4ddf717344
add CI workflow to auto-merge dependency upgrades
...
...only patch and minor versions, and only if CI passes.
https://docs.github.com/en/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions#enable-auto-merge-on-a-pull-request
2022-03-24 11:19:39 -07:00
1d36d31064
set User-Agent header globally
2022-03-24 11:18:33 -07:00
ee7b36c28d
build(deps): bump redis from 4.1.4 to 4.2.0
...
Bumps [redis](https://github.com/redis/redis-py ) from 4.1.4 to 4.2.0.
- [Release notes](https://github.com/redis/redis-py/releases )
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES )
- [Commits](https://github.com/redis/redis-py/compare/v4.1.4...v4.2.0 )
---
updated-dependencies:
- dependency-name: redis
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-24 05:53:16 -07:00
4c1d28af7c
build(deps): bump grpcio from 1.44.0 to 1.45.0
...
Bumps [grpcio](https://github.com/grpc/grpc ) from 1.44.0 to 1.45.0.
- [Release notes](https://github.com/grpc/grpc/releases )
- [Changelog](https://github.com/grpc/grpc/blob/master/doc/grpc_release_schedule.md )
- [Commits](https://github.com/grpc/grpc/compare/v1.44.0...v1.45.0 )
---
updated-dependencies:
- dependency-name: grpcio
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-24 05:52:32 -07:00
f21751a549
build(deps): bump pytz from 2021.3 to 2022.1
...
Bumps [pytz](https://github.com/stub42/pytz ) from 2021.3 to 2022.1.
- [Release notes](https://github.com/stub42/pytz/releases )
- [Commits](https://github.com/stub42/pytz/compare/release_2021.3...release_2022.1 )
---
updated-dependencies:
- dependency-name: pytz
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-21 06:45:18 -07:00
0ed206c402
build(deps): bump googleapis-common-protos from 1.55.0 to 1.56.0
...
Bumps [googleapis-common-protos](https://github.com/googleapis/python-api-common-protos ) from 1.55.0 to 1.56.0.
- [Release notes](https://github.com/googleapis/python-api-common-protos/releases )
- [Changelog](https://github.com/googleapis/python-api-common-protos/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/python-api-common-protos/compare/v1.55.0...v1.56.0 )
---
updated-dependencies:
- dependency-name: googleapis-common-protos
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-18 06:04:56 -07:00
76e1940e3c
build(deps): bump urllib3 from 1.26.8 to 1.26.9
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 1.26.8 to 1.26.9.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/1.26.9/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/1.26.8...1.26.9 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-17 06:01:32 -07:00
38583494ae
build(deps): bump markupsafe from 2.1.0 to 2.1.1
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/2.1.0...2.1.1 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-16 06:03:39 -07:00
b5b4901311
build(deps): bump wrapt from 1.13.3 to 1.14.0
...
Bumps [wrapt](https://github.com/GrahamDumpleton/wrapt ) from 1.13.3 to 1.14.0.
- [Release notes](https://github.com/GrahamDumpleton/wrapt/releases )
- [Changelog](https://github.com/GrahamDumpleton/wrapt/blob/develop/docs/changes.rst )
- [Commits](https://github.com/GrahamDumpleton/wrapt/compare/1.13.3...1.14.0 )
---
updated-dependencies:
- dependency-name: wrapt
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-10 05:10:23 -08:00
891955ae28
build(deps): bump itsdangerous from 2.1.0 to 2.1.1
...
Bumps [itsdangerous](https://github.com/pallets/itsdangerous ) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/pallets/itsdangerous/releases )
- [Changelog](https://github.com/pallets/itsdangerous/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/itsdangerous/compare/2.1.0...2.1.1 )
---
updated-dependencies:
- dependency-name: itsdangerous
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-10 05:09:56 -08:00
73707d3323
build(deps): bump google-cloud-appengine-logging from 1.1.0 to 1.1.1
...
Bumps [google-cloud-appengine-logging](https://github.com/googleapis/python-appengine-logging ) from 1.1.0 to 1.1.1.
- [Release notes](https://github.com/googleapis/python-appengine-logging/releases )
- [Changelog](https://github.com/googleapis/python-appengine-logging/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/python-appengine-logging/compare/v1.1.0...v1.1.1 )
---
updated-dependencies:
- dependency-name: google-cloud-appengine-logging
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-03-08 05:50:51 -08:00
eddc41f020
switch dependabot from weekly to daily
2022-03-04 06:53:48 -08:00
2add306e68
build(deps): bump tweepy from 4.5.0 to 4.6.0
...
