Ecosyste.ms: OpenCollective

An open API service for software projects hosted on Open Collective.

github.com/urllib3/urllib3

urllib3 is a user-friendly HTTP client library for Python
https://github.com/urllib3/urllib3

Change the pip install for urllib3 2.0 to a working example

278c19552cacd79fceb748d34467971378bea1af authored over 1 year ago by wim glenn <[email protected]>
Bump github/codeql-action from 2.2.7 to 2.2.9

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.7 to 2.2.9.
- [Re...

82de567945da113b50c7746e7672230a6a4d59a0 authored over 1 year ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/checkout from 3.4.0 to 3.5.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.4.0 to 3.5.0.
- [Release no...

7392cb39c932f9d38a7b7f5a543ca9cf40a22961 authored over 1 year ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pypa/gh-action-pypi-publish from 1.8.1 to 1.8.3

Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.1 t...

db97b219500d020924a6513594f185670a8cf626 authored over 1 year ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pypa/gh-action-pypi-publish from 1.7.1 to 1.8.1

Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.7.1 t...

4f2d34d1d15bc6aa52196981769fe2e5606fca19 authored over 1 year ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/checkout from 3.2.0 to 3.4.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.4.0.
- [Release no...

d6e4dcdd9e656e1e7554e229e61ec0b0d8cc741d authored over 1 year ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.2.5 to 2.2.7

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.7.
- [Re...

2b40cf2ef0d3cdb74a72e906ccc1e3cd8bf4b13c authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.2.5 to 2.2.6

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.5 to 2.2.6.
- [Re...

416519f58c7e915784f5131b0edc373f9a6ebd75 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pypa/gh-action-pypi-publish from 1.6.4 to 1.7.1

Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.6.4 t...

529248ee061641bf830888b08359fa2d40408b93 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Skip resource warnings in tests checking non-deprecated TLS versions

594a01fcd1a6e8db9aea5acdbc696558cf7166c9 authored almost 2 years ago by Illia Volochii <[email protected]>
Add 1.26.15 release to main

a03a0bfc3f58c138c591d57e23433286e23f7f5d authored almost 2 years ago by Seth Michael Larson <[email protected]>
Use the default attestation name

bc0138062da330a17996e1188bba133d4fdb30d6 authored almost 2 years ago by Seth Michael Larson <[email protected]>
Update mypy to 1.1.1

07300507e959bd4b03f1b547ecba78ca4684125b authored almost 2 years ago by Hasan Ramezani <[email protected]>
Bump slsa-framework/slsa-github-generator from 1.4.0 to 1.5.0

Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-gener...

fd82cbe7518675da3e86c93b88e8239593779022 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.2.4 to 2.2.5

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.4 to 2.2.5.
- [Re...

f1de76329d5ef1edccb00340ca9f37275551d0a5 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fix `test_default_ssl_context_ssl_min_max_versions` for pyOpenSSL

7c1d682db68fa8964b5d82e18d99cfdfad07e82b authored almost 2 years ago by Illia Volochii <[email protected]>
Bump slsa-framework/slsa-github-generator from 1.2.1 to 1.4.0

Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-gener...

8966d780237c639f0c31ce81d0b414adb05eeccb authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.2.2 to 2.2.4

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.2 to 2.2.4.
- [Re...

5e072876b81e8adb30df8cdffbc756b7af883ca4 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Revert "Workaround GitHub not supporting Flit metadata"

This reverts commit 954ff5989246e45ef2490d04d63d43c94f6d9bc2. GitHub's
dependency graph now supp...

8619650a81a959b716b2f38b2a714ac1831e9a98 authored almost 2 years ago by Quentin Pradet <[email protected]>
Bump github/codeql-action from 2.2.1 to 2.2.2

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.1 to 2.2.2.
- [Re...

d6605c541558d97de305d3afd2300f5d7d6edc68 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump cryptography from 39.0.0 to 39.0.1 (#2917)

Bumps [cryptography](https://github.com/pyca/cryptography) from 39.0.0 to 39.0.1.
- [Release no...

