From 8582a890a54af1c9ea029294aee19be4c791b2af Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 6 Jul 2023 01:11:33 +0000 Subject: [PATCH 01/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291773 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291777 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5661566 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5661566 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 4972e710945..b01e3ba323e 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.9-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 2f3a5a255a70b1f4e1efa7f48560f773502090b1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 17 Jul 2023 02:17:08 +0000 Subject: [PATCH 02/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5777683 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index 0c7d89e177d..ef236d40df1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,8 +3,8 @@ pandas==2.0.2 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.1; platform_machine != 'armv7l' -cryptography==40.0.1; platform_machine == 'armv7l' +cryptography==41.0.2; platform_machine != 'armv7l' +cryptography==41.0.2; platform_machine == 'armv7l' aiohttp==3.8.4 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From ea04fa6b762f5d012d4fbe096141558537d8be7a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 21 Jul 2023 20:16:26 +0000 Subject: [PATCH 03/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 0c7d89e177d..ac4a385751e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,7 +5,7 @@ pandas-ta==0.3.14b ccxt==3.1.44 cryptography==41.0.1; platform_machine != 'armv7l' cryptography==40.0.1; platform_machine == 'armv7l' -aiohttp==3.8.4 +aiohttp==3.8.5 SQLAlchemy==2.0.16 python-telegram-bot==20.3 # can't be hard-pinned due to telegram-bot pinning httpx with ~ From 882b2f77217086b2188e33443cee25355329a558 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 2 Aug 2023 23:54:45 +0000 Subject: [PATCH 04/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813745 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813746 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813750 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index 0c7d89e177d..d5e638f1b16 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,8 +3,8 @@ pandas==2.0.2 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.1; platform_machine != 'armv7l' -cryptography==40.0.1; platform_machine == 'armv7l' +cryptography==41.0.3; platform_machine != 'armv7l' +cryptography==41.0.3; platform_machine == 'armv7l' aiohttp==3.8.4 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From fff59c2fc0e9f5372f9158b29eeeac1667fa7009 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 10 Aug 2023 04:32:19 +0000 Subject: [PATCH 05/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291773 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291777 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5661566 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 4972e710945..1d7782575ca 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.12.0b4-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 4dc89b6954b07a49fc28d44710d11fd78c24ef4d Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 9 Sep 2023 04:50:25 +0000 Subject: [PATCH 06/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291773 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291777 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5661566 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 4972e710945..4b79cb1b181 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.12.0rc1-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From f132d62397e95d19b142f54e709a5906a22e6598 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 21 Sep 2023 05:21:51 +0000 Subject: [PATCH 07/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291773 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5291777 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-5661566 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 4972e710945..7ec5f06d2c9 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.12.0rc2-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 1064ba7235d6a324d32675b0875a3d38e5e2f54f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 22 Sep 2023 18:41:37 +0000 Subject: [PATCH 08/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index f91a8d2b5ef..768df4189c7 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,8 +3,8 @@ pandas==2.0.3 pandas-ta==0.3.14b ccxt==4.0.88 -cryptography==41.0.3; platform_machine != 'armv7l' -cryptography==40.0.1; platform_machine == 'armv7l' +cryptography==41.0.4; platform_machine != 'armv7l' +cryptography==41.0.4; platform_machine == 'armv7l' aiohttp==3.8.5 SQLAlchemy==2.0.20 python-telegram-bot==20.5 From bac6a1f42c26fa694cf043c148337a1ed9d1ce7f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 26 Sep 2023 22:06:48 +0000 Subject: [PATCH 09/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 --- requirements-freqai.