Bumps [tweepy](https://github.com/tweepy/tweepy ) from 4.5.0 to 4.6.0.
- [Release notes](https://github.com/tweepy/tweepy/releases )
- [Changelog](https://github.com/tweepy/tweepy/blob/master/docs/changelog.md )
- [Commits](https://github.com/tweepy/tweepy/compare/v4.5.0...v4.6.0 )
---
updated-dependencies:
- dependency-name: tweepy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-28 06:43:50 -08:00
3a24a4462c
build(deps): bump googleapis-common-protos from 1.54.0 to 1.55.0
...
Bumps [googleapis-common-protos](https://github.com/googleapis/python-api-common-protos ) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/googleapis/python-api-common-protos/releases )
- [Changelog](https://github.com/googleapis/python-api-common-protos/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/python-api-common-protos/compare/v1.54.0...v1.55.0 )
---
updated-dependencies:
- dependency-name: googleapis-common-protos
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-28 06:43:22 -08:00
a2e36483c5
build(deps): bump websocket-client from 1.2.3 to 1.3.1
...
Bumps [websocket-client](https://github.com/websocket-client/websocket-client ) from 1.2.3 to 1.3.1.
- [Release notes](https://github.com/websocket-client/websocket-client/releases )
- [Changelog](https://github.com/websocket-client/websocket-client/blob/master/ChangeLog )
- [Commits](https://github.com/websocket-client/websocket-client/compare/v1.2.3...v1.3.1 )
---
updated-dependencies:
- dependency-name: websocket-client
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-28 06:42:52 -08:00
09f85c9ace
build(deps): bump lxml from 4.7.1 to 4.8.0
...
Bumps [lxml](https://github.com/lxml/lxml ) from 4.7.1 to 4.8.0.
- [Release notes](https://github.com/lxml/lxml/releases )
- [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt )
- [Commits](https://github.com/lxml/lxml/compare/lxml-4.7.1...lxml-4.8.0 )
---
updated-dependencies:
- dependency-name: lxml
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:35:55 -08:00
001391e19a
build(deps): bump proto-plus from 1.20.0 to 1.20.3
...
Bumps [proto-plus](https://github.com/googleapis/proto-plus-python ) from 1.20.0 to 1.20.3.
- [Release notes](https://github.com/googleapis/proto-plus-python/releases )
- [Changelog](https://github.com/googleapis/proto-plus-python/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/proto-plus-python/compare/v1.20.0...v1.20.3 )
---
updated-dependencies:
- dependency-name: proto-plus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:34:51 -08:00
5de20a7553
build(deps): bump itsdangerous from 2.0.1 to 2.1.0
...
Bumps [itsdangerous](https://github.com/pallets/itsdangerous ) from 2.0.1 to 2.1.0.
- [Release notes](https://github.com/pallets/itsdangerous/releases )
- [Changelog](https://github.com/pallets/itsdangerous/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/itsdangerous/compare/2.0.1...2.1.0 )
---
updated-dependencies:
- dependency-name: itsdangerous
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:09:40 -08:00
06b7a4f8ba
build(deps): bump grpcio from 1.43.0 to 1.44.0
...
Bumps [grpcio](https://github.com/grpc/grpc ) from 1.43.0 to 1.44.0.
- [Release notes](https://github.com/grpc/grpc/releases )
- [Changelog](https://github.com/grpc/grpc/blob/master/doc/grpc_release_schedule.md )
- [Commits](https://github.com/grpc/grpc/compare/v1.43.0...v1.44.0 )
---
updated-dependencies:
- dependency-name: grpcio
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:07:51 -08:00
ec8fa7aa34
build(deps): bump markupsafe from 2.0.1 to 2.1.0
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 2.0.1 to 2.1.0.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/2.0.1...2.1.0 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:07:25 -08:00
9c3ae81cb0
build(deps): bump click from 8.0.3 to 8.0.4
...
Bumps [click](https://github.com/pallets/click ) from 8.0.3 to 8.0.4.
- [Release notes](https://github.com/pallets/click/releases )
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/click/compare/8.0.3...8.0.4 )
---
updated-dependencies:
- dependency-name: click
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:06:26 -08:00
e46c189de7
build(deps): bump pymemcache from 3.5.0 to 3.5.1
...
