pull_requests: 1307128769
This data as json
| id | node_id | number | state | locked | title | user | body | created_at | updated_at | closed_at | merged_at | merge_commit_sha | assignee | milestone | draft | head | base | author_association | auto_merge | repo | url | merged_by |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1307128769 | PR_kwDOAMm_X85N6TPB | 7743 | closed | 0 | Bump pypa/gh-action-pypi-publish from 1.8.4 to 1.8.5 | 49699333 | Bumps [pypa/gh-action-pypi-publish](https://github.com/pypa/gh-action-pypi-publish) from 1.8.4 to 1.8.5. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/pypa/gh-action-pypi-publish/releases">pypa/gh-action-pypi-publish's releases</a>.</em></p> <blockquote> <h2>v1.8.5</h2> <h2>What's Improved</h2> <p><a href="https://github.com/woodruffw"><code>@woodruffw</code></a> improved the user-facing documentation and logging to make use of the Trusted Publishing flow terminology cohesive with PyPI in <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/143">pypa/gh-action-pypi-publish#143</a>. Trusted Publishing used to be referred to as OpenID Connect (OIDC) — the underlying technology that is being used to make it work. He also made the action display the cause of the Trusted Publishing flow being selected by the action via <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/pull/142">pypa/gh-action-pypi-publish#142</a>.</p> <p><strong>Full Diff</strong>: <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5">https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/0bf742be3ebe032c25dd15117957dc15d0cfc38d"><code>0bf742b</code></a> Merge pull request <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/143">#143</a> from trail-of-forks/tob-rewrite-oidc-refs</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/30c382209e2edb18e26e0cd15ea4ddbb62e4d249"><code>30c3822</code></a> oidc-exchange: another link</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/89ddbeae048cf21191cb26cde13abd949438b484"><code>89ddbea</code></a> README: retitle, add note</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/a0f29a5690c3e59076bbc8d1349b7f872249ac83"><code>a0f29a5</code></a> Apply suggestions from code review</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/0b567d5b015a5db43765f0ae2b3a215ea9d0150b"><code>0b567d5</code></a> oidc-exchange, twine-upload: remove more OIDC refs</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/4372cb558524908cb34fcd57d7bc50d397daa875"><code>4372cb5</code></a> README: replace OIDC with "trusted publishing"</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/69efb8cbfb5ff087b7145d695b90bba0c4a53029"><code>69efb8c</code></a> Merge pull request <a href="https://redirect.github.com/pypa/gh-action-pypi-publish/issues/142">#142</a> from trail-of-forks/tob-indicate-oidc</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/dfde872acc38fce52eaf13748aaaa11845c89228"><code>dfde872</code></a> Apply suggestions from code review</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/3d567f44ce3fb3bbcf9248d05726c6c9f811b67f"><code>3d567f4</code></a> twine-upload: expound</li> <li><a href="https://github.com/pypa/gh-action-pypi-publish/commit/67b747a9c83c5d2526d31259d1479f46210ffd0e"><code>67b747a</code></a> oidc-exchange: more explanation</li> <li>See full diff in <a href="https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.4...v1.8.5">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> | 2023-04-10T06:56:58Z | 2023-04-10T14:40:29Z | 2023-04-10T14:40:28Z | 2023-04-10T14:40:28Z | c94e2dae6dee12761232ca7c299cbcef440c0c0f | 0 | f00fd7faefaaab4c99fa038d2704f52eedf23816 | 8e899adcd72295a138228056643a78cac6e2de57 | CONTRIBUTOR | 13221727 | https://github.com/pydata/xarray/pull/7743 |
Links from other tables
- 2 rows from pull_requests_id in labels_pull_requests