Bump to pydantic 2.8.0 (#702)

* deps: bump pydantic from 1.10.15 to 2.8.0 Bumps [pydantic](https://github.com/pydantic/pydantic) from 1.10.15 to 2.8.0. - [Release notes](https://github.com/pydantic/pydantic/releases) - [Changelog](https://github.com/pydantic/pydantic/blob/main/HISTORY.md) - [Commits](https://github.com/pydantic/pydantic/compare/v1.10.15...v2.8.0) --- updated-dependencies: - dependency-name: pydantic dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> * Update dependencies run the bump-pydantic tool. * Migrate the validate_uuid using field_validator. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-07-03 14:20:29 -07:00
parent 4d00499f94
commit 7fa3e2ff1a
5 changed files with 172 additions and 95 deletions
--- a/noxfile.py
+++ b/noxfile.py
@@ -121,7 +121,11 @@ def safety(session: Session) -> None:
    session.install("safety")
    # ignore https://github.com/pytest-dev/py/issues/287
    # its an irresposnbily filed CVE causing nose
-    session.run("safety", "check", "--full-report", f"--file={requirements}", "--ignore=51457")
+    # ignore https://data.safetycli.com/v/70612/97c/
+    # Jinja2 vulnerability, maintainer believe it is not a valid vulnerability
+    # ignore https://data.safetycli.com/v/71064/97c/
+    # requests vulnerability. The fixed version is not compatible with the packaging library
+    session.run("safety", "check", "--full-report", f"--file={requirements}", "--ignore=51457,70612,71064")


@session(python=python_versions)