Bumps [pymemcache](https://github.com/pinterest/pymemcache ) from 3.5.0 to 3.5.1.
- [Release notes](https://github.com/pinterest/pymemcache/releases )
- [Changelog](https://github.com/pinterest/pymemcache/blob/v3.5.1/ChangeLog.rst )
- [Commits](https://github.com/pinterest/pymemcache/compare/v3.5.0...v3.5.1 )
---
updated-dependencies:
- dependency-name: pymemcache
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:05:56 -08:00
1af4bb6ef2
build(deps): bump redis from 4.1.3 to 4.1.4
...
Bumps [redis](https://github.com/redis/redis-py ) from 4.1.3 to 4.1.4.
- [Release notes](https://github.com/redis/redis-py/releases )
- [Changelog](https://github.com/redis/redis-py/blob/master/CHANGES )
- [Commits](https://github.com/redis/redis-py/compare/v4.1.3...v4.1.4 )
---
updated-dependencies:
- dependency-name: redis
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:05:28 -08:00
c8c0194a51
build(deps): bump flask from 2.0.2 to 2.0.3
...
Bumps [flask](https://github.com/pallets/flask ) from 2.0.2 to 2.0.3.
- [Release notes](https://github.com/pallets/flask/releases )
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/flask/compare/2.0.2...2.0.3 )
---
updated-dependencies:
- dependency-name: flask
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-21 05:04:26 -08:00
42865f833c
build(deps): bump charset-normalizer from 2.0.11 to 2.0.12
...
Bumps [charset-normalizer](https://github.com/ousret/charset_normalizer ) from 2.0.11 to 2.0.12.
- [Release notes](https://github.com/ousret/charset_normalizer/releases )
- [Changelog](https://github.com/Ousret/charset_normalizer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/ousret/charset_normalizer/compare/2.0.11...2.0.12 )
---
updated-dependencies:
- dependency-name: charset-normalizer
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-14 11:13:22 -08:00
bdeb281b06
build(deps): bump humanize from 3.14.0 to 4.0.0
...
Bumps [humanize](https://github.com/jmoiron/humanize ) from 3.14.0 to 4.0.0.
- [Release notes](https://github.com/jmoiron/humanize/releases )
- [Commits](https://github.com/jmoiron/humanize/compare/3.14.0...4.0.0 )
---
updated-dependencies:
- dependency-name: humanize
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-14 11:05:37 -08:00
96dba41c9b
logging: use separate loggers for each module with their names
2022-02-11 22:38:56 -08:00
2731e706f4
don't use flask-gae-static on prod
2022-02-11 22:38:40 -08:00
c9e534a59e
pin all dependencies in requirements.txt
2022-02-10 06:50:44 -08:00
22c559ed52
build(deps): update google-cloud-logging requirement
...
Updates the requirements on [google-cloud-logging](https://github.com/googleapis/python-logging ) to permit the latest version.
- [Release notes](https://github.com/googleapis/python-logging/releases )
- [Changelog](https://github.com/googleapis/python-logging/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/python-logging/compare/v2.7.0...v3.0.0 )
---
updated-dependencies:
- dependency-name: google-cloud-logging
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-02-09 07:01:23 -08:00
7aec2a70de
update tests to handle new User-Agent from webutil
...
snarfed/webutil@ccebf40ac0 , snarfed/oauth-dropins#5
2022-02-09 06:52:41 -08:00
39e342579e
README: minor development instructions tweak
2022-01-17 22:21:36 -08:00
4eaf70aa51
add 'ignored' status for AP requests where the target has no webmention endpoint
2022-01-11 22:40:44 -08:00
d16a20bcff
build(deps): update requests requirement from ~=2.26 to ~=2.27
...
Updates the requirements on [requests](https://github.com/psf/requests ) to permit the latest version.
- [Release notes](https://github.com/psf/requests/releases )
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md )
- [Commits](https://github.com/psf/requests/compare/v2.26.0...v2.27.1 )
---
updated-dependencies:
- dependency-name: requests
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-10 06:06:03 -08:00
0b1c8f5e7d
switch from app_server to `flask run` for local development
...
app_server doesn't emit app logging messages from gunicorn workers, and it was nontrivial to add. also app_server seems largely abandoned, and flask run is well supported.
