{{ message }}
Bump the pre-commit group with 5 updates#2111
Merged
EliahKagan merged 1 commit intoMar 9, 2026
Merged
Conversation
Contributor
Sorry, something went wrong.
Bumps the pre-commit group with 5 updates: | Package | From | To | | --- | --- | --- | | [https://github.com/codespell-project/codespell](https://github.com/codespell-project/codespell) | `v2.4.1` | `2.4.2` | | [https://github.com/astral-sh/ruff-pre-commit](https://github.com/astral-sh/ruff-pre-commit) | `v0.11.12` | `0.15.5` | | [https://github.com/shellcheck-py/shellcheck-py](https://github.com/shellcheck-py/shellcheck-py) | `v0.10.0.1` | `0.11.0.1` | | [https://github.com/pre-commit/pre-commit-hooks](https://github.com/pre-commit/pre-commit-hooks) | `v5.0.0` | `6.0.0` | | [https://github.com/abravalheri/validate-pyproject](https://github.com/abravalheri/validate-pyproject) | `v0.24.1` | `0.25` | Updates `https://github.com/codespell-project/codespell` from v2.4.1 to 2.4.2 - [Release notes](https://github.com/codespell-project/codespell/releases) - [Commits](codespell-project/codespell@v2.4.1...v2.4.2) Updates `https://github.com/astral-sh/ruff-pre-commit` from v0.11.12 to 0.15.5 - [Release notes](https://github.com/astral-sh/ruff-pre-commit/releases) - [Commits](astral-sh/ruff-pre-commit@v0.11.12...v0.15.5) Updates `https://github.com/shellcheck-py/shellcheck-py` from v0.10.0.1 to 0.11.0.1 - [Commits](shellcheck-py/shellcheck-py@v0.10.0.1...v0.11.0.1) Updates `https://github.com/pre-commit/pre-commit-hooks` from v5.0.0 to 6.0.0 - [Release notes](https://github.com/pre-commit/pre-commit-hooks/releases) - [Changelog](https://github.com/pre-commit/pre-commit-hooks/blob/main/CHANGELOG.md) - [Commits](pre-commit/pre-commit-hooks@v5.0.0...v6.0.0) Updates `https://github.com/abravalheri/validate-pyproject` from v0.24.1 to 0.25 - [Release notes](https://github.com/abravalheri/validate-pyproject/releases) - [Changelog](https://github.com/abravalheri/validate-pyproject/blob/main/CHANGELOG.rst) - [Commits](abravalheri/validate-pyproject@v0.24.1...v0.25) --- updated-dependencies: - dependency-name: https://github.com/codespell-project/codespell dependency-version: 2.4.2 dependency-type: direct:production dependency-group: pre-commit - dependency-name: https://github.com/astral-sh/ruff-pre-commit dependency-version: 0.15.5 dependency-type: direct:production dependency-group: pre-commit - dependency-name: https://github.com/shellcheck-py/shellcheck-py dependency-version: 0.11.0.1 dependency-type: direct:production dependency-group: pre-commit - dependency-name: https://github.com/pre-commit/pre-commit-hooks dependency-version: 6.0.0 dependency-type: direct:production dependency-group: pre-commit - dependency-name: https://github.com/abravalheri/validate-pyproject dependency-version: '0.25' dependency-type: direct:production dependency-group: pre-commit ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
added
dependencies
Pull requests that update a dependency file
pre_commit
Pull requests that update pre_commit code
labels
Mar 9, 2026
EliahKagan
approved these changes
Mar 9, 2026
EliahKagan
left a comment
EliahKagan
left a comment
Member
There was a problem hiding this comment.
LGTM. This is the same change as in the test PR EliahKagan#5, which passed all CI checks at EliahKagan@57413b6. (Nonetheless, I'll wait for CI to pass before merging this.)
Sorry, something went wrong.
Contributor
There was a problem hiding this comment.
Pull request overview
Updates the repository’s pre-commit hook versions to newer releases, keeping local/CI linting and validation tooling up to date.
Changes:
- Bump
codespellfromv2.4.1tov2.4.2 - Bump
ruff-pre-commitfromv0.11.12tov0.15.5 - Bump
shellcheck-py,pre-commit-hooks, andvalidate-pyprojectto their latest specified versions
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
You can also share your feedback on Copilot code review. Take the survey.
Sorry, something went wrong.