1195762d55a0b7748f20389f8b5fbfb21232f58b authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update mypy to 1.0.0 (#2916)

9ce420385355b912e90f426abc5064792208e0ad authored almost 2 years ago by Hasan Ramezani <[email protected]>
Bump github/codeql-action from 2.1.38 to 2.2.1

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.38 to 2.2.1.
- [R...

b3f17710541a0bf2adec13cee65f6a289dae2743 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Update pre-commit repos

5a24dc55d86e4c5ca7fe0bd496da768caf617591 authored almost 2 years ago by Hasan Ramezani <[email protected]>
Start using final CPython 3.11 and dev 3.12 in CI (#2760)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: Quentin Pradet <quentin.pra...

70b851b73e42dd5fdfbce3aba79be26846c9edc1 authored almost 2 years ago by Illia Volochii <[email protected]>
Remove the Requests warning git patch (#2906)

* Remove the Requests warning git patch

* Fix isort installation

See https://github.com/Py...

5a90d06cfe389aeac612addaab7c917927ecb0a5 authored almost 2 years ago by Seth Michael Larson <[email protected]>
Fix `_idna_encode()` detection of an ASCII hostname for `\x080`

af2cd6bccd1df08a62300fcec079e3fd966725a6 authored almost 2 years ago by Ben Kallus <[email protected]>
Remove "!" character from the "unreserved" characters in IPv6 Zone ID parsing

29c4bcc81abd0495619e5e730297dfea890fcef3 authored almost 2 years ago by Ben Kallus <[email protected]>
Ignore Dependabot updates for patches

96588e9bf66be564c7437da8b1c2c054bc3142b4 authored almost 2 years ago by Seth Michael Larson <[email protected]>
Bump github/codeql-action from 2.1.37 to 2.1.38

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.37 to 2.1.38.
- [...

6089b8d0fca44fc41d030190c577ac3c58eec090 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/setup-python from 4.4.0 to 4.5.0

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.4.0 to 4.5.0.
- [Re...

89ea3b506561ffd6427f6a1c28e9cd7496b0cea9 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fix reference to private urllib3.util.ssl_ module in custom context example (#2889)

b1d5b2260949f346e0fe13b7495e71c84abff07f authored almost 2 years ago by JustAnotherArchivist <[email protected]>
Retry bind_sockets calls on EADDRINUSE (#2884)

a948523b4fb4b0ae7dce965ae67256d3aa81dce2 authored almost 2 years ago by Quentin Pradet <[email protected]>
Add 1.26.14 to CHANGES.rst (#2885)

0b1188985b747ae50d7d4f9750f4e5ec46462517 authored almost 2 years ago by Quentin Pradet <[email protected]>
Disable Nagle's algorithm in test_ssl_read_timeout

Co-authored-by: Quentin Pradet <[email protected]>

It's possible that `ssl_sock.send` ...

5782d9022419f241d5ef3dd5376d975af30a770c authored almost 2 years ago by Thomas Grainger <[email protected]>
Release 2.0.0a3

Co-authored-by: Yiyang Zhan <[email protected]>
Co-authored-by: Seth Michael Larson <sethmicha...

2889596e309d30220d1f4ef2e80d4a92a906fa0a authored almost 2 years ago by Quentin Pradet <[email protected]>
Stop retrying tests with flaky

Experience has shown that tests that are really flaky will fail anyway,
and there's usually a b...

892eb3b277dabdae4a74f98a53d3b8614add22ab authored almost 2 years ago by Thomas Grainger <[email protected]>
Speed up Python 3.11 CI by upgrading coverage

5d93c9c6c01efc469200044027c21c6e661f2a99 authored almost 2 years ago by Quentin Pradet <[email protected]>
Bump actions/download-artifact from 3.0.1 to 3.0.2

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.1 to 3....