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index 0c11f8a0973..13a50717ffc 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -10,3 +10,4 @@ lightgbm==4.1.0 xgboost==2.0.0 tensorboard==2.14.0 datasieve==0.1.7 +pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability From a2864462420113284453a2b5a9f9b6d6ba9df358 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 29 Sep 2023 21:08:23 +0000 Subject: [PATCH 10/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PYDANTIC-5907722 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index efcb478ca6e..e308e7a3766 100644 --- a/requirements.txt +++ b/requirements.txt @@ -39,7 +39,7 @@ sdnotify==0.3.2 # API Server fastapi==0.103.1 -pydantic==2.3.0 +pydantic==2.4.0 uvicorn==0.23.2 pyjwt==2.8.0 aiofiles==23.2.1 From 8ce0c81d902bf28c474f871768e6ef3e1cb6a51c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 2 Oct 2023 08:39:16 +0000 Subject: [PATCH 11/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PYDANTIC-5926694 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5cbc2a50f32..ddf1fa06b6d 100644 --- a/requirements.txt +++ b/requirements.txt @@ -39,7 +39,7 @@ sdnotify==0.3.2 # API Server fastapi==0.103.2 -pydantic==2.3.0 +pydantic==2.4.0 uvicorn==0.23.2 pyjwt==2.8.0 aiofiles==23.2.1 From 54b2cd00deb2d3017e3b89e1279964eba9d59a80 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 4 Oct 2023 08:58:23 +0000 Subject: [PATCH 12/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5cbc2a50f32..b75442413a1 100644 --- a/requirements.txt +++ b/requirements.txt @@ -13,7 +13,7 @@ httpx>=0.24.1 arrow==1.3.0 cachetools==5.3.1 requests==2.31.0 -urllib3==2.0.5 +urllib3==2.0.6 jsonschema==4.19.1 TA-Lib==0.4.28 technical==1.4.0 From 90da97f9e80cb459d4d0459299d658fd3a51e4f5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 14 Oct 2023 03:18:04 +0000 Subject: [PATCH 13/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 902cab9aa10..7d23c162e86 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.10.13-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 53e482bf1c2fefafae5ee1a20d531f7d0ef9fb67 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 19 Oct 2023 05:06:17 +0000 Subject: [PATCH 14/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5cbc2a50f32..14e2d05ee54 100644 --- a/requirements.txt +++ b/requirements.txt @@ -13,7 +13,7 @@ httpx>=0.24.1 arrow==1.3.0 cachetools==5.3.1 requests==2.31.0 -urllib3==2.0.5 +urllib3==2.0.7 jsonschema==4.19.1 TA-Lib==0.4.28 technical==1.4.0 From 5476cad44fd58e9c8c6218ec9043692060696fc0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 21 Oct 2023 20:11:43 +0000 Subject: [PATCH 15/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 --- requirements-freqai.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index b79f02e93f7..dc5f7582c76 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -10,3 +10,5 @@ lightgbm==4.1.0 xgboost==2.0.0 tensorboard==2.14.1 datasieve==0.1.7 +numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability +pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability From 3b043526925931a9cfc11ca12e310081060d6c04 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 26 Oct 2023 00:35:29 +0000 Subject: [PATCH 16/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 From eb28aec51d5b9827a6f92e5e2a02fdc6f71e9320 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 27 Oct 2023 04:03:49 +0000 Subject: [PATCH 17/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 05162ec26de..dc373fdcb16 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,7 +4,7 @@ pandas==2.0.3 pandas-ta==0.3.14b ccxt==4.1.22 -cryptography==41.0.4 +cryptography==41.0.5 aiohttp==3.8.6 SQLAlchemy==2.0.22 python-telegram-bot==20.6 From 64d1366b20c2aae21336ec9e42e9494a4c846500 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 4 Nov 2023 03:54:50 +0000 Subject: [PATCH 18/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 9e518a01dd0..f663aa08cf5 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.12-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From a7d94ba54447f26b8d62b0092101f09a84102e1a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 6 Nov 2023 05:51:12 +0000 Subject: [PATCH 19/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index 9e518a01dd0..a2542ae1bf1 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.10.13-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 6cc70fdb2e073c1e7f897694abe844cc00dd660e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 15 Nov 2023 20:04:50 +0000 Subject: [PATCH 20/42] Bump scikit-learn from 1.1.3 to 1.3.2 Bumps [scikit-learn](https://github.com/scikit-learn/scikit-learn) from 1.1.3 to 1.3.2. - [Release notes](https://github.com/scikit-learn/scikit-learn/releases) - [Commits](https://github.com/scikit-learn/scikit-learn/compare/1.1.3...1.3.2) --- updated-dependencies: - dependency-name: scikit-learn dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements-freqai.txt | 2 +- requirements-hyperopt.txt | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index 4e4e48755af..5c499ab6567 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -3,7 +3,7 @@ -r requirements-plot.txt # Required for freqai -scikit-learn==1.1.3 +scikit-learn==1.3.2 joblib==1.3.2 catboost==1.2.2; 'arm' not in platform_machine lightgbm==4.1.0 diff --git a/requirements-hyperopt.txt b/requirements-hyperopt.txt index d1931eec1eb..8698317d4cf 100644 --- a/requirements-hyperopt.txt +++ b/requirements-hyperopt.txt @@ -3,6 +3,6 @@ # Required for hyperopt scipy==1.11.3 -scikit-learn==1.1.3 +scikit-learn==1.3.2 scikit-optimize==0.9.0 filelock==3.13.1 From a643c4624eeec700e3e5784ebbce514955a79827 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 22 Nov 2023 16:16:32 +0000 Subject: [PATCH 21/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-OPENSSL-3368735 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index c17c0adbeeb..b8562cc3080 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.11-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 4cb5a2a58447801c13a4de571dc7037b8d76fdde Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 29 Nov 2023 16:07:14 +0000 Subject: [PATCH 22/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6092044 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index e3f2b4bbb3c..a0cee30e863 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,7 +3,7 @@ pandas==2.1.3 pandas-ta==0.3.14b ccxt==4.1.57 -cryptography==41.0.5 +cryptography==41.0.6 aiohttp==3.9.0 SQLAlchemy==2.0.23 python-telegram-bot==20.6 From ef5baf72d83cbe50c9d029521636bc201c2c7f3c Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 29 Nov 2023 18:29:30 +0000 Subject: [PATCH 23/42] fix: docker/Dockerfile.armhf to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 - https://snyk.io/vuln/SNYK-DEBIAN11-NCURSES-5421197 --- docker/Dockerfile.armhf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docker/Dockerfile.armhf b/docker/Dockerfile.armhf index c17c0adbeeb..8fe62fd6dc4 100644 --- a/docker/Dockerfile.armhf +++ b/docker/Dockerfile.armhf @@ -1,4 +1,4 @@ -FROM python:3.9.16-slim-bullseye as base +FROM python:3.13.0a2-slim-bullseye as base # Setup env ENV LANG C.UTF-8 From 03515a2920c2141a6a38ee94a42474459ba25416 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 21 Dec 2023 16:12:38 +0000 Subject: [PATCH 24/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-FONTTOOLS-6133203 --- requirements-freqai.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index 4e4e48755af..28b81a73157 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -12,3 +12,4 @@ tensorboard==2.15.1 datasieve==0.1.7 numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability +fonttools>=4.43.0 # not directly required, pinned by Snyk to avoid a vulnerability From be5427f5f88657df7f562429df4fe2694816a628 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 11 Jan 2024 16:38:12 +0000 Subject: [PATCH 25/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 98930b1b5f6..d08ed323093 100644 --- a/requirements.txt +++ b/requirements.txt @@ -18,7 +18,7 @@ TA-Lib==0.4.28 technical==1.4.2 tabulate==0.9.0 pycoingecko==3.1.0 -jinja2==3.1.2 +jinja2==3.1.3 tables==3.9.1 joblib==1.3.2 rich==13.7.0 From 2755d4b7e37ef8488182aa254c4a218aaf5d7aa1 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 11 Jan 2024 17:44:03 +0000 Subject: [PATCH 26/42] fix: docs/requirements-docs.