Dependency Dashboard

[nbl-renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update actions/attest-build-provenance action to v4.1.1

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency pydantic-settings to v2.14.2 [security]
• chore(deps): update python:3.14-alpine3.23 docker digest to b165067
• chore(deps): update non-major python dependencies (pytest, ruff)
• chore(deps): update actions/checkout action to v7
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

dockerfile (1)

Dockerfile (2)

• python 3.14-alpine3.23@sha256:02da11a8d221ca167aa07de20b3cd7104c1f01227f4b02b1fa13cf6517280a81 → [Updates: 3.14-alpine3.23]
• python 3.14-alpine3.23@sha256:02da11a8d221ca167aa07de20b3cd7104c1f01227f4b02b1fa13cf6517280a81 → [Updates: 3.14-alpine3.23]

github-actions (6)

.github/workflows/container-rescan.yaml (3)

• aquasecurity/trivy-action v0.36.0@ed142fd0673e97e23eac54620cfb913e5ce36c25
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• github/codeql-action v4.36.2@8aad20d150bbac5944a9f9d289da16a4b0d87c1e

.github/workflows/container-scan.yaml (8)

• actions/checkout v6.0.3@df4cb1c069e1874edd31b4311f1884172cec0e10 → [Updates: v7.0.0]
• docker/setup-buildx-action v4.1.0@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5
• docker/build-push-action v7.2.0@f9f3042f7e2789586610d6e8b85c8f03e5195baf
• aquasecurity/trivy-action v0.36.0@ed142fd0673e97e23eac54620cfb913e5ce36c25
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/github-script v9.0.0@3a2844b7e9c422d3c10d287c895573f7108da1b3
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• github/codeql-action v4.36.2@8aad20d150bbac5944a9f9d289da16a4b0d87c1e

.github/workflows/docker-publish.yml (10)

• actions/checkout v6.0.3@df4cb1c069e1874edd31b4311f1884172cec0e10 → [Updates: v7.0.0]
• docker/setup-buildx-action v4.1.0@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5
• docker/login-action v4.2.0@650006c6eb7dba73a995cc03b0b2d7f5ca915bee
• docker/build-push-action v7.2.0@f9f3042f7e2789586610d6e8b85c8f03e5195baf
• actions/upload-artifact v7.0.1@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a
• actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c
• docker/setup-buildx-action v4.1.0@d7f5e7f509e45cec5c76c4d5afdd7de93d0b3df5
• docker/login-action v4.2.0@650006c6eb7dba73a995cc03b0b2d7f5ca915bee
• sigstore/cosign-installer v4.1.2@6f9f17788090df1f26f669e9d70d6ae9567deba6
• actions/attest-build-provenance v4.1.0@a2bbfa25375fe432b6a289bc6b6cd05ecd0c4c32 → [Updates: v4.1.1]

.github/workflows/release-finalize.yml (1)

• actions/checkout v6.0.3@df4cb1c069e1874edd31b4311f1884172cec0e10 → [Updates: v7.0.0]

.github/workflows/release.yml (3)

• actions/checkout v6.0.3@df4cb1c069e1874edd31b4311f1884172cec0e10 → [Updates: v7.0.0]
• astral-sh/setup-uv v8.2.0@fac544c07dec837d0ccb6301d7b5580bf5edae39
• peter-evans/create-pull-request v8.1.1@5f6978faf089d4d20b00c7766989d076bb2fc7f1

.github/workflows/test.yml (2)

• actions/checkout v6.0.3@df4cb1c069e1874edd31b4311f1884172cec0e10 → [Updates: v7.0.0]
• astral-sh/setup-uv v8.2.0@fac544c07dec837d0ccb6301d7b5580bf5edae39

pep621 (1)

pyproject.toml (9)

• httpx >=0.28.1
• fastmcp >=3.4.2,<4
• pydantic >=2.13.4
• pydantic-settings >=2.14.1 → [Updates: >=2.14.1]
• pre-commit >=4.6.0
• pytest >=9.0.3 → [Updates: >=9.1.1]
• pytest-cov >=7.1.0
• python-semantic-release >=10.5.3
• ruff >=0.15.16 → [Updates: >=0.15.18]

renovate-config (1)

renovate.json5