Dependency Dashboard

[descope]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Repository problems

Renovate tried to run on this repository, but found these problems.

• WARN: Detected empty commit - aborting git push

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• chore(deps): lock file maintenance

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• ci(action): update actions/cache action to v5.0.4
• chore(deps): update dependency tox to v4.52.0
• chore(deps): update dependency uv_build to >=0.11.4,<0.12.0
• ci(action): update astral-sh/setup-uv action to v8

Other Branches

The following updates are pending. To force the creation of a PR, click on a checkbox below.

• chore(deps): update dependency django to v5.2.12 [security]

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency ruff to v0.15.6
• chore(deps): update dependency django-debug-toolbar to v6
• chore(deps): update dependency django-stubs to v6
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

8/8 CVEs have Renovate fixes.

pep621

pyproject.toml

django

• GHSA-gvg8-93h5-g6qq (fixed in >= 5.2.11)
• GHSA-2mcm-79hx-8fxw (fixed in >= 5.2.11)
• GHSA-mwm9-4648-f68q (fixed in >= 5.2.11)
• GHSA-6426-9fv3-65x8 (fixed in >= 5.2.11)
• GHSA-mjgh-79qc-68w3 (fixed in >= 5.2.12)
• GHSA-8p8v-wh79-9r56 (fixed in >= 5.2.12)
• GHSA-4rrr-2h4v-f3j9 (fixed in >= 5.2.11)
• GHSA-33mw-q7rj-mjwj (fixed in >= 5.2.11)

Detected dependencies

github-actions

.github/workflows/ci.yaml

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-python v6.2.0@a309ff8b426b58ec0e2a45f0f869d46889d02405
• actions/cache v5.0.3@cdf6c1fa76f9f475f3d7449005a359c84ca0f306

.github/workflows/python-publish.yaml

• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• astral-sh/setup-uv v7.6.0@37802adc94f370d6bfd71619e3f0bf239e1f3b78

.github/workflows/release-please.yml

• actions/create-github-app-token v3.0.0@f8d387b68d61c58ab83c6c016672934102569859
• googleapis/release-please-action v4.4.0@16a9c90856f42705d54a6fda1823352bdc62cf38

pep621

pyproject.toml

• python >=3.9,<4.0
• Django >=3.2.25,<5.3
• descope >=1.5.1,<2
• ruff ==0.8.6
• pre-commit ==4.5.1
• liccheck ==0.9.2
• python-dotenv ==1.2.2
• tox ==4.50.0
• tox <4.50.1
• django-debug-toolbar ==5.2.0
• django-stubs ==5.2.9
• licensecheck ==2025.1.0
• uv_build >=0.10.0,<0.11.0

regex

django_descope/conf.py

• @descope/web-component 3.58.1

renovate-config-presets

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository
  📊 View in RenoWeb