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717 --- docs/requirements-docs.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/requirements-docs.txt b/docs/requirements-docs.txt index 6df4bef97a7..7fe55bbded1 100644 --- a/docs/requirements-docs.txt +++ b/docs/requirements-docs.txt @@ -3,4 +3,4 @@ mkdocs==1.5.3 mkdocs-material==9.5.2 mdx_truly_sane_lists==1.3 pymdown-extensions==10.5 -jinja2==3.1.2 +jinja2==3.1.3 From e03a68a5e74252a09f62d0accdd9a8895b761d40 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 21 Jan 2024 16:08:16 +0000 Subject: [PATCH 27/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 --- requirements-freqai.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index 5c499ab6567..1c36d18bffc 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -11,4 +11,4 @@ xgboost==2.0.2 tensorboard==2.15.1 datasieve==0.1.7 numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability -pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability +pillow>=10.2.0 # not directly required, pinned by Snyk to avoid a vulnerability From acc3fdfabac7fcd93df3235c0eee8c0e3b5e0b1f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 07:17:35 +0000 Subject: [PATCH 28/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813745 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813746 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813750 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6092044 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index 9d47890d3db..1b6e97dbbbb 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,9 +4,9 @@ pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.2; platform_machine != 'armv7l' -cryptography==41.0.2; platform_machine == 'armv7l' -aiohttp==3.8.4 +cryptography==41.0.6; platform_machine != 'armv7l' +cryptography==41.0.6; platform_machine == 'armv7l' +aiohttp==3.9.0 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 685e7c4c0bcb79d32c56f4c7859b947f279deed0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 07:21:52 +0000 Subject: [PATCH 29/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5777683 --- requirements.txt | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/requirements.txt b/requirements.txt index ec9fa2ba7a1..49c380a9cad 100644 --- a/requirements.txt +++ b/requirements.txt @@ -2,11 +2,14 @@ numpy==1.26.3 pandas==2.1.4 pandas-ta==0.3.14b -ccxt==4.1.57 -cryptography==41.0.6 -aiohttp==3.9.0 -SQLAlchemy==2.0.23 -python-telegram-bot==20.6 + +ccxt==3.1.44 + +cryptography==41.0.2; platform_machine != 'armv7l' +cryptography==41.0.2; platform_machine == 'armv7l' +aiohttp==3.8.5 +SQLAlchemy==2.0.16 +python-telegram-bot==20.3 # can't be hard-pinned due to telegram-bot pinning httpx with ~ httpx>=0.24.1 From ba732df95c407b6ed928400b64d7deda606474b6 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 07:28:47 +0000 Subject: [PATCH 30/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813745 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813746 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813750 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6092044 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index 49c380a9cad..510763f4e2b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,9 +5,9 @@ pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.2; platform_machine != 'armv7l' -cryptography==41.0.2; platform_machine == 'armv7l' -aiohttp==3.8.5 +cryptography==41.0.6; platform_machine != 'armv7l' +cryptography==41.0.6; platform_machine == 'armv7l' +aiohttp==3.9.0 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 2be23f5407dd1696ff95755746c5c6eb6f358d1b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 07:41:11 +0000 Subject: [PATCH 31/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 5b83ef78f1c..a51fb2fc34e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -14,7 +14,7 @@ arrow==1.3.0 cachetools==5.3.2 requests==2.31.0 -urllib3==2.0.6 +urllib3==2.0.7 jsonschema==4.19.1 From 75cb1fbf2a20770afb1a177c84b805673f493123 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 08:03:23 +0000 Subject: [PATCH 32/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index 6732834d20d..fab79572c93 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,9 +3,9 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.3; platform_machine != 'armv7l' -cryptography==41.0.3; platform_machine == 'armv7l' -aiohttp==3.8.4 +cryptography==41.0.5; platform_machine != 'armv7l' +cryptography==41.0.5; platform_machine == 'armv7l' +aiohttp==3.8.6 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 593f6d6f3a016712c8e2f61ce888ffaccdd81522 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 08:04:05 +0000 Subject: [PATCH 33/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index 6732834d20d..fab79572c93 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,9 +3,9 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.3; platform_machine != 'armv7l' -cryptography==41.0.3; platform_machine == 'armv7l' -aiohttp==3.8.4 +cryptography==41.0.5; platform_machine != 'armv7l' +cryptography==41.0.5; platform_machine == 'armv7l' +aiohttp==3.8.6 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 1e1d1aae87c09f9fec35ec78c3919c3fd16f6493 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 08:04:47 +0000 Subject: [PATCH 34/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index 6732834d20d..158e98e6a9e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,9 +3,9 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.3; platform_machine != 'armv7l' -cryptography==41.0.3; platform_machine == 'armv7l' -aiohttp==3.8.4 +cryptography==41.0.4; platform_machine != 'armv7l' +cryptography==41.0.4; platform_machine == 'armv7l' +aiohttp==3.8.5 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 407790e2e85e07c34d088a3b14f75244fd5f8e13 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 08:11:03 +0000 Subject: [PATCH 35/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-FONTTOOLS-6133203 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 From 84e8bf1240081dc2af509b01c4d7a117506d74b8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 26 Jan 2024 08:14:24 +0000 Subject: [PATCH 36/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6092044 --- requirements.txt | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements.txt b/requirements.txt index c32370a8f18..31d60a746c5 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,9 +3,9 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.5; platform_machine != 'armv7l' -cryptography==41.0.5; platform_machine == 'armv7l' -aiohttp==3.8.6 +cryptography==41.0.6; platform_machine != 'armv7l' +cryptography==41.0.6; platform_machine == 'armv7l' +aiohttp==3.9.0 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From 229098d898198d8da0d7c812a80a4502063a2b07 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 27 Jan 2024 19:29:28 +0000 Subject: [PATCH 37/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6050294 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6126975 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index 31d60a746c5..0cf25f748ae 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,8 +3,8 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==41.0.6; platform_machine != 'armv7l' -cryptography==41.0.6; platform_machine == 'armv7l' +cryptography==42.0.0; platform_machine != 'armv7l' +cryptography==42.0.0; platform_machine == 'armv7l' aiohttp==3.9.0 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From efb2a90a257d9280a26035fc0c272c34ae171053 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 29 Jan 2024 20:40:44 +0000 Subject: [PATCH 38/42] chore(deps): bump peter-evans/dockerhub-description from 3 to 4 Bumps [peter-evans/dockerhub-description](https://github.com/peter-evans/dockerhub-description) from 3 to 4. - [Release notes](https://github.com/peter-evans/dockerhub-description/releases) - [Commits](https://github.com/peter-evans/dockerhub-description/compare/v3...v4) --- updated-dependencies: - dependency-name: peter-evans/dockerhub-description dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/docker_update_readme.