From 49c614abd8720e41424ebf37b1b9c4ef6a207b22 Mon Sep 17 00:00:00 2001 From: Aashish Kharel Date: Tue, 2 Dec 2025 20:25:00 -0800 Subject: [PATCH 01/61] Added IP-based rate limiting for Copi (fixes #1877) Added Copi.RateLimiter (GenServer) and CopiWeb.Plugs.RateLimiter (Plug). Integrate rate limiting into LiveView for game creation and WebSocket connections. Added test and SECURITY.md. Making limits configurable via environment variables. Addresses OWASP/cornucopia#1877. --- copi.owasp.org/README.md | 60 ++++++ copi.owasp.org/SECURITY.md | 203 ++++++++++++++++++ copi.owasp.org/config/config.exs | 11 + copi.owasp.org/lib/copi/application.ex | 2 + copi.owasp.org/lib/copi/rate_limiter.ex | 179 +++++++++++++++ copi.owasp.org/lib/copi_web/endpoint.ex | 7 +- .../live/game_live/create_game_form.ex | 42 +++- .../lib/copi_web/live/game_live/index.ex | 28 ++- .../lib/copi_web/plugs/rate_limiter.ex | 66 ++++++ .../test/copi/rate_limiter_test.exs | 148 +++++++++++++ .../test/copi_web/plugs/rate_limiter_test.exs | 60 ++++++ 11 files changed, 797 insertions(+), 9 deletions(-) create mode 100644 copi.owasp.org/SECURITY.md create mode 100644 copi.owasp.org/lib/copi/rate_limiter.ex create mode 100644 copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex create mode 100644 copi.owasp.org/test/copi/rate_limiter_test.exs create mode 100644 copi.owasp.org/test/copi_web/plugs/rate_limiter_test.exs diff --git a/copi.owasp.org/README.md b/copi.owasp.org/README.md index 8a1a64d3a..2e9b33f11 100644 --- a/copi.owasp.org/README.md +++ b/copi.owasp.org/README.md @@ -75,6 +75,52 @@ To start your Phoenix server: Now you can visit [`localhost:4000`](http://localhost:4000) from your browser. +## Security Features + +### Rate Limiting + +Copi implements IP-based rate limiting to protect against abuse and ensure availability for all users. This addresses CAPEC 212 (Functionality Misuse) attacks. + +**Features:** +- **Game Creation Limiting**: Limits the number of games that can be created from a single IP address +- **Connection Limiting**: Limits the number of WebSocket connections from a single IP address +- **Configurable Limits**: All limits and time windows are configurable via environment variables + +**Configuration:** + +Set the following environment variables to customize rate limits: + +```bash +# Maximum games per IP (default: 10) +export MAX_GAMES_PER_IP=10 + +# Time window for game creation in seconds (default: 3600 = 1 hour) +export GAME_CREATION_WINDOW_SECONDS=3600 + +# Maximum connections per IP (default: 50) +export MAX_CONNECTIONS_PER_IP=50 + +# Time window for connections in seconds (default: 300 = 5 minutes) +export CONNECTION_WINDOW_SECONDS=300 +``` + +**How it works:** +- The rate limiter tracks requests by IP address +- When a limit is exceeded, users receive a clear error message with a retry time +- Expired entries are automatically cleaned up every 5 minutes +- Rate limits are independent for game creation vs. connections +- The system handles both IPv4 and IPv6 addresses +- X-Forwarded-For headers are respected for reverse proxy deployments + +**For Reverse Proxy Deployments:** + +If deploying behind a reverse proxy (nginx, Apache, Cloudflare, etc.), ensure the proxy passes the real client IP: + +```nginx +# Nginx example +proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; +``` + Ready to run in production? Please [check our deployment guides](https://hexdocs.pm/phoenix/deployment.html). ## More about Phoenix @@ -97,6 +143,14 @@ Login to fly and create a PostgreSQL cluster. See: see: https://fly.io/dashboard fly launch --no-deploy Make a note of the host and name of the app and the name of the postgresql cluster. + +Configure rate limiting (optional, uses defaults if not set): + + fly secrets set MAX_GAMES_PER_IP=10 --app + fly secrets set GAME_CREATION_WINDOW_SECONDS=3600 --app + fly secrets set MAX_CONNECTIONS_PER_IP=50 --app + fly secrets set CONNECTION_WINDOW_SECONDS=300 --app + Then deploy the app from `./copi.owasp.org` fly mpg attach --app @@ -139,6 +193,12 @@ Set your prefered app name instead of `` heroku config:set SECRET_KEY_BASE=$(mix phx.gen.secret) heroku config:set POOL_SIZE=18 heroku config:set PROJECT_PATH=copi.owasp.org # points to the subdirectory + + # Optional: Configure rate limiting (uses defaults if not set) + heroku config:set MAX_GAMES_PER_IP=10 + heroku config:set GAME_CREATION_WINDOW_SECONDS=3600 + heroku config:set MAX_CONNECTIONS_PER_IP=50 + heroku config:set CONNECTION_WINDOW_SECONDS=300 ### Heroku deploy diff --git a/copi.owasp.org/SECURITY.md b/copi.owasp.org/SECURITY.md new file mode 100644 index 000000000..7943f89c6 --- /dev/null +++ b/copi.owasp.org/SECURITY.md @@ -0,0 +1,203 @@ +# Security Implementation for Copi + +This document describes the security measures implemented in Copi to protect against abuse and ensure service availability. + +## Overview + +Copi has implemented IP-based rate limiting to protect against **CAPEC 212 (Functionality Misuse)** attacks. These protections help ensure that the service remains available for all legitimate users by preventing a single source from overwhelming the system. + +## Implemented Protections + +### 1. Game Creation Rate Limiting + +**Purpose**: Prevents a single IP address from creating an excessive number of games, which could lead to database exhaustion or denial of service. + +**Default Configuration**: +- Maximum games per IP: 10 +- Time window: 3600 seconds (1 hour) + +**Behavior**: +- Tracks game creation attempts by IP address +- When the limit is exceeded, users receive a clear error message +- The limit resets after the time window expires +- Different IP addresses have independent limits + +**Configuration**: +```bash +export MAX_GAMES_PER_IP=10 +export GAME_CREATION_WINDOW_SECONDS=3600 +``` + +### 2. WebSocket Connection Rate Limiting + +**Purpose**: Prevents a single IP address from opening excessive WebSocket connections, which could exhaust server resources. + +**Default Configuration**: +- Maximum connections per IP: 50 +- Time window: 300 seconds (5 minutes) + +**Behavior**: +- Tracks connection attempts by IP address +- When the limit is exceeded, connections are rejected with an error message +- The limit resets after the time window expires +- Does not affect existing active connections + +**Configuration**: +```bash +export MAX_CONNECTIONS_PER_IP=50 +export CONNECTION_WINDOW_SECONDS=300 +``` + +## Technical Implementation + +### Architecture + +The rate limiting system consists of several components: + +1. **Copi.RateLimiter** (`lib/copi/rate_limiter.ex`) + - GenServer that maintains rate limit state + - Tracks requests per IP address and action type + - Automatically cleans up expired entries every 5 minutes + - Provides a simple API for checking and recording actions + +2. **CopiWeb.Plugs.RateLimiter** (`lib/copi_web/plugs/rate_limiter.ex`) + - Plug for HTTP request rate limiting + - Extracts IP addresses from connections + - Handles X-Forwarded-For headers for reverse proxies + - Returns proper HTTP 429 status codes when limits are exceeded + +3. **LiveView Integration** + - Game creation rate limiting in `CopiWeb.GameLive.CreateGameForm` + - Connection rate limiting in `CopiWeb.GameLive.Index` + - Provides user-friendly error messages + +### IP Address Handling + +The system correctly handles: +- IPv4 addresses (e.g., 192.168.1.1) +- IPv6 addresses (e.g., 2001:db8::1) +- X-Forwarded-For headers (for reverse proxy deployments) +- Multiple IP addresses in X-Forwarded-For (uses the first one) + +### Rate Limit Response Headers + +When rate limiting is active, the following headers are included in responses: + +- `X-RateLimit-Remaining`: Number of requests remaining in the current window +- `Retry-After`: Seconds until the rate limit resets (only included when rate limited) + +### Error Messages + +Users who exceed rate limits receive clear, informative error messages: + +``` +Rate limit exceeded. Too many games created from your IP address. +Please try again in 3456 seconds. +This limit helps ensure service availability for all users. +``` + +## Deployment Considerations + +### Reverse Proxy Configuration + +If deploying behind a reverse proxy (nginx, HAProxy, Cloudflare, etc.), ensure the real client IP is passed through: + +**Nginx**: +```nginx +proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; +``` + +**Apache**: +```apache +RequestHeader set X-Forwarded-For "%{REMOTE_ADDR}s" +``` + +**Cloudflare**: +Cloudflare automatically sets the CF-Connecting-IP header. The X-Forwarded-For header should also be present. + +### Monitoring + +Monitor the following metrics to detect abuse or adjust rate limits: + +- Rate limit rejections (logged as warnings) +- Rate limit state size (number of tracked IPs) +- 429 HTTP responses +- Flash messages about rate limiting + +### Adjusting Rate Limits + +Rate limits can be adjusted based on your deployment needs: + +**For Development/Testing**: +```bash +export MAX_GAMES_PER_IP=100 +export MAX_CONNECTIONS_PER_IP=200 +``` + +**For High-Traffic Production**: +```bash +export MAX_GAMES_PER_IP=5 +export GAME_CREATION_WINDOW_SECONDS=7200 # 2 hours +export MAX_CONNECTIONS_PER_IP=30 +export CONNECTION_WINDOW_SECONDS=600 # 10 minutes +``` + +**For Low-Traffic/Internal Use**: +```bash +export MAX_GAMES_PER_IP=50 +export MAX_CONNECTIONS_PER_IP=100 +``` + +## Testing + +The implementation includes comprehensive tests: + +- **Unit tests** for the RateLimiter GenServer (`test/copi/rate_limiter_test.exs`) +- **Integration tests** for the RateLimiter Plug (`test/copi_web/plugs/rate_limiter_test.exs`) + +Run tests: +```bash +mix test +``` + +Run specific rate limiter tests: +```bash +mix test test/copi/rate_limiter_test.exs +mix test test/copi_web/plugs/rate_limiter_test.exs +``` + +## Future Enhancements + +Potential future security enhancements (not currently implemented): + +1. **Authentication Integration** + - Associate rate limits with authenticated users + - Different limits for authenticated vs. anonymous users + - Per-user rate limiting instead of just per-IP + +2. **Geographic Rate Limiting** + - Different limits based on geographic location + - Blocking or stricter limits for high-risk regions + +3. **Adaptive Rate Limiting** + - Automatically adjust limits based on system load + - Stricter limits during high traffic periods + +4. **CAPTCHA Integration** + - Require CAPTCHA after repeated rate limit violations + - Optional CAPTCHA for game creation + +5. **Rate Limit Dashboard** + - Admin interface to view current rate limit state + - Ability to manually block/unblock IPs + - Real-time monitoring of rate limit violations + +## Reporting Security Issues + +If you discover a security vulnerability in Copi, please report it to the OWASP Cornucopia team through the [GitHub Security Advisories](https://github.com/OWASP/cornucopia/security/advisories) page. + +## References + +- [CAPEC-212: Functionality Misuse](https://capec.mitre.org/data/definitions/212.html) +- [OWASP API Security Top 10 - API4:2023 Unrestricted Resource Consumption](https://owasp.org/API-Security/editions/2023/en/0xa4-unrestricted-resource-consumption/) +- [Phoenix Framework Security](https://hexdocs.pm/phoenix/security.html) diff --git a/copi.owasp.org/config/config.exs b/copi.owasp.org/config/config.exs index 4e51421d4..a27935fda 100644 --- a/copi.owasp.org/config/config.exs +++ b/copi.owasp.org/config/config.exs @@ -27,6 +27,17 @@ config :copi, CopiWeb.Endpoint, config :copi, env: Mix.env() +# Configure rate limiting to prevent abuse (CAPEC 212 - Functionality Misuse) +config :copi, Copi.RateLimiter, + # Maximum number of games that can be created from a single IP in the time window + max_games_per_ip: System.get_env("MAX_GAMES_PER_IP", "10") |> String.to_integer(), + # Time window in seconds for game creation rate limiting (default: 1 hour) + game_creation_window_seconds: System.get_env("GAME_CREATION_WINDOW_SECONDS", "3600") |> String.to_integer(), + # Maximum number of WebSocket connections from a single IP in the time window + max_connections_per_ip: System.get_env("MAX_CONNECTIONS_PER_IP", "50") |> String.to_integer(), + # Time window in seconds for connection rate limiting (default: 5 minutes) + connection_window_seconds: System.get_env("CONNECTION_WINDOW_SECONDS", "300") |> String.to_integer() + # Configure tailwind (the version is required) config :tailwind, version: "3.4.0", diff --git a/copi.owasp.org/lib/copi/application.ex b/copi.owasp.org/lib/copi/application.ex index b6493a6a5..0d9ba8bf8 100644 --- a/copi.owasp.org/lib/copi/application.ex +++ b/copi.owasp.org/lib/copi/application.ex @@ -15,6 +15,8 @@ defmodule Copi.Application do {Phoenix.PubSub, name: Copi.PubSub}, # Start the DNS clustering {DNSCluster, query: Application.get_env(:copi, :dns_cluster_query) || :ignore}, + # Start the Rate Limiter for security + Copi.RateLimiter, # Start the Endpoint (http/https) CopiWeb.Endpoint # Start a worker by calling: Copi.Worker.start_link(arg) diff --git a/copi.owasp.org/lib/copi/rate_limiter.ex b/copi.owasp.org/lib/copi/rate_limiter.ex new file mode 100644 index 000000000..d9ce6caac --- /dev/null +++ b/copi.owasp.org/lib/copi/rate_limiter.ex @@ -0,0 +1,179 @@ +defmodule Copi.RateLimiter do + @moduledoc """ + Rate limiter to prevent abuse by limiting requests per IP address. + + This module implements rate limiting for game creation and user connections + to protect against CAPEC 212 (Functionality Misuse) attacks. + """ + + use GenServer + require Logger + + @cleanup_interval :timer.minutes(5) + + # Client API + + @doc """ + Starts the rate limiter GenServer. + """ + def start_link(opts \\ []) do + GenServer.start_link(__MODULE__, opts, name: __MODULE__) + end + + @doc """ + Checks if a request from the given IP for the specified action should be allowed. + + Returns `{:ok, remaining}` if allowed, `{:error, :rate_limited, retry_after}` if blocked. + """ + def check_rate(ip_address, action) when action in [:game_creation, :connection] do + GenServer.call(__MODULE__, {:check_rate, ip_address, action}) + end + + @doc """ + Records a successful action for rate limiting tracking. + """ + def record_action(ip_address, action) when action in [:game_creation, :connection] do + GenServer.cast(__MODULE__, {:record_action, ip_address, action}) + end + + @doc """ + Clears all rate limit data for an IP address (useful for testing). + """ + def clear_ip(ip_address) do + GenServer.cast(__MODULE__, {:clear_ip, ip_address}) + end + + @doc """ + Gets current rate limit configuration. + """ + def get_config do + GenServer.call(__MODULE__, :get_config) + end + + # Server callbacks + + @impl true + def init(_opts) do + # Schedule periodic cleanup + schedule_cleanup() + + config = %{ + game_creation: %{ + max_requests: get_env(:max_games_per_ip, 10), + window_seconds: get_env(:game_creation_window_seconds, 3600) + }, + connection: %{ + max_requests: get_env(:max_connections_per_ip, 50), + window_seconds: get_env(:connection_window_seconds, 300) + } + } + + state = %{ + requests: %{}, + config: config + } + + Logger.info("RateLimiter started with config: #{inspect(config)}") + + {:ok, state} + end + + @impl true + def handle_call({:check_rate, ip_address, action}, _from, state) do + now = System.system_time(:second) + config = state.config[action] + + ip_requests = get_ip_requests(state, ip_address, action) + + # Filter out expired requests + valid_requests = Enum.filter(ip_requests, fn timestamp -> + now - timestamp < config.window_seconds + end) + + count = length(valid_requests) + remaining = max(0, config.max_requests - count) + + if count < config.max_requests do + {:reply, {:ok, remaining}, state} + else + oldest_request = List.first(valid_requests) + retry_after = oldest_request + config.window_seconds - now + + Logger.warning( + "Rate limit exceeded for IP #{inspect(ip_address)}, action: #{action}, " <> + "count: #{count}/#{config.max_requests}, retry_after: #{retry_after}s" + ) + + {:reply, {:error, :rate_limited, retry_after}, state} + end + end + + @impl true + def handle_call(:get_config, _from, state) do + {:reply, state.config, state} + end + + @impl true + def handle_cast({:record_action, ip_address, action}, state) do + now = System.system_time(:second) + + ip_requests = get_ip_requests(state, ip_address, action) + updated_requests = [now | ip_requests] + + new_requests = put_in( + state.requests, + [ip_address, action], + updated_requests + ) + + {:noreply, %{state | requests: new_requests}} + end + + @impl true + def handle_cast({:clear_ip, ip_address}, state) do + new_requests = Map.delete(state.requests, ip_address) + {:noreply, %{state | requests: new_requests}} + end + + @impl true + def handle_info(:cleanup, state) do + now = System.system_time(:second) + + cleaned_requests = state.requests + |> Enum.map(fn {ip, actions} -> + cleaned_actions = actions + |> Enum.map(fn {action, timestamps} -> + config = state.config[action] + valid_timestamps = Enum.filter(timestamps, fn timestamp -> + now - timestamp < config.window_seconds + end) + {action, valid_timestamps} + end) + |> Enum.filter(fn {_action, timestamps} -> length(timestamps) > 0 end) + |> Map.new() + + {ip, cleaned_actions} + end) + |> Enum.filter(fn {_ip, actions} -> map_size(actions) > 0 end) + |> Map.new() + + schedule_cleanup() + + {:noreply, %{state | requests: cleaned_requests}} + end + + # Private helpers + + defp get_ip_requests(state, ip_address, action) do + get_in(state.requests, [ip_address, action]) || [] + end + + defp schedule_cleanup do + Process.send_after(self(), :cleanup, @cleanup_interval) + end + + defp get_env(key, default) do + Application.get_env(:copi, __MODULE__, []) + |> Keyword.get(key, default) + end +end diff --git a/copi.owasp.org/lib/copi_web/endpoint.ex b/copi.owasp.org/lib/copi_web/endpoint.ex index 54c4eca5c..2d64f820d 100644 --- a/copi.owasp.org/lib/copi_web/endpoint.ex +++ b/copi.owasp.org/lib/copi_web/endpoint.ex @@ -12,8 +12,11 @@ defmodule CopiWeb.Endpoint do ] socket "/live", Phoenix.LiveView.Socket, - websocket: [timeout: 45_000, connect_info: [session: @session_options]], - longpoll: [connect_info: [session: @session_options]] + websocket: [ + timeout: 45_000, + connect_info: [session: @session_options, peer_data: true, x_headers: ["x-forwarded-for"]] + ], + longpoll: [connect_info: [session: @session_options, peer_data: true, x_headers: ["x-forwarded-for"]]] # Serve at "/" the static files from "priv/static" directory. # diff --git a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex index de424483f..1929d57fe 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex @@ -107,15 +107,45 @@ defmodule CopiWeb.GameLive.CreateGameForm do end defp save_game(socket, :new, game_params) do - case Cornucopia.create_game(game_params) do - {:ok, game} -> + # Get the IP address for rate limiting + ip_address = get_connect_ip(socket) + + # Check rate limit before creating game + case Copi.RateLimiter.check_rate(ip_address, :game_creation) do + {:ok, _remaining} -> + case Cornucopia.create_game(game_params) do + {:ok, game} -> + # Record the action after successful creation + Copi.RateLimiter.record_action(ip_address, :game_creation) + + {:noreply, + socket + |> put_flash(:info, "Game created successfully") + |> push_navigate(to: ~p"/games/#{game.id}")} + + {:error, %Ecto.Changeset{} = changeset} -> + {:noreply, assign_form(socket, changeset)} + end + + {:error, :rate_limited, retry_after} -> {:noreply, socket - |> put_flash(:info, "Game created successfully") - |> push_navigate(to: ~p"/games/#{game.id}")} + |> put_flash( + :error, + "Rate limit exceeded. Too many games created from your IP address. " <> + "Please try again in #{retry_after} seconds. " <> + "This limit helps ensure service availability for all users." + ) + |> assign_form(socket.assigns.form.source)} + end + end - {:error, %Ecto.Changeset{} = changeset} -> - {:noreply, assign_form(socket, changeset)} + defp get_connect_ip(socket) do + case get_connect_info(socket, :peer_data) do + %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" + %{address: {a, b, c, d, e, f, g, h}} -> + "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + _ -> "unknown" end end end diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.ex b/copi.owasp.org/lib/copi_web/live/game_live/index.ex index 4724ae086..b14bd4659 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.ex @@ -7,7 +7,24 @@ defmodule CopiWeb.GameLive.Index do @impl true def mount(_params, _session, socket) do - {:ok, assign(socket, :games, nil)} + # Rate limit WebSocket connections + ip_address = get_connect_ip(socket) + + case Copi.RateLimiter.check_rate(ip_address, :connection) do + {:ok, _remaining} -> + Copi.RateLimiter.record_action(ip_address, :connection) + {:ok, assign(socket, :games, nil)} + + {:error, :rate_limited, retry_after} -> + {:ok, + socket + |> put_flash( + :error, + "Connection rate limit exceeded. Too many connections from your IP address. " <> + "Please try again in #{retry_after} seconds." + ) + |> assign(:games, nil)} + end end @impl true @@ -44,4 +61,13 @@ defmodule CopiWeb.GameLive.Index do {:noreply, assign(socket, :games, new_state)} end + defp get_connect_ip(socket) do + case get_connect_info(socket, :peer_data) do + %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" + %{address: {a, b, c, d, e, f, g, h}} -> + "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + _ -> "unknown" + end + end + end diff --git a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex new file mode 100644 index 000000000..8b0566470 --- /dev/null +++ b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex @@ -0,0 +1,66 @@ +defmodule CopiWeb.Plugs.RateLimiter do + @moduledoc """ + Plug for rate limiting HTTP requests based on IP address. + """ + + import Plug.Conn + require Logger + + alias Copi.RateLimiter + + def init(opts), do: opts + + def call(conn, opts) do + action = Keyword.get(opts, :action, :game_creation) + ip_address = get_ip_address(conn) + + case RateLimiter.check_rate(ip_address, action) do + {:ok, remaining} -> + conn + |> put_resp_header("x-ratelimit-remaining", to_string(remaining)) + + {:error, :rate_limited, retry_after} -> + Logger.warning("Rate limit exceeded for IP: #{inspect(ip_address)}, action: #{action}") + + conn + |> put_resp_header("retry-after", to_string(retry_after)) + |> put_resp_header("x-ratelimit-remaining", "0") + |> send_resp(429, rate_limit_message(action, retry_after)) + |> halt() + end + end + + defp get_ip_address(conn) do + # Try to get real IP from common headers (for reverse proxies) + case get_req_header(conn, "x-forwarded-for") do + [forwarded | _] -> + forwarded + |> String.split(",") + |> List.first() + |> String.trim() + + [] -> + case conn.remote_ip do + {a, b, c, d} -> "#{a}.#{b}.#{c}.#{d}" + {a, b, c, d, e, f, g, h} -> + "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + _ -> "unknown" + end + end + end + + defp rate_limit_message(action, retry_after) do + action_name = case action do + :game_creation -> "game creation" + :connection -> "connections" + _ -> "requests" + end + + """ + Rate limit exceeded for #{action_name}. + Please try again in #{retry_after} seconds. + + This protection is in place to ensure service availability for all users. + """ + end +end diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs new file mode 100644 index 000000000..734a8fa66 --- /dev/null +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -0,0 +1,148 @@ +defmodule Copi.RateLimiterTest do + use ExUnit.Case, async: true + + alias Copi.RateLimiter + + setup do + # Start the RateLimiter for testing + {:ok, pid} = RateLimiter.start_link([]) + + # Clear any existing state + RateLimiter.clear_ip("127.0.0.1") + + on_exit(fn -> + if Process.alive?(pid), do: GenServer.stop(pid) + end) + + :ok + end + + describe "game creation rate limiting" do + test "allows requests under the limit" do + ip = "127.0.0.1" + + # First request should be allowed + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert remaining >= 0 + + RateLimiter.record_action(ip, :game_creation) + + # Second request should still be allowed + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + end + + test "blocks requests over the limit" do + ip = "192.168.1.100" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Make max_requests number of game creations + for _i <- 1..max_games do + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + RateLimiter.record_action(ip, :game_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :game_creation) + assert retry_after > 0 + end + + test "different IPs have independent limits" do + ip1 = "10.0.0.1" + ip2 = "10.0.0.2" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust limit for ip1 + for _i <- 1..max_games do + RateLimiter.check_rate(ip1, :game_creation) + RateLimiter.record_action(ip1, :game_creation) + end + + # ip1 should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_rate(ip1, :game_creation) + + # ip2 should still be allowed + assert {:ok, _remaining} = RateLimiter.check_rate(ip2, :game_creation) + end + end + + describe "connection rate limiting" do + test "allows connections under the limit" do + ip = "172.16.0.1" + + assert {:ok, remaining} = RateLimiter.check_rate(ip, :connection) + assert remaining >= 0 + + RateLimiter.record_action(ip, :connection) + + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :connection) + end + + test "blocks connections over the limit" do + ip = "172.16.0.2" + config = RateLimiter.get_config() + max_connections = config.connection.max_requests + + # Make max_requests number of connections + for _i <- 1..max_connections do + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :connection) + RateLimiter.record_action(ip, :connection) + end + + # Next connection should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :connection) + assert retry_after > 0 + end + end + + describe "rate limit window expiration" do + test "allows requests after window expires" do + ip = "192.168.100.1" + + # This test would require waiting for the window to expire + # In a real scenario, you might want to use a mock timer or + # make the window configurable for testing + + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + RateLimiter.record_action(ip, :game_creation) + + # Verify request was recorded + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + end + end + + describe "configuration" do + test "returns current configuration" do + config = RateLimiter.get_config() + + assert is_map(config) + assert Map.has_key?(config, :game_creation) + assert Map.has_key?(config, :connection) + + assert config.game_creation.max_requests > 0 + assert config.game_creation.window_seconds > 0 + + assert config.connection.max_requests > 0 + assert config.connection.window_seconds > 0 + end + end + + describe "IP clearing" do + test "clears rate limit data for an IP" do + ip = "10.20.30.40" + + # Record some actions + RateLimiter.record_action(ip, :game_creation) + RateLimiter.record_action(ip, :connection) + + # Clear the IP + RateLimiter.clear_ip(ip) + + # Should be able to make full limit of requests again + config = RateLimiter.get_config() + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert remaining == config.game_creation.max_requests + end + end +end diff --git a/copi.owasp.org/test/copi_web/plugs/rate_limiter_test.exs b/copi.owasp.org/test/copi_web/plugs/rate_limiter_test.exs new file mode 100644 index 000000000..4d3e6ec2f --- /dev/null +++ b/copi.owasp.org/test/copi_web/plugs/rate_limiter_test.exs @@ -0,0 +1,60 @@ +defmodule CopiWeb.Plugs.RateLimiterTest do + use CopiWeb.ConnCase, async: true + + alias CopiWeb.Plugs.RateLimiter + alias Copi.RateLimiter, as: RateLimiterServer + + setup do + # Clear any existing state + RateLimiterServer.clear_ip("127.0.0.1") + :ok + end + + describe "rate limiter plug" do + test "allows requests under the limit", %{conn: conn} do + conn = RateLimiter.call(conn, action: :game_creation) + + refute conn.halted + assert get_resp_header(conn, "x-ratelimit-remaining") != [] + end + + test "blocks requests over the limit", %{conn: conn} do + config = RateLimiterServer.get_config() + max_requests = config.game_creation.max_requests + + # Exhaust the rate limit + for _i <- 1..max_requests do + RateLimiterServer.check_rate("127.0.0.1", :game_creation) + RateLimiterServer.record_action("127.0.0.1", :game_creation) + end + + # Next request should be blocked + conn = RateLimiter.call(conn, action: :game_creation) + + assert conn.halted + assert conn.status == 429 + assert get_resp_header(conn, "retry-after") != [] + assert get_resp_header(conn, "x-ratelimit-remaining") == ["0"] + end + + test "sets rate limit headers", %{conn: conn} do + conn = RateLimiter.call(conn, action: :game_creation) + + headers = get_resp_header(conn, "x-ratelimit-remaining") + assert length(headers) > 0 + + [remaining] = headers + assert String.to_integer(remaining) >= 0 + end + + test "handles different actions separately", %{conn: conn} do + # Test game creation + conn1 = RateLimiter.call(conn, action: :game_creation) + refute conn1.halted + + # Test connection (should be independent) + conn2 = RateLimiter.call(conn, action: :connection) + refute conn2.halted + end + end +end From c74db05745658ad98601b653a4d820c05eaef98c Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 27 Dec 2025 03:50:07 -0800 Subject: [PATCH 02/61] Add separate player creation rate limiting (addresses @sydseter feedback) -->Added :player_creation action to RateLimiter with separate limits --> Default: 20 players per IP per hour (separate from game creation) --> Applied rate limiting to PlayerLive.FormComponent --> Added comprehensive tests for player creation limits --> Updated documentation with implementation details Fixes #1877 --- RATE_LIMITING_IMPLEMENTATION.md | 108 ++++++++++++++++++ copi.owasp.org/lib/copi/rate_limiter.ex | 10 +- .../live/player_live/form_component.ex | 51 +++++++-- .../test/copi/rate_limiter_test.exs | 51 +++++++++ 4 files changed, 206 insertions(+), 14 deletions(-) create mode 100644 RATE_LIMITING_IMPLEMENTATION.md diff --git a/RATE_LIMITING_IMPLEMENTATION.md b/RATE_LIMITING_IMPLEMENTATION.md new file mode 100644 index 000000000..d3bd75112 --- /dev/null +++ b/RATE_LIMITING_IMPLEMENTATION.md @@ -0,0 +1,108 @@ +# Rate Limiting Implementation for Player Creation + +## Overview +This implementation addresses GitHub Issue #1877 by adding IP-based rate limiting for player creation, separate from the existing game creation rate limit, to protect against CAPEC 212 (Functionality Misuse) attacks. + +## Changes Made + +### 1. Rate Limiter Module (`lib/copi/rate_limiter.ex`) + +**Added player_creation action:** +- Updated `check_rate/2` to accept `:player_creation` action +- Updated `record_action/2` to accept `:player_creation` action +- Added player creation configuration with default limits: + - Maximum players per IP: 20 + - Time window: 3600 seconds (1 hour) + +**Configuration:** +```elixir +player_creation: %{ + max_requests: get_env(:max_players_per_ip, 20), + window_seconds: get_env(:player_creation_window_seconds, 3600) +} +``` + +### 2. Player Form Component (`lib/copi_web/live/player_live/form_component.ex`) + +**Added rate limiting to player creation:** +- Added `get_connect_ip/1` helper function to extract IP address from socket +- Modified `save_player/3` for `:new` action to: + 1. Get the connecting IP address + 2. Check rate limit before creating player + 3. Only create player if rate limit is not exceeded + 4. Record the action after successful creation + 5. Display user-friendly error message if rate limited + +**Error message shown to users:** +``` +"Rate limit exceeded. Too many players created from your IP address. +Please try again in X seconds. This limit helps ensure service +availability for all users." +``` + +### 3. Tests (`test/copi/rate_limiter_test.exs`) + +**Added comprehensive test coverage:** +- Test that player creation is allowed under the limit +- Test that player creation is blocked when limit is exceeded +- Test that player creation