><code>@​Copilot</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2125">gitpython-developers/GitPython#2125</a></li> <li>git.cmd.Git.execute(..): fix <code>with_stdout=False</code> by <a href="https://github.com/ngie-eign"><code>@​ngie-eign</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2126">gitpython-developers/GitPython#2126</a></li> <li>Make sure that multi-options are checked after splitting them with <code>shlex</code> by <a href="https://github.com/Byron"><code>@​Byron</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2130">gitpython-developers/GitPython#2130</a></li> <li>Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4 by <a href="https://github.com/WesR"><code>@​WesR</code></a> in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2131">gitpython-developers/GitPython#2131</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/Timour-Ilyas"><code>@​Timour-Ilyas</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2098">gitpython-developers/GitPython#2098</a></li> <li><a href="https://github.com/daniel7an"><code>@​daniel7an</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2100">gitpython-developers/GitPython#2100</a></li> <li><a href="https://github.com/lweyrich1"><code>@​lweyrich1</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2105">gitpython-developers/GitPython#2105</a></li> <li><a href="https://github.com/Copilot"><code>@​Copilot</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2114">gitpython-developers/GitPython#2114</a></li> <li><a href="https://github.com/mvanhorn"><code>@​mvanhorn</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2115">gitpython-developers/GitPython#2115</a></li> <li><a href="https://github.com/UweSchwaeke"><code>@​UweSchwaeke</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2117">gitpython-developers/GitPython#2117</a></li> <li><a href="https://github.com/Krishnachaitanyakc"><code>@​Krishnachaitanyakc</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2116">gitpython-developers/GitPython#2116</a></li> <li><a href="https://github.com/ngie-eign"><code>@​ngie-eign</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2126">gitpython-developers/GitPython#2126</a></li> <li><a href="https://github.com/WesR"><code>@​WesR</code></a> made their first contribution in <a href="https://redirect.github.com/gitpython-developers/GitPython/pull/2131">gitpython-developers/GitPython#2131</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47">https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/gitpython-developers/GitPython/commit/4199cb89755f705801a4cb241723325b46201f51"><code>4199cb8</code></a> bump version to 3.1.47</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/0f68db0710f9125762fca5dbc2328593537ae923"><code>0f68db0</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2131">#2131</a> from WesR/main</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/43d92dec4683568d11495956dd556161f17c3ea8"><code>43d92de</code></a> git.cmd: harden unsafe option canonicalization and isolate push test cases</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/9aed7cf8c20f69effcfcf7ebef09f312f73ab826"><code>9aed7cf</code></a> linter fix</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/142195888e713542189533a52cdfc333f05c3af6"><code>1421958</code></a> Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/da545232d0401fb9fb7660f9ff67991996674dda"><code>da54523</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2130">#2130</a> from gitpython-developers/fix-multi-options</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/c9a26789d88b18f8b4620f37307df2976292d2a0"><code>c9a2678</code></a> Make sure that multi-options are checked after splitting them with <code>shlex</code></li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/75e6c6bab4b3afab0bcb6bd6d2447b3e7eb6645c"><code>75e6c6b</code></a> Merge pull request <a href="https://redirect.github.com/gitpython-developers/GitPython/issues/2126">#2126</a> from ngie-eign/fix-execute-with_stdout-no-issues</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/6fc474265d863cbb9fbabdbfcc957f27cea2b5c4"><code>6fc4742</code></a> test_avoids_changing...: don't leave test artifacts behind</li> <li><a href="https://github.com/gitpython-developers/GitPython/commit/d966a0deabe3c8cf09ba3d1b0f54a29bdbdb4f1d"><code>d966a0d</code></a> git.cmd.Git.execute(..): fix <code>with_stdout=False</code></li> <li>Additional commits viewable in <a href="https://github.com/gitpython-developers/GitPython/compare/3.1.46...3.1.47">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=gitpython&package-manager=uv&previous-version=3.1.46&new-version=3.1.47)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dikkadev/murmur/network/alerts). </details>
dikka closed this pull request 2026-05-23 22:01:56 +00:00

Pull request closed

This pull request cannot be reopened because the branch was deleted.
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug
Something isn't working

  
dependencies
Pull requests that update a dependency file

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
python:uv
Pull requests that update python:uv code

  
question
Further information is requested

  
wontfix
This will not be worked on

No labels
bug
dependencies
documentation
duplicate
enhancement
good first issue
help wanted
invalid
python:uv
question
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
dikka/murmur!23
No description provided.