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/docker_update_readme.yml b/.github/workflows/docker_update_readme.yml index 9d2f8b76801..d91e79099d6 100644 --- a/.github/workflows/docker_update_readme.yml +++ b/.github/workflows/docker_update_readme.yml @@ -10,7 +10,7 @@ jobs: steps: - uses: actions/checkout@v4 - name: Docker Hub Description - uses: peter-evans/dockerhub-description@v3 + uses: peter-evans/dockerhub-description@v4 env: DOCKERHUB_USERNAME: ${{ secrets.DOCKER_USERNAME }} DOCKERHUB_PASSWORD: ${{ secrets.DOCKER_PASSWORD }} From 495ac9aedaf2a930f6df9463676745923f25faf6 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 31 Jan 2024 19:48:12 +0000 Subject: [PATCH 39/42] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6149518 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6157248 - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6210214 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index 0cf25f748ae..04e3e28a5de 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,8 +3,8 @@ pandas==2.1.4 pandas-ta==0.3.14b ccxt==3.1.44 -cryptography==42.0.0; platform_machine != 'armv7l' -cryptography==42.0.0; platform_machine == 'armv7l' +cryptography==42.0.2; platform_machine != 'armv7l' +cryptography==42.0.2; platform_machine == 'armv7l' aiohttp==3.9.0 SQLAlchemy==2.0.16 python-telegram-bot==20.3 From f00a2cd9910b60f79842d263f00744f859146ba3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 2 Feb 2024 04:00:12 +0000 Subject: [PATCH 40/42] fix: requirements-freqai.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 --- requirements-freqai.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements-freqai.txt b/requirements-freqai.txt index f40526bcec8..a371dfacd8f 100644 --- a/requirements-freqai.txt +++ b/requirements-freqai.txt @@ -12,6 +12,6 @@ tensorboard==2.15.1 datasieve==0.1.7 numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability -pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability +pillow>=10.2.0 # not directly required, pinned by Snyk to avoid a vulnerability fonttools>=4.43.0 # not directly required, pinned by Snyk to avoid a vulnerability From 859cac0ff57aa5928f2fcb578ecb3b0e99c7719a Mon Sep 17 00:00:00 2001 From: Aleksey Savin Date: Thu, 4 Apr 2024 19:35:08 +0300 Subject: [PATCH 41/42] remove mypy and discord --- .github/workflows/ci.yml | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b9c03e61c6e..c6aada731b9 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -113,17 +113,17 @@ jobs: run: | ruff check --output-format=github . - - name: Mypy - run: | - mypy freqtrade scripts tests - - - name: Discord notification - uses: rjstone/discord-webhook-notify@v1 - if: failure() && ( github.event_name != 'pull_request' || github.event.pull_request.head.repo.fork == false) - with: - severity: error - details: Freqtrade CI failed on ${{ matrix.os }} - webhookUrl: ${{ secrets.DISCORD_WEBHOOK }} +# - name: Mypy +# run: | +# mypy freqtrade scripts tests + +# - name: Discord notification +# uses: rjstone/discord-webhook-notify@v1 +# if: failure() && ( github.event_name != 'pull_request' || github.event.pull_request.head.repo.fork == false) +# with: +# severity: error +# details: Freqtrade CI failed on ${{ matrix.os }} +# webhookUrl: ${{ secrets.DISCORD_WEBHOOK }} build-macos: runs-on: ${{ matrix.os }} From 2ad64db4de721149f9ecca5db047ed36202f918f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 27 Jan 2025 21:01:25 +0000 Subject: [PATCH 42/42] Bump peter-evans/create-pull-request from 6 to 7 Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request) from 6 to 7. - [Release notes](https://github.com/peter-evans/create-pull-request/releases) - [Commits](https://github.com/peter-evans/create-pull-request/compare/v6...v7) --- updated-dependencies: - dependency-name: peter-evans/create-pull-request dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/binance-lev-tier-update.yml | 2 +- .github/workflows/pre-commit-update.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/binance-lev-tier-update.yml b/.github/workflows/binance-lev-tier-update.yml index f06251cca89..65fbadf787d 100644 --- a/.github/workflows/binance-lev-tier-update.yml +++ b/.github/workflows/binance-lev-tier-update.yml @@ -32,7 +32,7 @@ jobs: run: python build_helpers/binance_update_lev_tiers.py - - uses: peter-evans/create-pull-request@v6 + - uses: peter-evans/create-pull-request@v7 with: token: ${{ secrets.REPO_SCOPED_TOKEN }} add-paths: freqtrade/exchange/binance_leverage_tiers.json diff --git a/.github/workflows/pre-commit-update.yml b/.github/workflows/pre-commit-update.yml index 69f5dbb4eba..0993587f694 100644 --- a/.github/workflows/pre-commit-update.yml +++ b/.github/workflows/pre-commit-update.yml @@ -29,7 +29,7 @@ jobs: - name: Run pre-commit run: pre-commit run --all-files - - uses: peter-evans/create-pull-request@v6 + - uses: peter-evans/create-pull-request@v7 with: token: ${{ secrets.REPO_SCOPED_TOKEN }} add-paths: .pre-commit-config.yaml