2021-12-31 23:28:11 -08:00
535cf7ba70
add response body for inbox Accept activities
...
fixes https://console.cloud.google.com/errors/COew6ZH4_eyy2wE
2021-12-29 19:34:46 -08:00
2f28be09be
convert %-formatted strings with args in logging.* calls to f-strings
2021-12-27 22:45:57 -08:00
fcb7c366ba
webmention: ostatus: don't try to serialize entire feedparser output
...
...since it includes an exception (eg `SAXParserException`) in the `bozo_exception` field if the bozo bit is set. https://feedparser.readthedocs.io/en/latest/bozo.html
fixes https://console.cloud.google.com/errors/CKThy6imn5_A2wE
2021-12-26 09:58:07 -08:00
ee7998480e
build(deps): update mox3 requirement from ~=0.28 to ~=1.1
...
Updates the requirements on [mox3](https://docs.openstack.org/mox3/latest/ ) to permit the latest version.
---
updated-dependencies:
- dependency-name: mox3
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-13 08:00:56 -08:00
3a54db8fb5
build(deps): update gunicorn requirement from ~=20.0 to ~=20.1
...
Updates the requirements on [gunicorn](https://github.com/benoitc/gunicorn ) to permit the latest version.
- [Release notes](https://github.com/benoitc/gunicorn/releases )
- [Commits](https://github.com/benoitc/gunicorn/compare/20.0.0...20.1.0 )
---
updated-dependencies:
- dependency-name: gunicorn
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-13 07:41:59 -08:00
46dd866607
build(deps): update flask requirement from ~=2.0.1 to ~=2.0.2
...
Updates the requirements on [flask](https://github.com/pallets/flask ) to permit the latest version.
- [Release notes](https://github.com/pallets/flask/releases )
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/flask/compare/2.0.1...2.0.2 )
---
updated-dependencies:
- dependency-name: flask
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-12 13:01:35 -08:00
99f35102ef
build(deps): update google-cloud-logging requirement
...
Updates the requirements on [google-cloud-logging](https://github.com/googleapis/python-logging ) to permit the latest version.
- [Release notes](https://github.com/googleapis/python-logging/releases )
- [Changelog](https://github.com/googleapis/python-logging/blob/main/CHANGELOG.md )
- [Commits](https://github.com/googleapis/python-logging/compare/v2.2.0...v2.7.0 )
---
updated-dependencies:
- dependency-name: google-cloud-logging
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-12 12:38:50 -08:00
ce41dbf92e
build(deps): update mf2util requirement from ~=0.5.0 to ~=0.5.1
...
Updates the requirements on [mf2util](https://github.com/kylewm/mf2util ) to permit the latest version.
- [Release notes](https://github.com/kylewm/mf2util/releases )
- [Commits](https://github.com/kylewm/mf2util/commits )
---
updated-dependencies:
- dependency-name: mf2util
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-12 12:33:32 -08:00
017d4037b5
build(deps): update requests requirement from ~=2.22 to ~=2.26
...
Updates the requirements on [requests](https://github.com/psf/requests ) to permit the latest version.
- [Release notes](https://github.com/psf/requests/releases )
- [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md )
- [Commits](https://github.com/psf/requests/compare/v2.22.0...v2.26.0 )
---
updated-dependencies:
- dependency-name: requests
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-12 12:33:26 -08:00
25b94100f7
build(deps): update feedparser requirement from ~=6.0.2 to ~=6.0.8
...
Updates the requirements on [feedparser](https://github.com/kurtmckee/feedparser ) to permit the latest version.
- [Release notes](https://github.com/kurtmckee/feedparser/releases )
- [Changelog](https://github.com/kurtmckee/feedparser/blob/develop/CHANGELOG.rst )
- [Commits](https://github.com/kurtmckee/feedparser/compare/6.0.2...6.0.8 )
---
updated-dependencies:
- dependency-name: feedparser
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
2021-12-12 12:33:17 -08:00
6fb58a6918
add dependabot, codeql analysis actions
2021-12-12 12:30:56 -08:00
5ddf90fd93
fix log message f-string
2021-11-01 16:14:36 -07:00
ec6945c49d
requirements.txt: app-server requires python 3.8+
2021-11-01 16:14:10 -07:00
fdd42ad1d4
override preferredUsername to always be the user's domain
...
...since Mastodon looks up [preferredUsername]@fed.brid.gy. see #77
2021-10-22 21:17:45 -07:00
d23792d8b3
webmention: skip sending AP Update if content hasn't changed
...
fixes #78
2021-10-10 13:47:33 -07:00
Ryan Barrett