736-c41-2c1-e464fc974
pushed a commit
to Swiss-Armed-Forces/Loom
that referenced
this pull request
Apr 27, 2026
This MR contains the following updates: | Package | Type | Update | Change | OpenSSF | |---|---|---|---|---| | [gitpython](https://github.com/gitpython-developers/GitPython) | dev | patch | `3.1.46` → `3.1.47` | [](https://securityscorecards.dev/viewer/?uri=github.com/gitpython-developers/GitPython) | --- ### Release Notes <details> <summary>gitpython-developers/GitPython (gitpython)</summary> ### [`v3.1.47`](https://github.com/gitpython-developers/GitPython/releases/tag/3.1.47): - with security fixes [Compare Source](gitpython-developers/GitPython@3.1.46...3.1.47) #### Advisories - <GHSA-rpm5-65cw-6hj4> - <GHSA-x2qx-6953-8485> #### What's Changed - Prepare next release by [@​Byron](https://github.com/Byron) in [#​2095](gitpython-developers/GitPython#2095) - Bump git/ext/gitdb from `335c0f6` to `4c63ee6` by [@​dependabot](https://github.com/dependabot)\[bot] in [#​2096](gitpython-developers/GitPython#2096) - DOC: README Add urls and updated a relative url by [@​Timour-Ilyas](https://github.com/Timour-Ilyas) in [#​2098](gitpython-developers/GitPython#2098) - Fix GitConfigParser ignoring multiple \[include] path entries by [@​daniel7an](https://github.com/daniel7an) in [#​2100](gitpython-developers/GitPython#2100) - Switch back from Alpine to Debian for WSL by [@​EliahKagan](https://github.com/EliahKagan) in [#​2108](gitpython-developers/GitPython#2108) - Bump git/ext/gitdb from `4c63ee6` to `5c1b303` by [@​dependabot](https://github.com/dependabot)\[bot] in [#​2106](gitpython-developers/GitPython#2106) - Run `gc.collect()` twice in `test_rename` on Python 3.12 by [@​EliahKagan](https://github.com/EliahKagan) in [#​2109](gitpython-developers/GitPython#2109) - fix: guard AutoInterrupt terminate during interpreter shutdown by [@​lweyrich1](https://github.com/lweyrich1) in [#​2105](gitpython-developers/GitPython#2105) - Improve CI infrastructure for pre-commit by [@​EliahKagan](https://github.com/EliahKagan) in [#​2110](gitpython-developers/GitPython#2110) - Bump the pre-commit group with 5 updates by [@​dependabot](https://github.com/dependabot)\[bot] in [#​2111](gitpython-developers/GitPython#2111) - Upgrade Sphinx for 3.14 support; drop doc build support on 3.8; test 3.14 by [@​EliahKagan](https://github.com/EliahKagan) in [#​2112](gitpython-developers/GitPython#2112) - Fix `Repo.active_branch` resolution for reftable-backed repositories by [@​Copilot](https://github.com/Copilot) in [#​2114](gitpython-developers/GitPython#2114) - docs: warn about GitDB performance with large commits by [@​mvanhorn](https://github.com/mvanhorn) in [#​2115](gitpython-developers/GitPython#2115) - cmd: fix kwarg formatting in docstring example by [@​UweSchwaeke](https://github.com/UweSchwaeke) in [#​2117](gitpython-developers/GitPython#2117) - Bump <https://github.com/astral-sh/ruff-pre-commit> from v0.15.5 to 0.15.8 in the pre-commit group by [@​dependabot](https://github.com/dependabot)\[bot] in [#​2122](gitpython-developers/GitPython#2122) - Add trailer support for commit creation by [@​Krishnachaitanyakc](https://github.com/Krishnachaitanyakc) in [#​2116](gitpython-developers/GitPython#2116) - Harden commit trailer subprocess handling and align trailer I/O paths by [@​Copilot](https://github.com/Copilot) in [#​2125](gitpython-developers/GitPython#2125) - git.cmd.Git.execute(..): fix `with_stdout=False` by [@​ngie-eign](https://github.com/ngie-eign) in [#​2126](gitpython-developers/GitPython#2126) - Make sure that multi-options are checked after splitting them with `shlex` by [@​Byron](https://github.com/Byron) in [#​2130](gitpython-developers/GitPython#2130) - Block unsafe underscored git kwargs / Fix for GHSA-rpm5-65cw-6hj4 by [@​WesR](https://github.com/WesR) in [#​2131](gitpython-developers/GitPython#2131) #### New Contributors - [@​Timour-Ilyas](https://github.com/Timour-Ilyas) made their first contribution in [#​2098](gitpython-developers/GitPython#2098) - [@​daniel7an](https://github.com/daniel7an) made their first contribution in [#​2100](gitpython-developers/GitPython#2100) - [@​lweyrich1](https://github.com/lweyrich1) made their first contribution in [#​2105](gitpython-developers/GitPython#2105) - [@​Copilot](https://github.com/Copilot) made their first contribution in [#​2114](gitpython-developers/GitPython#2114) - [@​mvanhorn](https://github.com/mvanhorn) made their first contribution in [#​2115](gitpython-developers/GitPython#2115) - [@​UweSchwaeke](https://github.com/UweSchwaeke) made their first contribution in [#​2117](gitpython-developers/GitPython#2117) - [@​Krishnachaitanyakc](https://github.com/Krishnachaitanyakc) made their first contribution in [#​2116](gitpython-developers/GitPython#2116) - [@​ngie-eign](https://github.com/ngie-eign) made their first contribution in [#​2126](gitpython-developers/GitPython#2126) - [@​WesR](https://github.com/WesR) made their first contribution in [#​2131](gitpython-developers/GitPython#2131) **Full Changelog**: <gitpython-developers/GitPython@3.1.46...3.1.47> </details> --- - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box --- This MR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNDEuNSIsInVwZGF0ZWRJblZlciI6IjQzLjE0MS41IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiLCJyZW5vdmF0ZSJdfQ==--> See merge request swiss-armed-forces/cyber-command/cea/loom!486 Co-authored-by: Loom MR Pipeline Trigger <group_103951964_bot_9504bb8dead6d4e406ad817a607f24be@noreply.gitlab.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Reviewers
Copilot code review Copilot Copilot left review comments
This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.