limit is separate from game creation limit +- Updated configuration test to verify player_creation config exists + +## Key Features + +### Separate Limits +The player creation rate limit is maintained **separately** from the game creation rate limit. This means: +- An IP that has exhausted its game creation quota can still create players +- An IP that has exhausted its player creation quota can still create games +- Each limit is tracked independently in the GenServer state + +### Configurable Limits +The limits can be configured via application environment: +```elixir +config :copi, Copi.RateLimiter, + max_players_per_ip: 20, + player_creation_window_seconds: 3600 +``` + +### User-Friendly Error Handling +When rate limited, users receive: +- Clear explanation of why they were blocked +- Time until they can try again (retry_after in seconds) +- Explanation that this protects service availability + +## Security Benefits + +1. **CAPEC 212 Mitigation**: Prevents functionality misuse by limiting the rate of player creation from a single IP +2. **DoS Protection**: Helps maintain service availability under attack +3. **Resource Conservation**: Prevents database and system resource exhaustion +4. **Granular Control**: Separate limits allow fine-tuned protection for different actions + +## Default Limits Summary + +| Action | Max Requests | Time Window | +|--------|--------------|-------------| +| Game Creation | 10 | 1 hour | +| Player Creation | 20 | 1 hour | +| Connection | 50 | 5 minutes | + +## Testing + +Run the test suite: +```bash +mix test test/copi/rate_limiter_test.exs +``` + +All tests should pass, including the new player creation rate limiting tests. + +## Future Enhancements + +As mentioned in the issue, if this is still insufficient, the next step would be: +- Implement authentication +- Associate rate limits with user accounts in addition to IP addresses +- Track browser fingerprints along with IP addresses + +--- + +**Issue Reference:** OWASP/cornucopia#1877 +**Related Security Control:** CAPEC-212 (Functionality Misuse) +**Implemented by:** @immortal71 diff --git a/copi.owasp.org/lib/copi/rate_limiter.ex b/copi.owasp.org/lib/copi/rate_limiter.ex index d9ce6caac..1f4e88239 100644 --- a/copi.owasp.org/lib/copi/rate_limiter.ex +++ b/copi.owasp.org/lib/copi/rate_limiter.ex @@ -2,7 +2,7 @@ defmodule Copi.RateLimiter do @moduledoc """ Rate limiter to prevent abuse by limiting requests per IP address. - This module implements rate limiting for game creation and user connections + This module implements rate limiting for game creation, player creation, and user connections to protect against CAPEC 212 (Functionality Misuse) attacks. """ @@ -25,14 +25,14 @@ defmodule Copi.RateLimiter do Returns `{:ok, remaining}` if allowed, `{:error, :rate_limited, retry_after}` if blocked. """ - def check_rate(ip_address, action) when action in [:game_creation, :connection] do + def check_rate(ip_address, action) when action in [:game_creation, :player_creation, :connection] do GenServer.call(__MODULE__, {:check_rate, ip_address, action}) end @doc """ Records a successful action for rate limiting tracking. """ - def record_action(ip_address, action) when action in [:game_creation, :connection] do + def record_action(ip_address, action) when action in [:game_creation, :player_creation, :connection] do GenServer.cast(__MODULE__, {:record_action, ip_address, action}) end @@ -62,6 +62,10 @@ defmodule Copi.RateLimiter do max_requests: get_env(:max_games_per_ip, 10), window_seconds: get_env(:game_creation_window_seconds, 3600) }, + player_creation: %{ + max_requests: get_env(:max_players_per_ip, 20), + window_seconds: get_env(:player_creation_window_seconds, 3600) + }, connection: %{ max_requests: get_env(:max_connections_per_ip, 50), window_seconds: get_env(:connection_window_seconds, 300) diff --git a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex index 4e2f523f9..45587125f 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex @@ -74,23 +74,52 @@ defmodule CopiWeb.PlayerLive.FormComponent do end defp save_player(socket, :new, player_params) do - case Cornucopia.create_player(player_params) do - {:ok, player} -> - - {:ok, updated_game} = Cornucopia.Game.find(socket.assigns.player.game_id) - CopiWeb.Endpoint.broadcast(topic(updated_game.id), "game:updated", updated_game) - + # Get the IP address for rate limiting + ip_address = get_connect_ip(socket) + + # Check rate limit before creating player + case Copi.RateLimiter.check_rate(ip_address, :player_creation) do + {:ok, _remaining} -> + case Cornucopia.create_player(player_params) do + {:ok, player} -> + # Record the action after successful creation + Copi.RateLimiter.record_action(ip_address, :player_creation) + + {:ok, updated_game} = Cornucopia.Game.find(socket.assigns.player.game_id) + CopiWeb.Endpoint.broadcast(topic(updated_game.id), "game:updated", updated_game) + + {:noreply, + socket + |> assign(:game, updated_game) + |> push_navigate(to: ~p"/games/#{player.game_id}/players/#{player.id}")} + + {:error, %Ecto.Changeset{} = changeset} -> + {:noreply, assign_form(socket, changeset)} + end + + {:error, :rate_limited, retry_after} -> {:noreply, socket - |> assign(:game, updated_game) - |> push_navigate(to: ~p"/games/#{player.game_id}/players/#{player.id}")} - - {:error, %Ecto.Changeset{} = changeset} -> - {:noreply, assign_form(socket, changeset)} + |> put_flash( + :error, + "Rate limit exceeded. Too many players created from your IP address. " <> + "Please try again in #{retry_after} seconds. " <> + "This limit helps ensure service availability for all users." + ) + |> assign_form(socket.assigns.form.source)} end end def topic(game_id) do "game:#{game_id}" end + + defp get_connect_ip(socket) do + case get_connect_info(socket, :peer_data) do + %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" + %{address: {a, b, c, d, e, f, g, h}} -> + "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + _ -> "unknown" + end + end end diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 734a8fa66..9509c2a6d 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -96,6 +96,53 @@ defmodule Copi.RateLimiterTest do end end + describe "player creation rate limiting" do + test "allows player creation under the limit" do + ip = "192.168.2.1" + + assert {:ok, remaining} = RateLimiter.check_rate(ip, :player_creation) + assert remaining >= 0 + + RateLimiter.record_action(ip, :player_creation) + + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) + end + + test "blocks player creation over the limit" do + ip = "192.168.2.2" + config = RateLimiter.get_config() + max_players = config.player_creation.max_requests + + # Make max_requests number of player creations + for _i <- 1..max_players do + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) + RateLimiter.record_action(ip, :player_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :player_creation) + assert retry_after > 0 + end + + test "player creation limit is separate from game creation limit" do + ip = "192.168.2.3" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust game creation limit + for _i <- 1..max_games do + RateLimiter.check_rate(ip, :game_creation) + RateLimiter.record_action(ip, :game_creation) + end + + # Game creation should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_rate(ip, :game_creation) + + # Player creation should still be allowed (separate limit) + assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) + end + end + describe "rate limit window expiration" do test "allows requests after window expires" do ip = "192.168.100.1" @@ -118,11 +165,15 @@ defmodule Copi.RateLimiterTest do assert is_map(config) assert Map.has_key?(config, :game_creation) + assert Map.has_key?(config, :player_creation) assert Map.has_key?(config, :connection) assert config.game_creation.max_requests > 0 assert config.game_creation.window_seconds > 0 + assert config.player_creation.max_requests > 0 + assert config.player_creation.window_seconds > 0 + assert config.connection.max_requests > 0 assert config.connection.window_seconds > 0 end From c2d3f563df2dcdf403e8b360cb67a5dd359b9c7b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 06:05:40 +0000 Subject: [PATCH 03/61] Bump actions/setup-node from 6.0.0 to 6.1.0 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.0.0 to 6.1.0. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/2028fbc5c25fe9cf00d9f06a71cc4710d4507903...395ad3262231945c25e8478fd5baf05154b1d79f) --- updated-dependencies: - dependency-name: actions/setup-node dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/build-website-staging.yml | 2 +- .github/workflows/build-website.yml | 2 +- .github/workflows/deploy-website-production.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build-website-staging.yml b/.github/workflows/build-website-staging.yml index ff0a764c5..e426d87a6 100644 --- a/.github/workflows/build-website-staging.yml +++ b/.github/workflows/build-website-staging.yml @@ -36,7 +36,7 @@ version: 10.0.0 run_install: false - name: Install Node.js - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 + uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 with: node-version: 20.18.2 - name: Build diff --git a/.github/workflows/build-website.yml b/.github/workflows/build-website.yml index e6d83bdca..240f53895 100644 --- a/.github/workflows/build-website.yml +++ b/.github/workflows/build-website.yml @@ -37,7 +37,7 @@ run_install: false - name: Install Node.js - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 + uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 with: node-version: 20.18.2 - name: Build diff --git a/.github/workflows/deploy-website-production.yml b/.github/workflows/deploy-website-production.yml index 58ad351bc..62d348f00 100644 --- a/.github/workflows/deploy-website-production.yml +++ b/.github/workflows/deploy-website-production.yml @@ -34,7 +34,7 @@ run_install: false - name: Install Node.js - uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6.0.0 + uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 with: node-version: 20.18.2 - name: Build From 85d1f1b0ad4191d50def0627613ebf9fe2fccbae Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 06:19:36 +0000 Subject: [PATCH 04/61] Bump @sveltejs/kit from 2.49.0 to 2.49.1 in /cornucopia.owasp.org Bumps [@sveltejs/kit](https://github.com/sveltejs/kit/tree/HEAD/packages/kit) from 2.49.0 to 2.49.1. - [Release notes](https://github.com/sveltejs/kit/releases) - [Changelog](https://github.com/sveltejs/kit/blob/main/packages/kit/CHANGELOG.md) - [Commits](https://github.com/sveltejs/kit/commits/@sveltejs/kit@2.49.1/packages/kit) --- updated-dependencies: - dependency-name: "@sveltejs/kit" dependency-version: 2.49.1 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 47 ++++++++++++----------------- 2 files changed, 20 insertions(+), 29 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index c31bae96a..3cf638941 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -17,7 +17,7 @@ "devDependencies": { "@sveltejs/adapter-auto": "^7.0.0", "@sveltejs/adapter-cloudflare": "^5.0.1", - "@sveltejs/kit": "^2.49.0", + "@sveltejs/kit": "^2.49.1", "@sveltejs/vite-plugin-svelte": "^4.0.4", "@types/node": "^24.10.1", "@vitest/coverage-v8": "^3.1.4", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index ffaadb3d9..8ba20f103 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) + version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -47,13 +47,13 @@ importers: devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) + version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': - specifier: ^2.49.0 - version: 2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + specifier: ^2.49.1 + version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 version: 4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) @@ -921,11 +921,6 @@ packages: '@standard-schema/spec@1.0.0': resolution: {integrity: sha512-m2bOd0f2RT9k8QJx1JN85cZYyH1RqFBdlwtkSlf4tBDYLCiiZnv1fIIwacK6cqwXavOydf0NPToMQgpKq+dVlA==} - '@sveltejs/acorn-typescript@1.0.7': - resolution: {integrity: sha512-znp1A/Y1Jj4l/Zy7PX5DZKBE0ZNY+5QBngiE21NJkfSTyzzC5iKNWOtwFXKtIrn7MXEFBck4jD95iBNkGjK92Q==} - peerDependencies: - acorn: ^8.9.0 - '@sveltejs/acorn-typescript@1.0.8': resolution: {integrity: sha512-esgN+54+q0NjB0Y/4BomT9samII7jGwNy/2a3wNZbT2A2RpmXsXwUt24LvLhx6jUq2gVk4cWEvcRO6MFQbOfNA==} peerDependencies: @@ -947,8 +942,8 @@ packages: peerDependencies: '@sveltejs/kit': ^2.0.0 - '@sveltejs/kit@2.49.0': - resolution: {integrity: sha512-oH8tXw7EZnie8FdOWYrF7Yn4IKrqTFHhXvl8YxXxbKwTMcD/5NNCryUSEXRk2ZR4ojnub0P8rNrsVGHXWqIDtA==} + '@sveltejs/kit@2.49.1': + resolution: {integrity: sha512-vByReCTTdlNM80vva8alAQC80HcOiHLkd8XAxIiKghKSHcqeNfyhp3VsYAV8VSiPKu4Jc8wWCfsZNAIvd1uCqA==} engines: {node: '>=18.13'} hasBin: true peerDependencies: @@ -1200,8 +1195,8 @@ packages: resolution: {integrity: sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==} engines: {node: '>= 0.6'} - cookie@1.0.2: - resolution: {integrity: sha512-9Kr/j4O16ISv8zBBhJoi4bXOYNTkFLOqSL3UDB0njXxCXNezjeyVrJyGOWtgfs/q2km1gwBcfH8q1yEGoMYunA==} + cookie@1.1.1: + resolution: {integrity: sha512-ei8Aos7ja0weRpFzJnEA9UHJ/7XQmqglbRwnf2ATjcB9Wq874VKH9kfjjirM6UhU2/E5fFYadylyhFldcqSidQ==} engines: {node: '>=18'} core-util-is@1.0.3: @@ -2647,38 +2642,34 @@ snapshots: '@standard-schema/spec@1.0.0': {} - '@sveltejs/acorn-typescript@1.0.7(acorn@8.15.0)': - dependencies: - acorn: 8.15.0 - '@sveltejs/acorn-typescript@1.0.8(acorn@8.15.0)': dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/kit@2.49.0(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))': dependencies: '@standard-schema/spec': 1.0.0 - '@sveltejs/acorn-typescript': 1.0.7(acorn@8.15.0) + '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 - cookie: 1.0.2 + cookie: 1.1.1 devalue: 5.5.0 esm-env: 1.2.2 kleur: 4.1.5 @@ -2952,7 +2943,7 @@ snapshots: cookie@0.7.2: {} - cookie@1.0.2: {} + cookie@1.1.1: {} core-util-is@1.0.3: {} From ca372bb019c5b57a0a3123a23d0f5996ff9c2c99 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 06:06:00 +0000 Subject: [PATCH 05/61] Bump actions/checkout from 6.0.0 to 6.0.1 Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.0 to 6.0.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3...8e8c483db84b4bee98b60c0593521ed34d9990e8) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/build-website-staging.yml | 2 +- .github/workflows/build-website.yml | 2 +- .github/workflows/codeql.yml | 2 +- .github/workflows/copi-build.yml | 2 +- .github/workflows/copi-deploy-production.yml | 2 +- .github/workflows/copi-deploy-staging.yml | 2 +- .github/workflows/dependency-review.yml | 2 +- .github/workflows/deploy-website-production.yml | 2 +- .github/workflows/deploy-website-staging.yml | 2 +- .github/workflows/pre-release.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/run-tests-generate-output.yaml | 4 ++-- .github/workflows/run-tests.yaml | 2 +- .github/workflows/scorecard.yml | 2 +- 14 files changed, 15 insertions(+), 15 deletions(-) diff --git a/.github/workflows/build-website-staging.yml b/.github/workflows/build-website-staging.yml index e426d87a6..3fce2e7d2 100644 --- a/.github/workflows/build-website-staging.yml +++ b/.github/workflows/build-website-staging.yml @@ -29,7 +29,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 name: Install pnpm with: diff --git a/.github/workflows/build-website.yml b/.github/workflows/build-website.yml index 240f53895..ae9d33887 100644 --- a/.github/workflows/build-website.yml +++ b/.github/workflows/build-website.yml @@ -27,7 +27,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 8a3488360..d574d7b14 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -45,7 +45,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/copi-build.yml b/.github/workflows/copi-build.yml index c5f733a4b..0fd8a368c 100644 --- a/.github/workflows/copi-build.yml +++ b/.github/workflows/copi-build.yml @@ -26,7 +26,7 @@ options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5 steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} - name: build project diff --git a/.github/workflows/copi-deploy-production.yml b/.github/workflows/copi-deploy-production.yml index b90d2ccde..7d51caaa7 100644 --- a/.github/workflows/copi-deploy-production.yml +++ b/.github/workflows/copi-deploy-production.yml @@ -10,7 +10,7 @@ deploy-to-prod: runs-on: ubuntu-latest # Or another supported runner steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: Install Elixir and Erlang uses: erlef/setup-beam@e6d7c94229049569db56a7ad5a540c051a010af9 # v1.20.4 with: diff --git a/.github/workflows/copi-deploy-staging.yml b/.github/workflows/copi-deploy-staging.yml index 8627e4767..2ac21389a 100644 --- a/.github/workflows/copi-deploy-staging.yml +++ b/.github/workflows/copi-deploy-staging.yml @@ -28,7 +28,7 @@ options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5 steps: - - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: Cache deps id: cache-deps uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 02f43f046..07dc350f2 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -21,7 +21,7 @@ jobs: needs: hardening steps: - name: 'Checkout Repository' - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: 'Dependency Review' uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 with: diff --git a/.github/workflows/deploy-website-production.yml b/.github/workflows/deploy-website-production.yml index 62d348f00..6f815f3d2 100644 --- a/.github/workflows/deploy-website-production.yml +++ b/.github/workflows/deploy-website-production.yml @@ -26,7 +26,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 name: Install pnpm with: diff --git a/.github/workflows/deploy-website-staging.yml b/.github/workflows/deploy-website-staging.yml index 83f1319a1..bc9077c33 100644 --- a/.github/workflows/deploy-website-staging.yml +++ b/.github/workflows/deploy-website-staging.yml @@ -33,7 +33,7 @@ needs: hardening steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: Download a single artifact uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 with: diff --git a/.github/workflows/pre-release.yml b/.github/workflows/pre-release.yml index 739694404..ef483e020 100644 --- a/.github/workflows/pre-release.yml +++ b/.github/workflows/pre-release.yml @@ -18,7 +18,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 # Set the pip environment up - name: Get Python uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 132b2a26d..146eceef9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ runs-on: "ubuntu-latest" steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 # Set the pip environment up - name: Get Python uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 diff --git a/.github/workflows/run-tests-generate-output.yaml b/.github/workflows/run-tests-generate-output.yaml index 6147f9440..ce4f6b767 100644 --- a/.github/workflows/run-tests-generate-output.yaml +++ b/.github/workflows/run-tests-generate-output.yaml @@ -31,7 +31,7 @@ jobs: artifact-url: ${{ steps.upload_artifact.outputs.artifact-url }} steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} - name: Create tmp branch for artifacts and get parent and object ref @@ -45,7 +45,7 @@ jobs: echo "object_tree=`git write-tree`" >> "$GITHUB_ENV" git switch --orphan "tmp-$BRANCH_NAME-artifacts" - name: Checkout branch for pull request - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: ref: ${{ github.event.pull_request.head.ref }} # Set the pip environment up diff --git a/.github/workflows/run-tests.yaml b/.github/workflows/run-tests.yaml index a035f994e..fe21eee9f 100644 --- a/.github/workflows/run-tests.yaml +++ b/.github/workflows/run-tests.yaml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: ref: ${{ github.event.pull_request.head.sha }} # Set the pip environment up diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 1423b0170..59226054f 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -26,7 +26,7 @@ jobs: id-token: write steps: - name: "Checkout code" - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: persist-credentials: false From 1c5dca2d74b8b6e47e8c988800e31541ffe21fd2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Dec 2025 18:56:01 +0000 Subject: [PATCH 06/61] Bump svelte from 5.45.3 to 5.45.4 in /cornucopia.owasp.org Bumps [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) from 5.45.3 to 5.45.4. - [Release notes](https://github.com/sveltejs/svelte/releases) - [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md) - [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.45.4/packages/svelte) --- updated-dependencies: - dependency-name: svelte dependency-version: 5.45.4 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 80 ++++++++++++++--------------- 2 files changed, 41 insertions(+), 41 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 3cf638941..d3b6a669f 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -22,7 +22,7 @@ "@types/node": "^24.10.1", "@vitest/coverage-v8": "^3.1.4", "dotenv": "^17.2.3", - "svelte": "^5.45.3", + "svelte": "^5.45.5", "svelte-check": "^4.3.4", "svelte-sitemap": "^2.7.1", "then-request": "^6.0.2", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index 8ba20f103..6d60b3217 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) + version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -28,13 +28,13 @@ importers: version: 8.0.1 svelte-i18n: specifier: ^4.0.1 - version: 4.0.1(svelte@5.45.3) + version: 4.0.1(svelte@5.45.5) svelte-markdown: specifier: ^0.4.1 - version: 0.4.1(svelte@5.45.3) + version: 0.4.1(svelte@5.45.5) sveltekit-i18n: specifier: ^2.4.2 - version: 2.4.2(svelte@5.45.3) + version: 2.4.2(svelte@5.45.5) sync-request: specifier: ^6.1.0 version: 6.1.0 @@ -47,16 +47,16 @@ importers: devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))) + version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': specifier: ^2.49.1 - version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 - version: 4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + version: 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) '@types/node': specifier: ^24.10.1 version: 24.10.1 @@ -67,11 +67,11 @@ importers: specifier: ^17.2.3 version: 17.2.3 svelte: - specifier: ^5.45.3 - version: 5.45.3 + specifier: ^5.45.5 + version: 5.45.5 svelte-check: specifier: ^4.3.4 - version: 4.3.4(picomatch@4.0.3)(svelte@5.45.3)(typescript@5.9.3) + version: 4.3.4(picomatch@4.0.3)(svelte@5.45.5)(typescript@5.9.3) svelte-sitemap: specifier: ^2.7.1 version: 2.7.1 @@ -1901,8 +1901,8 @@ packages: engines: {node: '>= 14.17.0'} hasBin: true - svelte@5.45.3: - resolution: {integrity: sha512-ngKXNhNvwPzF43QqEhDOue7TQTrG09em1sd4HBxVF0Wr2gopAmdEWan+rgbdgK4fhBtSOTJO8bYU4chUG7VXZQ==} + svelte@5.45.5: + resolution: {integrity: sha512-2074U+vObO5Zs8/qhxtBwdi6ZXNIhEBTzNmUFjiZexLxTdt9vq96D/0pnQELl6YcpLMD7pZ2dhXKByfGS8SAdg==} engines: {node: '>=18'} sveltekit-i18n@2.4.2: @@ -2646,27 +2646,27 @@ snapshots: dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': dependencies: '@standard-schema/spec': 1.0.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 @@ -2678,34 +2678,34 @@ snapshots: sade: 1.8.1 set-cookie-parser: 2.7.2 sirv: 3.0.2 - svelte: 5.45.3 + svelte: 5.45.5 vite: 5.4.21(@types/node@24.10.1) - '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': dependencies: - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) debug: 4.4.0 - svelte: 5.45.3 + svelte: 5.45.5 vite: 5.4.21(@types/node@24.10.1) transitivePeerDependencies: - supports-color - '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': dependencies: - '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.3)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) debug: 4.4.0 deepmerge: 4.3.1 kleur: 4.1.5 magic-string: 0.30.17 - svelte: 5.45.3 + svelte: 5.45.5 vite: 5.4.21(@types/node@24.10.1) vitefu: 1.0.5(vite@5.4.21(@types/node@24.10.1)) transitivePeerDependencies: - supports-color - '@sveltekit-i18n/base@1.3.7(svelte@5.45.3)': + '@sveltekit-i18n/base@1.3.7(svelte@5.45.5)': dependencies: - svelte: 5.45.3 + svelte: 5.45.5 '@sveltekit-i18n/parser-default@1.1.1': {} @@ -3716,19 +3716,19 @@ snapshots: dependencies: has-flag: 4.0.0 - svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.3)(typescript@5.9.3): + svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.5)(typescript@5.9.3): dependencies: '@jridgewell/trace-mapping': 0.3.31 chokidar: 4.0.3 fdir: 6.5.0(picomatch@4.0.3) picocolors: 1.1.1 sade: 1.8.1 - svelte: 5.45.3 + svelte: 5.45.5 typescript: 5.9.3 transitivePeerDependencies: - picomatch - svelte-i18n@4.0.1(svelte@5.45.3): + svelte-i18n@4.0.1(svelte@5.45.5): dependencies: cli-color: 2.0.4 deepmerge: 4.3.1 @@ -3736,14 +3736,14 @@ snapshots: estree-walker: 2.0.2 intl-messageformat: 10.7.11 sade: 1.8.1 - svelte: 5.45.3 + svelte: 5.45.5 tiny-glob: 0.2.9 - svelte-markdown@0.4.1(svelte@5.45.3): + svelte-markdown@0.4.1(svelte@5.45.5): dependencies: '@types/marked': 5.0.2 marked: 5.1.2 - svelte: 5.45.3 + svelte: 5.45.5 svelte-sitemap@2.7.1: dependencies: @@ -3751,7 +3751,7 @@ snapshots: minimist: 1.2.8 xmlbuilder2: 3.1.1 - svelte@5.45.3: + svelte@5.45.5: dependencies: '@jridgewell/remapping': 2.3.5 '@jridgewell/sourcemap-codec': 1.5.5 @@ -3769,11 +3769,11 @@ snapshots: magic-string: 0.30.21 zimmerframe: 1.1.4 - sveltekit-i18n@2.4.2(svelte@5.45.3): + sveltekit-i18n@2.4.2(svelte@5.45.5): dependencies: - '@sveltekit-i18n/base': 1.3.7(svelte@5.45.3) + '@sveltekit-i18n/base': 1.3.7(svelte@5.45.5) '@sveltekit-i18n/parser-default': 1.1.1 - svelte: 5.45.3 + svelte: 5.45.5 sync-request@6.1.0: dependencies: From 032c1bc010306303c356bdc11f5dd35a2f20520d Mon Sep 17 00:00:00 2001 From: cw-owasp Date: Fri, 5 Dec 2025 15:55:40 +0000 Subject: [PATCH 07/61] Update acknowledgements on index.md Added contributor --- cornucopia.owasp.org/data/website/pages/about/en/index.md | 1 + 1 file changed, 1 insertion(+) diff --git a/cornucopia.owasp.org/data/website/pages/about/en/index.md b/cornucopia.owasp.org/data/website/pages/about/en/index.md index 5ac3017e9..6c2bd7272 100644 --- a/cornucopia.owasp.org/data/website/pages/about/en/index.md +++ b/cornucopia.owasp.org/data/website/pages/about/en/index.md @@ -59,6 +59,7 @@ Cornucopia is developed, maintained, updated and promoted by a worldwide team of - Artim Banyte - Simon Bennetts - Thomas Berson +- Rishii Bharadhwaj - Jorun Kristin Bremseth - Tom Brennan - Graham Bryant From 071dd6ef2637d3709c8896c81f53239ff0667b55 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Sun, 7 Dec 2025 21:59:49 +0100 Subject: [PATCH 08/61] Remove duplicate 'nl' from languages list --- source/webapp-mappings-2.2.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/source/webapp-mappings-2.2.yaml b/source/webapp-mappings-2.2.yaml index 754e8c937..178ccad93 100644 --- a/source/webapp-mappings-2.2.yaml +++ b/source/webapp-mappings-2.2.yaml @@ -6,7 +6,7 @@ meta: version: "2.2" layouts: ["cards", "leaflet", "guide"] templates: ["bridge_qr", "bridge", "tarot", "tarot_qr"] - languages: ["en", "es", "fr", "nl", "nl", "no-nb", "pt-br", "pt-pt", "it", "ru", "hu"] + languages: ["en", "es", "fr", "nl", "no-nb", "pt-br", "pt-pt", "it", "ru", "hu"] suits: - id: "VE" From 21d2208f10f228965e74601c131f021ec6f18e86 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Sun, 7 Dec 2025 22:26:42 +0100 Subject: [PATCH 09/61] Add statistics section with SQL queries Added SQL queries to retrieve monthly game and player statistics. --- copi.owasp.org/README.md | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/copi.owasp.org/README.md b/copi.owasp.org/README.md index 2e9b33f11..ca283c1e1 100644 --- a/copi.owasp.org/README.md +++ b/copi.owasp.org/README.md @@ -224,4 +224,15 @@ Reconfigure the apps host address Setup SSL on for your dns provider e.g: https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/ # PEM format - heroku certs:add cloudflare.crt cloudflare.key \ No newline at end of file + heroku certs:add cloudflare.crt cloudflare.key + +## Other useful things + +### Statistics + +Get the number of games and users per month. We do not track users. We only look at totals per month. + +SELECT EXTRACT(YEAR FROM created_at) AS year, EXTRACT(MONTH FROM created_at) AS month, count(*) AS games_count FROM games WHERE created_at is not null group by year, month ORDER by year ASC, month ASC; + + +SELECT EXTRACT(YEAR FROM inserted_at) AS year, EXTRACT(MONTH FROM inserted_at) AS month, count(*) AS players_count FROM players WHERE inserted_at is not null group by year, month ORDER by year ASC, month ASC; From 1e8cac00456989d3446927b2a9b530b7cf12b6ba Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 06:23:13 +0000 Subject: [PATCH 10/61] Bump svelte from 5.45.5 to 5.45.6 in /cornucopia.owasp.org Bumps [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) from 5.45.5 to 5.45.6. - [Release notes](https://github.com/sveltejs/svelte/releases) - [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md) - [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.45.6/packages/svelte) --- updated-dependencies: - dependency-name: svelte dependency-version: 5.45.6 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 80 ++++++++++++++--------------- 2 files changed, 41 insertions(+), 41 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index d3b6a669f..5a4e767c4 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -22,7 +22,7 @@ "@types/node": "^24.10.1", "@vitest/coverage-v8": "^3.1.4", "dotenv": "^17.2.3", - "svelte": "^5.45.5", + "svelte": "^5.45.6", "svelte-check": "^4.3.4", "svelte-sitemap": "^2.7.1", "then-request": "^6.0.2", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index 6d60b3217..b7b22ff4d 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))) + version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -28,13 +28,13 @@ importers: version: 8.0.1 svelte-i18n: specifier: ^4.0.1 - version: 4.0.1(svelte@5.45.5) + version: 4.0.1(svelte@5.45.6) svelte-markdown: specifier: ^0.4.1 - version: 0.4.1(svelte@5.45.5) + version: 0.4.1(svelte@5.45.6) sveltekit-i18n: specifier: ^2.4.2 - version: 2.4.2(svelte@5.45.5) + version: 2.4.2(svelte@5.45.6) sync-request: specifier: ^6.1.0 version: 6.1.0 @@ -47,16 +47,16 @@ importers: devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))) + version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': specifier: ^2.49.1 - version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 - version: 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + version: 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) '@types/node': specifier: ^24.10.1 version: 24.10.1 @@ -67,11 +67,11 @@ importers: specifier: ^17.2.3 version: 17.2.3 svelte: - specifier: ^5.45.5 - version: 5.45.5 + specifier: ^5.45.6 + version: 5.45.6 svelte-check: specifier: ^4.3.4 - version: 4.3.4(picomatch@4.0.3)(svelte@5.45.5)(typescript@5.9.3) + version: 4.3.4(picomatch@4.0.3)(svelte@5.45.6)(typescript@5.9.3) svelte-sitemap: specifier: ^2.7.1 version: 2.7.1 @@ -1901,8 +1901,8 @@ packages: engines: {node: '>= 14.17.0'} hasBin: true - svelte@5.45.5: - resolution: {integrity: sha512-2074U+vObO5Zs8/qhxtBwdi6ZXNIhEBTzNmUFjiZexLxTdt9vq96D/0pnQELl6YcpLMD7pZ2dhXKByfGS8SAdg==} + svelte@5.45.6: + resolution: {integrity: sha512-V3aVXthzPyPt1UB1wLEoXnEXpwPsvs7NHrR0xkCor8c11v71VqBj477MClqPZYyrcXrAH21sNGhOj9FJvSwXfQ==} engines: {node: '>=18'} sveltekit-i18n@2.4.2: @@ -2646,27 +2646,27 @@ snapshots: dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) - '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': dependencies: '@standard-schema/spec': 1.0.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 @@ -2678,34 +2678,34 @@ snapshots: sade: 1.8.1 set-cookie-parser: 2.7.2 sirv: 3.0.2 - svelte: 5.45.5 + svelte: 5.45.6 vite: 5.4.21(@types/node@24.10.1) - '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': dependencies: - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) debug: 4.4.0 - svelte: 5.45.5 + svelte: 5.45.6 vite: 5.4.21(@types/node@24.10.1) transitivePeerDependencies: - supports-color - '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': dependencies: - '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.5)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) debug: 4.4.0 deepmerge: 4.3.1 kleur: 4.1.5 magic-string: 0.30.17 - svelte: 5.45.5 + svelte: 5.45.6 vite: 5.4.21(@types/node@24.10.1) vitefu: 1.0.5(vite@5.4.21(@types/node@24.10.1)) transitivePeerDependencies: - supports-color - '@sveltekit-i18n/base@1.3.7(svelte@5.45.5)': + '@sveltekit-i18n/base@1.3.7(svelte@5.45.6)': dependencies: - svelte: 5.45.5 + svelte: 5.45.6 '@sveltekit-i18n/parser-default@1.1.1': {} @@ -3716,19 +3716,19 @@ snapshots: dependencies: has-flag: 4.0.0 - svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.5)(typescript@5.9.3): + svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.6)(typescript@5.9.3): dependencies: '@jridgewell/trace-mapping': 0.3.31 chokidar: 4.0.3 fdir: 6.5.0(picomatch@4.0.3) picocolors: 1.1.1 sade: 1.8.1 - svelte: 5.45.5 + svelte: 5.45.6 typescript: 5.9.3 transitivePeerDependencies: - picomatch - svelte-i18n@4.0.1(svelte@5.45.5): + svelte-i18n@4.0.1(svelte@5.45.6): dependencies: cli-color: 2.0.4 deepmerge: 4.3.1 @@ -3736,14 +3736,14 @@ snapshots: estree-walker: 2.0.2 intl-messageformat: 10.7.11 sade: 1.8.1 - svelte: 5.45.5 + svelte: 5.45.6 tiny-glob: 0.2.9 - svelte-markdown@0.4.1(svelte@5.45.5): + svelte-markdown@0.4.1(svelte@5.45.6): dependencies: '@types/marked': 5.0.2 marked: 5.1.2 - svelte: 5.45.5 + svelte: 5.45.6 svelte-sitemap@2.7.1: dependencies: @@ -3751,7 +3751,7 @@ snapshots: minimist: 1.2.8 xmlbuilder2: 3.1.1 - svelte@5.45.5: + svelte@5.45.6: dependencies: '@jridgewell/remapping': 2.3.5 '@jridgewell/sourcemap-codec': 1.5.5 @@ -3769,11 +3769,11 @@ snapshots: magic-string: 0.30.21 zimmerframe: 1.1.4 - sveltekit-i18n@2.4.2(svelte@5.45.5): + sveltekit-i18n@2.4.2(svelte@5.45.6): dependencies: - '@sveltekit-i18n/base': 1.3.7(svelte@5.45.5) + '@sveltekit-i18n/base': 1.3.7(svelte@5.45.6) '@sveltekit-i18n/parser-default': 1.1.1 - svelte: 5.45.5 + svelte: 5.45.6 sync-request@6.1.0: dependencies: From c697fc97b4a9a887e8a8530779a3e2747c2a16bb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 06:08:48 +0000 Subject: [PATCH 11/61] Bump black from 25.1.0 to 25.12.0 Bumps [black](https://github.com/psf/black) from 25.1.0 to 25.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/25.1.0...25.12.0) --- updated-dependencies: - dependency-name: black dependency-version: 25.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 71 ++++++++++++++++++++++++++-------------------------- 2 files changed, 37 insertions(+), 36 deletions(-) diff --git a/Pipfile b/Pipfile index 1e3ad856a..7828d6522 100644 --- a/Pipfile +++ b/Pipfile @@ -4,7 +4,7 @@ url = "https://pypi.org/simple" verify_ssl = true [dev-packages] -black = "==25.11.0" +black = "==25.12.0" coverage = "==7.12.0" flake8 = "==7.3.0" httpretty = "==1.1.4" diff --git a/Pipfile.lock b/Pipfile.lock index 5e9e4501b..98a6c94fe 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "5b26c1c401070186793f696471305b12e18f0e5fc565b83bd44aa672926ed988" + "sha256": "01dd7f5336837f3b5cb2958043d93da6df434695ebbb9f74ffd11f4d93002aa7" }, "pipfile-spec": 6, "requires": { @@ -656,36 +656,37 @@ "develop": { "black": { "hashes": [ - "sha256:0a1d40348b6621cc20d3d7530a5b8d67e9714906dfd7346338249ad9c6cedf2b", - "sha256:0c0f7c461df55cf32929b002335883946a4893d759f2df343389c4396f3b6b37", - "sha256:1032639c90208c15711334d681de2e24821af0575573db2810b0763bcd62e0f0", - "sha256:35690a383f22dd3e468c85dc4b915217f87667ad9cce781d7b42678ce63c4170", - "sha256:43945853a31099c7c0ff8dface53b4de56c41294fa6783c0441a8b1d9bf668bc", - "sha256:51c65d7d60bb25429ea2bf0731c32b2a2442eb4bd3b2afcb47830f0b13e58bfd", - "sha256:5bd4a22a0b37401c8e492e994bce79e614f91b14d9ea911f44f36e262195fdda", - "sha256:6cb2d54a39e0ef021d6c5eef442e10fd71fcb491be6413d083a320ee768329dd", - "sha256:6cced12b747c4c76bc09b4db057c319d8545307266f41aaee665540bc0e04e96", - "sha256:7eebd4744dfe92ef1ee349dc532defbf012a88b087bb7ddd688ff59a447b080e", - "sha256:80e7486ad3535636657aa180ad32a7d67d7c273a80e12f1b4bfa0823d54e8fac", - "sha256:895571922a35434a9d8ca67ef926da6bc9ad464522a5fe0db99b394ef1c0675a", - "sha256:92285c37b93a1698dcbc34581867b480f1ba3a7b92acf1fe0467b04d7a4da0dc", - "sha256:936c4dd07669269f40b497440159a221ee435e3fddcf668e0c05244a9be71993", - "sha256:9815ccee1e55717fe9a4b924cae1646ef7f54e0f990da39a34fc7b264fcf80a2", - "sha256:9a323ac32f5dc75ce7470501b887250be5005a01602e931a15e45593f70f6e08", - "sha256:a3bb5ce32daa9ff0605d73b6f19da0b0e6c1f8f2d75594db539fdfed722f2b06", - "sha256:aa211411e94fdf86519996b7f5f05e71ba34835d8f0c0f03c00a26271da02664", - "sha256:ae263af2f496940438e5be1a0c1020e13b09154f3af4df0835ea7f9fe7bfa409", - "sha256:cb4f4b65d717062191bdec8e4a442539a8ea065e6af1c4f4d36f0cdb5f71e170", - "sha256:d81a44cbc7e4f73a9d6ae449ec2317ad81512d1e7dce7d57f6333fd6259737bc", - "sha256:dae49ef7369c6caa1a1833fd5efb7c3024bb7e4499bf64833f65ad27791b1545", - "sha256:e3f562da087791e96cefcd9dda058380a442ab322a02e222add53736451f604b", - "sha256:ec311e22458eec32a807f029b2646f661e6859c3f61bc6d9ffb67958779f392e", - "sha256:f42c0ea7f59994490f4dccd64e6b2dd49ac57c7c84f38b8faab50f8759db245c", - "sha256:f9786c24d8e9bd5f20dc7a7f0cdd742644656987f6ea6947629306f937726c03" + "sha256:05dd459a19e218078a1f98178c13f861fe6a9a5f88fc969ca4d9b49eb1809783", + "sha256:09524b0e6af8ba7a3ffabdfc7a9922fb9adef60fed008c7cd2fc01f3048e6e6f", + "sha256:0a0953b134f9335c2434864a643c842c44fba562155c738a2a37a4d61f00cad5", + "sha256:0e509c858adf63aa61d908061b52e580c40eae0dfa72415fa47ac01b12e29baf", + "sha256:169506ba91ef21e2e0591563deda7f00030cb466e747c4b09cb0a9dae5db2f43", + "sha256:17dcc893da8d73d8f74a596f64b7c98ef5239c2cd2b053c0f25912c4494bf9ea", + "sha256:1a2f578ae20c19c50a382286ba78bfbeafdf788579b053d8e4980afb079ab9be", + "sha256:2355bbb6c3b76062870942d8cc450d4f8ac71f9c93c40122762c8784df49543f", + "sha256:252678f07f5bac4ff0d0e9b261fbb029fa530cfa206d0a636a34ab445ef8ca9d", + "sha256:274f940c147ddab4442d316b27f9e332ca586d39c85ecf59ebdea82cc9ee8892", + "sha256:31f96b7c98c1ddaeb07dc0f56c652e25bdedaac76d5b68a059d998b57c55594a", + "sha256:48ceb36c16dbc84062740049eef990bb2ce07598272e673c17d1a7720c71c828", + "sha256:51e267458f7e650afed8445dc7edb3187143003d52a1b710c7321aef22aa9655", + "sha256:546eecfe9a3a6b46f9d69d8a642585a6eaf348bcbbc4d87a19635570e02d9f4a", + "sha256:778285d9ea197f34704e3791ea9404cd6d07595745907dd2ce3da7a13627b29b", + "sha256:8d3dd9cea14bff7ddc0eb243c811cdb1a011ebb4800a5f0335a01a68654796a7", + "sha256:9678bd991cc793e81d19aeeae57966ee02909877cb65838ccffef24c3ebac08f", + "sha256:97596189949a8aad13ad12fcbb4ae89330039b96ad6742e6f6b45e75ad5cfd83", + "sha256:9ec77439ef3e34896995503865a85732c94396edcc739f302c5673a2315e1e7f", + "sha256:a05ddeb656534c3e27a05a29196c962877c83fa5503db89e68857d1161ad08a5", + "sha256:a3fa71e3b8dd9f7c6ac4d818345237dfb4175ed3bf37cd5a581dbc4c034f1ec5", + "sha256:b162653ed89eb942758efeb29d5e333ca5bb90e5130216f8369857db5955a7da", + "sha256:bc5b1c09fe3c931ddd20ee548511c64ebf964ada7e6f0763d443947fd1c603ce", + "sha256:c1f68c5eff61f226934be6b5b80296cf6939e5d2f0c2f7d543ea08b204bfaf59", + "sha256:d0cfa263e85caea2cff57d8f917f9f51adae8e20b610e2b23de35b5b11ce691a", + "sha256:d3e1b65634b0e471d07ff86ec338819e2ef860689859ef4501ab7ac290431f9b", + "sha256:f85ba1ad15d446756b4ab5f3044731bf68b777f8f9ac9cdabd2425b97cd9c4e8" ], "index": "pypi", - "markers": "python_version >= '3.9'", - "version": "==25.11.0" + "markers": "python_version >= '3.10'", + "version": "==25.12.0" }, "certifi": { "hashes": [ @@ -808,11 +809,11 @@ }, "click": { "hashes": [ - "sha256:9b9f285302c6e3064f4330c05f05b81945b2a39544279343e6e7c5f27a9baddc", - "sha256:e7b8232224eba16f4ebe410c25ced9f7875cb5f3263ffc93cc3e8da705e229c4" + "sha256:12ff4785d337a1bb490bb7e9c2b1ee5da3112e94a8622f26a6c77f5d2fc6842a", + "sha256:981153a64e25f12d547d3426c367a4857371575ee7ad18df2a6183ab0545b2a6" ], "markers": "python_version >= '3.10'", - "version": "==8.3.0" + "version": "==8.3.1" }, "coverage": { "extras": [ @@ -1037,11 +1038,11 @@ }, "platformdirs": { "hashes": [ - "sha256:70ddccdd7c99fc5942e9fc25636a8b34d04c24b335100223152c2803e4063312", - "sha256:e578a81bb873cbb89a41fcc904c7ef523cc18284b7e3b3ccf06aca1403b7ebd3" + "sha256:61d5cdcc6065745cdd94f0f878977f8de9437be93de97c1c12f853c9c0cdcbda", + "sha256:d03afa3963c806a9bed9d5125c8f4cb2fdaf74a55ab60e5d59b3fde758104d31" ], "markers": "python_version >= '3.10'", - "version": "==4.5.0" + "version": "==4.5.1" }, "pluggy": { "hashes": [ From 5d431e41b0c1a625aefcfc934580ac88be1106bc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 06:06:48 +0000 Subject: [PATCH 12/61] Bump github/codeql-action from 4.31.6 to 4.31.7 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.6 to 4.31.7. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/fe4161a26a8629af62121b670040955b330f9af2...cf1bb45a277cb3c205638b2cd5c984db1c46a412) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.7 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql.yml | 6 +++--- .github/workflows/scorecard.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index d574d7b14..9fc0e9f73 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -49,7 +49,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@fe4161a26a8629af62121b670040955b330f9af2 # v2.2.9 + uses: github/codeql-action/init@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -59,7 +59,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@fe4161a26a8629af62121b670040955b330f9af2 # v2.2.9 + uses: github/codeql-action/autobuild@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 # ℹ️ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -72,6 +72,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@fe4161a26a8629af62121b670040955b330f9af2 # v2.2.9 + uses: github/codeql-action/analyze@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 59226054f..76cba3b36 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -57,6 +57,6 @@ jobs: # required for Code scanning alerts - name: "Upload SARIF results to code scanning" - uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v3.29.5 + uses: github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v3.29.5 with: sarif_file: results.sarif From 2ddb1a45117a9cb0f2423653e5693f7e5f808841 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 06:06:41 +0000 Subject: [PATCH 13/61] Bump pipenv from 2025.0.4 to 2025.1.1 Bumps [pipenv](https://github.com/pypa/pipenv) from 2025.0.4 to 2025.1.1. - [Release notes](https://github.com/pypa/pipenv/releases) - [Changelog](https://github.com/pypa/pipenv/blob/main/CHANGELOG.md) - [Commits](https://github.com/pypa/pipenv/compare/v2025.0.4...v2025.1.1) --- updated-dependencies: - dependency-name: pipenv dependency-version: 2025.1.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 1ae8790bb..ad50f4d10 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,5 +1,5 @@ packaging == 25.0 --hash=sha256:29572ef2b1f17581046b3a2227d5c611fb25ec70ca1ba8554b24b0e69331a484 --hash=sha256:d443872c98d677bf60f6a1f2f8c1cb748e8fe762d2bf9d3148b5599295b0fc4f -pipenv == 2025.0.4 --hash=sha256:36fc2a7841ccdb2f58a9f787b296c2e15dea3b5b79b84d4071812f28b7e8d7a2 --hash=sha256:e1fbe4cfd25ab179f123d1fbb1fa1cdc0b3ffcdb1f21c775dcaa12ccc356f2bb +pipenv == 2025.1.1 --hash=sha256:c309b5fba6535aca22fd66d3dfcf2d3ca1dd0cae12de52cabecbdddfbfe48938 --hash=sha256:f5acaa089282e93faa24a395a7ecba63d20ca1f477f41aed8261563b7e8f32fb virtualenv == 20.35.1 --hash=sha256:041dac43b6899858a91838b616599e80000e545dee01a21172a6a46746472cb2 --hash=sha256:1d9d93cd01d35b785476e2fa7af711a98d40d227a078941695bbae394f8737e2 virtualenv-clone == 0.5.7 --hash=sha256:44d5263bceed0bac3e1424d64f798095233b64def1c5689afa43dc3223caf5b0 certifi == 2025.8.3 --hash=sha256:e564105f78ded564e3ae7c923924435e1daa7463faeab5bb932bc53ffae63407 --hash=sha256:f6c12493cfb1b06ba2ff328595af9350c65d6644968e5d3a2ffd78699af217a5 From 9e865360f659f0c85eadf30292a4ad1155e1a284 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 07:44:01 +0000 Subject: [PATCH 14/61] Bump pytest from 8.3.5 to 9.0.2 Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.5 to 9.0.2. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.3.5...9.0.2) --- updated-dependencies: - dependency-name: pytest dependency-version: 9.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/Pipfile b/Pipfile index 7828d6522..82e29428d 100644 --- a/Pipfile +++ b/Pipfile @@ -9,7 +9,7 @@ coverage = "==7.12.0" flake8 = "==7.3.0" httpretty = "==1.1.4" mypy = "==1.19.0" -pytest = "==9.0.1" +pytest = "==9.0.2" pytest-cov = "==7.0.0" freezegun = "==1.5.5" security = "==1.3.1" diff --git a/Pipfile.lock b/Pipfile.lock index 98a6c94fe..56aa2cde6 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "01dd7f5336837f3b5cb2958043d93da6df434695ebbb9f74ffd11f4d93002aa7" + "sha256": "6a0cecada8038090088405ce029bb68859963fad80dd2866345bda656304dacb" }, "pipfile-spec": 6, "requires": { @@ -1078,12 +1078,12 @@ }, "pytest": { "hashes": [ - "sha256:3e9c069ea73583e255c3b21cf46b8d3c56f6e3a1a8f6da94ccb0fcf57b9d73c8", - "sha256:67be0030d194df2dfa7b556f2e56fb3c3315bd5c8822c6951162b92b32ce7dad" + "sha256:711ffd45bf766d5264d487b917733b453d917afd2b0ad65223959f59089f875b", + "sha256:75186651a92bd89611d1d9fc20f0b4345fd827c41ccd5c299a868a05d70edf11" ], "index": "pypi", "markers": "python_version >= '3.10'", - "version": "==9.0.1" + "version": "==9.0.2" }, "pytest-cov": { "hashes": [ From a912ed5ceaedda1f458268ab39baa808f618786c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 8 Dec 2025 11:37:07 +0000 Subject: [PATCH 15/61] Bump urllib3 from 2.5.0 to 2.6.0 in the pip group across 1 directory Bumps the pip group with 1 update in the / directory: [urllib3](https://github.com/urllib3/urllib3). Updates `urllib3` from 2.5.0 to 2.6.0 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.5.0...2.6.0) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.0 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/Pipfile b/Pipfile index 82e29428d..7e8c89308 100644 --- a/Pipfile +++ b/Pipfile @@ -21,7 +21,7 @@ qrcode = "==8.2" requests = "==2.32.5" types-requests = "==2.32.4.20250913" typing_extensions = "==4.8.0" -urllib3 = "==2.5.0" +urllib3 = "==2.6.0" charset-normalizer = "==3.4.4" python-docx = "==1.1.0" PyYAML = "==6.0.1" diff --git a/Pipfile.lock b/Pipfile.lock index 56aa2cde6..b4b443f1d 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "6a0cecada8038090088405ce029bb68859963fad80dd2866345bda656304dacb" + "sha256": "99a0856e0d35fce59412c4f5d374adba598eb84bd583b8b51c20cfd47b981dc3" }, "pipfile-spec": 6, "requires": { @@ -645,12 +645,12 @@ }, "urllib3": { "hashes": [ - "sha256:3fc47733c7e419d4bc3f6b3dc2b4f890bb743906a30d56ba4a5bfa4bbff92760", - "sha256:e6b01673c0fa6a13e374b50871808eb3bf7046c4b125b216f6bf1cc604cff0dc" + "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f", + "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.5.0" + "version": "==2.6.0" } }, "develop": { From a777346e336fffac17223acea80e65c7ba3ce5ad Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 06:08:43 +0000 Subject: [PATCH 16/61] Bump pytest from 8.3.5 to 9.0.2 Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.3.5 to 9.0.2. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.3.5...9.0.2) --- updated-dependencies: - dependency-name: pytest dependency-version: 9.0.2 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- install_cornucopia_deps.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/install_cornucopia_deps.txt b/install_cornucopia_deps.txt index 9fddd7b0f..fbee24469 100644 --- a/install_cornucopia_deps.txt +++ b/install_cornucopia_deps.txt @@ -3,7 +3,7 @@ defusedxml == 0.7.1 --hash=sha256:1bb3032db185915b62d7c6209c5a8792be6a32ab2fedac flake8 == 7.2.0 --hash=sha256:93b92ba5bdb60754a6da14fa3b93a9361fd00a59632ada61fd7b130436c40343 --hash=sha256:fa558ae3f6f7dbf2b4f22663e5343b6b6023620461f8d4ff2019ef4b5ee70426 httpretty == 1.1.4 --hash=sha256:20de0e5dd5a18292d36d928cc3d6e52f8b2ac73daec40d41eb62dee154933b68 mypy == 1.18.2 --hash=sha256:01199871b6110a2ce984bde85acd481232d17413868c9807e95c1b0739a58914 --hash=sha256:030c52d0ea8144e721e49b1f68391e39553d7451f0c3f8a7565b59e19fcb608b --hash=sha256:06a398102a5f203d7477b2923dda3634c36727fa5c237d8f859ef90c42a9924b --hash=sha256:07b8b0f580ca6d289e69209ec9d3911b4a26e5abfde32228a288eb79df129fcc --hash=sha256:0e2785a84b34a72ba55fb5daf079a1003a34c05b22238da94fcae2bbe46f3544 --hash=sha256:1331eb7fd110d60c24999893320967594ff84c38ac6d19e0a76c5fd809a84c86 --hash=sha256:1379451880512ffce14505493bd9fe469e0697543717298242574882cf8cdb8d --hash=sha256:20c02215a080e3a2be3aa50506c67242df1c151eaba0dcbc1e4e557922a26075 --hash=sha256:22a1748707dd62b58d2ae53562ffc4d7f8bcc727e8ac7cbc69c053ddc874d47e --hash=sha256:22f27105f1525ec024b5c630c0b9f36d5c1cc4d447d61fe51ff4bd60633f47ac --hash=sha256:25a9c8fb67b00599f839cf472713f54249a62efd53a54b565eb61956a7e3296b --hash=sha256:33eca32dd124b29400c31d7cf784e795b050ace0e1f91b8dc035672725617e34 --hash=sha256:3ca30b50a51e7ba93b00422e486cbb124f1c56a535e20eff7b2d6ab72b3b2e37 --hash=sha256:448acd386266989ef11662ce3c8011fd2a7b632e0ec7d61a98edd8e27472225b --hash=sha256:592ec214750bc00741af1f80cbf96b5013d81486b7bb24cb052382c19e40b428 --hash=sha256:5d6c838e831a062f5f29d11c9057c6009f60cb294fea33a98422688181fe2893 --hash=sha256:62f0e1e988ad41c2a110edde6c398383a889d95b36b3e60bcf155f5164c4fdce --hash=sha256:664dc726e67fa54e14536f6e1224bcfce1d9e5ac02426d2326e2bb4e081d1ce8 --hash=sha256:6ca1e64b24a700ab5ce10133f7ccd956a04715463d30498e64ea8715236f9c9c --hash=sha256:749b5f83198f1ca64345603118a6f01a4e99ad4bf9d103ddc5a3200cc4614adf --hash=sha256:776bb00de1778caf4db739c6e83919c1d85a448f71979b6a0edd774ea8399341 --hash=sha256:7a780ca61fc239e4865968ebc5240bb3bf610ef59ac398de9a7421b54e4a207e --hash=sha256:7ab28cc197f1dd77a67e1c6f35cd1f8e8b73ed2217e4fc005f9e6a504e46e7ba --hash=sha256:7fb95f97199ea11769ebe3638c29b550b5221e997c63b14ef93d2e971606ebed --hash=sha256:807d9315ab9d464125aa9fcf6d84fde6e1dc67da0b6f80e7405506b8ac72bc7f --hash=sha256:8795a039bab805ff0c1dfdb8cd3344642c2b99b8e439d057aba30850b8d3423d --hash=sha256:a2afc0fa0b0e91b4599ddfe0f91e2c26c2b5a5ab263737e998d6817874c5f7c8 --hash=sha256:a3c47adf30d65e89b2dcd2fa32f3aeb5e94ca970d2c15fcb25e297871c8e4764 --hash=sha256:a431a6f1ef14cf8c144c6b14793a23ec4eae3db28277c358136e79d7d062f62d --hash=sha256:aa5e07ac1a60a253445797e42b8b2963c9675563a94f11291ab40718b016a7a0 --hash=sha256:c1eab0cf6294dafe397c261a75f96dc2c31bffe3b944faa24db5def4e2b0f77c --hash=sha256:c2b9c7e284ee20e7598d6f42e13ca40b4928e6957ed6813d1ab6348aa3f47133 --hash=sha256:c3ad2afadd1e9fea5cf99a45a822346971ede8685cc581ed9cd4d42eaf940986 --hash=sha256:d6985ed057513e344e43a26cc1cd815c7a94602fb6a3130a34798625bc2f07b6 --hash=sha256:d8068d0afe682c7c4897c0f7ce84ea77f6de953262b12d07038f4d296d547074 --hash=sha256:d924eef3795cc89fecf6bedc6ed32b33ac13e8321344f6ddbf8ee89f706c05cb --hash=sha256:ed4482847168439651d3feee5833ccedbf6657e964572706a2adb1f7fa4dfe2e --hash=sha256:f9e171c465ad3901dc652643ee4bffa8e9fef4d7d0eece23b428908c77a76a66 -pytest == 8.3.5 --hash=sha256:f4efe70cc14e511565ac476b57c279e12a855b11f48f212af1080ef2263d3845 +pytest == 9.0.2 --hash=sha256:711ffd45bf766d5264d487b917733b453d917afd2b0ad65223959f59089f875b --hash=sha256:75186651a92bd89611d1d9fc20f0b4345fd827c41ccd5c299a868a05d70edf11 pytest-cov == 6.2.1 --hash=sha256:25cc6cc0a5358204b8108ecedc51a9b57b34cc6b8c967cc2c01a4e00d8a67da2 --hash=sha256:f5bc4c23f42f1cdd23c70b1dab1bbaef4fc505ba950d53e0081d0730dd7e86d5 freezegun == 1.5.5 --hash=sha256:ac7742a6cc6c25a2c35e9292dfd554b897b517d2dec26891a2e8debf205cb94a --hash=sha256:cd557f4a75cf074e84bc374249b9dd491eaeacd61376b9eb3c423282211619d2 atheris == 2.3.0 --hash=sha256:b91cb296d60915c3efa4f6db48f09c4678b574cddb7ca98035f1cb9d9fb96f64 From 7ef2616461e1626463ff7ff42edef20f9a012d17 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 06:08:17 +0000 Subject: [PATCH 17/61] Bump coverage from 7.10.7 to 7.13.0 Bumps [coverage](https://github.com/coveragepy/coveragepy) from 7.10.7 to 7.13.0. - [Release notes](https://github.com/coveragepy/coveragepy/releases) - [Changelog](https://github.com/coveragepy/coveragepy/blob/main/CHANGES.rst) - [Commits](https://github.com/coveragepy/coveragepy/compare/7.10.7...7.13.0) --- updated-dependencies: - dependency-name: coverage dependency-version: 7.13.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 188 +++++++++++++++++++++++++-------------------------- 2 files changed, 95 insertions(+), 95 deletions(-) diff --git a/Pipfile b/Pipfile index 7e8c89308..d4cf1b696 100644 --- a/Pipfile +++ b/Pipfile @@ -5,7 +5,7 @@ verify_ssl = true [dev-packages] black = "==25.12.0" -coverage = "==7.12.0" +coverage = "==7.13.0" flake8 = "==7.3.0" httpretty = "==1.1.4" mypy = "==1.19.0" diff --git a/Pipfile.lock b/Pipfile.lock index b4b443f1d..f7bf59fae 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "99a0856e0d35fce59412c4f5d374adba598eb84bd583b8b51c20cfd47b981dc3" + "sha256": "12d2e00082bd8e7a8089aaf01a1f5bcb6290670128dea68310670f7b95e43558" }, "pipfile-spec": 6, "requires": { @@ -820,101 +820,101 @@ "toml" ], "hashes": [ - "sha256:01d24af36fedda51c2b1aca56e4330a3710f83b02a5ff3743a6b015ffa7c9384", - "sha256:04a79245ab2b7a61688958f7a855275997134bc84f4a03bc240cf64ff132abf6", - "sha256:083631eeff5eb9992c923e14b810a179798bb598e6a0dd60586819fc23be6e60", - "sha256:099d11698385d572ceafb3288a5b80fe1fc58bf665b3f9d362389de488361d3d", - "sha256:09a86acaaa8455f13d6a99221d9654df249b33937b4e212b4e5a822065f12aa7", - "sha256:159d50c0b12e060b15ed3d39f87ed43d4f7f7ad40b8a534f4dd331adbb51104a", - "sha256:172cf3a34bfef42611963e2b661302a8931f44df31629e5b1050567d6b90287d", - "sha256:22a7aade354a72dff3b59c577bfd18d6945c61f97393bc5fb7bd293a4237024b", - "sha256:24cff9d1f5743f67db7ba46ff284018a6e9aeb649b67aa1e70c396aa1b7cb23c", - "sha256:29644c928772c78512b48e14156b81255000dcfd4817574ff69def189bcb3647", - "sha256:297bc2da28440f5ae51c845a47c8175a4db0553a53827886e4fb25c66633000c", - "sha256:2fd8354ed5d69775ac42986a691fbf68b4084278710cee9d7c3eaa0c28fa982a", - "sha256:313672140638b6ddb2c6455ddeda41c6a0b208298034544cfca138978c6baed6", - "sha256:31b8b2e38391a56e3cea39d22a23faaa7c3fc911751756ef6d2621d2a9daf742", - "sha256:32b75c2ba3f324ee37af3ccee5b30458038c50b349ad9b88cee85096132a575b", - "sha256:33baadc0efd5c7294f436a632566ccc1f72c867f82833eb59820ee37dc811c6f", - "sha256:3ff651dcd36d2fea66877cd4a82de478004c59b849945446acb5baf9379a1b64", - "sha256:40c867af715f22592e0d0fb533a33a71ec9e0f73a6945f722a0c85c8c1cbe3a2", - "sha256:42435d46d6461a3b305cdfcad7cdd3248787771f53fe18305548cba474e6523b", - "sha256:459443346509476170d553035e4a3eed7b860f4fe5242f02de1010501956ce87", - "sha256:4648158fd8dd9381b5847622df1c90ff314efbfc1df4550092ab6013c238a5fc", - "sha256:47324fffca8d8eae7e185b5bb20c14645f23350f870c1649003618ea91a78941", - "sha256:473dc45d69694069adb7680c405fb1e81f60b2aff42c81e2f2c3feaf544d878c", - "sha256:4b59b501455535e2e5dde5881739897967b272ba25988c89145c12d772810ccb", - "sha256:4c589361263ab2953e3c4cd2a94db94c4ad4a8e572776ecfbad2389c626e4507", - "sha256:51777647a749abdf6f6fd8c7cffab12de68ab93aab15efc72fbbb83036c2a068", - "sha256:52ca620260bd8cd6027317bdd8b8ba929be1d741764ee765b42c4d79a408601e", - "sha256:5560c7e0d82b42eb1951e4f68f071f8017c824ebfd5a6ebe42c60ac16c6c2434", - "sha256:5734b5d913c3755e72f70bf6cc37a0518d4f4745cde760c5d8e12005e62f9832", - "sha256:583f9adbefd278e9de33c33d6846aa8f5d164fa49b47144180a0e037f0688bb9", - "sha256:58c1c6aa677f3a1411fe6fb28ec3a942e4f665df036a3608816e0847fad23296", - "sha256:5b3c889c0b8b283a24d721a9eabc8ccafcfc3aebf167e4cd0d0e23bf8ec4e339", - "sha256:5bcead88c8423e1855e64b8057d0544e33e4080b95b240c2a355334bb7ced937", - "sha256:5ea5a9f7dc8877455b13dd1effd3202e0bca72f6f3ab09f9036b1bcf728f69ac", - "sha256:5f3738279524e988d9da2893f307c2093815c623f8d05a8f79e3eff3a7a9e553", - "sha256:68b0d0a2d84f333de875666259dadf28cc67858bc8fd8b3f1eae84d3c2bec455", - "sha256:6d907ddccbca819afa2cd014bc69983b146cca2735a0b1e6259b2a6c10be1e70", - "sha256:6e1a8c066dabcde56d5d9fed6a66bc19a2883a3fe051f0c397a41fc42aedd4cc", - "sha256:6ff7651cc01a246908eac162a6a86fc0dbab6de1ad165dfb9a1e2ec660b44984", - "sha256:737c3814903be30695b2de20d22bcc5428fdae305c61ba44cdc8b3252984c49c", - "sha256:73f9e7fbd51a221818fd11b7090eaa835a353ddd59c236c57b2199486b116c6d", - "sha256:76336c19a9ef4a94b2f8dc79f8ac2da3f193f625bb5d6f51a328cd19bfc19933", - "sha256:7670d860e18b1e3ee5930b17a7d55ae6287ec6e55d9799982aa103a2cc1fa2ef", - "sha256:79a44421cd5fba96aa57b5e3b5a4d3274c449d4c622e8f76882d76635501fd13", - "sha256:7c1059b600aec6ef090721f8f633f60ed70afaffe8ecab85b59df748f24b31fe", - "sha256:8638cbb002eaa5d7c8d04da667813ce1067080b9a91099801a0053086e52b736", - "sha256:874fe69a0785d96bd066059cd4368022cebbec1a8958f224f0016979183916e6", - "sha256:8787b0f982e020adb732b9f051f3e49dd5054cebbc3f3432061278512a2b1360", - "sha256:8bb5b894b3ec09dcd6d3743229dc7f2c42ef7787dc40596ae04c0edda487371e", - "sha256:907e0df1b71ba77463687a74149c6122c3f6aac56c2510a5d906b2f368208560", - "sha256:90d58ac63bc85e0fb919f14d09d6caa63f35a5512a2205284b7816cafd21bb03", - "sha256:9157a5e233c40ce6613dead4c131a006adfda70e557b6856b97aceed01b0e27a", - "sha256:91b810a163ccad2e43b1faa11d70d3cf4b6f3d83f9fd5f2df82a32d47b648e0d", - "sha256:950411f1eb5d579999c5f66c62a40961f126fc71e5e14419f004471957b51508", - "sha256:99d5415c73ca12d558e07776bd957c4222c687b9f1d26fa0e1b57e3598bdcde8", - "sha256:9b57e2d0ddd5f0582bae5437c04ee71c46cd908e7bc5d4d0391f9a41e812dd12", - "sha256:9bb44c889fb68004e94cab71f6a021ec83eac9aeabdbb5a5a88821ec46e1da73", - "sha256:a00594770eb715854fb1c57e0dea08cce6720cfbc531accdb9850d7c7770396c", - "sha256:a1783ed5bd0d5938d4435014626568dc7f93e3cb99bc59188cc18857c47aa3c4", - "sha256:a1c59b7dc169809a88b21a936eccf71c3895a78f5592051b1af8f4d59c2b4f92", - "sha256:aa124a3683d2af98bd9d9c2bfa7a5076ca7e5ab09fdb96b81fa7d89376ae928f", - "sha256:aa7d48520a32cb21c7a9b31f81799e8eaec7239db36c3b670be0fa2403828d1d", - "sha256:b1518ecbad4e6173f4c6e6c4a46e49555ea5679bf3feda5edb1b935c7c44e8a0", - "sha256:b1aab7302a87bafebfe76b12af681b56ff446dc6f32ed178ff9c092ca776e6bc", - "sha256:b2089cc445f2dc0af6f801f0d1355c025b76c24481935303cf1af28f636688f0", - "sha256:b365adc70a6936c6b0582dc38746b33b2454148c02349345412c6e743efb646d", - "sha256:b527a08cdf15753279b7afb2339a12073620b761d79b81cbe2cdebdb43d90daa", - "sha256:bc13baf85cd8a4cfcf4a35c7bc9d795837ad809775f782f697bf630b7e200211", - "sha256:bcec6f47e4cb8a4c2dc91ce507f6eefc6a1b10f58df32cdc61dff65455031dfc", - "sha256:c406a71f544800ef7e9e0000af706b88465f3573ae8b8de37e5f96c59f689ad1", - "sha256:c5a6f20bf48b8866095c6820641e7ffbe23f2ac84a2efc218d91235e404c7777", - "sha256:c87395744f5c77c866d0f5a43d97cc39e17c7f1cb0115e54a2fe67ca75c5d14d", - "sha256:ca8ecfa283764fdda3eae1bdb6afe58bf78c2c3ec2b2edcb05a671f0bba7b3f9", - "sha256:cb2a1b6ab9fe833714a483a915de350abc624a37149649297624c8d57add089c", - "sha256:ccf3b2ede91decd2fb53ec73c1f949c3e034129d1e0b07798ff1d02ea0c8fa4a", - "sha256:ce61969812d6a98a981d147d9ac583a36ac7db7766f2e64a9d4d059c2fe29d07", - "sha256:d6c2e26b481c9159c2773a37947a9718cfdc58893029cdfb177531793e375cfc", - "sha256:d7e0d0303c13b54db495eb636bc2465b2fb8475d4c8bcec8fe4b5ca454dfbae8", - "sha256:d8842f17095b9868a05837b7b1b73495293091bed870e099521ada176aa3e00e", - "sha256:d93fbf446c31c0140208dcd07c5d882029832e8ed7891a39d6d44bd65f2316c3", - "sha256:dcbb630ab034e86d2a0f79aefd2be07e583202f41e037602d438c80044957baa", - "sha256:e0d68c1f7eabbc8abe582d11fa393ea483caf4f44b0af86881174769f185c94d", - "sha256:e0f483ab4f749039894abaf80c2f9e7ed77bbf3c737517fb88c8e8e305896a17", - "sha256:e71bba6a40883b00c6d571599b4627f50c360b3d0d02bfc658168936be74027b", - "sha256:e84da3a0fd233aeec797b981c51af1cabac74f9bd67be42458365b30d11b5291", - "sha256:e949ebf60c717c3df63adb4a1a366c096c8d7fd8472608cd09359e1bd48ef59f", - "sha256:f3433ffd541380f3a0e423cff0f4926d55b0cc8c1d160fdc3be24a4c03aa65f7", - "sha256:f7ba9da4726e446d8dd8aae5a6cd872511184a5d861de80a86ef970b5dacce3e", - "sha256:f7bbb321d4adc9f65e402c677cd1c8e4c2d0105d3ce285b51b4d87f1d5db5245", - "sha256:f999813dddeb2a56aab5841e687b68169da0d3f6fc78ccf50952fa2463746022", - "sha256:fc11e0a4e372cb5f282f16ef90d4a585034050ccda536451901abfb19a57f40c", - "sha256:fdba9f15849534594f60b47c9a30bc70409b54947319a7c4fd0e8e3d8d2f355d" + "sha256:0018f73dfb4301a89292c73be6ba5f58722ff79f51593352759c1790ded1cabe", + "sha256:00c3d22cf6fb1cf3bf662aaaa4e563be8243a5ed2630339069799835a9cc7f9b", + "sha256:02d9fb9eccd48f6843c98a37bd6817462f130b86da8660461e8f5e54d4c06070", + "sha256:0602f701057c6823e5db1b74530ce85f17c3c5be5c85fc042ac939cbd909426e", + "sha256:06cac81bf10f74034e055e903f5f946e3e26fc51c09fc9f584e4a1605d977053", + "sha256:086cede306d96202e15a4b77ace8472e39d9f4e5f9fd92dd4fecdfb2313b2080", + "sha256:0900872f2fdb3ee5646b557918d02279dc3af3dfb39029ac4e945458b13f73bc", + "sha256:0a3a30f0e257df382f5f9534d4ce3d4cf06eafaf5192beb1a7bd066cb10e78fb", + "sha256:0b3d67d31383c4c68e19a88e28fc4c2e29517580f1b0ebec4a069d502ce1e0bf", + "sha256:0dfa3855031070058add1a59fdfda0192fd3e8f97e7c81de0596c145dea51820", + "sha256:0f4872f5d6c54419c94c25dd6ae1d015deeb337d06e448cd890a1e89a8ee7f3b", + "sha256:11c21557d0e0a5a38632cbbaca5f008723b26a89d70db6315523df6df77d6232", + "sha256:166ad2a22ee770f5656e1257703139d3533b4a0b6909af67c6b4a3adc1c98657", + "sha256:193c3887285eec1dbdb3f2bd7fbc351d570ca9c02ca756c3afbc71b3c98af6ef", + "sha256:1d84e91521c5e4cb6602fe11ece3e1de03b2760e14ae4fcf1a4b56fa3c801fcd", + "sha256:1ed5630d946859de835a85e9a43b721123a8a44ec26e2830b296d478c7fd4259", + "sha256:22486cdafba4f9e471c816a2a5745337742a617fef68e890d8baf9f3036d7833", + "sha256:22ccfe8d9bb0d6134892cbe1262493a8c70d736b9df930f3f3afae0fe3ac924d", + "sha256:24e4e56304fdb56f96f80eabf840eab043b3afea9348b88be680ec5986780a0f", + "sha256:25dc33618d45456ccb1d37bce44bc78cf269909aa14c4db2e03d63146a8a1493", + "sha256:263c3dbccc78e2e331e59e90115941b5f53e85cfcc6b3b2fbff1fd4e3d2c6ea8", + "sha256:28ee1c96109974af104028a8ef57cec21447d42d0e937c0275329272e370ebcf", + "sha256:30a3a201a127ea57f7e14ba43c93c9c4be8b7d17a26e03bb49e6966d019eede9", + "sha256:3188936845cd0cb114fa6a51842a304cdbac2958145d03be2377ec41eb285d19", + "sha256:367449cf07d33dc216c083f2036bb7d976c6e4903ab31be400ad74ad9f85ce98", + "sha256:37eee4e552a65866f15dedd917d5e5f3d59805994260720821e2c1b51ac3248f", + "sha256:3a10260e6a152e5f03f26db4a407c4c62d3830b9af9b7c0450b183615f05d43b", + "sha256:3a7b1cd820e1b6116f92c6128f1188e7afe421c7e1b35fa9836b11444e53ebd9", + "sha256:3ab483ea0e251b5790c2aac03acde31bff0c736bf8a86829b89382b407cd1c3b", + "sha256:3ad968d1e3aa6ce5be295ab5fe3ae1bf5bb4769d0f98a80a0252d543a2ef2e9e", + "sha256:445badb539005283825959ac9fa4a28f712c214b65af3a2c464f1adc90f5fcbc", + "sha256:453b7ec753cf5e4356e14fe858064e5520c460d3bbbcb9c35e55c0d21155c256", + "sha256:494f5459ffa1bd45e18558cd98710c36c0b8fbfa82a5eabcbe671d80ecffbfe8", + "sha256:4b5de7d4583e60d5fd246dd57fcd3a8aa23c6e118a8c72b38adf666ba8e7e927", + "sha256:4f3e223b2b2db5e0db0c2b97286aba0036ca000f06aca9b12112eaa9af3d92ae", + "sha256:4fdb6f54f38e334db97f72fa0c701e66d8479af0bc3f9bfb5b90f1c30f54500f", + "sha256:51a202e0f80f241ccb68e3e26e19ab5b3bf0f813314f2c967642f13ebcf1ddfe", + "sha256:581f086833d24a22c89ae0fe2142cfaa1c92c930adf637ddf122d55083fb5a0f", + "sha256:583221913fbc8f53b88c42e8dbb8fca1d0f2e597cb190ce45916662b8b9d9621", + "sha256:58632b187be6f0be500f553be41e277712baa278147ecb7559983c6d9faf7ae1", + "sha256:5c67dace46f361125e6b9cace8fe0b729ed8479f47e70c89b838d319375c8137", + "sha256:5e70f92ef89bac1ac8a99b3324923b4749f008fdbd7aa9cb35e01d7a284a04f9", + "sha256:5f5d9bd30756fff3e7216491a0d6d520c448d5124d3d8e8f56446d6412499e74", + "sha256:5f8a0297355e652001015e93be345ee54393e45dc3050af4a0475c5a2b767d46", + "sha256:62d7c4f13102148c78d7353c6052af6d899a7f6df66a32bddcc0c0eb7c5326f8", + "sha256:69ac2c492918c2461bc6ace42d0479638e60719f2a4ef3f0815fa2df88e9f940", + "sha256:6abb3a4c52f05e08460bd9acf04fec027f8718ecaa0d09c40ffbc3fbd70ecc39", + "sha256:6e63ccc6e0ad8986386461c3c4b737540f20426e7ec932f42e030320896c311a", + "sha256:6e9e451dee940a86789134b6b0ffbe31c454ade3b849bb8a9d2cca2541a8e91d", + "sha256:6fb2d5d272341565f08e962cce14cdf843a08ac43bd621783527adb06b089c4b", + "sha256:71936a8b3b977ddd0b694c28c6a34f4fff2e9dd201969a4ff5d5fc7742d614b0", + "sha256:73419b89f812f498aca53f757dd834919b48ce4799f9d5cad33ca0ae442bdb1a", + "sha256:739c6c051a7540608d097b8e13c76cfa85263ced467168dc6b477bae3df7d0e2", + "sha256:7464663eaca6adba4175f6c19354feea61ebbdd735563a03d1e472c7072d27bb", + "sha256:74c136e4093627cf04b26a35dab8cbfc9b37c647f0502fc313376e11726ba303", + "sha256:76541dc8d53715fb4f7a3a06b34b0dc6846e3c69bc6204c55653a85dd6220971", + "sha256:7a485ff48fbd231efa32d58f479befce52dcb6bfb2a88bb7bf9a0b89b1bc8030", + "sha256:7e442c013447d1d8d195be62852270b78b6e255b79b8675bad8479641e21fd96", + "sha256:7f15a931a668e58087bc39d05d2b4bf4b14ff2875b49c994bbdb1c2217a8daeb", + "sha256:7f88ae3e69df2ab62fb0bc5219a597cb890ba5c438190ffa87490b315190bb33", + "sha256:8069e831f205d2ff1f3d355e82f511eb7c5522d7d413f5db5756b772ec8697f8", + "sha256:850d2998f380b1e266459ca5b47bc9e7daf9af1d070f66317972f382d46f1904", + "sha256:898cce66d0836973f48dda4e3514d863d70142bdf6dfab932b9b6a90ea5b222d", + "sha256:9097818b6cc1cfb5f174e3263eba4a62a17683bcfe5c4b5d07f4c97fa51fbf28", + "sha256:936bc20503ce24770c71938d1369461f0c5320830800933bc3956e2a4ded930e", + "sha256:9372dff5ea15930fea0445eaf37bbbafbc771a49e70c0aeed8b4e2c2614cc00e", + "sha256:9987a9e4f8197a1000280f7cc089e3ea2c8b3c0a64d750537809879a7b4ceaf9", + "sha256:99acd4dfdfeb58e1937629eb1ab6ab0899b131f183ee5f23e0b5da5cba2fec74", + "sha256:9b01c22bc74a7fb44066aaf765224c0d933ddf1f5047d6cdfe4795504a4493f8", + "sha256:a00d3a393207ae12f7c49bb1c113190883b500f48979abb118d8b72b8c95c032", + "sha256:a23e5a1f8b982d56fa64f8e442e037f6ce29322f1f9e6c2344cd9e9f4407ee57", + "sha256:a2bdb3babb74079f021696cb46b8bb5f5661165c385d3a238712b031a12355be", + "sha256:a394aa27f2d7ff9bc04cf703817773a59ad6dfbd577032e690f961d2460ee936", + "sha256:a6c6e16b663be828a8f0b6c5027d36471d4a9f90d28444aa4ced4d48d7d6ae8f", + "sha256:af0a583efaacc52ae2521f8d7910aff65cdb093091d76291ac5820d5e947fc1c", + "sha256:af827b7cbb303e1befa6c4f94fd2bf72f108089cfa0f8abab8f4ca553cf5ca5a", + "sha256:c4be718e51e86f553bcf515305a158a1cd180d23b72f07ae76d6017c3cc5d791", + "sha256:cdb3c9f8fef0a954c632f64328a3935988d33a6604ce4bf67ec3e39670f12ae5", + "sha256:d10fd186aac2316f9bbb46ef91977f9d394ded67050ad6d84d94ed6ea2e8e54e", + "sha256:d1e97353dcc5587b85986cda4ff3ec98081d7e84dd95e8b2a6d59820f0545f8a", + "sha256:d2a9d7f1c11487b1c69367ab3ac2d81b9b3721f097aa409a3191c3e90f8f3dd7", + "sha256:de7f6748b890708578fc4b7bb967d810aeb6fcc9bff4bb77dbca77dab2f9df6a", + "sha256:e5330fa0cc1f5c3c4c3bb8e101b742025933e7848989370a1d4c8c5e401ea753", + "sha256:e999e2dcc094002d6e2c7bbc1fb85b58ba4f465a760a8014d97619330cdbbbf3", + "sha256:eb76670874fdd6091eedcc856128ee48c41a9bbbb9c3f1c7c3cf169290e3ffd6", + "sha256:f1c23e24a7000da892a312fb17e33c5f94f8b001de44b7cf8ba2e36fbd15859e", + "sha256:f2ffc92b46ed6e6760f1d47a71e56b5664781bc68986dbd1836b2b70c0ce2071", + "sha256:f4f72a85316d8e13234cafe0a9f81b40418ad7a082792fa4165bd7d45d96066b", + "sha256:f59883c643cb19630500f57016f76cfdcd6845ca8c5b5ea1f6e17f74c8e5f511", + "sha256:f6aaef16d65d1787280943f1c8718dc32e9cf141014e4634d64446702d26e0ff", + "sha256:fe81055d8c6c9de76d60c94ddea73c290b416e061d40d542b24a5871bad498b7", + "sha256:ff45e0cd8451e293b63ced93161e189780baf444119391b3e7d25315060368a6" ], "markers": "python_version >= '3.10'", - "version": "==7.12.0" + "version": "==7.13.0" }, "exceptiongroup": { "hashes": [ From 9728290bb936a7ec2d05b337e7445c3fb80e5f5d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 06:06:03 +0000 Subject: [PATCH 18/61] Bump mvdan/shfmt from `20597e9` to `e414177` Bumps mvdan/shfmt from `20597e9` to `e414177`. --- updated-dependencies: - dependency-name: mvdan/shfmt dependency-version: e414177e424692cd21a5113216edeeeb56fc76b0ed2e5eb3a6c48404d5548a76 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- Dockerfile | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Dockerfile b/Dockerfile index 762efaece..079bc6935 100644 --- a/Dockerfile +++ b/Dockerfile @@ -34,5 +34,5 @@ COPY --chown=builder:union Pipfile Pipfile.lock ./ RUN pipenv --python "$(which python)" install --ignore-pipfile --dev ENTRYPOINT ["/usr/local/bin/pipenv"] -FROM mvdan/shfmt@sha256:20597e9d127ea8442384d0b2d8b755ae14e7aab29ad27ba8cc9d3440e7926e4d AS shfmt +FROM mvdan/shfmt@sha256:e414177e424692cd21a5113216edeeeb56fc76b0ed2e5eb3a6c48404d5548a76 AS shfmt ENTRYPOINT ["/bin/shfmt"] \ No newline at end of file From f62c2c19b826d1ebe5f362953c0617246ad5eb6a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 11:54:24 +0000 Subject: [PATCH 19/61] Bump black from 25.1.0 to 25.12.0 Bumps [black](https://github.com/psf/black) from 25.1.0 to 25.12.0. - [Release notes](https://github.com/psf/black/releases) - [Changelog](https://github.com/psf/black/blob/main/CHANGES.md) - [Commits](https://github.com/psf/black/compare/25.1.0...25.12.0) --- updated-dependencies: - dependency-name: black dependency-version: 25.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- install_cornucopia_deps.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/install_cornucopia_deps.txt b/install_cornucopia_deps.txt index fbee24469..44f3a402f 100644 --- a/install_cornucopia_deps.txt +++ b/install_cornucopia_deps.txt @@ -1,4 +1,4 @@ -black == 25.1.0 --hash=sha256:030b9759066a4ee5e5aca28c3c77f9c64789cdd4de8ac1df642c40b708be6171 --hash=sha256:055e59b198df7ac0b7efca5ad7ff2516bca343276c466be72eb04a3bcc1f82d7 +black == 25.12.0 --hash=sha256:05dd459a19e218078a1f98178c13f861fe6a9a5f88fc969ca4d9b49eb1809783 --hash=sha256:09524b0e6af8ba7a3ffabdfc7a9922fb9adef60fed008c7cd2fc01f3048e6e6f --hash=sha256:0a0953b134f9335c2434864a643c842c44fba562155c738a2a37a4d61f00cad5 --hash=sha256:0e509c858adf63aa61d908061b52e580c40eae0dfa72415fa47ac01b12e29baf --hash=sha256:169506ba91ef21e2e0591563deda7f00030cb466e747c4b09cb0a9dae5db2f43 --hash=sha256:17dcc893da8d73d8f74a596f64b7c98ef5239c2cd2b053c0f25912c4494bf9ea --hash=sha256:1a2f578ae20c19c50a382286ba78bfbeafdf788579b053d8e4980afb079ab9be --hash=sha256:2355bbb6c3b76062870942d8cc450d4f8ac71f9c93c40122762c8784df49543f --hash=sha256:252678f07f5bac4ff0d0e9b261fbb029fa530cfa206d0a636a34ab445ef8ca9d --hash=sha256:274f940c147ddab4442d316b27f9e332ca586d39c85ecf59ebdea82cc9ee8892 --hash=sha256:31f96b7c98c1ddaeb07dc0f56c652e25bdedaac76d5b68a059d998b57c55594a --hash=sha256:48ceb36c16dbc84062740049eef990bb2ce07598272e673c17d1a7720c71c828 --hash=sha256:51e267458f7e650afed8445dc7edb3187143003d52a1b710c7321aef22aa9655 --hash=sha256:546eecfe9a3a6b46f9d69d8a642585a6eaf348bcbbc4d87a19635570e02d9f4a --hash=sha256:778285d9ea197f34704e3791ea9404cd6d07595745907dd2ce3da7a13627b29b --hash=sha256:8d3dd9cea14bff7ddc0eb243c811cdb1a011ebb4800a5f0335a01a68654796a7 --hash=sha256:9678bd991cc793e81d19aeeae57966ee02909877cb65838ccffef24c3ebac08f --hash=sha256:97596189949a8aad13ad12fcbb4ae89330039b96ad6742e6f6b45e75ad5cfd83 --hash=sha256:9ec77439ef3e34896995503865a85732c94396edcc739f302c5673a2315e1e7f --hash=sha256:a05ddeb656534c3e27a05a29196c962877c83fa5503db89e68857d1161ad08a5 --hash=sha256:a3fa71e3b8dd9f7c6ac4d818345237dfb4175ed3bf37cd5a581dbc4c034f1ec5 --hash=sha256:b162653ed89eb942758efeb29d5e333ca5bb90e5130216f8369857db5955a7da --hash=sha256:bc5b1c09fe3c931ddd20ee548511c64ebf964ada7e6f0763d443947fd1c603ce --hash=sha256:c1f68c5eff61f226934be6b5b80296cf6939e5d2f0c2f7d543ea08b204bfaf59 --hash=sha256:d0cfa263e85caea2cff57d8f917f9f51adae8e20b610e2b23de35b5b11ce691a --hash=sha256:d3e1b65634b0e471d07ff86ec338819e2ef860689859ef4501ab7ac290431f9b --hash=sha256:f85ba1ad15d446756b4ab5f3044731bf68b777f8f9ac9cdabd2425b97cd9c4e8 defusedxml == 0.7.1 --hash=sha256:1bb3032db185915b62d7c6209c5a8792be6a32ab2fedacc84e01b52c51aa3e69 flake8 == 7.2.0 --hash=sha256:93b92ba5bdb60754a6da14fa3b93a9361fd00a59632ada61fd7b130436c40343 --hash=sha256:fa558ae3f6f7dbf2b4f22663e5343b6b6023620461f8d4ff2019ef4b5ee70426 httpretty == 1.1.4 --hash=sha256:20de0e5dd5a18292d36d928cc3d6e52f8b2ac73daec40d41eb62dee154933b68 From 4cf8d1d9b7dda86e3373577a4aae0aba90dd3c4d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 06:08:22 +0000 Subject: [PATCH 20/61] Bump platformdirs from 4.4.0 to 4.5.1 Bumps [platformdirs](https://github.com/tox-dev/platformdirs) from 4.4.0 to 4.5.1. - [Release notes](https://github.com/tox-dev/platformdirs/releases) - [Changelog](https://github.com/tox-dev/platformdirs/blob/main/CHANGES.rst) - [Commits](https://github.com/tox-dev/platformdirs/compare/4.4.0...4.5.1) --- updated-dependencies: - dependency-name: platformdirs dependency-version: 4.5.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index ad50f4d10..0e691b241 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,6 +4,6 @@ virtualenv == 20.35.1 --hash=sha256:041dac43b6899858a91838b616599e80000e545dee01 virtualenv-clone == 0.5.7 --hash=sha256:44d5263bceed0bac3e1424d64f798095233b64def1c5689afa43dc3223caf5b0 certifi == 2025.8.3 --hash=sha256:e564105f78ded564e3ae7c923924435e1daa7463faeab5bb932bc53ffae63407 --hash=sha256:f6c12493cfb1b06ba2ff328595af9350c65d6644968e5d3a2ffd78699af217a5 setuptools == 80.9.0 --hash=sha256:062d34222ad13e0cc312a4c02d73f059e86a4acbfbdea8f8f76b28c99f306922 --hash=sha256:f36b47402ecde768dbfafc46e8e4207b4360c654f1f3bb84475f0a28628fb19c -platformdirs == 4.4.0 --hash=sha256:abd01743f24e5287cd7a5db3752faf1a2d65353f38ec26d98e25a6db65958c85 --hash=sha256:ca753cf4d81dc309bc67b0ea38fd15dc97bc30ce419a7f58d13eb3bf14c4febf +platformdirs == 4.5.1 --hash=sha256:61d5cdcc6065745cdd94f0f878977f8de9437be93de97c1c12f853c9c0cdcbda --hash=sha256:d03afa3963c806a9bed9d5125c8f4cb2fdaf74a55ab60e5d59b3fde758104d31 filelock == 3.19.1 --hash=sha256:66eda1888b0171c998b35be2bcc0f6d75c388a7ce20c3f3f37aa8e96c2dddf58 --hash=sha256:d38e30481def20772f5baf097c122c3babc4fcdb7e14e57049eb9d88c6dc017d distlib == 0.4.0 --hash=sha256:9659f7d87e46584a30b5780e43ac7a2143098441670ff0a49d5f9034c54a6c16 --hash=sha256:feec40075be03a04501a973d81f633735b4b69f98b05450592310c0f401a4e0d From b69b7eefb3d2d08f34b858b10c1d5e8404236bc4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 11:54:51 +0000 Subject: [PATCH 21/61] Bump urllib3 from 2.5.0 to 2.6.1 Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.5.0 to 2.6.1. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.5.0...2.6.1) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/Pipfile b/Pipfile index d4cf1b696..aa1e96892 100644 --- a/Pipfile +++ b/Pipfile @@ -21,7 +21,7 @@ qrcode = "==8.2" requests = "==2.32.5" types-requests = "==2.32.4.20250913" typing_extensions = "==4.8.0" -urllib3 = "==2.6.0" +urllib3 = "==2.6.1" charset-normalizer = "==3.4.4" python-docx = "==1.1.0" PyYAML = "==6.0.1" diff --git a/Pipfile.lock b/Pipfile.lock index f7bf59fae..fd510fdd5 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "12d2e00082bd8e7a8089aaf01a1f5bcb6290670128dea68310670f7b95e43558" + "sha256": "b059e5900a86bafd5485a66c3482f6cb6e58617bd25b40f0426ce1795c4cc9dc" }, "pipfile-spec": 6, "requires": { @@ -645,12 +645,12 @@ }, "urllib3": { "hashes": [ - "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f", - "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1" + "sha256:5379eb6e1aba4088bae84f8242960017ec8d8e3decf30480b3a1abdaa9671a3f", + "sha256:e67d06fe947c36a7ca39f4994b08d73922d40e6cca949907be05efa6fd75110b" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.6.0" + "version": "==2.6.1" } }, "develop": { From 29148269e1ac0dc4fb655175346576d970022dcc Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 12:19:48 +0000 Subject: [PATCH 22/61] Bump urllib3 from 2.5.0 to 2.6.0 in the pip group across 1 directory Bumps the pip group with 1 update in the / directory: [urllib3](https://github.com/urllib3/urllib3). Updates `urllib3` from 2.5.0 to 2.6.0 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.5.0...2.6.0) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.0 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/Pipfile b/Pipfile index aa1e96892..d4cf1b696 100644 --- a/Pipfile +++ b/Pipfile @@ -21,7 +21,7 @@ qrcode = "==8.2" requests = "==2.32.5" types-requests = "==2.32.4.20250913" typing_extensions = "==4.8.0" -urllib3 = "==2.6.1" +urllib3 = "==2.6.0" charset-normalizer = "==3.4.4" python-docx = "==1.1.0" PyYAML = "==6.0.1" diff --git a/Pipfile.lock b/Pipfile.lock index fd510fdd5..f7bf59fae 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "b059e5900a86bafd5485a66c3482f6cb6e58617bd25b40f0426ce1795c4cc9dc" + "sha256": "12d2e00082bd8e7a8089aaf01a1f5bcb6290670128dea68310670f7b95e43558" }, "pipfile-spec": 6, "requires": { @@ -645,12 +645,12 @@ }, "urllib3": { "hashes": [ - "sha256:5379eb6e1aba4088bae84f8242960017ec8d8e3decf30480b3a1abdaa9671a3f", - "sha256:e67d06fe947c36a7ca39f4994b08d73922d40e6cca949907be05efa6fd75110b" + "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f", + "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.6.1" + "version": "==2.6.0" } }, "develop": { From 8dc0228dc8054c5305c03c4db3241311ae83fe5b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 06:21:50 +0000 Subject: [PATCH 23/61] Bump hexpm/elixir in /copi.owasp.org Bumps hexpm/elixir from 1.19-erlang-28.2-debian-bullseye-20251117 to 1.19-erlang-28.3-debian-bullseye-20251208. --- updated-dependencies: - dependency-name: hexpm/elixir dependency-version: 1.19-erlang-28.3-debian-bullseye-20251208 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- copi.owasp.org/Dockerfile | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/copi.owasp.org/Dockerfile b/copi.owasp.org/Dockerfile index 71d1d4ec6..3d88c0990 100644 --- a/copi.owasp.org/Dockerfile +++ b/copi.owasp.org/Dockerfile @@ -12,7 +12,7 @@ # - https://pkgs.org/ - resource for finding needed packages # - Ex: hexpm/elixir:1.14.2-erlang-25.1.1-debian-bullseye-20220801-slim # -FROM --platform=linux/amd64 hexpm/elixir:1.19-erlang-28.2-debian-bullseye-20251117@sha256:63067931e21db6d893bef21f54dda18df09b6e65a793616d7b07246eb11e4904 as builder +FROM --platform=linux/amd64 hexpm/elixir:1.19-erlang-28.3-debian-bullseye-20251208@sha256:9d1e59c326674de89a2eac9cd7f118ae2917e1c6cde02e8fa4cd785198ca9be0 as builder # install build dependencies RUN apt-get update -y && apt-get install -y build-essential git nodejs npm \ && apt-get clean && rm -f /var/lib/apt/lists/*_* @@ -58,7 +58,7 @@ RUN mix release # start a new build stage so that the final image will only contain # the compiled release and other runtime necessities -FROM --platform=linux/amd64 hexpm/elixir:1.19-erlang-28.2-debian-bullseye-20251117@sha256:63067931e21db6d893bef21f54dda18df09b6e65a793616d7b07246eb11e4904 +FROM --platform=linux/amd64 hexpm/elixir:1.19-erlang-28.3-debian-bullseye-20251208@sha256:9d1e59c326674de89a2eac9cd7f118ae2917e1c6cde02e8fa4cd785198ca9be0 RUN apt-get update -y && apt-get install -y libstdc++6 openssl libncurses5 locales \ && apt-get clean && rm -f /var/lib/apt/lists/*_* From 91ba5c92c3997229ad93c8bc85bb19835aebd4be Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 06:21:27 +0000 Subject: [PATCH 24/61] Bump @types/node from 24.10.1 to 25.0.1 in /cornucopia.owasp.org Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 24.10.1 to 25.0.1. - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases) - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node) --- updated-dependencies: - dependency-name: "@types/node" dependency-version: 25.0.1 dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 104 ++++++++++++++-------------- 2 files changed, 53 insertions(+), 53 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 5a4e767c4..0ce42c10b 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -19,7 +19,7 @@ "@sveltejs/adapter-cloudflare": "^5.0.1", "@sveltejs/kit": "^2.49.1", "@sveltejs/vite-plugin-svelte": "^4.0.4", - "@types/node": "^24.10.1", + "@types/node": "^25.0.1", "@vitest/coverage-v8": "^3.1.4", "dotenv": "^17.2.3", "svelte": "^5.45.6", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index b7b22ff4d..32baba335 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))) + version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -40,29 +40,29 @@ importers: version: 6.1.0 vite-plugin-restart: specifier: ^2.0.0 - version: 2.0.0(vite@5.4.21(@types/node@24.10.1)) + version: 2.0.0(vite@5.4.21(@types/node@25.0.1)) vite-plugin-static-copy: specifier: ^3.1.4 - version: 3.1.4(vite@5.4.21(@types/node@24.10.1)) + version: 3.1.4(vite@5.4.21(@types/node@25.0.1)) devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))) + version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': specifier: ^2.49.1 - version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 - version: 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + version: 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) '@types/node': - specifier: ^24.10.1 - version: 24.10.1 + specifier: ^25.0.1 + version: 25.0.1 '@vitest/coverage-v8': specifier: ^3.1.4 - version: 3.2.4(vitest@3.2.4(@types/node@24.10.1)) + version: 3.2.4(vitest@3.2.4(@types/node@25.0.1)) dotenv: specifier: ^17.2.3 version: 17.2.3 @@ -86,10 +86,10 @@ importers: version: 5.9.3 vite: specifier: ^5.4.21 - version: 5.4.21(@types/node@24.10.1) + version: 5.4.21(@types/node@25.0.1) vitest: specifier: ^3.2.4 - version: 3.2.4(@types/node@24.10.1) + version: 3.2.4(@types/node@25.0.1) packages: @@ -1005,8 +1005,8 @@ packages: '@types/node@10.17.60': resolution: {integrity: sha512-F0KIgDJfy2nA3zMLmWGKxcH2ZVEtCZXHHdOQs2gSaQ27+lNeEfGxzkIw90aXswATX7AZ33tahPbzy6KAfUreVw==} - '@types/node@24.10.1': - resolution: {integrity: sha512-GNWcUTRBgIRJD5zj+Tq0fKOJ5XZajIiBroOF0yvj2bSU1WvNdYS/dn9UxwsujGW4JX06dnHyjV2y9rRaybH0iQ==} + '@types/node@25.0.1': + resolution: {integrity: sha512-czWPzKIAXucn9PtsttxmumiQ9N0ok9FrBwgRWrwmVLlp86BrMExzvXRLFYRJ+Ex3g6yqj+KuaxfX1JTgV2lpfg==} '@types/node@8.10.66': resolution: {integrity: sha512-tktOkFUA4kXx2hhhrB8bIFb5TbwzS4uOhKEmwiD+NoiL0qtP2OQ9mFldbgD4dV1djrlBYP6eBuQZiWjuHUpqFw==} @@ -2646,27 +2646,27 @@ snapshots: dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': dependencies: '@standard-schema/spec': 1.0.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 @@ -2679,27 +2679,27 @@ snapshots: set-cookie-parser: 2.7.2 sirv: 3.0.2 svelte: 5.45.6 - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) - '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': dependencies: - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) debug: 4.4.0 svelte: 5.45.6 - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) transitivePeerDependencies: - supports-color - '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1))': + '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': dependencies: - '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@24.10.1)) + '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) debug: 4.4.0 deepmerge: 4.3.1 kleur: 4.1.5 magic-string: 0.30.17 svelte: 5.45.6 - vite: 5.4.21(@types/node@24.10.1) - vitefu: 1.0.5(vite@5.4.21(@types/node@24.10.1)) + vite: 5.4.21(@types/node@25.0.1) + vitefu: 1.0.5(vite@5.4.21(@types/node@25.0.1)) transitivePeerDependencies: - supports-color @@ -2715,7 +2715,7 @@ snapshots: '@types/concat-stream@1.6.1': dependencies: - '@types/node': 24.10.1 + '@types/node': 25.0.1 '@types/cookie@0.6.0': {} @@ -2725,7 +2725,7 @@ snapshots: '@types/form-data@0.0.33': dependencies: - '@types/node': 24.10.1 + '@types/node': 25.0.1 '@types/js-yaml@4.0.9': {} @@ -2733,7 +2733,7 @@ snapshots: '@types/node@10.17.60': {} - '@types/node@24.10.1': + '@types/node@25.0.1': dependencies: undici-types: 7.16.0 @@ -2741,7 +2741,7 @@ snapshots: '@types/qs@6.9.17': {} - '@vitest/coverage-v8@3.2.4(vitest@3.2.4(@types/node@24.10.1))': + '@vitest/coverage-v8@3.2.4(vitest@3.2.4(@types/node@25.0.1))': dependencies: '@ampproject/remapping': 2.3.0 '@bcoe/v8-coverage': 1.0.2 @@ -2756,7 +2756,7 @@ snapshots: std-env: 3.9.0 test-exclude: 7.0.1 tinyrainbow: 2.0.0 - vitest: 3.2.4(@types/node@24.10.1) + vitest: 3.2.4(@types/node@25.0.1) transitivePeerDependencies: - supports-color @@ -2768,13 +2768,13 @@ snapshots: chai: 5.3.3 tinyrainbow: 2.0.0 - '@vitest/mocker@3.2.4(vite@5.4.21(@types/node@24.10.1))': + '@vitest/mocker@3.2.4(vite@5.4.21(@types/node@25.0.1))': dependencies: '@vitest/spy': 3.2.4 estree-walker: 3.0.3 magic-string: 0.30.21 optionalDependencies: - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) '@vitest/pretty-format@3.2.4': dependencies: @@ -3867,13 +3867,13 @@ snapshots: util-deprecate@1.0.2: {} - vite-node@3.2.4(@types/node@24.10.1): + vite-node@3.2.4(@types/node@25.0.1): dependencies: cac: 6.7.14 debug: 4.4.1 es-module-lexer: 1.7.0 pathe: 2.0.3 - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) transitivePeerDependencies: - '@types/node' - less @@ -3885,37 +3885,37 @@ snapshots: - supports-color - terser - vite-plugin-restart@2.0.0(vite@5.4.21(@types/node@24.10.1)): + vite-plugin-restart@2.0.0(vite@5.4.21(@types/node@25.0.1)): dependencies: micromatch: 4.0.8 - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) - vite-plugin-static-copy@3.1.4(vite@5.4.21(@types/node@24.10.1)): + vite-plugin-static-copy@3.1.4(vite@5.4.21(@types/node@25.0.1)): dependencies: chokidar: 3.6.0 p-map: 7.0.3 picocolors: 1.1.1 tinyglobby: 0.2.15 - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) - vite@5.4.21(@types/node@24.10.1): + vite@5.4.21(@types/node@25.0.1): dependencies: esbuild: 0.21.5 postcss: 8.5.6 rollup: 4.52.5 optionalDependencies: - '@types/node': 24.10.1 + '@types/node': 25.0.1 fsevents: 2.3.3 - vitefu@1.0.5(vite@5.4.21(@types/node@24.10.1)): + vitefu@1.0.5(vite@5.4.21(@types/node@25.0.1)): optionalDependencies: - vite: 5.4.21(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) - vitest@3.2.4(@types/node@24.10.1): + vitest@3.2.4(@types/node@25.0.1): dependencies: '@types/chai': 5.2.2 '@vitest/expect': 3.2.4 - '@vitest/mocker': 3.2.4(vite@5.4.21(@types/node@24.10.1)) + '@vitest/mocker': 3.2.4(vite@5.4.21(@types/node@25.0.1)) '@vitest/pretty-format': 3.2.4 '@vitest/runner': 3.2.4 '@vitest/snapshot': 3.2.4 @@ -3933,11 +3933,11 @@ snapshots: tinyglobby: 0.2.14 tinypool: 1.1.1 tinyrainbow: 2.0.0 - vite: 5.4.21(@types/node@24.10.1) - vite-node: 3.2.4(@types/node@24.10.1) + vite: 5.4.21(@types/node@25.0.1) + vite-node: 3.2.4(@types/node@25.0.1) why-is-node-running: 2.3.0 optionalDependencies: - '@types/node': 24.10.1 + '@types/node': 25.0.1 transitivePeerDependencies: - less - lightningcss From 61daa2c50671dd6103c0aa34d2ed53e9a07cbc02 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 06:06:14 +0000 Subject: [PATCH 25/61] Bump actions/cache from 4.3.0 to 5.0.0 Bumps [actions/cache](https://github.com/actions/cache) from 4.3.0 to 5.0.0. - [Release notes](https://github.com/actions/cache/releases) - [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md) - [Commits](https://github.com/actions/cache/compare/0057852bfaa89a56745cba8c7296529d2fc39830...a7833574556fa59680c1b7cb190c1735db73ebf0) --- updated-dependencies: - dependency-name: actions/cache dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/copi-build.yml | 2 +- .github/workflows/copi-deploy-staging.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/copi-build.yml b/.github/workflows/copi-build.yml index 0fd8a368c..55889fa4c 100644 --- a/.github/workflows/copi-build.yml +++ b/.github/workflows/copi-build.yml @@ -34,7 +34,7 @@ run: docker build -f ./Dockerfile . - name: Cache deps id: cache-deps - uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0 + uses: actions/cache@a7833574556fa59680c1b7cb190c1735db73ebf0 # v5.0.0 env: cache-name: cache-elixir-deps with: diff --git a/.github/workflows/copi-deploy-staging.yml b/.github/workflows/copi-deploy-staging.yml index 2ac21389a..331002467 100644 --- a/.github/workflows/copi-deploy-staging.yml +++ b/.github/workflows/copi-deploy-staging.yml @@ -31,7 +31,7 @@ - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - name: Cache deps id: cache-deps - uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0 + uses: actions/cache@a7833574556fa59680c1b7cb190c1735db73ebf0 # v5.0.0 env: cache-name: cache-elixir-deps with: From 057be3424c6c795dbac5c353d7bd16266608f535 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 06:22:41 +0000 Subject: [PATCH 26/61] Bump swoosh from 1.19.8 to 1.19.9 in /copi.owasp.org Bumps [swoosh](https://github.com/swoosh/swoosh) from 1.19.8 to 1.19.9. - [Release notes](https://github.com/swoosh/swoosh/releases) - [Changelog](https://github.com/swoosh/swoosh/blob/main/CHANGELOG.md) - [Commits](https://github.com/swoosh/swoosh/compare/v1.19.8...v1.19.9) --- updated-dependencies: - dependency-name: swoosh dependency-version: 1.19.9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- copi.owasp.org/mix.lock | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/copi.owasp.org/mix.lock b/copi.owasp.org/mix.lock index 61ab98edf..23b8c626e 100644 --- a/copi.owasp.org/mix.lock +++ b/copi.owasp.org/mix.lock @@ -41,14 +41,14 @@ "phoenix_live_view": {:hex, :phoenix_live_view, "1.0.17", "beeb16d83a7d3760f7ad463df94e83b087577665d2acc0bf2987cd7d9778068f", [:mix], [{:floki, "~> 0.36", [hex: :floki, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:phoenix, "~> 1.6.15 or ~> 1.7.0 or ~> 1.8.0-rc", [hex: :phoenix, repo: "hexpm", optional: false]}, {:phoenix_html, "~> 3.3 or ~> 4.0", [hex: :phoenix_html, repo: "hexpm", optional: false]}, {:phoenix_template, "~> 1.0", [hex: :phoenix_template, repo: "hexpm", optional: false]}, {:phoenix_view, "~> 2.0", [hex: :phoenix_view, repo: "hexpm", optional: true]}, {:plug, "~> 1.15", [hex: :plug, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "a4ca05c1eb6922c4d07a508a75bfa12c45e5f4d8f77ae83283465f02c53741e1"}, "phoenix_pubsub": {:hex, :phoenix_pubsub, "2.2.0", "ff3a5616e1bed6804de7773b92cbccfc0b0f473faf1f63d7daf1206c7aeaaa6f", [:mix], [], "hexpm", "adc313a5bf7136039f63cfd9668fde73bba0765e0614cba80c06ac9460ff3e96"}, "phoenix_template": {:hex, :phoenix_template, "1.0.4", "e2092c132f3b5e5b2d49c96695342eb36d0ed514c5b252a77048d5969330d639", [:mix], [{:phoenix_html, "~> 2.14.2 or ~> 3.0 or ~> 4.0", [hex: :phoenix_html, repo: "hexpm", optional: true]}], "hexpm", "2c0c81f0e5c6753faf5cca2f229c9709919aba34fab866d3bc05060c9c444206"}, - "plug": {:hex, :plug, "1.18.1", "5067f26f7745b7e31bc3368bc1a2b818b9779faa959b49c934c17730efc911cf", [:mix], [{:mime, "~> 1.0 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:plug_crypto, "~> 1.1.1 or ~> 1.2 or ~> 2.0", [hex: :plug_crypto, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4.3 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "57a57db70df2b422b564437d2d33cf8d33cd16339c1edb190cd11b1a3a546cc2"}, + "plug": {:hex, :plug, "1.19.1", "09bac17ae7a001a68ae393658aa23c7e38782be5c5c00c80be82901262c394c0", [:mix], [{:mime, "~> 1.0 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:plug_crypto, "~> 1.1.1 or ~> 1.2 or ~> 2.0", [hex: :plug_crypto, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4.3 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "560a0017a8f6d5d30146916862aaf9300b7280063651dd7e532b8be168511e62"}, "plug_cowboy": {:hex, :plug_cowboy, "2.7.5", "261f21b67aea8162239b2d6d3b4c31efde4daa22a20d80b19c2c0f21b34b270e", [:mix], [{:cowboy, "~> 2.7", [hex: :cowboy, repo: "hexpm", optional: false]}, {:cowboy_telemetry, "~> 0.3", [hex: :cowboy_telemetry, repo: "hexpm", optional: false]}, {:plug, "~> 1.14", [hex: :plug, repo: "hexpm", optional: false]}], "hexpm", "20884bf58a90ff5a5663420f5d2c368e9e15ed1ad5e911daf0916ea3c57f77ac"}, "plug_crypto": {:hex, :plug_crypto, "2.1.1", "19bda8184399cb24afa10be734f84a16ea0a2bc65054e23a62bb10f06bc89491", [:mix], [], "hexpm", "6470bce6ffe41c8bd497612ffde1a7e4af67f36a15eea5f921af71cf3e11247c"}, "postgrex": {:hex, :postgrex, "0.21.1", "2c5cc830ec11e7a0067dd4d623c049b3ef807e9507a424985b8dcf921224cd88", [:mix], [{:db_connection, "~> 2.1", [hex: :db_connection, repo: "hexpm", optional: false]}, {:decimal, "~> 1.5 or ~> 2.0", [hex: :decimal, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:table, "~> 0.1.0", [hex: :table, repo: "hexpm", optional: true]}], "hexpm", "27d8d21c103c3cc68851b533ff99eef353e6a0ff98dc444ea751de43eb48bdac"}, "ranch": {:hex, :ranch, "2.2.0", "25528f82bc8d7c6152c57666ca99ec716510fe0925cb188172f41ce93117b1b0", [:make, :rebar3], [], "hexpm", "fa0b99a1780c80218a4197a59ea8d3bdae32fbff7e88527d7d8a4787eff4f8e7"}, "slugify": {:hex, :slugify, "1.3.1", "0d3b8b7e5c1eeaa960e44dce94382bee34a39b3ea239293e457a9c5b47cc6fd3", [:mix], [], "hexpm", "cb090bbeb056b312da3125e681d98933a360a70d327820e4b7f91645c4d8be76"}, "ssl_verify_fun": {:hex, :ssl_verify_fun, "1.1.7", "354c321cf377240c7b8716899e182ce4890c5938111a1296add3ec74cf1715df", [:make, :mix, :rebar3], [], "hexpm", "fe4c190e8f37401d30167c8c405eda19469f34577987c76dde613e838bbc67f8"}, - "swoosh": {:hex, :swoosh, "1.19.8", "0576f2ea96d1bb3a6e02cc9f79cbd7d497babc49a353eef8dce1a1f9f82d7915", [:mix], [{:bandit, ">= 1.0.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:cowboy, "~> 1.1 or ~> 2.4", [hex: :cowboy, repo: "hexpm", optional: true]}, {:ex_aws, "~> 2.1", [hex: :ex_aws, repo: "hexpm", optional: true]}, {:finch, "~> 0.6", [hex: :finch, repo: "hexpm", optional: true]}, {:gen_smtp, "~> 0.13 or ~> 1.0", [hex: :gen_smtp, repo: "hexpm", optional: true]}, {:hackney, "~> 1.9", [hex: :hackney, repo: "hexpm", optional: true]}, {:idna, "~> 6.0", [hex: :idna, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}, {:mail, "~> 0.2", [hex: :mail, repo: "hexpm", optional: true]}, {:mime, "~> 1.1 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mua, "~> 0.2.3", [hex: :mua, repo: "hexpm", optional: true]}, {:multipart, "~> 0.4", [hex: :multipart, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: true]}, {:plug_cowboy, ">= 1.0.0", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:req, "~> 0.5.10 or ~> 0.6 or ~> 1.0", [hex: :req, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "d7503c2daf0f9899afd8eba9923eeddef4b62e70816e1d3b6766e4d6c60e94ad"}, + "swoosh": {:hex, :swoosh, "1.19.9", "4eb2c471b8cf06adbdcaa1d57a0ad53c0ed9348ce8586a06cc491f9f0dbcb553", [:mix], [{:bandit, ">= 1.0.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:cowboy, "~> 1.1 or ~> 2.4", [hex: :cowboy, repo: "hexpm", optional: true]}, {:ex_aws, "~> 2.1", [hex: :ex_aws, repo: "hexpm", optional: true]}, {:finch, "~> 0.6", [hex: :finch, repo: "hexpm", optional: true]}, {:gen_smtp, "~> 0.13 or ~> 1.0", [hex: :gen_smtp, repo: "hexpm", optional: true]}, {:hackney, "~> 1.9", [hex: :hackney, repo: "hexpm", optional: true]}, {:idna, "~> 6.0", [hex: :idna, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}, {:mail, "~> 0.2", [hex: :mail, repo: "hexpm", optional: true]}, {:mime, "~> 1.1 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mua, "~> 0.2.3", [hex: :mua, repo: "hexpm", optional: true]}, {:multipart, "~> 0.4", [hex: :multipart, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: true]}, {:plug_cowboy, ">= 1.0.0", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:req, "~> 0.5.10 or ~> 0.6 or ~> 1.0", [hex: :req, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "516898263a64925c31723c56bc7999a26e97b04e869707f681f4c9bca7ee1688"}, "tailwind": {:hex, :tailwind, "0.4.1", "e7bcc222fe96a1e55f948e76d13dd84a1a7653fb051d2a167135db3b4b08d3e9", [:mix], [], "hexpm", "6249d4f9819052911120dbdbe9e532e6bd64ea23476056adb7f730aa25c220d1"}, "telemetry": {:hex, :telemetry, "1.3.0", "fedebbae410d715cf8e7062c96a1ef32ec22e764197f70cda73d82778d61e7a2", [:rebar3], [], "hexpm", "7015fc8919dbe63764f4b4b87a95b7c0996bd539e0d499be6ec9d7f3875b79e6"}, "telemetry_metrics": {:hex, :telemetry_metrics, "1.1.0", "5bd5f3b5637e0abea0426b947e3ce5dd304f8b3bc6617039e2b5a008adc02f8f", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "e7b79e8ddfde70adb6db8a6623d1778ec66401f366e9a8f5dd0955c56bc8ce67"}, From d96b0a82790eb8062d35b67e208d7a62f0599303 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 14:24:21 +0000 Subject: [PATCH 27/61] Bump urllib3 from 2.5.0 to 2.6.1 Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.5.0 to 2.6.1. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/2.5.0...2.6.1) --- updated-dependencies: - dependency-name: urllib3 dependency-version: 2.6.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- Pipfile | 2 +- Pipfile.lock | 8 ++++---- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/Pipfile b/Pipfile index d4cf1b696..bdf79fd0a 100644 --- a/Pipfile +++ b/Pipfile @@ -21,7 +21,7 @@ qrcode = "==8.2" requests = "==2.32.5" types-requests = "==2.32.4.20250913" typing_extensions = "==4.8.0" -urllib3 = "==2.6.0" +urllib3 = "==2.6.2" charset-normalizer = "==3.4.4" python-docx = "==1.1.0" PyYAML = "==6.0.1" diff --git a/Pipfile.lock b/Pipfile.lock index f7bf59fae..cbf09a617 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,7 +1,7 @@ { "_meta": { "hash": { - "sha256": "12d2e00082bd8e7a8089aaf01a1f5bcb6290670128dea68310670f7b95e43558" + "sha256": "67bc4f529a7a81dd8dd0c7a99d98f5e2172e687b0f9adf7a0d850288a4e28ec3" }, "pipfile-spec": 6, "requires": { @@ -645,12 +645,12 @@ }, "urllib3": { "hashes": [ - "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f", - "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1" + "sha256:016f9c98bb7e98085cb2b4b17b87d2c702975664e4f060c6532e64d1c1a5e797", + "sha256:ec21cddfe7724fc7cb4ba4bea7aa8e2ef36f607a4bab81aa6ce42a13dc3f03dd" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.6.0" + "version": "==2.6.2" } }, "develop": { From 81f6c72390ba9a3a02ce4928f1e5bb21c5f36ab1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 14:34:32 +0000 Subject: [PATCH 28/61] Bump svelte from 5.45.6 to 5.45.10 in /cornucopia.owasp.org Bumps [svelte](https://github.com/sveltejs/svelte/tree/HEAD/packages/svelte) from 5.45.6 to 5.45.10. - [Release notes](https://github.com/sveltejs/svelte/releases) - [Changelog](https://github.com/sveltejs/svelte/blob/main/packages/svelte/CHANGELOG.md) - [Commits](https://github.com/sveltejs/svelte/commits/svelte@5.45.10/packages/svelte) --- updated-dependencies: - dependency-name: svelte dependency-version: 5.45.10 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 87 +++++++++++++++-------------- 2 files changed, 47 insertions(+), 42 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 0ce42c10b..0049b0a1f 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -22,7 +22,7 @@ "@types/node": "^25.0.1", "@vitest/coverage-v8": "^3.1.4", "dotenv": "^17.2.3", - "svelte": "^5.45.6", + "svelte": "^5.45.10", "svelte-check": "^4.3.4", "svelte-sitemap": "^2.7.1", "then-request": "^6.0.2", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index 32baba335..7f1752b16 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))) + version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -28,13 +28,13 @@ importers: version: 8.0.1 svelte-i18n: specifier: ^4.0.1 - version: 4.0.1(svelte@5.45.6) + version: 4.0.1(svelte@5.45.10) svelte-markdown: specifier: ^0.4.1 - version: 0.4.1(svelte@5.45.6) + version: 0.4.1(svelte@5.45.10) sveltekit-i18n: specifier: ^2.4.2 - version: 2.4.2(svelte@5.45.6) + version: 2.4.2(svelte@5.45.10) sync-request: specifier: ^6.1.0 version: 6.1.0 @@ -47,16 +47,16 @@ importers: devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))) + version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': specifier: ^2.49.1 - version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 - version: 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + version: 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) '@types/node': specifier: ^25.0.1 version: 25.0.1 @@ -67,11 +67,11 @@ importers: specifier: ^17.2.3 version: 17.2.3 svelte: - specifier: ^5.45.6 - version: 5.45.6 + specifier: ^5.45.10 + version: 5.45.10 svelte-check: specifier: ^4.3.4 - version: 4.3.4(picomatch@4.0.3)(svelte@5.45.6)(typescript@5.9.3) + version: 4.3.4(picomatch@4.0.3)(svelte@5.45.10)(typescript@5.9.3) svelte-sitemap: specifier: ^2.7.1 version: 2.7.1 @@ -1261,6 +1261,9 @@ packages: devalue@5.5.0: resolution: {integrity: sha512-69sM5yrHfFLJt0AZ9QqZXGCPfJ7fQjvpln3Rq5+PS03LD32Ost1Q9N+eEnaQwGRIriKkMImXD56ocjQmfjbV3w==} + devalue@5.6.1: + resolution: {integrity: sha512-jDwizj+IlEZBunHcOuuFVBnIMPAEHvTsJj0BcIp94xYguLRVBcXO853px/MyIJvbVzWdsGvrRweIUWJw8hBP7A==} + dotenv@17.2.3: resolution: {integrity: sha512-JVUnt+DUIzu87TABbhPmNfVdBDt18BLOWjMUFJMSi/Qqg7NTYtabbvSNJGOJ7afbRuv9D/lngizHtP7QyLQ+9w==} engines: {node: '>=12'} @@ -1901,8 +1904,8 @@ packages: engines: {node: '>= 14.17.0'} hasBin: true - svelte@5.45.6: - resolution: {integrity: sha512-V3aVXthzPyPt1UB1wLEoXnEXpwPsvs7NHrR0xkCor8c11v71VqBj477MClqPZYyrcXrAH21sNGhOj9FJvSwXfQ==} + svelte@5.45.10: + resolution: {integrity: sha512-GiWXq6akkEN3zVDMQ1BVlRolmks5JkEdzD/67mvXOz6drRfuddT5JwsGZjMGSnsTRv/PjAXX8fqBcOr2g2qc/Q==} engines: {node: '>=18'} sveltekit-i18n@2.4.2: @@ -2646,27 +2649,27 @@ snapshots: dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': dependencies: '@standard-schema/spec': 1.0.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 @@ -2678,34 +2681,34 @@ snapshots: sade: 1.8.1 set-cookie-parser: 2.7.2 sirv: 3.0.2 - svelte: 5.45.6 + svelte: 5.45.10 vite: 5.4.21(@types/node@25.0.1) - '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': dependencies: - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) debug: 4.4.0 - svelte: 5.45.6 + svelte: 5.45.10 vite: 5.4.21(@types/node@25.0.1) transitivePeerDependencies: - supports-color - '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': dependencies: - '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.6)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) debug: 4.4.0 deepmerge: 4.3.1 kleur: 4.1.5 magic-string: 0.30.17 - svelte: 5.45.6 + svelte: 5.45.10 vite: 5.4.21(@types/node@25.0.1) vitefu: 1.0.5(vite@5.4.21(@types/node@25.0.1)) transitivePeerDependencies: - supports-color - '@sveltekit-i18n/base@1.3.7(svelte@5.45.6)': + '@sveltekit-i18n/base@1.3.7(svelte@5.45.10)': dependencies: - svelte: 5.45.6 + svelte: 5.45.10 '@sveltekit-i18n/parser-default@1.1.1': {} @@ -2984,6 +2987,8 @@ snapshots: devalue@5.5.0: {} + devalue@5.6.1: {} + dotenv@17.2.3: {} dunder-proto@1.0.1: @@ -3716,19 +3721,19 @@ snapshots: dependencies: has-flag: 4.0.0 - svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.6)(typescript@5.9.3): + svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.10)(typescript@5.9.3): dependencies: '@jridgewell/trace-mapping': 0.3.31 chokidar: 4.0.3 fdir: 6.5.0(picomatch@4.0.3) picocolors: 1.1.1 sade: 1.8.1 - svelte: 5.45.6 + svelte: 5.45.10 typescript: 5.9.3 transitivePeerDependencies: - picomatch - svelte-i18n@4.0.1(svelte@5.45.6): + svelte-i18n@4.0.1(svelte@5.45.10): dependencies: cli-color: 2.0.4 deepmerge: 4.3.1 @@ -3736,14 +3741,14 @@ snapshots: estree-walker: 2.0.2 intl-messageformat: 10.7.11 sade: 1.8.1 - svelte: 5.45.6 + svelte: 5.45.10 tiny-glob: 0.2.9 - svelte-markdown@0.4.1(svelte@5.45.6): + svelte-markdown@0.4.1(svelte@5.45.10): dependencies: '@types/marked': 5.0.2 marked: 5.1.2 - svelte: 5.45.6 + svelte: 5.45.10 svelte-sitemap@2.7.1: dependencies: @@ -3751,7 +3756,7 @@ snapshots: minimist: 1.2.8 xmlbuilder2: 3.1.1 - svelte@5.45.6: + svelte@5.45.10: dependencies: '@jridgewell/remapping': 2.3.5 '@jridgewell/sourcemap-codec': 1.5.5 @@ -3761,7 +3766,7 @@ snapshots: aria-query: 5.3.2 axobject-query: 4.1.0 clsx: 2.1.1 - devalue: 5.5.0 + devalue: 5.6.1 esm-env: 1.2.2 esrap: 2.2.1 is-reference: 3.0.3 @@ -3769,11 +3774,11 @@ snapshots: magic-string: 0.30.21 zimmerframe: 1.1.4 - sveltekit-i18n@2.4.2(svelte@5.45.6): + sveltekit-i18n@2.4.2(svelte@5.45.10): dependencies: - '@sveltekit-i18n/base': 1.3.7(svelte@5.45.6) + '@sveltekit-i18n/base': 1.3.7(svelte@5.45.10) '@sveltekit-i18n/parser-default': 1.1.1 - svelte: 5.45.6 + svelte: 5.45.10 sync-request@6.1.0: dependencies: From 93a7365b647076e6e9ae6999cbc8e0e18f45a198 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 10 Dec 2025 06:06:47 +0000 Subject: [PATCH 29/61] Bump step-security/harden-runner from 2.13.3 to 2.14.0 Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.13.3 to 2.14.0. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](https://github.com/step-security/harden-runner/compare/df199fb7be9f65074067a9eb93f12bb4c5547cf2...20cf305ff2072d973412fa9b1e3a4f227bda3c76) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.14.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/build-website-staging.yml | 2 +- .github/workflows/build-website.yml | 2 +- .github/workflows/deploy-website-production.yml | 2 +- .github/workflows/deploy-website-staging.yml | 2 +- .github/workflows/hardening.yaml | 2 +- 5 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/build-website-staging.yml b/.github/workflows/build-website-staging.yml index 3fce2e7d2..41cb4b6a1 100644 --- a/.github/workflows/build-website-staging.yml +++ b/.github/workflows/build-website-staging.yml @@ -16,7 +16,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/build-website.yml b/.github/workflows/build-website.yml index ae9d33887..f99f10153 100644 --- a/.github/workflows/build-website.yml +++ b/.github/workflows/build-website.yml @@ -14,7 +14,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/deploy-website-production.yml b/.github/workflows/deploy-website-production.yml index 6f815f3d2..021ed591c 100644 --- a/.github/workflows/deploy-website-production.yml +++ b/.github/workflows/deploy-website-production.yml @@ -13,7 +13,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/deploy-website-staging.yml b/.github/workflows/deploy-website-staging.yml index bc9077c33..140a9e524 100644 --- a/.github/workflows/deploy-website-staging.yml +++ b/.github/workflows/deploy-website-staging.yml @@ -19,7 +19,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/hardening.yaml b/.github/workflows/hardening.yaml index e2ab2dd57..bf73ca907 100644 --- a/.github/workflows/hardening.yaml +++ b/.github/workflows/hardening.yaml @@ -11,7 +11,7 @@ jobs: steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3 + uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 with: egress-policy: block allowed-endpoints: > From 1b741f95ac3c2c063704a14b7a0b4992f2fd3840 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 9 Dec 2025 06:20:38 +0000 Subject: [PATCH 30/61] Bump ecto_sql from 3.13.2 to 3.13.3 in /copi.owasp.org Bumps [ecto_sql](https://github.com/elixir-ecto/ecto_sql) from 3.13.2 to 3.13.3. - [Changelog](https://github.com/elixir-ecto/ecto_sql/blob/master/CHANGELOG.md) - [Commits](https://github.com/elixir-ecto/ecto_sql/compare/v3.13.2...v3.13.3) --- updated-dependencies: - dependency-name: ecto_sql dependency-version: 3.13.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- copi.owasp.org/mix.lock | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/mix.lock b/copi.owasp.org/mix.lock index 23b8c626e..313c007a8 100644 --- a/copi.owasp.org/mix.lock +++ b/copi.owasp.org/mix.lock @@ -11,7 +11,7 @@ "decimal": {:hex, :decimal, "2.3.0", "3ad6255aa77b4a3c4f818171b12d237500e63525c2fd056699967a3e7ea20f62", [:mix], [], "hexpm", "a4d66355cb29cb47c3cf30e71329e58361cfcb37c34235ef3bf1d7bf3773aeac"}, "dns_cluster": {:hex, :dns_cluster, "0.2.0", "aa8eb46e3bd0326bd67b84790c561733b25c5ba2fe3c7e36f28e88f384ebcb33", [:mix], [], "hexpm", "ba6f1893411c69c01b9e8e8f772062535a4cf70f3f35bcc964a324078d8c8240"}, "ecto": {:hex, :ecto, "3.13.5", "9d4a69700183f33bf97208294768e561f5c7f1ecf417e0fa1006e4a91713a834", [:mix], [{:decimal, "~> 2.0", [hex: :decimal, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "df9efebf70cf94142739ba357499661ef5dbb559ef902b68ea1f3c1fabce36de"}, - "ecto_sql": {:hex, :ecto_sql, "3.13.2", "a07d2461d84107b3d037097c822ffdd36ed69d1cf7c0f70e12a3d1decf04e2e1", [:mix], [{:db_connection, "~> 2.4.1 or ~> 2.5", [hex: :db_connection, repo: "hexpm", optional: false]}, {:ecto, "~> 3.13.0", [hex: :ecto, repo: "hexpm", optional: false]}, {:myxql, "~> 0.7", [hex: :myxql, repo: "hexpm", optional: true]}, {:postgrex, "~> 0.19 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}, {:tds, "~> 2.1.1 or ~> 2.2", [hex: :tds, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.0 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "539274ab0ecf1a0078a6a72ef3465629e4d6018a3028095dc90f60a19c371717"}, + "ecto_sql": {:hex, :ecto_sql, "3.13.3", "81f7067dd1951081888529002dbc71f54e5e891b69c60195040ea44697e1104a", [:mix], [{:db_connection, "~> 2.4.1 or ~> 2.5", [hex: :db_connection, repo: "hexpm", optional: false]}, {:ecto, "~> 3.13.0", [hex: :ecto, repo: "hexpm", optional: false]}, {:myxql, "~> 0.7", [hex: :myxql, repo: "hexpm", optional: true]}, {:postgrex, "~> 0.19 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}, {:tds, "~> 2.1.1 or ~> 2.2", [hex: :tds, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.0 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "5751caea36c8f5dd0d1de6f37eceffea19d10bd53f20e5bbe31c45f2efc8944a"}, "ecto_ulid": {:hex, :ecto_ulid, "0.3.0", "fd6426ff30da547d6f5c31e43170ad307cbda2e680c7793c891e9ef86bd68dbe", [:mix], [{:ecto, "~> 2.0 or ~> 3.0", [hex: :ecto, repo: "hexpm", optional: false]}], "hexpm", "82cb3be73635587700f1a4aec08e4ad894e7b3d2f6ed63236b9f3afd3859c74d"}, "excoveralls": {:hex, :excoveralls, "0.18.5", "e229d0a65982613332ec30f07940038fe451a2e5b29bce2a5022165f0c9b157e", [:mix], [{:castore, "~> 1.0", [hex: :castore, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}], "hexpm", "523fe8a15603f86d64852aab2abe8ddbd78e68579c8525ae765facc5eae01562"}, "expo": {:hex, :expo, "1.1.1", "4202e1d2ca6e2b3b63e02f69cfe0a404f77702b041d02b58597c00992b601db5", [:mix], [], "hexpm", "5fb308b9cb359ae200b7e23d37c76978673aa1b06e2b3075d814ce12c5811640"}, From 6d8617d0cac9dce4a6bc16f3a330fc27e6251338 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 14:36:11 +0000 Subject: [PATCH 31/61] Bump phoenix from 1.8.2 to 1.8.3 in /copi.owasp.org Bumps [phoenix](https://github.com/phoenixframework/phoenix) from 1.8.2 to 1.8.3. - [Release notes](https://github.com/phoenixframework/phoenix/releases) - [Changelog](https://github.com/phoenixframework/phoenix/blob/main/CHANGELOG.md) - [Commits](https://github.com/phoenixframework/phoenix/compare/v1.8.2...v1.8.3) --- updated-dependencies: - dependency-name: phoenix dependency-version: 1.8.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- copi.owasp.org/mix.lock | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/mix.lock b/copi.owasp.org/mix.lock index 313c007a8..4b2292356 100644 --- a/copi.owasp.org/mix.lock +++ b/copi.owasp.org/mix.lock @@ -33,7 +33,7 @@ "nimble_ownership": {:hex, :nimble_ownership, "1.0.1", "f69fae0cdd451b1614364013544e66e4f5d25f36a2056a9698b793305c5aa3a6", [:mix], [], "hexpm", "3825e461025464f519f3f3e4a1f9b68c47dc151369611629ad08b636b73bb22d"}, "nimble_pool": {:hex, :nimble_pool, "1.1.0", "bf9c29fbdcba3564a8b800d1eeb5a3c58f36e1e11d7b7fb2e084a643f645f06b", [:mix], [], "hexpm", "af2e4e6b34197db81f7aad230c1118eac993acc0dae6bc83bac0126d4ae0813a"}, "parse_trans": {:hex, :parse_trans, "3.4.1", "6e6aa8167cb44cc8f39441d05193be6e6f4e7c2946cb2759f015f8c56b76e5ff", [:rebar3], [], "hexpm", "620a406ce75dada827b82e453c19cf06776be266f5a67cff34e1ef2cbb60e49a"}, - "phoenix": {:hex, :phoenix, "1.8.2", "75aba5b90081d88a54f2fc6a26453d4e76762ab095ff89be5a3e7cb28bff9300", [:mix], [{:bandit, "~> 1.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:phoenix_pubsub, "~> 2.1", [hex: :phoenix_pubsub, repo: "hexpm", optional: false]}, {:phoenix_template, "~> 1.0", [hex: :phoenix_template, repo: "hexpm", optional: false]}, {:phoenix_view, "~> 2.0", [hex: :phoenix_view, repo: "hexpm", optional: true]}, {:plug, "~> 1.14", [hex: :plug, repo: "hexpm", optional: false]}, {:plug_cowboy, "~> 2.7", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:plug_crypto, "~> 1.2 or ~> 2.0", [hex: :plug_crypto, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}, {:websock_adapter, "~> 0.5.3", [hex: :websock_adapter, repo: "hexpm", optional: false]}], "hexpm", "19ea65b4064f17b1ab0515595e4d0ea65742ab068259608d5d7b139a73f47611"}, + "phoenix": {:hex, :phoenix, "1.8.3", "49ac5e485083cb1495a905e47eb554277bdd9c65ccb4fc5100306b350151aa95", [:mix], [{:bandit, "~> 1.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:phoenix_pubsub, "~> 2.1", [hex: :phoenix_pubsub, repo: "hexpm", optional: false]}, {:phoenix_template, "~> 1.0", [hex: :phoenix_template, repo: "hexpm", optional: false]}, {:phoenix_view, "~> 2.0", [hex: :phoenix_view, repo: "hexpm", optional: true]}, {:plug, "~> 1.14", [hex: :plug, repo: "hexpm", optional: false]}, {:plug_cowboy, "~> 2.7", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:plug_crypto, "~> 1.2 or ~> 2.0", [hex: :plug_crypto, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}, {:websock_adapter, "~> 0.5.3", [hex: :websock_adapter, repo: "hexpm", optional: false]}], "hexpm", "36169f95cc2e155b78be93d9590acc3f462f1e5438db06e6248613f27c80caec"}, "phoenix_ecto": {:hex, :phoenix_ecto, "4.7.0", "75c4b9dfb3efdc42aec2bd5f8bccd978aca0651dbcbc7a3f362ea5d9d43153c6", [:mix], [{:ecto, "~> 3.5", [hex: :ecto, repo: "hexpm", optional: false]}, {:phoenix_html, "~> 2.14.2 or ~> 3.0 or ~> 4.1", [hex: :phoenix_html, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: false]}, {:postgrex, "~> 0.16 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}], "hexpm", "1d75011e4254cb4ddf823e81823a9629559a1be93b4321a6a5f11a5306fbf4cc"}, "phoenix_html": {:hex, :phoenix_html, "4.3.0", "d3577a5df4b6954cd7890c84d955c470b5310bb49647f0a114a6eeecc850f7ad", [:mix], [], "hexpm", "3eaa290a78bab0f075f791a46a981bbe769d94bc776869f4f3063a14f30497ad"}, "phoenix_live_dashboard": {:hex, :phoenix_live_dashboard, "0.8.7", "405880012cb4b706f26dd1c6349125bfc903fb9e44d1ea668adaf4e04d4884b7", [:mix], [{:ecto, "~> 3.6.2 or ~> 3.7", [hex: :ecto, repo: "hexpm", optional: true]}, {:ecto_mysql_extras, "~> 0.5", [hex: :ecto_mysql_extras, repo: "hexpm", optional: true]}, {:ecto_psql_extras, "~> 0.7", [hex: :ecto_psql_extras, repo: "hexpm", optional: true]}, {:ecto_sqlite3_extras, "~> 1.1.7 or ~> 1.2.0", [hex: :ecto_sqlite3_extras, repo: "hexpm", optional: true]}, {:mime, "~> 1.6 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:phoenix_live_view, "~> 0.19 or ~> 1.0", [hex: :phoenix_live_view, repo: "hexpm", optional: false]}, {:telemetry_metrics, "~> 0.6 or ~> 1.0", [hex: :telemetry_metrics, repo: "hexpm", optional: false]}], "hexpm", "3a8625cab39ec261d48a13b7468dc619c0ede099601b084e343968309bd4d7d7"}, From 6a33309f25b93a2339397709a088e49b1d27ec84 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 14:36:08 +0000 Subject: [PATCH 32/61] Bump phoenix_live_reload from 1.6.1 to 1.6.2 in /copi.owasp.org Bumps [phoenix_live_reload](https://github.com/phoenixframework/phoenix_live_reload) from 1.6.1 to 1.6.2. - [Changelog](https://github.com/phoenixframework/phoenix_live_reload/blob/main/CHANGELOG.md) - [Commits](https://github.com/phoenixframework/phoenix_live_reload/compare/v1.6.1...v1.6.2) --- updated-dependencies: - dependency-name: phoenix_live_reload dependency-version: 1.6.2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- copi.owasp.org/mix.lock | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/mix.lock b/copi.owasp.org/mix.lock index 4b2292356..0d076d619 100644 --- a/copi.owasp.org/mix.lock +++ b/copi.owasp.org/mix.lock @@ -37,7 +37,7 @@ "phoenix_ecto": {:hex, :phoenix_ecto, "4.7.0", "75c4b9dfb3efdc42aec2bd5f8bccd978aca0651dbcbc7a3f362ea5d9d43153c6", [:mix], [{:ecto, "~> 3.5", [hex: :ecto, repo: "hexpm", optional: false]}, {:phoenix_html, "~> 2.14.2 or ~> 3.0 or ~> 4.1", [hex: :phoenix_html, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: false]}, {:postgrex, "~> 0.16 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}], "hexpm", "1d75011e4254cb4ddf823e81823a9629559a1be93b4321a6a5f11a5306fbf4cc"}, "phoenix_html": {:hex, :phoenix_html, "4.3.0", "d3577a5df4b6954cd7890c84d955c470b5310bb49647f0a114a6eeecc850f7ad", [:mix], [], "hexpm", "3eaa290a78bab0f075f791a46a981bbe769d94bc776869f4f3063a14f30497ad"}, "phoenix_live_dashboard": {:hex, :phoenix_live_dashboard, "0.8.7", "405880012cb4b706f26dd1c6349125bfc903fb9e44d1ea668adaf4e04d4884b7", [:mix], [{:ecto, "~> 3.6.2 or ~> 3.7", [hex: :ecto, repo: "hexpm", optional: true]}, {:ecto_mysql_extras, "~> 0.5", [hex: :ecto_mysql_extras, repo: "hexpm", optional: true]}, {:ecto_psql_extras, "~> 0.7", [hex: :ecto_psql_extras, repo: "hexpm", optional: true]}, {:ecto_sqlite3_extras, "~> 1.1.7 or ~> 1.2.0", [hex: :ecto_sqlite3_extras, repo: "hexpm", optional: true]}, {:mime, "~> 1.6 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:phoenix_live_view, "~> 0.19 or ~> 1.0", [hex: :phoenix_live_view, repo: "hexpm", optional: false]}, {:telemetry_metrics, "~> 0.6 or ~> 1.0", [hex: :telemetry_metrics, repo: "hexpm", optional: false]}], "hexpm", "3a8625cab39ec261d48a13b7468dc619c0ede099601b084e343968309bd4d7d7"}, - "phoenix_live_reload": {:hex, :phoenix_live_reload, "1.6.1", "05df733a09887a005ed0d69a7fc619d376aea2730bf64ce52ac51ce716cc1ef0", [:mix], [{:file_system, "~> 0.2.10 or ~> 1.0", [hex: :file_system, repo: "hexpm", optional: false]}, {:phoenix, "~> 1.4", [hex: :phoenix, repo: "hexpm", optional: false]}], "hexpm", "74273843d5a6e4fef0bbc17599f33e3ec63f08e69215623a0cd91eea4288e5a0"}, + "phoenix_live_reload": {:hex, :phoenix_live_reload, "1.6.2", "b18b0773a1ba77f28c52decbb0f10fd1ac4d3ae5b8632399bbf6986e3b665f62", [:mix], [{:file_system, "~> 0.2.10 or ~> 1.0", [hex: :file_system, repo: "hexpm", optional: false]}, {:phoenix, "~> 1.4", [hex: :phoenix, repo: "hexpm", optional: false]}], "hexpm", "d1f89c18114c50d394721365ffb428cce24f1c13de0467ffa773e2ff4a30d5b9"}, "phoenix_live_view": {:hex, :phoenix_live_view, "1.0.17", "beeb16d83a7d3760f7ad463df94e83b087577665d2acc0bf2987cd7d9778068f", [:mix], [{:floki, "~> 0.36", [hex: :floki, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:phoenix, "~> 1.6.15 or ~> 1.7.0 or ~> 1.8.0-rc", [hex: :phoenix, repo: "hexpm", optional: false]}, {:phoenix_html, "~> 3.3 or ~> 4.0", [hex: :phoenix_html, repo: "hexpm", optional: false]}, {:phoenix_template, "~> 1.0", [hex: :phoenix_template, repo: "hexpm", optional: false]}, {:phoenix_view, "~> 2.0", [hex: :phoenix_view, repo: "hexpm", optional: true]}, {:plug, "~> 1.15", [hex: :plug, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "a4ca05c1eb6922c4d07a508a75bfa12c45e5f4d8f77ae83283465f02c53741e1"}, "phoenix_pubsub": {:hex, :phoenix_pubsub, "2.2.0", "ff3a5616e1bed6804de7773b92cbccfc0b0f473faf1f63d7daf1206c7aeaaa6f", [:mix], [], "hexpm", "adc313a5bf7136039f63cfd9668fde73bba0765e0614cba80c06ac9460ff3e96"}, "phoenix_template": {:hex, :phoenix_template, "1.0.4", "e2092c132f3b5e5b2d49c96695342eb36d0ed514c5b252a77048d5969330d639", [:mix], [{:phoenix_html, "~> 2.14.2 or ~> 3.0 or ~> 4.0", [hex: :phoenix_html, repo: "hexpm", optional: true]}], "hexpm", "2c0c81f0e5c6753faf5cca2f229c9709919aba34fab866d3bc05060c9c444206"}, From 4d76020ae41e753fe1fe027f1a411ef8518b79ad Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 12 Dec 2025 14:39:57 +0000 Subject: [PATCH 33/61] Bump @sveltejs/kit from 2.49.1 to 2.49.2 in /cornucopia.owasp.org Bumps [@sveltejs/kit](https://github.com/sveltejs/kit/tree/HEAD/packages/kit) from 2.49.1 to 2.49.2. - [Release notes](https://github.com/sveltejs/kit/releases) - [Changelog](https://github.com/sveltejs/kit/blob/main/packages/kit/CHANGELOG.md) - [Commits](https://github.com/sveltejs/kit/commits/@sveltejs/kit@2.49.2/packages/kit) --- updated-dependencies: - dependency-name: "@sveltejs/kit" dependency-version: 2.49.2 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 35 +++++++++++++---------------- 2 files changed, 16 insertions(+), 21 deletions(-) diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 0049b0a1f..2c49fc3ba 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -17,7 +17,7 @@ "devDependencies": { "@sveltejs/adapter-auto": "^7.0.0", "@sveltejs/adapter-cloudflare": "^5.0.1", - "@sveltejs/kit": "^2.49.1", + "@sveltejs/kit": "^2.49.2", "@sveltejs/vite-plugin-svelte": "^4.0.4", "@types/node": "^25.0.1", "@vitest/coverage-v8": "^3.1.4", diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index 7f1752b16..dc777b6b8 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) + version: 3.0.10(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -47,13 +47,13 @@ importers: devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) + version: 7.0.0(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) '@sveltejs/adapter-cloudflare': specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + version: 5.0.1(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) '@sveltejs/kit': - specifier: ^2.49.1 - version: 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + specifier: ^2.49.2 + version: 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) '@sveltejs/vite-plugin-svelte': specifier: ^4.0.4 version: 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) @@ -942,8 +942,8 @@ packages: peerDependencies: '@sveltejs/kit': ^2.0.0 - '@sveltejs/kit@2.49.1': - resolution: {integrity: sha512-vByReCTTdlNM80vva8alAQC80HcOiHLkd8XAxIiKghKSHcqeNfyhp3VsYAV8VSiPKu4Jc8wWCfsZNAIvd1uCqA==} + '@sveltejs/kit@2.49.2': + resolution: {integrity: sha512-Vp3zX/qlwerQmHMP6x0Ry1oY7eKKRcOWGc2P59srOp4zcqyn+etJyQpELgOi4+ZSUgteX8Y387NuwruLgGXLUQ==} engines: {node: '>=18.13'} hasBin: true peerDependencies: @@ -1258,9 +1258,6 @@ packages: resolution: {integrity: sha512-ZySD7Nf91aLB0RxL4KGrKHBXl7Eds1DAmEdcoVawXnLD7SDhpNgtuII2aAkg7a7QS41jxPSZ17p4VdGnMHk3MQ==} engines: {node: '>=0.4.0'} - devalue@5.5.0: - resolution: {integrity: sha512-69sM5yrHfFLJt0AZ9QqZXGCPfJ7fQjvpln3Rq5+PS03LD32Ost1Q9N+eEnaQwGRIriKkMImXD56ocjQmfjbV3w==} - devalue@5.6.1: resolution: {integrity: sha512-jDwizj+IlEZBunHcOuuFVBnIMPAEHvTsJj0BcIp94xYguLRVBcXO853px/MyIJvbVzWdsGvrRweIUWJw8hBP7A==} @@ -2649,23 +2646,23 @@ snapshots: dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': dependencies: '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) esbuild: 0.24.2 worktop: 0.8.0-next.18 wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': dependencies: - '@sveltejs/kit': 2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - '@sveltejs/kit@2.49.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': dependencies: '@standard-schema/spec': 1.0.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) @@ -2673,7 +2670,7 @@ snapshots: '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 - devalue: 5.5.0 + devalue: 5.6.1 esm-env: 1.2.2 kleur: 4.1.5 magic-string: 0.30.21 @@ -2985,8 +2982,6 @@ snapshots: delayed-stream@1.0.0: {} - devalue@5.5.0: {} - devalue@5.6.1: {} dotenv@17.2.3: {} From 8f14efb0018319fb06aae1bfa088b716e6f3e5bb Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Mon, 22 Dec 2025 13:24:00 +0100 Subject: [PATCH 34/61] Update copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex | 1 + 1 file changed, 1 insertion(+) diff --git a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex index 8b0566470..2656ec63c 100644 --- a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex +++ b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex @@ -16,6 +16,7 @@ defmodule CopiWeb.Plugs.RateLimiter do case RateLimiter.check_rate(ip_address, action) do {:ok, remaining} -> + RateLimiter.record_action(ip_address, action) conn |> put_resp_header("x-ratelimit-remaining", to_string(remaining)) From eefba038b119cca8ad2e0463a0ee319102e52ebe Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Mon, 22 Dec 2025 13:24:53 +0100 Subject: [PATCH 35/61] Update copi.owasp.org/lib/copi_web/live/game_live/index.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/lib/copi_web/live/game_live/index.ex | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.ex b/copi.owasp.org/lib/copi_web/live/game_live/index.ex index b14bd4659..ef49ed0ae 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.ex @@ -65,7 +65,7 @@ defmodule CopiWeb.GameLive.Index do case get_connect_info(socket, :peer_data) do %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" %{address: {a, b, c, d, e, f, g, h}} -> - "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() _ -> "unknown" end end From 2522145b794a9dbc2a436ca6180eb23d655e3b50 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Mon, 22 Dec 2025 13:25:15 +0100 Subject: [PATCH 36/61] Update copi.owasp.org/SECURITY.md Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/SECURITY.md b/copi.owasp.org/SECURITY.md index 7943f89c6..0ea6d7733 100644 --- a/copi.owasp.org/SECURITY.md +++ b/copi.owasp.org/SECURITY.md @@ -92,7 +92,7 @@ Users who exceed rate limits receive clear, informative error messages: ``` Rate limit exceeded. Too many games created from your IP address. -Please try again in 3456 seconds. +Please try again in 3600 seconds. This limit helps ensure service availability for all users. ``` From 87afaf750ed84a7e0000c32b269797f8ea7e9c36 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Wed, 24 Dec 2025 23:24:43 +0100 Subject: [PATCH 37/61] Update copi.owasp.org/lib/copi/rate_limiter.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/lib/copi/rate_limiter.ex | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/copi.owasp.org/lib/copi/rate_limiter.ex b/copi.owasp.org/lib/copi/rate_limiter.ex index 1f4e88239..44a67fbd9 100644 --- a/copi.owasp.org/lib/copi/rate_limiter.ex +++ b/copi.owasp.org/lib/copi/rate_limiter.ex @@ -124,10 +124,11 @@ defmodule Copi.RateLimiter do ip_requests = get_ip_requests(state, ip_address, action) updated_requests = [now | ip_requests] - new_requests = put_in( + new_requests = Map.update( state.requests, - [ip_address, action], - updated_requests + ip_address, + %{action => updated_requests}, + fn actions -> Map.put(actions, action, updated_requests) end ) {:noreply, %{state | requests: new_requests}} From 800d1126b95cc10d094259040e98c6af513b76f6 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Wed, 24 Dec 2025 23:25:10 +0100 Subject: [PATCH 38/61] Update copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex index 2656ec63c..cb07914b5 100644 --- a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex +++ b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex @@ -43,8 +43,8 @@ defmodule CopiWeb.Plugs.RateLimiter do [] -> case conn.remote_ip do {a, b, c, d} -> "#{a}.#{b}.#{c}.#{d}" - {a, b, c, d, e, f, g, h} -> - "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + {a, b, c, d, e, f, g, h} -> + :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() _ -> "unknown" end end From ab9b6fba73cc4d284d603604781a698da603e9f0 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Wed, 24 Dec 2025 23:25:57 +0100 Subject: [PATCH 39/61] Update copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex index 1929d57fe..83ebd44e8 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex @@ -144,7 +144,7 @@ defmodule CopiWeb.GameLive.CreateGameForm do case get_connect_info(socket, :peer_data) do %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" %{address: {a, b, c, d, e, f, g, h}} -> - "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() _ -> "unknown" end end From 0198d8344960c9a5d5efbd150328940f4f355491 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Wed, 24 Dec 2025 23:27:18 +0100 Subject: [PATCH 40/61] Update copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- .../lib/copi_web/plugs/rate_limiter.ex | 22 ++++++------------- 1 file changed, 7 insertions(+), 15 deletions(-) diff --git a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex index cb07914b5..b8b088b62 100644 --- a/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex +++ b/copi.owasp.org/lib/copi_web/plugs/rate_limiter.ex @@ -32,21 +32,13 @@ defmodule CopiWeb.Plugs.RateLimiter do end defp get_ip_address(conn) do - # Try to get real IP from common headers (for reverse proxies) - case get_req_header(conn, "x-forwarded-for") do - [forwarded | _] -> - forwarded - |> String.split(",") - |> List.first() - |> String.trim() - - [] -> - case conn.remote_ip do - {a, b, c, d} -> "#{a}.#{b}.#{c}.#{d}" - {a, b, c, d, e, f, g, h} -> - :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() - _ -> "unknown" - end + # Always use conn.remote_ip, which is set by Plug.RemoteIp if present in the plug pipeline. + # Ensure Plug.RemoteIp is used with a properly configured :proxies list for safe client IP extraction. + case conn.remote_ip do + {a, b, c, d} -> "#{a}.#{b}.#{c}.#{d}" + {a, b, c, d, e, f, g, h} -> + "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" + _ -> "unknown" end end From b0b9e4c47e56aab8d166ac89b8dbe987aabe75d8 Mon Sep 17 00:00:00 2001 From: Uncle Joe <1244005+sydseter@users.noreply.github.com> Date: Wed, 24 Dec 2025 23:28:03 +0100 Subject: [PATCH 41/61] Update copi.owasp.org/test/copi/rate_limiter_test.exs Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --- copi.owasp.org/test/copi/rate_limiter_test.exs | 14 -------------- 1 file changed, 14 deletions(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 9509c2a6d..f4eaa4437 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -3,20 +3,6 @@ defmodule Copi.RateLimiterTest do alias Copi.RateLimiter - setup do - # Start the RateLimiter for testing - {:ok, pid} = RateLimiter.start_link([]) - - # Clear any existing state - RateLimiter.clear_ip("127.0.0.1") - - on_exit(fn -> - if Process.alive?