49054682b89acdb22ff632b3b1bcf3823137ecc5 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/upload-artifact from 3.1.1 to 3.1.2

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2....

a091b5d89852a6e2575fbcae3dd6db0b1b773a5b authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fix the type hint of PoolKey.key_retries by adding bool to the union

Co-authored-by: Seth Michael Larson <[email protected]>

dacd84d01f3037d30adf387e2e1bfc95f55dedfe authored almost 2 years ago by zhanpon <[email protected]>
Bump ossf/scorecard-action from 2.1.1 to 2.1.2

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.1 to 2.1.2.
- [...

6cfdca5825e3557f66fd00d0c2f4407c3e1e0d1e authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/setup-python from 4.3.1 to 4.4.0

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.3.1 to 4.4.0.
- [Re...

5c5aa734dc9ac94c9dc638001572ec80707a4c1b authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.1.36 to 2.1.37

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.36 to 2.1.37.
- [...

1a897ddfe2f7e017a354ec99b924b5d0afc166d8 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump ossf/scorecard-action from 2.0.6 to 2.1.1

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.6 to 2.1.1.
- [...

943d9f8188a51eca4bc8438c9d5f3d5821178124 authored almost 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/setup-python from 4.3.0 to 4.3.1

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4.3.0 to 4.3.1.
- [Re...

02f56900387c70758375981b64e61775e7224b03 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.1.32 to 2.1.36

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.32 to 2.1.36.
- [...

1d40091d6acb7eb2d87cddc50a415d461502da67 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/checkout from 3.1.0 to 3.2.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.1.0 to 3.2.0.
- [Release no...

f57b40905ce2f07de84c2371c25091bcd2b6b5cb authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump pypa/gh-action-pypi-publish from 1.5.1 to 1.6.4

Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.5.1 t...

87bc230aa3c0d075a0c124cabddc4ba1fd41f561 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump deadsnakes/action from 2.1.1 to 3.0.0

Bumps [deadsnakes/action](https://github.com/deadsnakes/action) from 2.1.1 to 3.0.0.
- [Release...

22632d4aed11e0a8ae8fe81937c912363c23a9c5 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
fixed number of digits in port m(

724dbb29e4ed1acf1c7c014ad8eee3d691f1b81f authored about 2 years ago by Bastian Venthur <[email protected]>
fixed issue with port "0" returning None

b984f4fbfe877d3bbd92826b0968cf8a89337872 authored about 2 years ago by Bastian Venthur <[email protected]>
added changelog entry

d393b4a5091c27d2e158074f81feb264c5c175af authored about 2 years ago by Bastian Venthur <[email protected]>
Don't ignore debug logs in pytest, fix log args issue

b09fe5629dd3c3e3253b54d384878b2fee00f64a authored about 2 years ago by Quentin Pradet <[email protected]>
Add 1.26.13 release to CHANGES.rst on main

0612a53f48f72ab6e9ef58ccf1d6a25b847152fc authored about 2 years ago by Seth Michael Larson <[email protected]>
Fix typos in HTTPResponse.getheaders() warnings

6d022020b41ffbd184f644f0fa645b85c159b50b authored about 2 years ago by Kurt McKee <[email protected]>
Configure filterwarnings=error (#2790)

* implement missing importlib methods

* configure filterwarnings=error

* set InsecureReque...

94ccda029d556c2b17184d5874bfe598c7012589 authored about 2 years ago by Thomas Grainger <[email protected]>
Release 2.0.0a2

1af920653cfed1920a576e80cc7a856fe4df2ac9 authored about 2 years ago by Seth Michael Larson <[email protected]>
Update pytest-memray for compatibility with flaky

7b437af2c7e5de83164bb5404ca392326ab24913 authored about 2 years ago by Thomas Grainger <[email protected]>
Require pyOpenSSL 17.1.0+ to support cryptography 39+

Co-authored-by: Illia Volochii <[email protected]>

55216b730c48f07b2590d814684b981b3ad50f5c authored about 2 years ago by Quentin Pradet <[email protected]>
Strip leading zeros from ports