Bumps the pre-commit group with 5 updates:
v2.4.12.4.2v0.11.120.15.5v0.10.0.10.11.0.1v5.0.06.0.0v0.24.10.25Updates
https://github.com/codespell-project/codespellfrom v2.4.1 to 2.4.2Release notes
Sourced from https://github.com/codespell-project/codespell's releases.
... (truncated)
Commits
2ccb47fCompat with chardet 7 (#3886)4ec53bf[pre-commit.ci] pre-commit autoupdate2a4acbaBump actions/download-artifact from 7 to 8be17cacBump actions/upload-artifact from 6 to 704a0712Bump ruff (#3879)583d879avoide->avoid, avoided, avoids,1f59f34Add correction for 'foudation' to 'foundation'e047fdaAdd spelling correction for gather and variants.b5cd66drespondant->respondent92125a3Add detection of ivoice and variants.Updates
https://github.com/astral-sh/ruff-pre-commitfrom v0.11.12 to 0.15.5Release notes
Sourced from https://github.com/astral-sh/ruff-pre-commit's releases.
... (truncated)
Commits
b969e28Mirror: 0.15.51629a02Bump astral-sh/setup-uv from 7.3.0 to 7.3.1 in the github-actions group (#157)a27a2e4Mirror: 0.15.43fe3928Mirror: 0.15.30839f92Mirror: 0.15.2fa93bc3Mirror: 0.15.19619b35Add example of prek.toml configuration to README (#156)9a92c9eBump astral-sh/setup-uv from 7.2.1 to 7.3.0 in the github-actions group (#155)0470f7cMirror: 0.15.0f13ed5bBump astral-sh/setup-uv from 7.2.0 to 7.2.1 in the github-actions group (#153)Updates
https://github.com/shellcheck-py/shellcheck-pyfrom v0.10.0.1 to 0.11.0.1Commits
745efacv0.11.0.114cdfdeMerge pull request #148 from cesarcoatl/shellcheck-v0.11.03a62d13Upgrade to v0.11.07061949Merge pull request #146 from shellcheck-py/pre-commit-ci-update-config7cbc850[pre-commit.ci] pre-commit autoupdatee74756dMerge pull request #145 from shellcheck-py/pre-commit-ci-update-config5f8f6ca[pre-commit.ci] pre-commit autoupdatec50617fMerge pull request #142 from shellcheck-py/pre-commit-ci-update-config09cfdf1[pre-commit.ci] auto fixes from pre-commit.com hooks291a598[pre-commit.ci] pre-commit autoupdateUpdates
https://github.com/pre-commit/pre-commit-hooksfrom v5.0.0 to 6.0.0Release notes
Sourced from https://github.com/pre-commit/pre-commit-hooks's releases.
Changelog
Sourced from https://github.com/pre-commit/pre-commit-hooks's changelog.
Commits
3e8a870v6.0.0a8f8651Merge pull request #1185 from pre-commit/pre-commit-ci-update-config1acd88e[pre-commit.ci] pre-commit autoupdate1450343Merge pull request #1182 from pre-commit/pre-commit-ci-update-configb554d0a[pre-commit.ci] pre-commit autoupdate582b9c6Merge pull request #1174 from pre-commit/pre-commit-ci-update-config84f8a9d[pre-commit.ci] pre-commit autoupdateec458dcMerge pull request #1166 from pre-commit/pre-commit-ci-update-config1ea82df[pre-commit.ci] pre-commit autoupdate540cd64Merge pull request #1164 from pre-commit/pre-commit-ci-update-configUpdates
https://github.com/abravalheri/validate-pyprojectfrom v0.24.1 to 0.25Release notes
Sourced from https://github.com/abravalheri/validate-pyproject's releases.
Changelog
Sourced from https://github.com/abravalheri/validate-pyproject's changelog.
Commits
4b2e70dchore(deps): update pre-commit hooks (#292)89a9326chore(deps): update pre-commit hooks5a6b217Update Cirrus CI configs (#291)db0698eUpdate Python image for aux tasks in Cirrus CI7ac6bddExplicitly set cert file location for Windows tests on Cirrus CI5b36c10Update docker images on Cirrus CIb13681cUpdate Python image on Windows for Cirrus CIc55827bAllow package-data for stubs packages (#248)cea7fccchore(deps): bump the actions group with 2 updates (#288)356c744[pre-commit.ci] pre-commit autoupdate (#286)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions