Dependency Dashboard

[descope]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Repository Problems

Renovate tried to run on this repository, but found these problems.

• ⚠️ WARN: Package lookup failures

Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

• chore(deps): lock file maintenance

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): update python docker tag to v3.14
• chore(deps): update dependency isort to v8
• chore(deps): update dependency types-setuptools to v81
• chore(deps): update dependency types-setuptools to v82
• chore(deps): update pre-commit hook pycqa/isort to v8

---

Warning

Renovate failed to look up the following dependencies: Could not determine new digest for update (github-tags package pypa/gh-action-pypi-publish).

Files affected: .github/workflows/release-please.yml

---

Other Branches

The following updates are pending. To force the creation of a PR, click on a checkbox below.

• chore(deps): update dependency flask to v3.1.3 [security]

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency types-requests to v2.32.4.20260107
• chore(deps): update dependency flake8 to v7.3.0
• chore(deps): update dependency mypy to v1.19.1
• chore(deps): update dependency pep8-naming to v0.15.1
• chore(deps): update dependency pytest to v8.4.2
• chore(deps): update dependency tox to v4.34.1
• chore(deps): update dependency types-setuptools to v75.8.2.20250305
• chore(deps): update dependency certifi to v2026
• chore(deps): update dependency cffi to v2
• chore(deps): update dependency flake8-bugbear to v25
• chore(deps): update dependency isort to v6
• chore(deps): update dependency isort to v7
• chore(deps): update dependency pycparser to v3
• chore(deps): update dependency pytest to v9
• chore(deps): update dependency types-setuptools to v76
• chore(deps): update dependency types-setuptools to v77
• chore(deps): update dependency types-setuptools to v78
• chore(deps): update dependency types-setuptools to v79
• chore(deps): update dependency types-setuptools to v80
• chore(deps): update pre-commit hook compilerla/conventional-pre-commit to v4
• chore(deps): update pre-commit hook psf/black to v26
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

Important

1/1 CVEs have Renovate fixes.

poetry

pyproject.toml

flask

• GHSA-68rp-wp8r-4726 (fixed in >= 3.1.3)

Detected Dependencies

dockerfile (1)

Dockerfile (1)

• python 3.9-slim → [Updates: 3.14-slim]

github-actions (2)

.github/workflows/ci.yml (10)

• amannn/action-semantic-pull-request v6.1.1@48f256284bd46cdaab1048c3721360e808335d50
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/setup-python v6.2.0@a309ff8b426b58ec0e2a45f0f869d46889d02405
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• actions/download-artifact v7.0.0@37930b1c2abaa49bbe596cd826c3c89aef350131
• py-cov-action/python-coverage-comment-action v3.1.0@b3d7e98bf5528b07d6951ef7a93e2b156f960112
• actions/upload-artifact v6.0.0@b7c566a772e6b6bfb58ed0dc250532a479d7789f
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• gitleaks/gitleaks-action v2.3.9@ff98106e4c7b2bc287b24eaf42907196329070c7

.github/workflows/release-please.yml (6)

• actions/create-github-app-token v2.2.1@29824e69f54612133e76f7eaac726eef6c875baf
• googleapis/release-please-action v4.4.0@16a9c90856f42705d54a6fda1823352bdc62cf38
• actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd
• descope/.github main
• descope/.github main
• pypa/gh-action-pypi-publish release/v1@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e

html (1)

samples/templates/webauthn_demo.html (1)

• jquery 3.7.1

pip_requirements (1)

requirements.txt (24)

• blinker ==1.9.0
• certifi ==2025.11.12 → [Updates: ==2026.1.4]
• cffi ==1.17.1 → [Updates: ==2.0.0]
• charset-normalizer ==3.4.4
• click ==8.3.1
• colorama ==0.4.6
• cryptography ==46.0.5
• dnspython ==2.8.0
• email-validator ==2.3.0
• Flask ==3.1.3
• idna ==3.11
• importlib-metadata ==8.7.1
• itsdangerous ==2.2.0
• Jinja2 ==3.1.6
• liccheck ==0.9.2
• MarkupSafe ==3.0.3
• pycparser ==2.23 → [Updates: ==3.0]
• PyJWT ==2.11.0
• requests ==2.32.5
• semantic-version ==2.10.0
• toml ==0.10.2
• urllib3 ==2.6.3
• Werkzeug ==3.1.6
• zipp ==3.23.0

poetry (1)

pyproject.toml (18)

• python >=3.8.1,<4.0
• requests >=2.27.0
• pyjwt >=2.4.0
• liccheck ^0.9.1
• Flask >=2 → [Updates: >=2]
• mock 5.2.0
• flake8 7.1.2 → [Updates: 7.3.0]
• flake8-pyproject 1.2.4
• flake8-bugbear 24.12.12 → [Updates: 25.11.29]
• liccheck 0.9.2
• isort 5.13.2 → [Updates: 6.1.0, 7.0.0, 8.0.0]
• pep8-naming 0.14.1 → [Updates: 0.15.1]
• tox 4.25.0 → [Updates: 4.34.1]
• mypy 1.11.2 → [Updates: 1.19.1]
• types-requests 2.32.0.20240914 → [Updates: 2.32.4.20260107]
• types-setuptools 75.1.0.20240917 → [Updates: 75.8.2.20250305, 76.0.0.20250313, 77.0.2.20250328, 78.1.0.20250329, 79.0.0.20250422, 80.10.0.20260124, 81.0.0.20260209, 82.0.0.20260210]
• pytest 8.3.5 → [Updates: 8.4.2, 9.0.2]
• coverage ^7.3.1

pre-commit (1)

.pre-commit-config.yaml (12)

• floatingpurr/sync_with_poetry 1.2.1
• pre-commit/pre-commit-hooks v6.0.0
• PyCQA/isort 7.0.0 → [Updates: 8.0.0]
• psf/black 25.12.0 → [Updates: 26.1.0]
• asottile/pyupgrade v3.21.2
• pycqa/flake8 7.3.0
• python-poetry/poetry 2.3.2
• python-poetry/poetry-plugin-export 1.10.0
• pre-commit/pre-commit v4.5.1
• tox-dev/tox-ini-fmt 1.7.1
• gitleaks/gitleaks v8.30.0
• compilerla/conventional-pre-commit v3.6.0 → [Updates: v4.3.0]

renovate-config-presets (1)

renovate.json

---

📊 View in RenoWeb