77fa67aaf2dc18962fa9234d47400c8a6fc1edf4 authored about 2 years ago by Bastian Venthur <[email protected]>
Use the typing namespace and from __future__ import annotations

Co-authored-by: Thomas Grainger <[email protected]>

fe39ebfb948db43002547b9258273182705b5434 authored about 2 years ago by Bastian Venthur <[email protected]>
Update 2800.bugfix.rst

9aa7bb33df45987be0d1c0af5867255cc11a7841 authored about 2 years ago by Seth Michael Larson <[email protected]>
fix missed coverage when calling read() having amt=None

4acccf76c2892e80aebb5840f7de1460a4c64a61 authored about 2 years ago by Ousret <[email protected]>
Prevent issue in HTTPResponse().read() when decoded_content is True and then False

Provided it has initialized eligible decoder(decompressor) and did decode once

cefd1dbba6a20ea4f017e6e472f9ada3a8a743e0 authored about 2 years ago by Ousret <[email protected]>
Improve changelog entry

61ce98512d0956430ca0a9283829a7852068f144 authored about 2 years ago by Quentin Pradet <[email protected]>
apply suggestion from @pquentin

+ had to change expectations as the initial payload changed

698df9ef7e88354e8ec9392471189a168fb31521 authored about 2 years ago by Ousret <[email protected]>
Stop showing thousands of @ in test output

342db499634e018f8ba6ace1fc58297f40d17fba authored about 2 years ago by Quentin Pradet <[email protected]>
output the 10 slowest tests

9245423614f73fe97b2563962a75c57e5f6e454b authored about 2 years ago by Bastian Venthur <[email protected]>
Move --durations=10 to noxfile.py

acdbf86889400dd2c78d86128a2716d4045c1058 authored about 2 years ago by Quentin Pradet <[email protected]>
increased test-timeout for the heavy gh-actions from 20 to 30mins.

closes: #2815

cc52294f4dd6c82013fb7def4898e8a75677d58c authored about 2 years ago by Bastian Venthur <[email protected]>
Clarify that getheaders() returns HTTPHeaderDict

0f74decebaaa129508115b5abbceb84d9226d30a authored about 2 years ago by Quentin Pradet <[email protected]>
Bump github/codeql-action from 2.1.31 to 2.1.32

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.31 to 2.1.32.
- [...

806fdb7f0d64f02d034bf610d37eb2c143af4c05 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Restore but deprecate HTTPResponse.getheaders() and .getheader() methods

19582a1f35ae810f97dc46897232770c810c197a authored about 2 years ago by Quentin Pradet <[email protected]>
Make downstream integration tests nox environments re-usable

02e62247fde7bff4729bd6495ca4b5fe0fe1c239 authored about 2 years ago by TAHRI Ahmed R <[email protected]>
Run tests in verbose mode

We have some hanging tests, the verbose mode will help identifying them.

1cf3a37bcf09d8b02db51f8dbef0724eb69ed0a2 authored about 2 years ago by Quentin Pradet <[email protected]>
Release 2.0.0-alpha1

Co-authored-by: Quentin Pradet <[email protected]>

612cead3f9704716f4ab2a1334a16e0f05fce942 authored about 2 years ago by Seth Michael Larson <[email protected]>
Change deprecation warnings to explicitly mention v2.1.0 for removals

f60a01b5bb73122791d2a562b4bd74af6f9eb8b8 authored about 2 years ago by Seth Michael Larson <[email protected]>
Fix socket timeout value when HTTPConnection is reused

2c7348ecd0954986adc25fed417c80ffb43019e7 authored about 2 years ago by Seth Michael Larson <[email protected]>
Standardize HTTPResponse.read(X) behavior regardless of compression

Co-authored-by: Franek Magiera <[email protected]>

c35033f6cc54106ca66ef2d48a9e3564d4fb0e07 authored about 2 years ago by Quentin Pradet <[email protected]>
Stop considering LibreSSL for HAS_NEVER_CHECK_COMMON_NAME