(pid), do: GenServer.stop(pid) - end) - - :ok - end - describe "game creation rate limiting" do test "allows requests under the limit" do ip = "127.0.0.1" From 491830953372a4980dc90931614614a7643571c9 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 31 Jan 2026 05:06:26 -0800 Subject: [PATCH 42/61] Fixed rate limiter issues: add atomic check_and_record, use IPHelper, store IP in assigns, fix tests - Added atomic check_and_record() function to prevent race conditions (TOCTOU) - Created IPHelper module for DRY IP extraction with proper error handling - Store IP address in socket assigns during mount to avoid connect_info access errors - Used Map.update() instead of put_in() to safely handle new IPs - Updated all rate limiting code to use check_and_record atomically - Fixed tests: change to async: false, use unique IPs, use check_and_record - Adedd comprehensive IP helper tests - Removde duplicate get_connect_ip() functions --- copi.owasp.org/lib/copi/rate_limiter.ex | 49 ++++++++++++ .../lib/copi_web/helpers/ip_helper.ex | 40 ++++++++++ .../live/game_live/create_game_form.ex | 16 +--- .../lib/copi_web/live/game_live/index.ex | 20 ++--- .../live/player_live/form_component.ex | 16 +--- .../lib/copi_web/live/player_live/index.ex | 3 +- .../test/copi/rate_limiter_test.exs | 79 +++++++++---------- .../test/copi_web/helpers/ip_helper_test.exs | 57 +++++++++++++ 8 files changed, 197 insertions(+), 83 deletions(-) create mode 100644 copi.owasp.org/lib/copi_web/helpers/ip_helper.ex create mode 100644 copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs diff --git a/copi.owasp.org/lib/copi/rate_limiter.ex b/copi.owasp.org/lib/copi/rate_limiter.ex index 44a67fbd9..d8baf6faa 100644 --- a/copi.owasp.org/lib/copi/rate_limiter.ex +++ b/copi.owasp.org/lib/copi/rate_limiter.ex @@ -36,6 +36,16 @@ defmodule Copi.RateLimiter do GenServer.cast(__MODULE__, {:record_action, ip_address, action}) end + @doc """ + Atomically checks and records an action if allowed. + This prevents race conditions where multiple requests could bypass the rate limit. + + Returns `{:ok, remaining}` if allowed and recorded, `{:error, :rate_limited, retry_after}` if blocked. + """ + def check_and_record(ip_address, action) when action in [:game_creation, :player_creation, :connection] do + GenServer.call(__MODULE__, {:check_and_record, ip_address, action}) + end + @doc """ Clears all rate limit data for an IP address (useful for testing). """ @@ -112,6 +122,45 @@ defmodule Copi.RateLimiter do end end + @impl true + def handle_call({:check_and_record, ip_address, action}, _from, state) do + now = System.system_time(:second) + config = state.config[action] + + ip_requests = get_ip_requests(state, ip_address, action) + + # Filter out expired requests + valid_requests = Enum.filter(ip_requests, fn timestamp -> + now - timestamp < config.window_seconds + end) + + count = length(valid_requests) + remaining = max(0, config.max_requests - count - 1) # -1 because we're about to record + + if count < config.max_requests do + # Atomically record the action before returning success + updated_requests = [now | valid_requests] + new_requests = Map.update( + state.requests, + ip_address, + %{action => updated_requests}, + fn actions -> Map.put(actions, action, updated_requests) end + ) + + {:reply, {:ok, remaining}, %{state | requests: new_requests}} + else + oldest_request = List.first(valid_requests) + retry_after = oldest_request + config.window_seconds - now + + Logger.warning( + "Rate limit exceeded for IP #{inspect(ip_address)}, action: #{action}, " <> + "count: #{count}/#{config.max_requests}, retry_after: #{retry_after}s" + ) + + {:reply, {:error, :rate_limited, retry_after}, state} + end + end + @impl true def handle_call(:get_config, _from, state) do {:reply, state.config, state} diff --git a/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex b/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex new file mode 100644 index 000000000..c87f028b4 --- /dev/null +++ b/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex @@ -0,0 +1,40 @@ +defmodule CopiWeb.Helpers.IPHelper do + @moduledoc """ + Helper functions for extracting and formatting IP addresses from socket connections. + """ + + @doc """ + Extracts the IP address from a LiveView socket connection. + + Returns a string representation of the IP address (IPv4 or IPv6). + Raises an error if the IP address cannot be determined, as this should never + happen in a properly configured backend environment. + + ## Examples + + iex> get_connect_ip(socket) + "192.168.1.1" + + iex> get_connect_ip(socket) + "2001:db8::1" + """ + def get_connect_ip(socket) do + case Phoenix.LiveView.get_connect_info(socket, :peer_data) do + %{address: {a, b, c, d}} -> + # IPv4 address + "#{a}.#{b}.#{c}.#{d}" + + %{address: {a, b, c, d, e, f, g, h}} -> + # IPv6 address - format as colon-separated hex + [a, b, c, d, e, f, g, h] + |> Enum.map(&Integer.to_string(&1, 16)) + |> Enum.join(":") + + nil -> + raise "Unable to determine IP address from socket connection. peer_data is nil." + + other -> + raise "Unexpected peer_data format: #{inspect(other)}" + end + end +end diff --git a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex index 83ebd44e8..f585ed85a 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex @@ -108,15 +108,13 @@ defmodule CopiWeb.GameLive.CreateGameForm do defp save_game(socket, :new, game_params) do # Get the IP address for rate limiting - ip_address = get_connect_ip(socket) + ip_address = socket.assigns.ip_address - # Check rate limit before creating game - case Copi.RateLimiter.check_rate(ip_address, :game_creation) do + # Check and record rate limit atomically + case Copi.RateLimiter.check_and_record(ip_address, :game_creation) do {:ok, _remaining} -> case Cornucopia.create_game(game_params) do {:ok, game} -> - # Record the action after successful creation - Copi.RateLimiter.record_action(ip_address, :game_creation) {:noreply, socket @@ -140,12 +138,4 @@ defmodule CopiWeb.GameLive.CreateGameForm do end end - defp get_connect_ip(socket) do - case get_connect_info(socket, :peer_data) do - %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" - %{address: {a, b, c, d, e, f, g, h}} -> - :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() - _ -> "unknown" - end - end end diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.ex b/copi.owasp.org/lib/copi_web/live/game_live/index.ex index ef49ed0ae..6fa924961 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.ex @@ -8,12 +8,15 @@ defmodule CopiWeb.GameLive.Index do @impl true def mount(_params, _session, socket) do # Rate limit WebSocket connections - ip_address = get_connect_ip(socket) + ip_address = CopiWeb.Helpers.IPHelper.get_connect_ip(socket) - case Copi.RateLimiter.check_rate(ip_address, :connection) do + case Copi.RateLimiter.check_and_record(ip_address, :connection) do {:ok, _remaining} -> - Copi.RateLimiter.record_action(ip_address, :connection) - {:ok, assign(socket, :games, nil)} + if connected?(socket) do + Phoenix.PubSub.subscribe(Copi.PubSub, "games") + end + + {:ok, assign(socket, games: list_games(), ip_address: ip_address)} {:error, :rate_limited, retry_after} -> {:ok, @@ -61,13 +64,4 @@ defmodule CopiWeb.GameLive.Index do {:noreply, assign(socket, :games, new_state)} end - defp get_connect_ip(socket) do - case get_connect_info(socket, :peer_data) do - %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" - %{address: {a, b, c, d, e, f, g, h}} -> - :inet.ntoa({a, b, c, d, e, f, g, h}) |> to_string() - _ -> "unknown" - end - end - end diff --git a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex index 45587125f..fa40f77d2 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex @@ -75,15 +75,13 @@ defmodule CopiWeb.PlayerLive.FormComponent do defp save_player(socket, :new, player_params) do # Get the IP address for rate limiting - ip_address = get_connect_ip(socket) + ip_address = socket.assigns.ip_address - # Check rate limit before creating player - case Copi.RateLimiter.check_rate(ip_address, :player_creation) do + # Check and record rate limit atomically + case Copi.RateLimiter.check_and_record(ip_address, :player_creation) do {:ok, _remaining} -> case Cornucopia.create_player(player_params) do {:ok, player} -> - # Record the action after successful creation - Copi.RateLimiter.record_action(ip_address, :player_creation) {:ok, updated_game} = Cornucopia.Game.find(socket.assigns.player.game_id) CopiWeb.Endpoint.broadcast(topic(updated_game.id), "game:updated", updated_game) @@ -114,12 +112,4 @@ defmodule CopiWeb.PlayerLive.FormComponent do "game:#{game_id}" end - defp get_connect_ip(socket) do - case get_connect_info(socket, :peer_data) do - %{address: {a, b, c, d}} -> "#{a}.#{b}.#{c}.#{d}" - %{address: {a, b, c, d, e, f, g, h}} -> - "#{Integer.to_string(a, 16)}:#{Integer.to_string(b, 16)}:#{Integer.to_string(c, 16)}:#{Integer.to_string(d, 16)}:#{Integer.to_string(e, 16)}:#{Integer.to_string(f, 16)}:#{Integer.to_string(g, 16)}:#{Integer.to_string(h, 16)}" - _ -> "unknown" - end - end end diff --git a/copi.owasp.org/lib/copi_web/live/player_live/index.ex b/copi.owasp.org/lib/copi_web/live/player_live/index.ex index d13715d41..8f7308970 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/index.ex @@ -6,7 +6,8 @@ defmodule CopiWeb.PlayerLive.Index do @impl true def mount(%{"game_id" => game_id}, _session, socket) do - {:ok, assign(socket, players: list_players(game_id), game: Cornucopia.get_game!(game_id))} + ip_address = CopiWeb.Helpers.IPHelper.get_connect_ip(socket) + {:ok, assign(socket, players: list_players(game_id), game: Cornucopia.get_game!(game_id), ip_address: ip_address)} end @impl true diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index f4eaa4437..4b03bf548 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -1,147 +1,140 @@ defmodule Copi.RateLimiterTest do - use ExUnit.Case, async: true + use ExUnit.Case, async: false alias Copi.RateLimiter + setup do + # Tests run sequentially and use unique IPs to avoid conflicts + :ok + end + describe "game creation rate limiting" do test "allows requests under the limit" do - ip = "127.0.0.1" + ip = "127.0.0.#{:rand.uniform(255)}" # First request should be allowed - assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) assert remaining >= 0 - RateLimiter.record_action(ip, :game_creation) - # Second request should still be allowed - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) end test "blocks requests over the limit" do - ip = "192.168.1.100" + ip = "192.168.1.#{:rand.uniform(255)}" config = RateLimiter.get_config() max_games = config.game_creation.max_requests # Make max_requests number of game creations for _i <- 1..max_games do - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) - RateLimiter.record_action(ip, :game_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) end # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :game_creation) + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) assert retry_after > 0 end test "different IPs have independent limits" do - ip1 = "10.0.0.1" - ip2 = "10.0.0.2" + ip1 = "10.0.0.#{:rand.uniform(255)}" + ip2 = "10.0.1.#{:rand.uniform(255)}" config = RateLimiter.get_config() max_games = config.game_creation.max_requests # Exhaust limit for ip1 for _i <- 1..max_games do - RateLimiter.check_rate(ip1, :game_creation) - RateLimiter.record_action(ip1, :game_creation) + RateLimiter.check_and_record(ip1, :game_creation) end # ip1 should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_rate(ip1, :game_creation) + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) # ip2 should still be allowed - assert {:ok, _remaining} = RateLimiter.check_rate(ip2, :game_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) end end describe "connection rate limiting" do test "allows connections under the limit" do - ip = "172.16.0.1" + ip = "172.16.0.#{:rand.uniform(255)}" - assert {:ok, remaining} = RateLimiter.check_rate(ip, :connection) + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) assert remaining >= 0 - RateLimiter.record_action(ip, :connection) - - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :connection) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) end test "blocks connections over the limit" do - ip = "172.16.0.2" + ip = "172.16.1.#{:rand.uniform(255)}" config = RateLimiter.get_config() max_connections = config.connection.max_requests # Make max_requests number of connections for _i <- 1..max_connections do - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :connection) - RateLimiter.record_action(ip, :connection) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) end # Next connection should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :connection) + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) assert retry_after > 0 end end describe "player creation rate limiting" do test "allows player creation under the limit" do - ip = "192.168.2.1" + ip = "192.168.2.#{:rand.uniform(255)}" - assert {:ok, remaining} = RateLimiter.check_rate(ip, :player_creation) + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) assert remaining >= 0 - RateLimiter.record_action(ip, :player_creation) - - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) end test "blocks player creation over the limit" do - ip = "192.168.2.2" + ip = "192.168.3.#{:rand.uniform(255)}" config = RateLimiter.get_config() max_players = config.player_creation.max_requests # Make max_requests number of player creations for _i <- 1..max_players do - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) - RateLimiter.record_action(ip, :player_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) end # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_rate(ip, :player_creation) + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) assert retry_after > 0 end test "player creation limit is separate from game creation limit" do - ip = "192.168.2.3" + ip = "192.168.4.#{:rand.uniform(255)}" config = RateLimiter.get_config() max_games = config.game_creation.max_requests # Exhaust game creation limit for _i <- 1..max_games do - RateLimiter.check_rate(ip, :game_creation) - RateLimiter.record_action(ip, :game_creation) + RateLimiter.check_and_record(ip, :game_creation) end # Game creation should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_rate(ip, :game_creation) + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) # Player creation should still be allowed (separate limit) - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :player_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) end end describe "rate limit window expiration" do test "allows requests after window expires" do - ip = "192.168.100.1" + ip = "192.168.100.#{:rand.uniform(255)}" # This test would require waiting for the window to expire # In a real scenario, you might want to use a mock timer or # make the window configurable for testing - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) - RateLimiter.record_action(ip, :game_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) # Verify request was recorded - assert {:ok, _remaining} = RateLimiter.check_rate(ip, :game_creation) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) end end diff --git a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs new file mode 100644 index 000000000..3d28664d9 --- /dev/null +++ b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs @@ -0,0 +1,57 @@ +defmodule CopiWeb.Helpers.IPHelperTest do + use ExUnit.Case, async: true + + alias CopiWeb.Helpers.IPHelper + + describe "get_connect_ip/1" do + test "extracts IPv4 address from socket" do + # Test IPv4 formatting logic + peer_data = %{address: {192, 168, 1, 100}} + + {a, b, c, d} = peer_data.address + result = "#{a}.#{b}.#{c}.#{d}" + + assert result == "192.168.1.100" + end + + test "extracts IPv6 address from socket" do + # Test IPv6 formatting + peer_data = %{address: {8193, 3512, 0, 0, 0, 0, 0, 1}} + + {a, b, c, d, e, f, g, h} = peer_data.address + result = [a, b, c, d, e, f, g, h] + |> Enum.map(&Integer.to_string(&1, 16)) + |> Enum.join(":") + + assert result == "2001:DB8:0:0:0:0:0:1" + end + + test "formats IPv6 address with lowercase hex" do + # Test that hex formatting works correctly + peer_data = %{address: {0x2001, 0x0db8, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0001}} + + {a, b, c, d, e, f, g, h} = peer_data.address + result = [a, b, c, d, e, f, g, h] + |> Enum.map(&Integer.to_string(&1, 16)) + |> Enum.join(":") + + # Should be uppercase as Integer.to_string uses uppercase for hex + assert String.contains?(result, "2001") + end + + test "handles different IPv4 addresses" do + test_cases = [ + {127, 0, 0, 1} => "127.0.0.1", + {10, 0, 0, 1} => "10.0.0.1", + {172, 16, 254, 1} => "172.16.254.1", + {255, 255, 255, 255} => "255.255.255.255" + ] + + for {address, expected} <- test_cases do + {a, b, c, d} = address + result = "#{a}.#{b}.#{c}.#{d}" + assert result == expected + end + end + end +end From 378f5667e2596b5e9a0845ea13390b718a1d1b4d Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sat, 7 Feb 2026 15:24:54 +0545 Subject: [PATCH 43/61] docs: move RATE_LIMITING_IMPLEMENTATION.md to copi.owasp.org/ as requested by maintainer --- .../RATE_LIMITING_IMPLEMENTATION.md | 108 ++++++++++++++++++ 1 file changed, 108 insertions(+) create mode 100644 copi.owasp.org/RATE_LIMITING_IMPLEMENTATION.md diff --git a/copi.owasp.org/RATE_LIMITING_IMPLEMENTATION.md b/copi.owasp.org/RATE_LIMITING_IMPLEMENTATION.md new file mode 100644 index 000000000..d3bd75112 --- /dev/null +++ b/copi.owasp.org/RATE_LIMITING_IMPLEMENTATION.md @@ -0,0 +1,108 @@ +# Rate Limiting Implementation for Player Creation + +## Overview +This implementation addresses GitHub Issue #1877 by adding IP-based rate limiting for player creation, separate from the existing game creation rate limit, to protect against CAPEC 212 (Functionality Misuse) attacks. + +## Changes Made + +### 1. Rate Limiter Module (`lib/copi/rate_limiter.ex`) + +**Added player_creation action:** +- Updated `check_rate/2` to accept `:player_creation` action +- Updated `record_action/2` to accept `:player_creation` action +- Added player creation configuration with default limits: + - Maximum players per IP: 20 + - Time window: 3600 seconds (1 hour) + +**Configuration:** +```elixir +player_creation: %{ + max_requests: get_env(:max_players_per_ip, 20), + window_seconds: get_env(:player_creation_window_seconds, 3600) +} +``` + +### 2. Player Form Component (`lib/copi_web/live/player_live/form_component.ex`) + +**Added rate limiting to player creation:** +- Added `get_connect_ip/1` helper function to extract IP address from socket +- Modified `save_player/3` for `:new` action to: + 1. Get the connecting IP address + 2. Check rate limit before creating player + 3. Only create player if rate limit is not exceeded + 4. Record the action after successful creation + 5. Display user-friendly error message if rate limited + +**Error message shown to users:** +``` +"Rate limit exceeded. Too many players created from your IP address. +Please try again in X seconds. This limit helps ensure service +availability for all users." +``` + +### 3. Tests (`test/copi/rate_limiter_test.exs`) + +**Added comprehensive test coverage:** +- Test that player creation is allowed under the limit +- Test that player creation is blocked when limit is exceeded +- Test that player creation limit is separate from game creation limit +- Updated configuration test to verify player_creation config exists + +## Key Features + +### Separate Limits +The player creation rate limit is maintained **separately** from the game creation rate limit. This means: +- An IP that has exhausted its game creation quota can still create players +- An IP that has exhausted its player creation quota can still create games +- Each limit is tracked independently in the GenServer state + +### Configurable Limits +The limits can be configured via application environment: +```elixir +config :copi, Copi.RateLimiter, + max_players_per_ip: 20, + player_creation_window_seconds: 3600 +``` + +### User-Friendly Error Handling +When rate limited, users receive: +- Clear explanation of why they were blocked +- Time until they can try again (retry_after in seconds) +- Explanation that this protects service availability + +## Security Benefits + +1. **CAPEC 212 Mitigation**: Prevents functionality misuse by limiting the rate of player creation from a single IP +2. **DoS Protection**: Helps maintain service availability under attack +3. **Resource Conservation**: Prevents database and system resource exhaustion +4. **Granular Control**: Separate limits allow fine-tuned protection for different actions + +## Default Limits Summary + +| Action | Max Requests | Time Window | +|--------|--------------|-------------| +| Game Creation | 10 | 1 hour | +| Player Creation | 20 | 1 hour | +| Connection | 50 | 5 minutes | + +## Testing + +Run the test suite: +```bash +mix test test/copi/rate_limiter_test.exs +``` + +All tests should pass, including the new player creation rate limiting tests. + +## Future Enhancements + +As mentioned in the issue, if this is still insufficient, the next step would be: +- Implement authentication +- Associate rate limits with user accounts in addition to IP addresses +- Track browser fingerprints along with IP addresses + +--- + +**Issue Reference:** OWASP/cornucopia#1877 +**Related Security Control:** CAPEC-212 (Functionality Misuse) +**Implemented by:** @immortal71 From 021d68e6288d112031b6857e5fee5dd71340856c Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sat, 7 Feb 2026 15:25:28 +0545 Subject: [PATCH 44/61] docs: remove RATE_LIMITING_IMPLEMENTATION.md from root (moved to copi.owasp.org/) --- RATE_LIMITING_IMPLEMENTATION.md | 108 -------------------------------- 1 file changed, 108 deletions(-) delete mode 100644 RATE_LIMITING_IMPLEMENTATION.md diff --git a/RATE_LIMITING_IMPLEMENTATION.md b/RATE_LIMITING_IMPLEMENTATION.md deleted file mode 100644 index d3bd75112..000000000 --- a/RATE_LIMITING_IMPLEMENTATION.md +++ /dev/null @@ -1,108 +0,0 @@ -# Rate Limiting Implementation for Player Creation - -## Overview -This implementation addresses GitHub Issue #1877 by adding IP-based rate limiting for player creation, separate from the existing game creation rate limit, to protect against CAPEC 212 (Functionality Misuse) attacks. - -## Changes Made - -### 1. Rate Limiter Module (`lib/copi/rate_limiter.ex`) - -**Added player_creation action:** -- Updated `check_rate/2` to accept `:player_creation` action -- Updated `record_action/2` to accept `:player_creation` action -- Added player creation configuration with default limits: - - Maximum players per IP: 20 - - Time window: 3600 seconds (1 hour) - -**Configuration:** -```elixir -player_creation: %{ - max_requests: get_env(:max_players_per_ip, 20), - window_seconds: get_env(:player_creation_window_seconds, 3600) -} -``` - -### 2. Player Form Component (`lib/copi_web/live/player_live/form_component.ex`) - -**Added rate limiting to player creation:** -- Added `get_connect_ip/1` helper function to extract IP address from socket -- Modified `save_player/3` for `:new` action to: - 1. Get the connecting IP address - 2. Check rate limit before creating player - 3. Only create player if rate limit is not exceeded - 4. Record the action after successful creation - 5. Display user-friendly error message if rate limited - -**Error message shown to users:** -``` -"Rate limit exceeded. Too many players created from your IP address. -Please try again in X seconds. This limit helps ensure service -availability for all users." -``` - -### 3. Tests (`test/copi/rate_limiter_test.exs`) - -**Added comprehensive test coverage:** -- Test that player creation is allowed under the limit -- Test that player creation is blocked when limit is exceeded -- Test that player creation limit is separate from game creation limit -- Updated configuration test to verify player_creation config exists - -## Key Features - -### Separate Limits -The player creation rate limit is maintained **separately** from the game creation rate limit. This means: -- An IP that has exhausted its game creation quota can still create players -- An IP that has exhausted its player creation quota can still create games -- Each limit is tracked independently in the GenServer state - -### Configurable Limits -The limits can be configured via application environment: -```elixir -config :copi, Copi.RateLimiter, - max_players_per_ip: 20, - player_creation_window_seconds: 3600 -``` - -### User-Friendly Error Handling -When rate limited, users receive: -- Clear explanation of why they were blocked -- Time until they can try again (retry_after in seconds) -- Explanation that this protects service availability - -## Security Benefits - -1. **CAPEC 212 Mitigation**: Prevents functionality misuse by limiting the rate of player creation from a single IP -2. **DoS Protection**: Helps maintain service availability under attack -3. **Resource Conservation**: Prevents database and system resource exhaustion -4. **Granular Control**: Separate limits allow fine-tuned protection for different actions - -## Default Limits Summary - -| Action | Max Requests | Time Window | -|--------|--------------|-------------| -| Game Creation | 10 | 1 hour | -| Player Creation | 20 | 1 hour | -| Connection | 50 | 5 minutes | - -## Testing - -Run the test suite: -```bash -mix test test/copi/rate_limiter_test.exs -``` - -All tests should pass, including the new player creation rate limiting tests. - -## Future Enhancements - -As mentioned in the issue, if this is still insufficient, the next step would be: -- Implement authentication -- Associate rate limits with user accounts in addition to IP addresses -- Track browser fingerprints along with IP addresses - ---- - -**Issue Reference:** OWASP/cornucopia#1877 -**Related Security Control:** CAPEC-212 (Functionality Misuse) -**Implemented by:** @immortal71 From ff372b991386bca9d09070fb6019dcf8d5152095 Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sat, 7 Feb 2026 16:22:48 +0545 Subject: [PATCH 45/61] revert: restore Pipfile, Dockerfile, and package.json to match OWASP:master (not related to rate limiting task) --- Dockerfile | 34 +++++++++++++++---------------- Pipfile | 14 ++++++------- cornucopia.owasp.org/package.json | 27 +++++++++++++----------- 3 files changed, 39 insertions(+), 36 deletions(-) diff --git a/Dockerfile b/Dockerfile index 079bc6935..dff68dfa6 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM python:alpine3.20@sha256:40a4559d3d6b2117b1fbe426f17d55b9100fa40609733a1d0c3f39e2151d4b33 AS pipenv +FROM python:3.12.12-alpine3.22@sha256:d82291d418d5c47f267708393e40599ae836f2260b0519dd38670e9d281657f5 AS pipenv RUN apk add --no-cache shadow # UID of current user who runs the build ARG user_id @@ -10,29 +10,29 @@ ARG home # create group and user to match permmisions of current who runs the build ARG workdir WORKDIR ${workdir} -RUN groupmod -g 64 dialout \ - && addgroup -S -g "${group_id}" union \ - && groupmod -g 2999 ping \ - && mkdir -p "${home}" \ - && adduser -S -u "${user_id}" -h "${home}" -s "/bin/bash" -G union builder +RUN groupmod -g 64 dialout && + addgroup -S -g "${group_id}" union && + groupmod -g 2999 ping && + mkdir -p "${home}" && + adduser -S -u "${user_id}" -h "${home}" -s "/bin/bash" -G union builder # Add pip and build requirements RUN apk add --no-cache \ - bash \ - curl \ - docker \ - gcc \ - git \ - libc-dev \ - make + bash \ + curl \ + docker \ + gcc \ + git \ + libc-dev \ + make COPY --chown=builder:union requirements.txt ./ -RUN pip install -r requirements.txt --require-hashes +RUN pip install --no-cache-dir -r requirements.txt --require-hashes USER builder # Install Python dependencies so they are cached ARG workdir WORKDIR ${workdir} COPY --chown=builder:union Pipfile Pipfile.lock ./ -RUN pipenv --python "$(which python)" install --ignore-pipfile --dev +RUN pipenv --python "$(which python)" install --no-cache-dir --ignore-pipfile --dev ENTRYPOINT ["/usr/local/bin/pipenv"] -FROM mvdan/shfmt@sha256:e414177e424692cd21a5113216edeeeb56fc76b0ed2e5eb3a6c48404d5548a76 AS shfmt -ENTRYPOINT ["/bin/shfmt"] \ No newline at end of file +FROM mvdan/shfmt@sha256:caa0324bdba08f42452a19e6a8462dda9852a1e43ad16185ec3d1ad66524a504 AS shfmt +ENTRYPOINT ["/bin/shfmt"] diff --git a/Pipfile b/Pipfile index bdf79fd0a..53306305f 100644 --- a/Pipfile +++ b/Pipfile @@ -4,29 +4,29 @@ url = "https://pypi.org/simple" verify_ssl = true [dev-packages] -black = "==25.12.0" -coverage = "==7.13.0" +black = "==26.1.0" +coverage = "==7.13.3" flake8 = "==7.3.0" httpretty = "==1.1.4" -mypy = "==1.19.0" +mypy = "==1.19.1" pytest = "==9.0.2" pytest-cov = "==7.0.0" freezegun = "==1.5.5" security = "==1.3.1" +types-pyyaml = "==6.0.12.20250915" [packages] idna = "==3.11" pypng = "==0.20220715.0" qrcode = "==8.2" requests = "==2.32.5" -types-requests = "==2.32.4.20250913" +types-requests = "==2.32.4.20260107" typing_extensions = "==4.8.0" -urllib3 = "==2.6.2" +urllib3 = "==2.6.3" charset-normalizer = "==3.4.4" python-docx = "==1.1.0" PyYAML = "==6.0.1" pyqrcode = "==1.2.1" -types-PyYAML = "==6.0.12.12" docx2pdf = "==0.1.8" lxml = "==6.0.1" defusedxml = "==0.7.1" @@ -37,4 +37,4 @@ colorama = "*" mypy = "*" [requires] -python_version = "3.11" +python_version = "3.12" diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 2c49fc3ba..2518d5518 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -12,24 +12,27 @@ "check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json", "check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch", "test": "vitest", - "coverage": "vitest run --coverage" + "coverage": "vitest run --coverage", + "smoke-test": "node ./script/smoke-test.js" }, "devDependencies": { "@sveltejs/adapter-auto": "^7.0.0", - "@sveltejs/adapter-cloudflare": "^5.0.1", - "@sveltejs/kit": "^2.49.2", - "@sveltejs/vite-plugin-svelte": "^4.0.4", - "@types/node": "^25.0.1", - "@vitest/coverage-v8": "^3.1.4", - "dotenv": "^17.2.3", - "svelte": "^5.45.10", - "svelte-check": "^4.3.4", + "@sveltejs/adapter-cloudflare": "^7.2.6", + "@sveltejs/kit": "^2.50.2", + "@sveltejs/vite-plugin-svelte": "^6.2.4", + "@types/node": "^25.2.1", + "@vitest/coverage-v8": "^4.0.17", + "dotenv": "^17.2.4", + "svelte": "^5.49.2", + "svelte-check": "^4.3.6", "svelte-sitemap": "^2.7.1", "then-request": "^6.0.2", "tslib": "^2.8.1", "typescript": "^5.9.3", - "vite": "^5.4.21", - "vitest": "^3.2.4" + "vite": "^7.3.1", + "vitest": "^4.0.17", + "serve": "^14.2.4", + "wait-on": "^8.0.2" }, "type": "module", "dependencies": { @@ -43,7 +46,7 @@ "sveltekit-i18n": "^2.4.2", "sync-request": "^6.1.0", "vite-plugin-restart": "^2.0.0", - "vite-plugin-static-copy": "^3.1.4" + "vite-plugin-static-copy": "^3.2.0" }, "pnpm": { "auditConfig": { From 3d4d6e304d822baf8098ab5dfeaa28026c78c71c Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 05:04:55 -0800 Subject: [PATCH 46/61] revert: removed unrelated changes from workflows and dependency files Removed changes from files not related to rate limiting implementation: - 16 workflow files in .github/workflows/ - Pipfile.lock, requirements.txt, install_cornucopia_deps.txt - cornucopia.owasp.org/package.json, pnpm-lock.yaml, about/en/index.md - copi.owasp.org/README.md, mix.lock As requested by maintainer @sydseter - keeping only rate limiting related changes --- .github/workflows/build-website-staging.yml | 32 +- .github/workflows/build-website.yml | 34 +- .github/workflows/codeql.yml | 8 +- .github/workflows/copi-build.yml | 24 +- .github/workflows/copi-deploy-production.yml | 2 +- .github/workflows/copi-deploy-staging.yml | 8 +- .github/workflows/dependency-review.yml | 4 +- .../workflows/deploy-website-production.yml | 6 +- .github/workflows/deploy-website-staging.yml | 6 +- .github/workflows/hardening.yaml | 2 +- .github/workflows/pre-release.yml | 13 +- .github/workflows/release.yml | 6 +- .github/workflows/run-tests-for-patches.yaml | 