chore(deps): update actions/checkout action to v6.0.2 (#412 )

Co-authored-by: renovate[bot] <renovate-bot@git.tainton.uk> Co-committed-by: renovate[bot] <renovate-bot@git.tainton.uk>
chore(ci): remove Snyk workflow for security monitoring (#411 )
2026-01-22 18:43:43 +00:00 · 2026-01-21 20:36:36 +00:00 · 2026-01-19 20:17:00 +00:00 · 2026-01-19 19:47:31 +00:00
5 changed files with 34 additions and 22 deletions
--- a/.gitea/workflows-disabled/snyk.yml
+++ b/.gitea/workflows-disabled/snyk.yml
--- a/.gitea/workflows/ci.yml
+++ b/.gitea/workflows/ci.yml
@@ -12,7 +12,7 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Check out repository code
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
        with:
          fetch-depth: 0
@@ -64,19 +64,19 @@ jobs:
      #     SONAR_HOST_URL: ${{ secrets.SONARQUBE_HOST_URL }}
      #     SONAR_TOKEN: ${{ secrets.SONARQUBE_TOKEN }}
-      - name: Set up environment for Snyk
+      # - name: Set up environment for Snyk
-        run: |
+      #   run: |
-          uv pip freeze > requirements.txt
+      #     uv pip freeze > requirements.txt
-          mv pyproject.toml pyproject.toml.bak
+      #     mv pyproject.toml pyproject.toml.bak
-          mv uv.lock uv.lock.bak
+      #     mv uv.lock uv.lock.bak
-      - name: Snyk SAST Scan
+      # - name: Snyk SAST Scan
-        uses: snyk/actions/python@master
+      #   uses: snyk/actions/python@master
-        env:
+      #   env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      #     SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
-        with:
+      #   with:
-          # command: snyk
+      #     # command: snyk
-          args: snyk code test #--all-projects --exclude=.archive
+      #     args: snyk code test #--all-projects --exclude=.archive
      # - name: Snyk Vulnerability Scan
      #   uses: snyk/actions/python@master
@@ -88,8 +88,8 @@ jobs:
      #     # command: snyk
      #     args: snyk test #--all-projects --exclude=.archive
-      - name: Reverse set up environment for Snyk
+      # - name: Reverse set up environment for Snyk
-        run: |
+      #   run: |
-          rm -f requirements.txt
+      #     rm -f requirements.txt
-          mv pyproject.toml.bak pyproject.toml
+      #     mv pyproject.toml.bak pyproject.toml
-          mv uv.lock.bak uv.lock
+      #     mv uv.lock.bak uv.lock
--- a/.gitea/workflows/release.yml
+++ b/.gitea/workflows/release.yml
@@ -61,7 +61,7 @@ jobs:
          REPO: ${{ gitea.repository }}
      - name: Check out repository
-        uses: actions/checkout@v6.0.1
+        uses: actions/checkout@v6.0.2
        with:
          fetch-depth: 0
          ref: ${{ needs.tag.outputs.tag_name }}
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -13,8 +13,8 @@ dependencies = [
    "requests<3.0.0,>=2.32.3",
 ]
-[tool.uv]
+[dependency-groups]
-dev-dependencies = [
+dev = [
    "black<26.1.1,>=26.1.0",
    "coverage<8.0.0,>=7.6.10",
    "isort<7.0.1,>=7.0.0",
--- a/renovate.json
+++ b/renovate.json
@@ -11,6 +11,8 @@
  "semanticCommits": "enabled",
  "semanticCommitScope": "deps",
  "semanticCommitType": "feat",
  "osvVulnerabilityAlerts": true,
  "dependencyDashboardOSVVulnerabilitySummary": "all",
  "vulnerabilityAlerts": {
    "commitMessagePrefix": "[SECURITY] ",
    "enabled": true,
@@ -19,5 +21,15 @@
  },
  "lockFileMaintenance": {
    "enabled": true
-  }
+  },
  "packageRules": [
    {
      "matchDepTypes": ["devDependencies"],
      "automerge": true
    },
    {
      "matchUpdateTypes": ["patch"],
      "automerge": true
    }
  ]
 }
Author	SHA1	Message	Date
renovate[bot]	174de6aa12	chore(deps): update actions/checkout action to v6.0.2 (#412 ) All checks were successful Release / Tag release (push) Successful in 12s Details Release / Create Release (push) Successful in 3s Details Release / Publish Docker Images (push) Successful in 1m48s Details Co-authored-by: renovate[bot] <renovate-bot@git.tainton.uk> Co-committed-by: renovate[bot] <renovate-bot@git.tainton.uk>	2026-01-22 18:43:43 +00:00
Luke Tainton	2cce03cab1	chore(ci): remove Snyk workflow for security monitoring (#411 ) Reviewed-on: #411	2026-01-21 20:36:36 +00:00
Luke Tainton	2894255bd0	Update renovate.json All checks were successful Snyk / security (push) Successful in 30s Details	2026-01-19 20:17:00 +00:00
renovate[bot]	afe0465a68	feat(deps): lock file maintenance (#410 ) All checks were successful Snyk / security (push) Successful in 28s Details This PR contains the following updates: \| Update \| Change \| \|---\|---\| \| lockFileMaintenance \| All locks refreshed \| 🔧 This Pull Request updates lock files to use the latest dependency versions. --- ### Configuration 📅 Schedule: Branch creation - "before 4am on monday" (UTC), Automerge - At any time (no schedule defined). 🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied. ♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 Immortal: This PR will be recreated if closed unmerged. Get [config help](https://github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi44NC4yIiwidXBkYXRlZEluVmVyIjoiNDIuODQuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsidHlwZS9kZXBlbmRlbmNpZXMiXX0=--> Reviewed-on: #410 Reviewed-by: Luke Tainton <luke@tainton.uk> Co-authored-by: renovate[bot] <renovate-bot@git.tainton.uk> Co-committed-by: renovate[bot] <renovate-bot@git.tainton.uk>	2026-01-19 19:47:31 +00:00