9763f09d2ca93c2e10150bfddba341b6a54993ad authored about 2 years ago by Quentin Pradet <[email protected]>
Remove upstreamed botocore patch

0152ca967e737ff786a7a85e49f7c95f13ad42bb authored about 2 years ago by Quentin Pradet <[email protected]>
Temporary fix for SLSA generator

938c0a96bddc469f10358ccb35e86deee48ede3c authored about 2 years ago by laurentsimon <[email protected]>
Configure ptyest, isort and mypy in pyproject.toml

1c55de65a0a1ffa0e7a20669daff575b911e364c authored about 2 years ago by Quentin Pradet <[email protected]>
Create BaseHTTPConnection APIs

e0243ada1afb46f46ac9c5c25b8d638327a6e883 authored about 2 years ago by Seth Michael Larson <[email protected]>
Fix Tornado event_loop warning on Python 3.10 and later (#2777)

* use asyncio.run for tornado

* configure filterwarnings

* upgrade to tornado 6.2

* rem...

c2d37391b96ef398df662086422ac960beced071 authored about 2 years ago by Thomas Grainger <[email protected]>
Remove usage of HTTPConnection.auto_open

It is no longer needed as HTTPConnection no longer mutates host and
port. See https://github.co...

b5d20d9a11e23d8b2c841c88d7ccfeddfbca721f authored about 2 years ago by Quentin Pradet <[email protected]>
Update mypy to 0.990

b48d3d6e8544037f854f62be1e3f3415614e93a4 authored about 2 years ago by Hasan Ramezani <[email protected]>
Fix CI by temporarily reverting to macOS 11

See: https://github.com/urllib3/urllib3/issues/2770

dda8edfafe7d6b908877fb00c0022a47d6d1f209 authored about 2 years ago by Quentin Pradet <[email protected]>
Bump github/codeql-action from 2.1.29 to 2.1.31

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.29 to 2.1.31.
- [...

e956a4249d50b3eedab54d7c3a5cab59edae7f6b authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Use io.IOBase for readable, closed, and writeable

f88b3c24cc2e559af9e877eaf10de368cc56a805 authored about 2 years ago by Seth Michael Larson <[email protected]>
Change HTTPConnection.getresponse() to return urllib3.HTTPResponse

Co-authored-by: Seth Michael Larson <[email protected]>

279b9c965396d3347b20918fe3e7e500f5634611 authored about 2 years ago by Levi <[email protected]>
Don't suggest deprecated urllib3[secure] to install certifi

b14ad3569a884d5d003e77b5bc5cef7e82c0ac5a authored about 2 years ago by Miloslav Pojman <[email protected]>
Remove useless pylint pragma

0606cdfb7939bbc9cb46c8bc3964dc8c201fc602 authored about 2 years ago by Quentin Pradet <[email protected]>
Bump github/codeql-action from 2.1.28 to 2.1.29

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.28 to 2.1.29.
- [...

7ef7444fd0fc22a825be6624af85343cefa36fef authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/download-artifact from 3.0.0 to 3.0.1

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.0 to 3....

7fedc5a697163afb974551cfd9aaec79b162c694 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump github/codeql-action from 2.1.27 to 2.1.28

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.27 to 2.1.28.
- [...

25e27d48c81cdd3712424d3e208730616fdff6c1 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump ossf/scorecard-action from 2.0.4 to 2.0.6

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.4 to 2.0.6.
- [...

043dbb6d37a82f607efb8ca022b27a30b21a3b9b authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bump actions/upload-artifact from 3.1.0 to 3.1.1

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.1....

78d925ad1dfddec517a207e8da7806aabef1c5c6 authored about 2 years ago by dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Add the contents: write permission to the publish job

c193ec59fddf698f6d05302662b80c06dea1ef0c authored about 2 years ago by Alex <[email protected]>