11 +- .../workflows/run-tests-generate-output.yaml | 46 +- .github/workflows/run-tests.yaml | 8 +- .github/workflows/scorecard.yml | 10 +- Pipfile.lock | 1041 +++++----- copi.owasp.org/README.md | 161 +- copi.owasp.org/mix.lock | 18 +- .../data/website/pages/about/en/index.md | 59 +- cornucopia.owasp.org/package.json | 2 +- cornucopia.owasp.org/pnpm-lock.yaml | 1801 +++++++++-------- install_cornucopia_deps.txt | 22 +- requirements.txt | 17 +- 24 files changed, 1792 insertions(+), 1549 deletions(-) diff --git a/.github/workflows/build-website-staging.yml b/.github/workflows/build-website-staging.yml index 41cb4b6a1..d0943ab5a 100644 --- a/.github/workflows/build-website-staging.yml +++ b/.github/workflows/build-website-staging.yml @@ -16,7 +16,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 + uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 with: egress-policy: block allowed-endpoints: > @@ -29,14 +29,14 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 name: Install pnpm with: version: 10.0.0 run_install: false - name: Install Node.js - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 + uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0 with: node-version: 20.18.2 - name: Build @@ -45,13 +45,37 @@ pnpm install # Install dependencies npm run build-stage # Build staging version npm run coverage + + + - name: Install smoke test tools + working-directory: cornucopia.owasp.org + run: | + pnpm add -D serve wait-on + + - name: Smoke test + working-directory: cornucopia.owasp.org + run: | + pnpm exec serve build -l 3000 & + sleep 2 + pnpm exec wait-on http://localhost:3000 + + - name: Smoke test + working-directory: cornucopia.owasp.org + run: | + pnpm exec serve build & + pnpm exec wait-on http://localhost:3000 + npm run smoke-test + kill $(jobs -p) || true + # Upload Code Coverage for Codeclimate - uses: qltysh/qlty-action/coverage@a19242102d17e497f437d7466aa01b528537e899 # v2.2.0 with: token: ${{ secrets.QLTY_COVERAGE_TOKEN }} + total-parts-count: 3 + add-prefix: cornucopia.owasp.org files: cornucopia.owasp.org/coverage/lcov.info - name: Archive production artifacts - uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 + uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 with: retention-days: 1 name: cornucopia-staging-build-artifact-${{ github.sha }} diff --git a/.github/workflows/build-website.yml b/.github/workflows/build-website.yml index f99f10153..44aa98fe2 100644 --- a/.github/workflows/build-website.yml +++ b/.github/workflows/build-website.yml @@ -1,10 +1,8 @@ --- name: Build and Test the Cornucopia Website on: - pull_request: - paths: - - 'cornucopia.owasp.org/**' - - '.github/workflows/build-website.yml' + workflow_call: + workflow_dispatch: permissions: contents: read jobs: @@ -14,7 +12,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 + uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 with: egress-policy: block allowed-endpoints: > @@ -27,7 +25,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ github.event.pull_request.head.sha }} - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 @@ -37,7 +35,7 @@ run_install: false - name: Install Node.js - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 + uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0 with: node-version: 20.18.2 - name: Build @@ -45,4 +43,24 @@ run: | pnpm install # Install dependencies npm run build # Build production version - pnpm audit --prod \ No newline at end of file + pnpm audit --prod + pnpm run coverage + + - name: Smoke test + working-directory: cornucopia.owasp.org + run: | + pnpm exec serve build & + pnpm exec wait-on http://localhost:3000 + npm run smoke-test + + kill $(jobs -p) || true + + - name: Upload website coverage to Qlty + uses: qltysh/qlty-action/coverage@a19242102d17e497f437d7466aa01b528537e899 # v2.2.0 + with: + token: ${{ secrets.QLTY_COVERAGE_TOKEN }} + total-parts-count: 3 + add-prefix: cornucopia.owasp.org + files: cornucopia.owasp.org/coverage/lcov.info + kill $(jobs -p) || true + diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9fc0e9f73..3bc91b75d 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -45,11 +45,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 + uses: github/codeql-action/init@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v2.2.9 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -59,7 +59,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 + uses: github/codeql-action/autobuild@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v2.2.9 # ℹ️ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -72,6 +72,6 @@ jobs: # ./location_of_script_within_repo/buildscript.sh - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v2.2.9 + uses: github/codeql-action/analyze@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v2.2.9 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/copi-build.yml b/.github/workflows/copi-build.yml index 55889fa4c..40d3f46e3 100644 --- a/.github/workflows/copi-build.yml +++ b/.github/workflows/copi-build.yml @@ -1,14 +1,11 @@ --- name: Build and Test Copi on: - pull_request: - paths: - - 'copi.owasp.org/**' - - '.github/workflows/copi-build.yml' + workflow_call: workflow_dispatch: env: MIX_ENV: test - POSTGRES_TEST_PWD: ${{ secrets.POSTGRES_TEST_PWD }} + POSTGRES_TEST_PWD: POSTGRES_TEST_PWD permissions: contents: read jobs: @@ -19,14 +16,14 @@ image: postgres:14 env: POSTGRES_USER: postgres - POSTGRES_PASSWORD: ${{ secrets.POSTGRES_TEST_PWD }} + POSTGRES_PASSWORD: POSTGRES_TEST_PWD POSTGRES_DB: copi_test ports: - 5432:5432 options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5 steps: - - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ github.event.pull_request.head.sha }} - name: build project @@ -34,7 +31,7 @@ run: docker build -f ./Dockerfile . - name: Cache deps id: cache-deps - uses: actions/cache@a7833574556fa59680c1b7cb190c1735db73ebf0 # v5.0.0 + uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 env: cache-name: cache-elixir-deps with: @@ -64,4 +61,13 @@ run: mix ecto.reset - name: Run tests working-directory: copi.owasp.org - run: mix test + run: | + mix test --cover + mix coveralls.cobertura + - name: Upload Copi coverage to qlty + uses: qltysh/qlty-action/coverage@a19242102d17e497f437d7466aa01b528537e899 + with: + token: ${{ secrets.QLTY_COVERAGE_TOKEN }} + add-prefix: copi.owasp.org + total-parts-count: 3 + files: copi.owasp.org/cover/cobertura.xml diff --git a/.github/workflows/copi-deploy-production.yml b/.github/workflows/copi-deploy-production.yml index 7d51caaa7..fd114071d 100644 --- a/.github/workflows/copi-deploy-production.yml +++ b/.github/workflows/copi-deploy-production.yml @@ -10,7 +10,7 @@ deploy-to-prod: runs-on: ubuntu-latest # Or another supported runner steps: - - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Install Elixir and Erlang uses: erlef/setup-beam@e6d7c94229049569db56a7ad5a540c051a010af9 # v1.20.4 with: diff --git a/.github/workflows/copi-deploy-staging.yml b/.github/workflows/copi-deploy-staging.yml index 331002467..39d00cd5b 100644 --- a/.github/workflows/copi-deploy-staging.yml +++ b/.github/workflows/copi-deploy-staging.yml @@ -10,7 +10,7 @@ workflow_dispatch: env: MIX_ENV: test - POSTGRES_TEST_PWD: ${{ secrets.POSTGRES_TEST_PWD }} + POSTGRES_TEST_PWD: POSTGRES_TEST_PWD permissions: contents: read jobs: @@ -21,17 +21,17 @@ image: postgres:14 env: POSTGRES_USER: postgres - POSTGRES_PASSWORD: ${{ secrets.POSTGRES_TEST_PWD }} + POSTGRES_PASSWORD: POSTGRES_TEST_PWD POSTGRES_DB: copi_test ports: - 5432:5432 options: --health-cmd pg_isready --health-interval 10s --health-timeout 5s --health-retries 5 steps: - - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Cache deps id: cache-deps - uses: actions/cache@a7833574556fa59680c1b7cb190c1735db73ebf0 # v5.0.0 + uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3 env: cache-name: cache-elixir-deps with: diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 07dc350f2..372025929 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -21,7 +21,7 @@ jobs: needs: hardening steps: - name: 'Checkout Repository' - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: 'Dependency Review' uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 with: @@ -32,7 +32,7 @@ jobs: with: output: "./reports/bom.xml" - name: 'Upload SBOM' - uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 + uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 with: name: reports path: reports diff --git a/.github/workflows/deploy-website-production.yml b/.github/workflows/deploy-website-production.yml index 021ed591c..912822122 100644 --- a/.github/workflows/deploy-website-production.yml +++ b/.github/workflows/deploy-website-production.yml @@ -13,7 +13,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 + uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 with: egress-policy: block allowed-endpoints: > @@ -26,7 +26,7 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: pnpm/action-setup@41ff72655975bd51cab0327fa583b6e92b6d3061 # v4.2.0 name: Install pnpm with: @@ -34,7 +34,7 @@ run_install: false - name: Install Node.js - uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0 + uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0 with: node-version: 20.18.2 - name: Build diff --git a/.github/workflows/deploy-website-staging.yml b/.github/workflows/deploy-website-staging.yml index 140a9e524..4fb6b9e51 100644 --- a/.github/workflows/deploy-website-staging.yml +++ b/.github/workflows/deploy-website-staging.yml @@ -19,7 +19,7 @@ steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 + uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 with: egress-policy: block allowed-endpoints: > @@ -33,9 +33,9 @@ needs: hardening steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Download a single artifact - uses: actions/download-artifact@018cc2cf5baa6db3ef3c5f8a56943fffe632ef53 # v6.0.0 + uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0 with: name: cornucopia-staging-build-artifact-${{ github.sha }} path: cornucopia.owasp.org/build diff --git a/.github/workflows/hardening.yaml b/.github/workflows/hardening.yaml index bf73ca907..cdb344e64 100644 --- a/.github/workflows/hardening.yaml +++ b/.github/workflows/hardening.yaml @@ -11,7 +11,7 @@ jobs: steps: # Make sure we have some code to test - name: Harden runner - uses: step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0 + uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 with: egress-policy: block allowed-endpoints: > diff --git a/.github/workflows/pre-release.yml b/.github/workflows/pre-release.yml index ef483e020..79243b590 100644 --- a/.github/workflows/pre-release.yml +++ b/.github/workflows/pre-release.yml @@ -18,12 +18,12 @@ runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # Set the pip environment up - name: Get Python - uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: - python-version: '3.11' + python-version: '3.12' cache: 'pipenv' # caching pip dependencies - name: Install dependencies run: | @@ -38,14 +38,17 @@ - name: Check test coverage - run tests run: pipenv run coverage run -m unittest discover -s "tests/scripts" -p "*_*test.py" - name: Check test coverage - generate xml - run: pipenv run coverage xml + run: | + mkdir -p converter/coverage + pipenv run coverage xml -o converter/coverage/cobertura.xml - name: Check test coverage - Report run: pipenv run coverage report --fail-under 85 scripts/convert* # Upload Code COverage for Codeclimate - uses: qltysh/qlty-action/coverage@a19242102d17e497f437d7466aa01b528537e899 # v2.2.0 with: token: ${{ secrets.QLTY_COVERAGE_TOKEN }} - files: coverage.xml + total-parts-count: 3 + files: converter/coverage/cobertura.xml - name: Generate new output files run: | # diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 146eceef9..f7e3f2a67 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,12 +19,12 @@ runs-on: "ubuntu-latest" steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # Set the pip environment up - name: Get Python - uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: - python-version: '3.11' + python-version: '3.12' cache: 'pipenv' # caching pip dependencies - name: Install dependencies run: | diff --git a/.github/workflows/run-tests-for-patches.yaml b/.github/workflows/run-tests-for-patches.yaml index a59cd8690..056f216ad 100644 --- a/.github/workflows/run-tests-for-patches.yaml +++ b/.github/workflows/run-tests-for-patches.yaml @@ -14,5 +14,14 @@ jobs: name: Harden runner uses: ./.github/workflows/hardening.yaml call-run-tests: + name: Build and run Converter Tests needs: hardening - uses: ./.github/workflows/run-tests.yaml \ No newline at end of file + uses: ./.github/workflows/run-tests.yaml + call-run-website-tests: + name: Build and run Website Tests + needs: hardening + uses: ./.github/workflows/build-website.yml + call-run-build-copi-tests: + name: Build and run COPI Tests + needs: hardening + uses: ./.github/workflows/copi-build.yml \ No newline at end of file diff --git a/.github/workflows/run-tests-generate-output.yaml b/.github/workflows/run-tests-generate-output.yaml index ce4f6b767..123a01c64 100644 --- a/.github/workflows/run-tests-generate-output.yaml +++ b/.github/workflows/run-tests-generate-output.yaml @@ -1,8 +1,10 @@ name: Run Tests and generate output files # Controls when the workflow will run on: - # Triggers the workflow on push or pull request events but only for the main branch - pull_request: + # Triggers the workflow on pull request events + # Using pull_request_target allows the build artifacts link to be posted as a comment + # even for PRs from forked repositories. + pull_request_target: paths: - 'source/**' - 'scripts/convert**' @@ -31,33 +33,32 @@ jobs: artifact-url: ${{ steps.upload_artifact.outputs.artifact-url }} steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ github.event.pull_request.head.sha }} - - name: Create tmp branch for artifacts and get parent and object ref - id: find-target - env: - PR_NUMBER: ${{ github.event.number }} - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - BRANCH_NAME: ${{ github.event.pull_request.head.ref }} - run: | - echo "parent=`git rev-parse HEAD`" >> "$GITHUB_ENV" - echo "object_tree=`git write-tree`" >> "$GITHUB_ENV" - git switch --orphan "tmp-$BRANCH_NAME-artifacts" - - name: Checkout branch for pull request - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 - with: - ref: ${{ github.event.pull_request.head.ref }} + repository: ${{ github.event.pull_request.head.repo.full_name }} + persist-credentials: false # Set the pip environment up - name: Get Python - uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: - python-version: '3.11' + python-version: '3.12' cache: 'pipenv' # caching pip dependencies - name: Install dependencies run: | pip install -r requirements.txt --require-hashes pipenv install -d + - name: Generate test coverage + run: | + pipenv run coverage run -m unittest discover -s tests/scripts -p "*_*test.py" + mkdir -p converter/coverage + pipenv run coverage xml -o converter/coverage/cobertura.xml + - name: Upload test coverage to Qlty + uses: qltysh/qlty-action/coverage@a19242102d17e497f437d7466aa01b528537e899 # v2.2.0 + with: + token: ${{ secrets.QLTY_COVERAGE_TOKEN }} + total-parts-count: 3 + files: converter/coverage/cobertura.xml - name: Generate new output files run: | # @@ -132,10 +133,10 @@ jobs: - name: Upload output files id: upload_artifact - uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 + uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 with: retention-days: 5 - name: cornucopia-build-files.${{ github.sha }}.zip + name: cornucopia-build-files.${{ github.event.pull_request.head.sha }}.zip path: | output/cornucopia-build-files.zip commentpr: @@ -144,6 +145,7 @@ jobs: permissions: pull-requests: write contents: read + issues: write needs: uploadoutputfiles steps: - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0 @@ -156,7 +158,7 @@ jobs: | Name | Link | |------|------| - | Output files | [cornucopia-build-files.${{ github.sha }}.zip](${{needs.uploadoutputfiles.outputs.artifact-url}}) | + | Output files | [cornucopia-build-files.${{ github.event.pull_request.head.sha }}.zip](${{needs.uploadoutputfiles.outputs.artifact-url}}) | with: script: | diff --git a/.github/workflows/run-tests.yaml b/.github/workflows/run-tests.yaml index fe21eee9f..4a80f3783 100644 --- a/.github/workflows/run-tests.yaml +++ b/.github/workflows/run-tests.yaml @@ -14,14 +14,16 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: ref: ${{ github.event.pull_request.head.sha }} + repository: ${{ github.event.pull_request.head.repo.full_name }} + persist-credentials: false # Set the pip environment up - name: Get Python - uses: actions/setup-python@83679a892e2d95755f2dac6acb0bfd1e9ac5d548 # v6.1.0 + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: - python-version: '3.11' + python-version: '3.12' cache: 'pipenv' # caching pip dependencies - name: Install dependencies run: | diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 76cba3b36..34bb4c7c8 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -26,7 +26,7 @@ jobs: id-token: write steps: - name: "Checkout code" - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false @@ -49,7 +49,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5.0.0 + uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0 with: name: SARIF file path: results.sarif @@ -57,6 +57,10 @@ jobs: # required for Code scanning alerts - name: "Upload SARIF results to code scanning" - uses: github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v3.29.5 + + uses: github/codeql-action/upload-sarif@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v3.29.5 + + uses: github/codeql-action/upload-sarif@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v3.29.5 + with: sarif_file: results.sarif diff --git a/Pipfile.lock b/Pipfile.lock index cbf09a617..20cc6902e 100644 --- a/Pipfile.lock +++ b/Pipfile.lock @@ -1,11 +1,11 @@ { "_meta": { "hash": { - "sha256": "67bc4f529a7a81dd8dd0c7a99d98f5e2172e687b0f9adf7a0d850288a4e28ec3" + "sha256": "8c62d93889ef637fea1ec4f12fe4297eab614c76988049e76545bc60be5d4fc1" }, "pipfile-spec": 6, "requires": { - "python_version": "3.11" + "python_version": "3.12" }, "sources": [ { @@ -16,30 +16,13 @@ ] }, "default": { - "appscript": { - "hashes": [ - "sha256:11a19fdf690e359af634c32d5bec96afd3f8f5229cd2f1c332137ebcbf8fbe90", - "sha256:13094640e2694b888827d4e133f33dad1e08c9d7102b447c3cc8a73246fdab40", - "sha256:76a3507b27c78bf79af83a5f6fac49664b53d530d75632c023e53df1bd350caf", - "sha256:80943118bc97f9f78a8aa55f85565752ed4d82c7893427d7d9ebfdf401c12b2c", - "sha256:94ca097d672de5b8cfc82b4179b00cabd21588dbfd939347cf14a9e81955b2d5", - "sha256:a48338f9aad0f26f6f1e1d3a90685df771966b2c4f93374f92d7d90d69f3f745", - "sha256:c0b5c160908de728072d4a0ae57f286608c5d7692bfccbc6eadde868aac2742b", - "sha256:c39d9fdbe92dce3c731bce4b818d1e5776d03e8b18706ee25777b7446032a061", - "sha256:d2a287b81030c81017127d4fb1c24729623576c50d2ff41694476b9af3ce0a97", - "sha256:e7b4760105810e9b1ecd5b40aba7617e0a047346fb94ee4370e9d37e4383b78d", - "sha256:f40d8f82da4ac99ddacc7cf845df56c27a7fa190989fd0c1299eabfeef97add2" - ], - "markers": "sys_platform == 'darwin'", - "version": "==1.3.0" - }, "certifi": { "hashes": [ - "sha256:e564105f78ded564e3ae7c923924435e1daa7463faeab5bb932bc53ffae63407", - "sha256:f6c12493cfb1b06ba2ff328595af9350c65d6644968e5d3a2ffd78699af217a5" + "sha256:9943707519e4add1115f44c2bc244f782c0249876bf51b6599fee1ffbedd685c", + "sha256:ac726dd470482006e014ad384921ed6438c457018f4b3d204aea4281258b2120" ], "markers": "python_version >= '3.7'", - "version": "==2025.8.3" + "version": "==2026.1.4" }, "charset-normalizer": { "hashes": [ @@ -176,6 +159,7 @@ "sha256:a352e7e428770286cc899e2542b6cdaedb2b4953ff269a210103ec58f6198a61" ], "index": "pypi", + "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4'", "version": "==0.7.1" }, "docx2pdf": { @@ -198,85 +182,85 @@ }, "librt": { "hashes": [ - "sha256:04f8ce401d4f6380cfc42af0f4e67342bf34c820dae01343f58f472dbac75dcf", - "sha256:05f385a414de3f950886ea0aad8f109650d4b712cf9cc14cc17f5f62a9ab240b", - "sha256:0765b0fe0927d189ee14b087cd595ae636bef04992e03fe6dfdaa383866c8a46", - "sha256:078cd77064d1640cb7b0650871a772956066174d92c8aeda188a489b58495179", - "sha256:09262cb2445b6f15d09141af20b95bb7030c6f13b00e876ad8fdd1a9045d6aa5", - "sha256:0c74c26736008481c9f6d0adf1aedb5a52aff7361fea98276d1f965c0256ee70", - "sha256:0e0f2b79993fec23a685b3e8107ba5f8675eeae286675a216da0b09574fa1e47", - "sha256:10a95ad074e2a98c9e4abc7f5b7d40e5ecbfa84c04c6ab8a70fabf59bd429b88", - "sha256:14b345eb7afb61b9fdcdfda6738946bd11b8e0f6be258666b0646af3b9bb5916", - "sha256:17000df14f552e86877d67e4ab7966912224efc9368e998c96a6974a8d609bf9", - "sha256:1b51ba7d9d5d9001494769eca8c0988adce25d0a970c3ba3f2eb9df9d08036fc", - "sha256:1ef42ff4edd369e84433ce9b188a64df0837f4f69e3d34d3b34d4955c599d03f", - "sha256:25b1b60cb059471c0c0c803e07d0dfdc79e41a0a122f288b819219ed162672a3", - "sha256:26b8026393920320bb9a811b691d73c5981385d537ffc5b6e22e53f7b65d4122", - "sha256:324462fe7e3896d592b967196512491ec60ca6e49c446fe59f40743d08c97917", - "sha256:349b6873ebccfc24c9efd244e49da9f8a5c10f60f07575e248921aae2123fc42", - "sha256:36a8e337461150b05ca2c7bdedb9e591dfc262c5230422cea398e89d0c746cdc", - "sha256:36b2ec8c15030002c7f688b4863e7be42820d7c62d9c6eece3db54a2400f0530", - "sha256:38320386a48a15033da295df276aea93a92dfa94a862e06893f75ea1d8bbe89d", - "sha256:3ac2a7835434b31def8ed5355dd9b895bbf41642d61967522646d1d8b9681106", - "sha256:3caa0634c02d5ff0b2ae4a28052e0d8c5f20d497623dc13f629bd4a9e2a6efad", - "sha256:3e84a4121a7ae360ca4da436548a9c1ca8ca134a5ced76c893cc5944426164bd", - "sha256:3f0e4bd9bcb0ee34fa3dbedb05570da50b285f49e52c07a241da967840432513", - "sha256:4018904c83eab49c814e2494b4e22501a93cdb6c9f9425533fe693c3117126f9", - "sha256:408a36ddc75e91918cb15b03460bdc8a015885025d67e68c6f78f08c3a88f522", - "sha256:45660d26569cc22ed30adf583389d8a0d1b468f8b5e518fcf9bfe2cd298f9dd1", - "sha256:4aa4a93a353ccff20df6e34fa855ae8fd788832c88f40a9070e3ddd3356a9f0e", - "sha256:4bca9e4c260233fba37b15c4ec2f78aa99c1a79fbf902d19dd4a763c5c3fb751", - "sha256:514f3f363d1ebc423357d36222c37e5c8e6674b6eae8d7195ac9a64903722057", - "sha256:54f3b2177fb892d47f8016f1087d21654b44f7fc4cf6571c1c6b3ea531ab0fcf", - "sha256:57705e8eec76c5b77130d729c0f70190a9773366c555c5457c51eace80afd873", - "sha256:5cc22f7f5c0cc50ed69f4b15b9c51d602aabc4500b433aaa2ddd29e578f452f7", - "sha256:61348cc488b18d1b1ff9f3e5fcd5ac43ed22d3e13e862489d2267c2337285c08", - "sha256:64645b757d617ad5f98c08e07620bc488d4bced9ced91c6279cec418f16056fa", - "sha256:669ff2495728009a96339c5ad2612569c6d8be4474e68f3f3ac85d7c3261f5f5", - "sha256:6bac97e51f66da2ca012adddbe9fd656b17f7368d439de30898f24b39512f40f", - "sha256:6d46aa46aa29b067f0b8b84f448fd9719aaf5f4c621cc279164d76a9dc9ab3e8", - "sha256:71f0a5918aebbea1e7db2179a8fe87e8a8732340d9e8b8107401fb407eda446e", - "sha256:74418f718083009108dc9a42c21bf2e4802d49638a1249e13677585fcc9ca176", - "sha256:760c25ed6ac968e24803eb5f7deb17ce026902d39865e83036bacbf5cf242aa8", - "sha256:822ca79e28720a76a935c228d37da6579edef048a17cd98d406a2484d10eda78", - "sha256:86605d5bac340beb030cbc35859325982a79047ebdfba1e553719c7126a2389d", - "sha256:87597e3d57ec0120a3e1d857a708f80c02c42ea6b00227c728efbc860f067c45", - "sha256:8983c5c06ac9c990eac5eb97a9f03fe41dc7e9d7993df74d9e8682a1056f596c", - "sha256:8c659f9fb8a2f16dc4131b803fa0144c1dadcb3ab24bb7914d01a6da58ae2457", - "sha256:8e695f25d1a425ad7a272902af8ab8c8d66c1998b177e4b5f5e7b4e215d0c88a", - "sha256:8f8ed5053ef9fb08d34f1fd80ff093ccbd1f67f147633a84cf4a7d9b09c0f089", - "sha256:92267f865c7bbd12327a0d394666948b9bf4b51308b52947c0cc453bfa812f5d", - "sha256:98e4bbecbef8d2a60ecf731d735602feee5ac0b32117dbbc765e28b054bac912", - "sha256:9e716f9012148a81f02f46a04fc4c663420c6fbfeacfac0b5e128cf43b4413d3", - "sha256:9f2a6623057989ebc469cd9cc8fe436c40117a0147627568d03f84aef7854c55", - "sha256:a218f85081fc3f70cddaed694323a1ad7db5ca028c379c214e3a7c11c0850523", - "sha256:aa346e202e6e1ebc01fe1c69509cffe486425884b96cb9ce155c99da1ecbe0e9", - "sha256:ad8ba80cdcea04bea7b78fcd4925bfbf408961e9d8397d2ee5d3ec121e20c08c", - "sha256:afb39550205cc5e5c935762c6bf6a2bb34f7d21a68eadb25e2db7bf3593fecc0", - "sha256:b2922a0e8fa97395553c304edc3bd36168d8eeec26b92478e292e5d4445c1ef0", - "sha256:b47395091e7e0ece1e6ebac9b98bf0c9084d1e3d3b2739aa566be7e56e3f7bf2", - "sha256:c0ecf4786ad0404b072196b5df774b1bb23c8aacdcacb6c10b4128bc7b00bd01", - "sha256:c5b31bed2c2f2fa1fcb4815b75f931121ae210dc89a3d607fb1725f5907f1437", - "sha256:c724a884e642aa2bbad52bb0203ea40406ad742368a5f90da1b220e970384aae", - "sha256:cb92741c2b4ea63c09609b064b26f7f5d9032b61ae222558c55832ec3ad0bcaf", - "sha256:ced0925a18fddcff289ef54386b2fc230c5af3c83b11558571124bfc485b8c07", - "sha256:cf1115207a5049d1f4b7b4b72de0e52f228d6c696803d94843907111cbf80610", - "sha256:d3c9a07eafdc70556f8c220da4a538e715668c0c63cabcc436a026e4e89950bf", - "sha256:d7769c579663a6f8dbf34878969ac71befa42067ce6bf78e6370bf0d1194997c", - "sha256:d8f89c8d20dfa648a3f0a56861946eb00e5b00d6b00eea14bc5532b2fcfa8ef1", - "sha256:d998b432ed9ffccc49b820e913c8f327a82026349e9c34fa3690116f6b70770f", - "sha256:dcbe48f6a03979384f27086484dc2a14959be1613cb173458bd58f714f2c48f3", - "sha256:e17b5b42c8045867ca9d1f54af00cc2275198d38de18545edaa7833d7e9e4ac8", - "sha256:e18875e17ef69ba7dfa9623f2f95f3eda6f70b536079ee6d5763ecdfe6cc9040", - "sha256:e61ab234624c9ffca0248a707feffe6fac2343758a36725d8eb8a6efef0f8c30", - "sha256:ecc2c526547eacd20cb9fbba19a5268611dbc70c346499656d6cf30fae328977", - "sha256:f33462b19503ba68d80dac8a1354402675849259fb3ebf53b67de86421735a3a", - "sha256:fbedeb9b48614d662822ee514567d2d49a8012037fc7b4cd63f282642c2f4b7d", - "sha256:fd98cacf4e0fabcd4005c452cb8a31750258a85cab9a59fb3559e8078da408d7", - "sha256:fdcd095b1b812d756fa5452aca93b962cf620694c0cadb192cec2bb77dcca9a2" + "sha256:00105e7d541a8f2ee5be52caacea98a005e0478cfe78c8080fbb7b5d2b340c63", + "sha256:0241a6ed65e6666236ea78203a73d800dbed896cf12ae25d026d75dc1fcd1dac", + "sha256:03679b9856932b8c8f674e87aa3c55ea11c9274301f76ae8dc4d281bda55cf62", + "sha256:047164e5f68b7a8ebdf9fae91a3c2161d3192418aadd61ddd3a86a56cbe3dc85", + "sha256:171ca3a0a06c643bd0a2f62a8944e1902c94aa8e5da4db1ea9a8daf872685365", + "sha256:1a4ede613941d9c3470b0368be851df6bb78ab218635512d0370b27a277a0862", + "sha256:20e3946863d872f7cabf7f77c6c9d370b8b3d74333d3a32471c50d3a86c0a232", + "sha256:2991b6c3775383752b3ca0204842743256f3ad3deeb1d0adc227d56b78a9a850", + "sha256:31724b93baa91512bd0a376e7cf0b59d8b631ee17923b1218a65456fa9bda2e7", + "sha256:3469e1af9f1380e093ae06bedcbdd11e407ac0b303a56bbe9afb1d6824d4982d", + "sha256:389bd25a0db916e1d6bcb014f11aa9676cedaa485e9ec3752dfe19f196fd377b", + "sha256:3968762fec1b2ad34ce57458b6de25dbb4142713e9ca6279a0d352fa4e9f452b", + "sha256:39a4c76fee41007070f872b648cc2f711f9abf9a13d0c7162478043377b52c8e", + "sha256:3d1322800771bee4a91f3b4bd4e49abc7d35e65166821086e5afd1e6c0d9be44", + "sha256:41d7bb1e07916aeb12ae4a44e3025db3691c4149ab788d0315781b4d29b86afb", + "sha256:43d4e71b50763fcdcf64725ac680d8cfa1706c928b844794a7aa0fa9ac8e5f09", + "sha256:445b7304145e24c60288a2f172b5ce2ca35c0f81605f5299f3fa567e189d2e32", + "sha256:44e0c2cbc9bebd074cf2cdbe472ca185e824be4e74b1c63a8e934cea674bebf2", + "sha256:451e7ffcef8f785831fdb791bd69211f47e95dc4c6ddff68e589058806f044c6", + "sha256:46ef1f4b9b6cc364b11eea0ecc0897314447a66029ee1e55859acb3dd8757c93", + "sha256:4864045f49dc9c974dadb942ac56a74cd0479a2aafa51ce272c490a82322ea3c", + "sha256:4adc73614f0d3c97874f02f2c7fd2a27854e7e24ad532ea6b965459c5b757eca", + "sha256:4c3995abbbb60b3c129490fa985dfe6cac11d88fc3c36eeb4fb1449efbbb04fc", + "sha256:4d2f1e492cae964b3463a03dc77a7fe8742f7855d7258c7643f0ee32b6651dd3", + "sha256:535929b6eff670c593c34ff435d5440c3096f20fa72d63444608a5aef64dd581", + "sha256:5363427bc6a8c3b1719f8f3845ea53553d301382928a86e8fab7984426949bce", + "sha256:54feb7b4f2f6706bb82325e836a01be805770443e2400f706e824e91f6441dde", + "sha256:57175aa93f804d2c08d2edb7213e09276bd49097611aefc37e3fa38d1fb99ad0", + "sha256:5bcaaf624fd24e6a0cb14beac37677f90793a96864c67c064a91458611446e83", + "sha256:60c299e555f87e4c01b2eca085dfccda1dde87f5a604bb45c2906b8305819a93", + "sha256:631599598e2c76ded400c0a8722dec09217c89ff64dc54b060f598ed68e7d2a8", + "sha256:63937bd0f4d1cb56653dc7ae900d6c52c41f0015e25aaf9902481ee79943b33a", + "sha256:66daa6ac5de4288a5bbfbe55b4caa7bf0cd26b3269c7a476ffe8ce45f837f87d", + "sha256:6938cc2de153bc927ed8d71c7d2f2ae01b4e96359126c602721340eb7ce1a92d", + "sha256:6d772edc6a5f7835635c7562f6688e031f0b97e31d538412a852c49c9a6c92d5", + "sha256:6db5faf064b5bab9675c32a873436b31e01d66ca6984c6f7f92621656033a708", + "sha256:73fd300f501a052f2ba52ede721232212f3b06503fa12665408ecfc9d8fd149c", + "sha256:79feb4d00b2a4e0e05c9c56df707934f41fcb5fe53fd9efb7549068d0495b758", + "sha256:7aa7d5457b6c542ecaed79cec4ad98534373c9757383973e638ccced0f11f46d", + "sha256:7b0803e9008c62a7ef79058233db7ff6f37a9933b8f2573c05b07ddafa226611", + "sha256:7e03bea66af33c95ce3addf87a9bf1fcad8d33e757bc479957ddbc0e4f7207ac", + "sha256:864c4b7083eeee250ed55135d2127b260d7eb4b5e953a9e5df09c852e327961b", + "sha256:8766ece9de08527deabcd7cb1b4f1a967a385d26e33e536d6d8913db6ef74f06", + "sha256:87808a8d1e0bd62a01cafc41f0fd6818b5a5d0ca0d8a55326a81643cdda8f873", + "sha256:907ad09cfab21e3c86e8f1f87858f7049d1097f77196959c033612f532b4e592", + "sha256:95b67aa7eff150f075fda09d11f6bfb26edffd300f6ab1666759547581e8f666", + "sha256:978e8b5f13e52cf23a9e80f3286d7546baa70bc4ef35b51d97a709d0b28e537c", + "sha256:9b6943885b2d49c48d0cff23b16be830ba46b0152d98f62de49e735c6e655a63", + "sha256:9c1ba843ae20db09b9d5c80475376168feb2640ce91cd9906414f23cc267a1ff", + "sha256:a14229ac62adcf1b90a15992f1ab9c69ae8b99ffb23cb64a90878a6e8a2f5b81", + "sha256:a36515b1328dc5b3ffce79fe204985ca8572525452eacabee2166f44bb387b2c", + "sha256:ac9c8a458245c7de80bc1b9765b177055efff5803f08e548dd4bb9ab9a8d789b", + "sha256:ad64a14b1e56e702e19b24aae108f18ad1bf7777f3af5fcd39f87d0c5a814449", + "sha256:b09c52ed43a461994716082ee7d87618096851319bf695d57ec123f2ab708951", + "sha256:b45306a1fc5f53c9330fbee134d8b3227fe5da2ab09813b892790400aa49352d", + "sha256:b5b007bb22ea4b255d3ee39dfd06d12534de2fcc3438567d9f48cdaf67ae1ae3", + "sha256:b7e7f140c5169798f90b80d6e607ed2ba5059784968a004107c88ad61fb3641d", + "sha256:b9122094e3f24aa759c38f46bd8863433820654927370250f460ae75488b66ea", + "sha256:bb7a7807523a31f03061288cc4ffc065d684c39db7644c676b47d89553c0d714", + "sha256:be927c3c94c74b05128089a955fba86501c3b544d1d300282cc1b4bd370cb418", + "sha256:bfde8a130bd0f239e45503ab39fab239ace094d63ee1d6b67c25a63d741c0f71", + "sha256:c6f8947d3dfd7f91066c5b4385812c18be26c9d5a99ca56667547f2c39149d94", + "sha256:c7e8f88f79308d86d8f39c491773cbb533d6cb7fa6476f35d711076ee04fceb6", + "sha256:ca916919793a77e4a98d4a1701e345d337ce53be4a16620f063191f7322ac80f", + "sha256:cf243da9e42d914036fd362ac3fa77d80a41cadcd11ad789b1b5eec4daaf67ca", + "sha256:d6f254d096d84156a46a84861183c183d30734e52383602443292644d895047c", + "sha256:dbd79caaf77a3f590cbe32dc2447f718772d6eea59656a7dcb9311161b10fa75", + "sha256:ddb52499d0b3ed4aa88746aaf6f36a08314677d5c346234c3987ddc506404eac", + "sha256:e90a8e237753c83b8e484d478d9a996dc5e39fd5bd4c6ce32563bc8123f132be", + "sha256:e9c0afebbe6ce177ae8edba0c7c4d626f2a0fc12c33bb993d163817c41a7a05c", + "sha256:f11b300027ce19a34f6d24ebb0a25fd0e24a9d53353225a5c1e6cadbf2916b2e", + "sha256:f1ade7f31675db00b514b98f9ab9a7698c7282dad4be7492589109471852d398", + "sha256:f8f4a901a3fa28969d6e4519deceab56c55a09d691ea7b12ca830e2fa3461e34", + "sha256:fdec6e2368ae4f796fc72fad7fd4bd1753715187e6d870932b0904609e7c878e", + "sha256:ff3e9c11aa260c31493d4b3197d1e28dd07768594a4f92bec4506849d736248f", + "sha256:ff71447cb778a4f772ddc4ce360e6ba9c95527ed84a52096bd1bbf9fee2ec7c0" ], "markers": "python_version >= '3.9'", - "version": "==0.6.3" + "version": "==0.7.8" }, "lxml": { "hashes": [ @@ -403,48 +387,48 @@ }, "mypy": { "hashes": [ - "sha256:0c01c99d626380752e527d5ce8e69ffbba2046eb8a060db0329690849cf9b6f9", - "sha256:0dde5cb375cb94deff0d4b548b993bec52859d1651e073d63a1386d392a95495", - "sha256:0e3c3d1e1d62e678c339e7ade72746a9e0325de42cd2cccc51616c7b2ed1a018", - "sha256:0ea4fd21bb48f0da49e6d3b37ef6bd7e8228b9fe41bbf4d80d9364d11adbd43c", - "sha256:0fb3115cb8fa7c5f887c8a8d81ccdcb94cff334684980d847e5a62e926910e1d", - "sha256:11f7254c15ab3f8ed68f8e8f5cbe88757848df793e31c36aaa4d4f9783fd08ab", - "sha256:120cffe120cca5c23c03c77f84abc0c14c5d2e03736f6c312480020082f1994b", - "sha256:16f76ff3f3fd8137aadf593cb4607d82634fca675e8211ad75c43d86033ee6c6", - "sha256:1cf9c59398db1c68a134b0b5354a09a1e124523f00bacd68e553b8bd16ff3299", - "sha256:318ba74f75899b0e78b847d8c50821e4c9637c79d9a59680fc1259f29338cb3e", - "sha256:3210d87b30e6af9c8faed61be2642fcbe60ef77cec64fa1ef810a630a4cf671c", - "sha256:34ec1ac66d31644f194b7c163d7f8b8434f1b49719d403a5d26c87fff7e913f7", - "sha256:37af5166f9475872034b56c5efdcf65ee25394e9e1d172907b84577120714364", - "sha256:3ad925b14a0bb99821ff6f734553294aa6a3440a8cb082fe1f5b84dfb662afb1", - "sha256:510c014b722308c9bd377993bcbf9a07d7e0692e5fa8fc70e639c1eb19fc6bee", - "sha256:6016c52ab209919b46169651b362068f632efcd5eb8ef9d1735f6f86da7853b2", - "sha256:6148ede033982a8c5ca1143de34c71836a09f105068aaa8b7d5edab2b053e6c8", - "sha256:63ea6a00e4bd6822adbfc75b02ab3653a17c02c4347f5bb0cf1d5b9df3a05835", - "sha256:7686ed65dbabd24d20066f3115018d2dce030d8fa9db01aa9f0a59b6813e9f9e", - "sha256:7a500ab5c444268a70565e374fc803972bfd1f09545b13418a5174e29883dab7", - "sha256:8f44f2ae3c58421ee05fe609160343c25f70e3967f6e32792b5a78006a9d850f", - "sha256:a18d8abdda14035c5718acb748faec09571432811af129bf0d9e7b2d6699bf18", - "sha256:a31e4c28e8ddb042c84c5e977e28a21195d086aaffaf08b016b78e19c9ef8106", - "sha256:a9ac09e52bb0f7fb912f5d2a783345c72441a08ef56ce3e17c1752af36340a39", - "sha256:b9d491295825182fba01b6ffe2c6fe4e5a49dbf4e2bb4d1217b6ced3b4797bc6", - "sha256:c14a98bc63fd867530e8ec82f217dae29d0550c86e70debc9667fff1ec83284e", - "sha256:c3385246593ac2b97f155a0e9639be906e73534630f663747c71908dfbf26134", - "sha256:cabbee74f29aa9cd3b444ec2f1e4fa5a9d0d746ce7567a6a609e224429781f53", - "sha256:cb64b0ba5980466a0f3f9990d1c582bcab8db12e29815ecb57f1408d99b4bff7", - "sha256:cf7d84f497f78b682edd407f14a7b6e1a2212b433eedb054e2081380b7395aa3", - "sha256:e2c1101ab41d01303103ab6ef82cbbfedb81c1a060c868fa7cc013d573d37ab5", - "sha256:f188dcf16483b3e59f9278c4ed939ec0254aa8a60e8fc100648d9ab5ee95a431", - "sha256:f2e36bed3c6d9b5f35d28b63ca4b727cb0228e480826ffc8953d1892ddc8999d", - "sha256:f3e19e3b897562276bb331074d64c076dbdd3e79213f36eed4e592272dabd760", - "sha256:f6b874ca77f733222641e5c46e4711648c4037ea13646fd0cdc814c2eaec2528", - "sha256:f75e60aca3723a23511948539b0d7ed514dda194bc3755eae0bfc7a6b4887aa7", - "sha256:fc51a5b864f73a3a182584b1ac75c404396a17eced54341629d8bdcb644a5bba", - "sha256:fd4a985b2e32f23bead72e2fb4bbe5d6aceee176be471243bd831d5b2644672d" + "sha256:016f2246209095e8eda7538944daa1d60e1e8134d98983b9fc1e92c1fc0cb8dd", + "sha256:022ea7279374af1a5d78dfcab853fe6a536eebfda4b59deab53cd21f6cd9f00b", + "sha256:06e6170bd5836770e8104c8fdd58e5e725cfeb309f0a6c681a811f557e97eac1", + "sha256:19d88bb05303fe63f71dd2c6270daca27cb9401c4ca8255fe50d1d920e0eb9ba", + "sha256:21761006a7f497cb0d4de3d8ef4ca70532256688b0523eee02baf9eec895e27b", + "sha256:28902ee51f12e0f19e1e16fbe2f8f06b6637f482c459dd393efddd0ec7f82045", + "sha256:2899753e2f61e571b3971747e302d5f420c3fd09650e1951e99f823bc3089dac", + "sha256:2abb24cf3f17864770d18d673c85235ba52456b36a06b6afc1e07c1fdcd3d0e6", + "sha256:34c81968774648ab5ac09c29a375fdede03ba253f8f8287847bd480782f73a6a", + "sha256:409088884802d511ee52ca067707b90c883426bd95514e8cfda8281dc2effe24", + "sha256:481daf36a4c443332e2ae9c137dfee878fcea781a2e3f895d54bd3002a900957", + "sha256:4b84a7a18f41e167f7995200a1d07a4a6810e89d29859df936f1c3923d263042", + "sha256:4f28f99c824ecebcdaa2e55d82953e38ff60ee5ec938476796636b86afa3956e", + "sha256:5f05aa3d375b385734388e844bc01733bd33c644ab48e9684faa54e5389775ec", + "sha256:7bcfc336a03a1aaa26dfce9fff3e287a3ba99872a157561cbfcebe67c13308e3", + "sha256:804bd67b8054a85447c8954215a906d6eff9cabeabe493fb6334b24f4bfff718", + "sha256:8bb5c6f6d043655e055be9b542aa5f3bdd30e4f3589163e85f93f3640060509f", + "sha256:a009ffa5a621762d0c926a078c2d639104becab69e79538a494bcccb62cc0331", + "sha256:a8174a03289288c1f6c46d55cef02379b478bfbc8e358e02047487cad44c6ca1", + "sha256:ab43590f9cd5108f41aacf9fca31841142c786827a74ab7cc8a2eacb634e09a1", + "sha256:b10e7c2cd7870ba4ad9b2d8a6102eb5ffc1f16ca35e3de6bfa390c1113029d13", + "sha256:b13cfdd6c87fc3efb69ea4ec18ef79c74c3f98b4e5498ca9b85ab3b2c2329a67", + "sha256:b64d987153888790bcdb03a6473d321820597ab8dd9243b27a92153c4fa50fd2", + "sha256:b7951a701c07ea584c4fe327834b92a30825514c868b1f69c30445093fdd9d5a", + "sha256:bdb12f69bcc02700c2b47e070238f42cb87f18c0bc1fc4cdb4fb2bc5fd7a3b8b", + "sha256:c35d298c2c4bba75feb2195655dfea8124d855dfd7343bf8b8c055421eaf0cf8", + "sha256:c608937067d2fc5a4dd1a5ce92fd9e1398691b8c5d012d66e1ddd430e9244376", + "sha256:c9a6538e0415310aad77cb94004ca6482330fece18036b5f360b62c45814c4ef", + "sha256:d8dfc6ab58ca7dda47d9237349157500468e404b17213d44fc1cb77bce532288", + "sha256:da4869fc5e7f62a88f3fe0b5c919d1d9f7ea3cef92d3689de2823fd27e40aa75", + "sha256:de759aafbae8763283b2ee5869c7255391fbc4de3ff171f8f030b5ec48381b74", + "sha256:e3157c7594ff2ef1634ee058aafc56a82db665c9438fd41b390f3bde1ab12250", + "sha256:e3f276d8493c3c97930e354b2595a44a21348b320d859fb4a2b9f66da9ed27ab", + "sha256:ee4c11e460685c3e0c64a4c5de82ae143622410950d6be863303a1c4ba0e36d6", + "sha256:f1235f5ea01b7db5468d53ece6aaddf1ad0b88d9e7462b86ef96fe04995d7247", + "sha256:f7cee03c9a2e2ee26ec07479f38ea9c884e301d42c6d43a19d20fb014e3ba925", + "sha256:f859fb09d9583a985be9a493d5cfc5515b56b08f7447759a0c5deaf68d80506e", + "sha256:ffcebe56eb09ff0c0885e750036a095e23793ba6c2e894e7e63f6d89ad51f22e" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==1.19.0" + "version": "==1.19.1" }, "mypy-extensions": { "hashes": [ @@ -456,11 +440,11 @@ }, "pathspec": { "hashes": [ - "sha256:a0d503e138a4c123b27490a4f7beda6a01c6f288df0e4a8b79c7eb0dc7b4cc08", - "sha256:a482d51503a1ab33b1c67a6c3813a26953dbdc71c31dacaef9a838c4e29f5712" + "sha256:bac5cf97ae2c2876e2d25ebb15078eb04d76e4b98921ee31c6f85ade8b59444d", + "sha256:e80767021c1cc524aa3fb14bedda9c34406591343cc42797b386ce7b9354fb6c" ], - "markers": "python_version >= '3.8'", - "version": "==0.12.1" + "markers": "python_version >= '3.9'", + "version": "==1.0.3" }, "pathvalidate": { "hashes": [ @@ -493,30 +477,9 @@ "sha256:bac9773278098a1ddc43a52d84e22f5909c4a3080a624530b3ecb3771b07c6cd" ], "index": "pypi", + "markers": "python_version >= '3.7'", "version": "==1.1.0" }, - "pywin32": { - "hashes": [ - "sha256:0867beb8addefa2e3979d4084352e4ac6e991ca45373390775f7084cc0209b9c", - "sha256:126298077a9d7c95c53823934f000599f66ec9296b09167810eb24875f32689c", - "sha256:19ec5fc9b1d51c4350be7bb00760ffce46e6c95eaf2f0b2f1150657b1a43c582", - "sha256:1e765f9564e83011a63321bb9d27ec456a0ed90d3732c4b2e312b855365ed8bd", - "sha256:2349cc906eae872d0663d4d6290d13b90621eaf78964bb1578632ff20e152966", - "sha256:30f0a9b3138fb5e07eb4973b7077e1883f558e40c578c6925acc7a94c34eaa36", - "sha256:33babed0cf0c92a6f94cc6cc13546ab24ee13e3e800e61ed87609ab91e4c8213", - "sha256:5d241a659c496ada3253cd01cfaa779b048e90ce4b2b38cd44168ad555ce74ab", - "sha256:667827eb3a90208ddbdcc9e860c81bde63a135710e21e4cb3348968e4bd5249e", - "sha256:6dd97011efc8bf51d6793a82292419eba2c71cf8e7250cfac03bba284454abc1", - "sha256:851c8d927af0d879221e616ae1f66145253537bbdd321a77e8ef701b443a9a1a", - "sha256:8a75a5cc3893e83a108c05d82198880704c44bbaee4d06e442e471d3c9ea4f3d", - "sha256:96867217335559ac619f00ad70e513c0fcf84b8a3af9fc2bba3b59b97da70475", - "sha256:bf5c397c9a9a19a6f62f3fb821fbf36cac08f03770056711f765ec1503972060", - "sha256:c3e78706e4229b915a0821941a84e7ef420bf2b77e08c9dae3c76fd03fd2ae3d", - "sha256:e308f831de771482b7cf692a1f308f8fca701b2d8f9dde6cc440c7da17e47b33" - ], - "markers": "sys_platform == 'win32'", - "version": "==310" - }, "pyyaml": { "hashes": [ "sha256:04ac92ad1925b2cff1db0cfebffb6ffc43457495c9b3c39d3fcae417d7125dc5", @@ -572,6 +535,7 @@ "sha256:fd66fc5d0da6d9815ba2cebeb4205f95818ff4b79c3ebe268e75d961704af52f" ], "index": "pypi", + "markers": "python_version >= '3.6'", "version": "==6.0.1" }, "qrcode": { @@ -598,6 +562,7 @@ "sha256:9df6e75393f494ca3fd06dac3ed02f3c4fed60842b13fd00757b026cedff426b" ], "index": "pypi", + "markers": "python_version >= '3.8'", "version": "==1.3.1" }, "tqdm": { @@ -617,22 +582,14 @@ "markers": "python_version >= '3.9'", "version": "==0.7.0.20250822" }, - "types-pyyaml": { - "hashes": [ - "sha256:334373d392fde0fdf95af5c3f1661885fa10c52167b14593eb856289e1855062", - "sha256:c05bc6c158facb0676674b7f11fe3960db4f389718e19e62bd2b84d6205cfd24" - ], - "index": "pypi", - "version": "==6.0.12.12" - }, "types-requests": { "hashes": [ - "sha256:78c9c1fffebbe0fa487a418e0fa5252017e9c60d1a2da394077f1780f655d7e1", - "sha256:abd6d4f9ce3a9383f269775a9835a4c24e5cd6b9f647d64f88aa4613c33def5d" + "sha256:018a11ac158f801bfa84857ddec1650750e393df8a004a8a9ae2a9bec6fcb24f", + "sha256:b703fe72f8ce5b31ef031264fe9395cac8f46a04661a79f7ed31a80fb308730d" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.32.4.20250913" + "version": "==2.32.4.20260107" }, "typing-extensions": { "hashes": [ @@ -645,167 +602,176 @@ }, "urllib3": { "hashes": [ - "sha256:016f9c98bb7e98085cb2b4b17b87d2c702975664e4f060c6532e64d1c1a5e797", - "sha256:ec21cddfe7724fc7cb4ba4bea7aa8e2ef36f607a4bab81aa6ce42a13dc3f03dd" + "sha256:1b62b6884944a57dbe321509ab94fd4d3b307075e0c2eae991ac71ee15ad38ed", + "sha256:bf272323e553dfb2e87d9bfd225ca7b0f467b919d7bbd355436d3fd37cb0acd4" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==2.6.2" + "version": "==2.6.3" } }, "develop": { "black": { "hashes": [ - "sha256:05dd459a19e218078a1f98178c13f861fe6a9a5f88fc969ca4d9b49eb1809783", - "sha256:09524b0e6af8ba7a3ffabdfc7a9922fb9adef60fed008c7cd2fc01f3048e6e6f", - "sha256:0a0953b134f9335c2434864a643c842c44fba562155c738a2a37a4d61f00cad5", - "sha256:0e509c858adf63aa61d908061b52e580c40eae0dfa72415fa47ac01b12e29baf", - "sha256:169506ba91ef21e2e0591563deda7f00030cb466e747c4b09cb0a9dae5db2f43", - "sha256:17dcc893da8d73d8f74a596f64b7c98ef5239c2cd2b053c0f25912c4494bf9ea", - "sha256:1a2f578ae20c19c50a382286ba78bfbeafdf788579b053d8e4980afb079ab9be", - "sha256:2355bbb6c3b76062870942d8cc450d4f8ac71f9c93c40122762c8784df49543f", - "sha256:252678f07f5bac4ff0d0e9b261fbb029fa530cfa206d0a636a34ab445ef8ca9d", - "sha256:274f940c147ddab4442d316b27f9e332ca586d39c85ecf59ebdea82cc9ee8892", - "sha256:31f96b7c98c1ddaeb07dc0f56c652e25bdedaac76d5b68a059d998b57c55594a", - "sha256:48ceb36c16dbc84062740049eef990bb2ce07598272e673c17d1a7720c71c828", - "sha256:51e267458f7e650afed8445dc7edb3187143003d52a1b710c7321aef22aa9655", - "sha256:546eecfe9a3a6b46f9d69d8a642585a6eaf348bcbbc4d87a19635570e02d9f4a", - "sha256:778285d9ea197f34704e3791ea9404cd6d07595745907dd2ce3da7a13627b29b", - "sha256:8d3dd9cea14bff7ddc0eb243c811cdb1a011ebb4800a5f0335a01a68654796a7", - "sha256:9678bd991cc793e81d19aeeae57966ee02909877cb65838ccffef24c3ebac08f", - "sha256:97596189949a8aad13ad12fcbb4ae89330039b96ad6742e6f6b45e75ad5cfd83", - "sha256:9ec77439ef3e34896995503865a85732c94396edcc739f302c5673a2315e1e7f", - "sha256:a05ddeb656534c3e27a05a29196c962877c83fa5503db89e68857d1161ad08a5", - "sha256:a3fa71e3b8dd9f7c6ac4d818345237dfb4175ed3bf37cd5a581dbc4c034f1ec5", - "sha256:b162653ed89eb942758efeb29d5e333ca5bb90e5130216f8369857db5955a7da", - "sha256:bc5b1c09fe3c931ddd20ee548511c64ebf964ada7e6f0763d443947fd1c603ce", - "sha256:c1f68c5eff61f226934be6b5b80296cf6939e5d2f0c2f7d543ea08b204bfaf59", - "sha256:d0cfa263e85caea2cff57d8f917f9f51adae8e20b610e2b23de35b5b11ce691a", - "sha256:d3e1b65634b0e471d07ff86ec338819e2ef860689859ef4501ab7ac290431f9b", - "sha256:f85ba1ad15d446756b4ab5f3044731bf68b777f8f9ac9cdabd2425b97cd9c4e8" + "sha256:101540cb2a77c680f4f80e628ae98bd2bd8812fb9d72ade4f8995c5ff019e82c", + "sha256:1054e8e47ebd686e078c0bb0eaf31e6ce69c966058d122f2c0c950311f9f3ede", + "sha256:1de0f7d01cc894066a1153b738145b194414cc6eeaad8ef4397ac9abacf40f6b", + "sha256:2b807c240b64609cb0e80d2200a35b23c7df82259f80bef1b2c96eb422b4aac9", + "sha256:3cee1487a9e4c640dc7467aaa543d6c0097c391dc8ac74eb313f2fbf9d7a7cb5", + "sha256:53c62883b3f999f14e5d30b5a79bd437236658ad45b2f853906c7cbe79de00af", + "sha256:5e8e75dabb6eb83d064b0db46392b25cabb6e784ea624219736e8985a6b3675d", + "sha256:643d27fb5facc167c0b1b59d0315f2674a6e950341aed0fc05cf307d22bf4954", + "sha256:66912475200b67ef5a0ab665011964bf924745103f51977a78b4fb92a9fc1bf0", + "sha256:6eeca41e70b5f5c84f2f913af857cf2ce17410847e1d54642e658e078da6544f", + "sha256:6f3977a16e347f1b115662be07daa93137259c711e526402aa444d7a88fdc9d4", + "sha256:7ed300200918147c963c87700ccf9966dceaefbbb7277450a8d646fc5646bf24", + "sha256:91a68ae46bf07868963671e4d05611b179c2313301bd756a89ad4e3b3db2325b", + "sha256:9459ad0d6cd483eacad4c6566b0f8e42af5e8b583cee917d90ffaa3778420a0a", + "sha256:9dc8c71656a79ca49b8d3e2ce8103210c9481c57798b48deeb3a8bb02db5f115", + "sha256:a19915ec61f3a8746e8b10adbac4a577c6ba9851fa4a9e9fbfbcf319887a5791", + "sha256:b22b3810451abe359a964cc88121d57f7bce482b53a066de0f1584988ca36e79", + "sha256:ba1d768fbfb6930fc93b0ecc32a43d8861ded16f47a40f14afa9bb04ab93d304", + "sha256:be5e2fe860b9bd9edbf676d5b60a9282994c03fbbd40fe8f5e75d194f96064ca", + "sha256:c5b7713daea9bf943f79f8c3b46f361cc5229e0e604dcef6a8bb6d1c37d9df89", + "sha256:ca699710dece84e3ebf6e92ee15f5b8f72870ef984bf944a57a777a48357c168", + "sha256:d294ac3340eef9c9eb5d29288e96dc719ff269a88e27b396340459dd85da4c58", + "sha256:d62d14ca31c92adf561ebb2e5f2741bf8dea28aef6deb400d49cca011d186c68", + "sha256:dd39eef053e58e60204f2cdf059e2442e2eb08f15989eefe259870f89614c8b6", + "sha256:eb07665d9a907a1a645ee41a0df8a25ffac8ad9c26cdb557b7b88eeeeec934e0", + "sha256:f016baaadc423dc960cdddf9acae679e71ee02c4c341f78f3179d7e4819c095f", + "sha256:fb1dafbbaa3b1ee8b4550a84425aac8874e5f390200f5502cf3aee4a2acb2f14" ], "index": "pypi", "markers": "python_version >= '3.10'", - "version": "==25.12.0" + "version": "==26.1.0" }, "certifi": { "hashes": [ - "sha256:922820b53db7a7257ffbda3f597266d435245903d80737e34f8a45ff3e3230d8", - "sha256:bec941d2aa8195e248a60b31ff9f0558284cf01a52591ceda73ea9afffd69fd9" + "sha256:9943707519e4add1115f44c2bc244f782c0249876bf51b6599fee1ffbedd685c", + "sha256:ac726dd470482006e014ad384921ed6438c457018f4b3d204aea4281258b2120" ], - "markers": "python_version >= '3.6'", - "version": "==2024.8.30" + "markers": "python_version >= '3.7'", + "version": "==2026.1.4" }, "charset-normalizer": { "hashes": [ - "sha256:0099d79bdfcf5c1f0c2c72f91516702ebf8b0b8ddd8905f97a8aecf49712c621", - "sha256:0713f3adb9d03d49d365b70b84775d0a0d18e4ab08d12bc46baa6132ba78aaf6", - "sha256:07afec21bbbbf8a5cc3651aa96b980afe2526e7f048fdfb7f1014d84acc8b6d8", - "sha256:0b309d1747110feb25d7ed6b01afdec269c647d382c857ef4663bbe6ad95a912", - "sha256:0d99dd8ff461990f12d6e42c7347fd9ab2532fb70e9621ba520f9e8637161d7c", - "sha256:0de7b687289d3c1b3e8660d0741874abe7888100efe14bd0f9fd7141bcbda92b", - "sha256:1110e22af8ca26b90bd6364fe4c763329b0ebf1ee213ba32b68c73de5752323d", - "sha256:130272c698667a982a5d0e626851ceff662565379baf0ff2cc58067b81d4f11d", - "sha256:136815f06a3ae311fae551c3df1f998a1ebd01ddd424aa5603a4336997629e95", - "sha256:14215b71a762336254351b00ec720a8e85cada43b987da5a042e4ce3e82bd68e", - "sha256:1db4e7fefefd0f548d73e2e2e041f9df5c59e178b4c72fbac4cc6f535cfb1565", - "sha256:1ffd9493de4c922f2a38c2bf62b831dcec90ac673ed1ca182fe11b4d8e9f2a64", - "sha256:2006769bd1640bdf4d5641c69a3d63b71b81445473cac5ded39740a226fa88ab", - "sha256:20587d20f557fe189b7947d8e7ec5afa110ccf72a3128d61a2a387c3313f46be", - "sha256:223217c3d4f82c3ac5e29032b3f1c2eb0fb591b72161f86d93f5719079dae93e", - "sha256:27623ba66c183eca01bf9ff833875b459cad267aeeb044477fedac35e19ba907", - "sha256:285e96d9d53422efc0d7a17c60e59f37fbf3dfa942073f666db4ac71e8d726d0", - "sha256:2de62e8801ddfff069cd5c504ce3bc9672b23266597d4e4f50eda28846c322f2", - "sha256:2f6c34da58ea9c1a9515621f4d9ac379871a8f21168ba1b5e09d74250de5ad62", - "sha256:309a7de0a0ff3040acaebb35ec45d18db4b28232f21998851cfa709eeff49d62", - "sha256:35c404d74c2926d0287fbd63ed5d27eb911eb9e4a3bb2c6d294f3cfd4a9e0c23", - "sha256:3710a9751938947e6327ea9f3ea6332a09bf0ba0c09cae9cb1f250bd1f1549bc", - "sha256:3d59d125ffbd6d552765510e3f31ed75ebac2c7470c7274195b9161a32350284", - "sha256:40d3ff7fc90b98c637bda91c89d51264a3dcf210cade3a2c6f838c7268d7a4ca", - "sha256:425c5f215d0eecee9a56cdb703203dda90423247421bf0d67125add85d0c4455", - "sha256:43193c5cda5d612f247172016c4bb71251c784d7a4d9314677186a838ad34858", - "sha256:44aeb140295a2f0659e113b31cfe92c9061622cadbc9e2a2f7b8ef6b1e29ef4b", - "sha256:47334db71978b23ebcf3c0f9f5ee98b8d65992b65c9c4f2d34c2eaf5bcaf0594", - "sha256:4796efc4faf6b53a18e3d46343535caed491776a22af773f366534056c4e1fbc", - "sha256:4a51b48f42d9358460b78725283f04bddaf44a9358197b889657deba38f329db", - "sha256:4b67fdab07fdd3c10bb21edab3cbfe8cf5696f453afce75d815d9d7223fbe88b", - "sha256:4ec9dd88a5b71abfc74e9df5ebe7921c35cbb3b641181a531ca65cdb5e8e4dea", - "sha256:4f9fc98dad6c2eaa32fc3af1417d95b5e3d08aff968df0cd320066def971f9a6", - "sha256:54b6a92d009cbe2fb11054ba694bc9e284dad30a26757b1e372a1fdddaf21920", - "sha256:55f56e2ebd4e3bc50442fbc0888c9d8c94e4e06a933804e2af3e89e2f9c1c749", - "sha256:5726cf76c982532c1863fb64d8c6dd0e4c90b6ece9feb06c9f202417a31f7dd7", - "sha256:5d447056e2ca60382d460a604b6302d8db69476fd2015c81e7c35417cfabe4cd", - "sha256:5ed2e36c3e9b4f21dd9422f6893dec0abf2cca553af509b10cd630f878d3eb99", - "sha256:5ff2ed8194587faf56555927b3aa10e6fb69d931e33953943bc4f837dfee2242", - "sha256:62f60aebecfc7f4b82e3f639a7d1433a20ec32824db2199a11ad4f5e146ef5ee", - "sha256:63bc5c4ae26e4bc6be6469943b8253c0fd4e4186c43ad46e713ea61a0ba49129", - "sha256:6b40e8d38afe634559e398cc32b1472f376a4099c75fe6299ae607e404c033b2", - "sha256:6b493a043635eb376e50eedf7818f2f322eabbaa974e948bd8bdd29eb7ef2a51", - "sha256:6dba5d19c4dfab08e58d5b36304b3f92f3bd5d42c1a3fa37b5ba5cdf6dfcbcee", - "sha256:6fd30dc99682dc2c603c2b315bded2799019cea829f8bf57dc6b61efde6611c8", - "sha256:707b82d19e65c9bd28b81dde95249b07bf9f5b90ebe1ef17d9b57473f8a64b7b", - "sha256:7706f5850360ac01d80c89bcef1640683cc12ed87f42579dab6c5d3ed6888613", - "sha256:7782afc9b6b42200f7362858f9e73b1f8316afb276d316336c0ec3bd73312742", - "sha256:79983512b108e4a164b9c8d34de3992f76d48cadc9554c9e60b43f308988aabe", - "sha256:7f683ddc7eedd742e2889d2bfb96d69573fde1d92fcb811979cdb7165bb9c7d3", - "sha256:82357d85de703176b5587dbe6ade8ff67f9f69a41c0733cf2425378b49954de5", - "sha256:84450ba661fb96e9fd67629b93d2941c871ca86fc38d835d19d4225ff946a631", - "sha256:86f4e8cca779080f66ff4f191a685ced73d2f72d50216f7112185dc02b90b9b7", - "sha256:8cda06946eac330cbe6598f77bb54e690b4ca93f593dee1568ad22b04f347c15", - "sha256:8ce7fd6767a1cc5a92a639b391891bf1c268b03ec7e021c7d6d902285259685c", - "sha256:8ff4e7cdfdb1ab5698e675ca622e72d58a6fa2a8aa58195de0c0061288e6e3ea", - "sha256:9289fd5dddcf57bab41d044f1756550f9e7cf0c8e373b8cdf0ce8773dc4bd417", - "sha256:92a7e36b000bf022ef3dbb9c46bfe2d52c047d5e3f3343f43204263c5addc250", - "sha256:92db3c28b5b2a273346bebb24857fda45601aef6ae1c011c0a997106581e8a88", - "sha256:95c3c157765b031331dd4db3c775e58deaee050a3042fcad72cbc4189d7c8dca", - "sha256:980b4f289d1d90ca5efcf07958d3eb38ed9c0b7676bf2831a54d4f66f9c27dfa", - "sha256:9ae4ef0b3f6b41bad6366fb0ea4fc1d7ed051528e113a60fa2a65a9abb5b1d99", - "sha256:9c98230f5042f4945f957d006edccc2af1e03ed5e37ce7c373f00a5a4daa6149", - "sha256:9fa2566ca27d67c86569e8c85297aaf413ffab85a8960500f12ea34ff98e4c41", - "sha256:a14969b8691f7998e74663b77b4c36c0337cb1df552da83d5c9004a93afdb574", - "sha256:a8aacce6e2e1edcb6ac625fb0f8c3a9570ccc7bfba1f63419b3769ccf6a00ed0", - "sha256:a8e538f46104c815be19c975572d74afb53f29650ea2025bbfaef359d2de2f7f", - "sha256:aa41e526a5d4a9dfcfbab0716c7e8a1b215abd3f3df5a45cf18a12721d31cb5d", - "sha256:aa693779a8b50cd97570e5a0f343538a8dbd3e496fa5dcb87e29406ad0299654", - "sha256:ab22fbd9765e6954bc0bcff24c25ff71dcbfdb185fcdaca49e81bac68fe724d3", - "sha256:ab2e5bef076f5a235c3774b4f4028a680432cded7cad37bba0fd90d64b187d19", - "sha256:ab973df98fc99ab39080bfb0eb3a925181454d7c3ac8a1e695fddfae696d9e90", - "sha256:af73657b7a68211996527dbfeffbb0864e043d270580c5aef06dc4b659a4b578", - "sha256:b197e7094f232959f8f20541ead1d9862ac5ebea1d58e9849c1bf979255dfac9", - "sha256:b295729485b06c1a0683af02a9e42d2caa9db04a373dc38a6a58cdd1e8abddf1", - "sha256:b8831399554b92b72af5932cdbbd4ddc55c55f631bb13ff8fe4e6536a06c5c51", - "sha256:b8dcd239c743aa2f9c22ce674a145e0a25cb1566c495928440a181ca1ccf6719", - "sha256:bcb4f8ea87d03bc51ad04add8ceaf9b0f085ac045ab4d74e73bbc2dc033f0236", - "sha256:bd7af3717683bea4c87acd8c0d3d5b44d56120b26fd3f8a692bdd2d5260c620a", - "sha256:bf4475b82be41b07cc5e5ff94810e6a01f276e37c2d55571e3fe175e467a1a1c", - "sha256:c3e446d253bd88f6377260d07c895816ebf33ffffd56c1c792b13bff9c3e1ade", - "sha256:c57516e58fd17d03ebe67e181a4e4e2ccab1168f8c2976c6a334d4f819fe5944", - "sha256:c94057af19bc953643a33581844649a7fdab902624d2eb739738a30e2b3e60fc", - "sha256:cab5d0b79d987c67f3b9e9c53f54a61360422a5a0bc075f43cab5621d530c3b6", - "sha256:ce031db0408e487fd2775d745ce30a7cd2923667cf3b69d48d219f1d8f5ddeb6", - "sha256:cee4373f4d3ad28f1ab6290684d8e2ebdb9e7a1b74fdc39e4c211995f77bec27", - "sha256:d5b054862739d276e09928de37c79ddeec42a6e1bfc55863be96a36ba22926f6", - "sha256:dbe03226baf438ac4fda9e2d0715022fd579cb641c4cf639fa40d53b2fe6f3e2", - "sha256:dc15e99b2d8a656f8e666854404f1ba54765871104e50c8e9813af8a7db07f12", - "sha256:dcaf7c1524c0542ee2fc82cc8ec337f7a9f7edee2532421ab200d2b920fc97cf", - "sha256:dd4eda173a9fcccb5f2e2bd2a9f423d180194b1bf17cf59e3269899235b2a114", - "sha256:dd9a8bd8900e65504a305bf8ae6fa9fbc66de94178c420791d0293702fce2df7", - "sha256:de7376c29d95d6719048c194a9cf1a1b0393fbe8488a22008610b0361d834ecf", - "sha256:e7fdd52961feb4c96507aa649550ec2a0d527c086d284749b2f582f2d40a2e0d", - "sha256:e91f541a85298cf35433bf66f3fab2a4a2cff05c127eeca4af174f6d497f0d4b", - "sha256:e9e3c4c9e1ed40ea53acf11e2a386383c3304212c965773704e4603d589343ed", - "sha256:ee803480535c44e7f5ad00788526da7d85525cfefaf8acf8ab9a310000be4b03", - "sha256:f09cb5a7bbe1ecae6e87901a2eb23e0256bb524a79ccc53eb0b7629fbe7677c4", - "sha256:f19c1585933c82098c2a520f8ec1227f20e339e33aca8fa6f956f6691b784e67", - "sha256:f1a2f519ae173b5b6a2c9d5fa3116ce16e48b3462c8b96dfdded11055e3d6365", - "sha256:f28f891ccd15c514a0981f3b9db9aa23d62fe1a99997512b0491d2ed323d229a", - "sha256:f3e73a4255342d4eb26ef6df01e3962e73aa29baa3124a8e824c5d3364a65748", - "sha256:f606a1881d2663630ea5b8ce2efe2111740df4b687bd78b34a8131baa007f79b", - "sha256:fe9f97feb71aa9896b81973a7bbada8c49501dc73e58a10fcef6663af95e5079", - "sha256:ffc519621dce0c767e96b9c53f09c5d215578e10b02c285809f76509a3931482" + "sha256:027f6de494925c0ab2a55eab46ae5129951638a49a34d87f4c3eda90f696b4ad", + "sha256:077fbb858e903c73f6c9db43374fd213b0b6a778106bc7032446a8e8b5b38b93", + "sha256:0a98e6759f854bd25a58a73fa88833fba3b7c491169f86ce1180c948ab3fd394", + "sha256:0d3d8f15c07f86e9ff82319b3d9ef6f4bf907608f53fe9d92b28ea9ae3d1fd89", + "sha256:0f04b14ffe5fdc8c4933862d8306109a2c51e0704acfa35d51598eb45a1e89fc", + "sha256:11d694519d7f29d6cd09f6ac70028dba10f92f6cdd059096db198c283794ac86", + "sha256:194f08cbb32dc406d6e1aea671a68be0823673db2832b38405deba2fb0d88f63", + "sha256:1bee1e43c28aa63cb16e5c14e582580546b08e535299b8b6158a7c9c768a1f3d", + "sha256:21d142cc6c0ec30d2efee5068ca36c128a30b0f2c53c1c07bd78cb6bc1d3be5f", + "sha256:2437418e20515acec67d86e12bf70056a33abdacb5cb1655042f6538d6b085a8", + "sha256:244bfb999c71b35de57821b8ea746b24e863398194a4014e4c76adc2bbdfeff0", + "sha256:2677acec1a2f8ef614c6888b5b4ae4060cc184174a938ed4e8ef690e15d3e505", + "sha256:277e970e750505ed74c832b4bf75dac7476262ee2a013f5574dd49075879e161", + "sha256:2aaba3b0819274cc41757a1da876f810a3e4d7b6eb25699253a4effef9e8e4af", + "sha256:2b7d8f6c26245217bd2ad053761201e9f9680f8ce52f0fcd8d0755aeae5b2152", + "sha256:2c9d3c380143a1fedbff95a312aa798578371eb29da42106a29019368a475318", + "sha256:3162d5d8ce1bb98dd51af660f2121c55d0fa541b46dff7bb9b9f86ea1d87de72", + "sha256:31fd66405eaf47bb62e8cd575dc621c56c668f27d46a61d975a249930dd5e2a4", + "sha256:362d61fd13843997c1c446760ef36f240cf81d3ebf74ac62652aebaf7838561e", + "sha256:376bec83a63b8021bb5c8ea75e21c4ccb86e7e45ca4eb81146091b56599b80c3", + "sha256:44c2a8734b333e0578090c4cd6b16f275e07aa6614ca8715e6c038e865e70576", + "sha256:47cc91b2f4dd2833fddaedd2893006b0106129d4b94fdb6af1f4ce5a9965577c", + "sha256:4902828217069c3c5c71094537a8e623f5d097858ac6ca8252f7b4d10b7560f1", + "sha256:4bd5d4137d500351a30687c2d3971758aac9a19208fc110ccb9d7188fbe709e8", + "sha256:4fe7859a4e3e8457458e2ff592f15ccb02f3da787fcd31e0183879c3ad4692a1", + "sha256:542d2cee80be6f80247095cc36c418f7bddd14f4a6de45af91dfad36d817bba2", + "sha256:554af85e960429cf30784dd47447d5125aaa3b99a6f0683589dbd27e2f45da44", + "sha256:5833d2c39d8896e4e19b689ffc198f08ea58116bee26dea51e362ecc7cd3ed26", + "sha256:5947809c8a2417be3267efc979c47d76a079758166f7d43ef5ae8e9f92751f88", + "sha256:5ae497466c7901d54b639cf42d5b8c1b6a4fead55215500d2f486d34db48d016", + "sha256:5bd2293095d766545ec1a8f612559f6b40abc0eb18bb2f5d1171872d34036ede", + "sha256:5bfbb1b9acf3334612667b61bd3002196fe2a1eb4dd74d247e0f2a4d50ec9bbf", + "sha256:5cb4d72eea50c8868f5288b7f7f33ed276118325c1dfd3957089f6b519e1382a", + "sha256:5dbe56a36425d26d6cfb40ce79c314a2e4dd6211d51d6d2191c00bed34f354cc", + "sha256:5f819d5fe9234f9f82d75bdfa9aef3a3d72c4d24a6e57aeaebba32a704553aa0", + "sha256:64b55f9dce520635f018f907ff1b0df1fdc31f2795a922fb49dd14fbcdf48c84", + "sha256:6515f3182dbe4ea06ced2d9e8666d97b46ef4c75e326b79bb624110f122551db", + "sha256:65e2befcd84bc6f37095f5961e68a6f077bf44946771354a28ad434c2cce0ae1", + "sha256:6aee717dcfead04c6eb1ce3bd29ac1e22663cdea57f943c87d1eab9a025438d7", + "sha256:6b39f987ae8ccdf0d2642338faf2abb1862340facc796048b604ef14919e55ed", + "sha256:6e1fcf0720908f200cd21aa4e6750a48ff6ce4afe7ff5a79a90d5ed8a08296f8", + "sha256:74018750915ee7ad843a774364e13a3db91682f26142baddf775342c3f5b1133", + "sha256:74664978bb272435107de04e36db5a9735e78232b85b77d45cfb38f758efd33e", + "sha256:74bb723680f9f7a6234dcf67aea57e708ec1fbdf5699fb91dfd6f511b0a320ef", + "sha256:752944c7ffbfdd10c074dc58ec2d5a8a4cd9493b314d367c14d24c17684ddd14", + "sha256:778d2e08eda00f4256d7f672ca9fef386071c9202f5e4607920b86d7803387f2", + "sha256:780236ac706e66881f3b7f2f32dfe90507a09e67d1d454c762cf642e6e1586e0", + "sha256:798d75d81754988d2565bff1b97ba5a44411867c0cf32b77a7e8f8d84796b10d", + "sha256:799a7a5e4fb2d5898c60b640fd4981d6a25f1c11790935a44ce38c54e985f828", + "sha256:7a32c560861a02ff789ad905a2fe94e3f840803362c84fecf1851cb4cf3dc37f", + "sha256:7c308f7e26e4363d79df40ca5b2be1c6ba9f02bdbccfed5abddb7859a6ce72cf", + "sha256:7fa17817dc5625de8a027cb8b26d9fefa3ea28c8253929b8d6649e705d2835b6", + "sha256:81d5eb2a312700f4ecaa977a8235b634ce853200e828fbadf3a9c50bab278328", + "sha256:82004af6c302b5d3ab2cfc4cc5f29db16123b1a8417f2e25f9066f91d4411090", + "sha256:837c2ce8c5a65a2035be9b3569c684358dfbf109fd3b6969630a87535495ceaa", + "sha256:840c25fb618a231545cbab0564a799f101b63b9901f2569faecd6b222ac72381", + "sha256:8a6562c3700cce886c5be75ade4a5db4214fda19fede41d9792d100288d8f94c", + "sha256:8af65f14dc14a79b924524b1e7fffe304517b2bff5a58bf64f30b98bbc5079eb", + "sha256:8ef3c867360f88ac904fd3f5e1f902f13307af9052646963ee08ff4f131adafc", + "sha256:94537985111c35f28720e43603b8e7b43a6ecfb2ce1d3058bbe955b73404e21a", + "sha256:99ae2cffebb06e6c22bdc25801d7b30f503cc87dbd283479e7b606f70aff57ec", + "sha256:9a26f18905b8dd5d685d6d07b0cdf98a79f3c7a918906af7cc143ea2e164c8bc", + "sha256:9b35f4c90079ff2e2edc5b26c0c77925e5d2d255c42c74fdb70fb49b172726ac", + "sha256:9cd98cdc06614a2f768d2b7286d66805f94c48cde050acdbbb7db2600ab3197e", + "sha256:9d1bb833febdff5c8927f922386db610b49db6e0d4f4ee29601d71e7c2694313", + "sha256:9f7fcd74d410a36883701fafa2482a6af2ff5ba96b9a620e9e0721e28ead5569", + "sha256:a59cb51917aa591b1c4e6a43c132f0cdc3c76dbad6155df4e28ee626cc77a0a3", + "sha256:a61900df84c667873b292c3de315a786dd8dac506704dea57bc957bd31e22c7d", + "sha256:a79cfe37875f822425b89a82333404539ae63dbdddf97f84dcbc3d339aae9525", + "sha256:a8a8b89589086a25749f471e6a900d3f662d1d3b6e2e59dcecf787b1cc3a1894", + "sha256:a8bf8d0f749c5757af2142fe7903a9df1d2e8aa3841559b2bad34b08d0e2bcf3", + "sha256:a9768c477b9d7bd54bc0c86dbaebdec6f03306675526c9927c0e8a04e8f94af9", + "sha256:ac1c4a689edcc530fc9d9aa11f5774b9e2f33f9a0c6a57864e90908f5208d30a", + "sha256:af2d8c67d8e573d6de5bc30cdb27e9b95e49115cd9baad5ddbd1a6207aaa82a9", + "sha256:b435cba5f4f750aa6c0a0d92c541fb79f69a387c91e61f1795227e4ed9cece14", + "sha256:b5b290ccc2a263e8d185130284f8501e3e36c5e02750fc6b6bdeb2e9e96f1e25", + "sha256:b5d84d37db046c5ca74ee7bb47dd6cbc13f80665fdde3e8040bdd3fb015ecb50", + "sha256:b7cf1017d601aa35e6bb650b6ad28652c9cd78ee6caff19f3c28d03e1c80acbf", + "sha256:bc7637e2f80d8530ee4a78e878bce464f70087ce73cf7c1caf142416923b98f1", + "sha256:c0463276121fdee9c49b98908b3a89c39be45d86d1dbaa22957e38f6321d4ce3", + "sha256:c4ef880e27901b6cc782f1b95f82da9313c0eb95c3af699103088fa0ac3ce9ac", + "sha256:c8ae8a0f02f57a6e61203a31428fa1d677cbe50c93622b4149d5c0f319c1d19e", + "sha256:ca5862d5b3928c4940729dacc329aa9102900382fea192fc5e52eb69d6093815", + "sha256:cb01158d8b88ee68f15949894ccc6712278243d95f344770fa7593fa2d94410c", + "sha256:cb6254dc36b47a990e59e1068afacdcd02958bdcce30bb50cc1700a8b9d624a6", + "sha256:cc00f04ed596e9dc0da42ed17ac5e596c6ccba999ba6bd92b0e0aef2f170f2d6", + "sha256:cd09d08005f958f370f539f186d10aec3377d55b9eeb0d796025d4886119d76e", + "sha256:cd4b7ca9984e5e7985c12bc60a6f173f3c958eae74f3ef6624bb6b26e2abbae4", + "sha256:ce8a0633f41a967713a59c4139d29110c07e826d131a316b50ce11b1d79b4f84", + "sha256:cead0978fc57397645f12578bfd2d5ea9138ea0fac82b2f63f7f7c6877986a69", + "sha256:d055ec1e26e441f6187acf818b73564e6e6282709e9bcb5b63f5b23068356a15", + "sha256:d1f13550535ad8cff21b8d757a3257963e951d96e20ec82ab44bc64aeb62a191", + "sha256:d9c7f57c3d666a53421049053eaacdd14bbd0a528e2186fcb2e672effd053bb0", + "sha256:d9e45d7faa48ee908174d8fe84854479ef838fc6a705c9315372eacbc2f02897", + "sha256:da3326d9e65ef63a817ecbcc0df6e94463713b754fe293eaa03da99befb9a5bd", + "sha256:de00632ca48df9daf77a2c65a484531649261ec9f25489917f09e455cb09ddb2", + "sha256:e1f185f86a6f3403aa2420e815904c67b2f9ebc443f045edd0de921108345794", + "sha256:e824f1492727fa856dd6eda4f7cee25f8518a12f3c4a56a74e8095695089cf6d", + "sha256:e912091979546adf63357d7e2ccff9b44f026c075aeaf25a52d0e95ad2281074", + "sha256:eaabd426fe94daf8fd157c32e571c85cb12e66692f15516a83a03264b08d06c3", + "sha256:ebf3e58c7ec8a8bed6d66a75d7fb37b55e5015b03ceae72a8e7c74495551e224", + "sha256:ecaae4149d99b1c9e7b88bb03e3221956f68fd6d50be2ef061b2381b61d20838", + "sha256:eecbc200c7fd5ddb9a7f16c7decb07b566c29fa2161a16cf67b8d068bd21690a", + "sha256:f155a433c2ec037d4e8df17d18922c3a0d9b3232a396690f17175d2946f0218d", + "sha256:f1e34719c6ed0b92f418c7c780480b26b5d9c50349e9a9af7d76bf757530350d", + "sha256:f34be2938726fc13801220747472850852fe6b1ea75869a048d6f896838c896f", + "sha256:f820802628d2694cb7e56db99213f930856014862f3fd943d290ea8438d07ca8", + "sha256:f8bf04158c6b607d747e93949aa60618b61312fe647a6369f88ce2ff16043490", + "sha256:f8e160feb2aed042cd657a72acc0b481212ed28b1b9a95c0cee1621b524e1966", + "sha256:f9d332f8c2a2fcbffe1378594431458ddbef721c1769d78e2cbc06280d8155f9", + "sha256:fa09f53c465e532f4d3db095e0c55b615f010ad81803d383195b6b5ca6cbf5f3", + "sha256:faa3a41b2b66b6e50f84ae4a68c64fcd0c44355741c6374813a800cd6695db9e", + "sha256:fd44c878ea55ba351104cb93cc85e74916eb8fa440ca7903e57575e97394f608" ], "index": "pypi", - "version": "==3.4.0" + "markers": "python_version >= '3.7'", + "version": "==3.4.4" }, "click": { "hashes": [ @@ -820,109 +786,101 @@ "toml" ], "hashes": [ - "sha256:0018f73dfb4301a89292c73be6ba5f58722ff79f51593352759c1790ded1cabe", - "sha256:00c3d22cf6fb1cf3bf662aaaa4e563be8243a5ed2630339069799835a9cc7f9b", - "sha256:02d9fb9eccd48f6843c98a37bd6817462f130b86da8660461e8f5e54d4c06070", - "sha256:0602f701057c6823e5db1b74530ce85f17c3c5be5c85fc042ac939cbd909426e", - "sha256:06cac81bf10f74034e055e903f5f946e3e26fc51c09fc9f584e4a1605d977053", - "sha256:086cede306d96202e15a4b77ace8472e39d9f4e5f9fd92dd4fecdfb2313b2080", - "sha256:0900872f2fdb3ee5646b557918d02279dc3af3dfb39029ac4e945458b13f73bc", - "sha256:0a3a30f0e257df382f5f9534d4ce3d4cf06eafaf5192beb1a7bd066cb10e78fb", - "sha256:0b3d67d31383c4c68e19a88e28fc4c2e29517580f1b0ebec4a069d502ce1e0bf", - "sha256:0dfa3855031070058add1a59fdfda0192fd3e8f97e7c81de0596c145dea51820", - "sha256:0f4872f5d6c54419c94c25dd6ae1d015deeb337d06e448cd890a1e89a8ee7f3b", - "sha256:11c21557d0e0a5a38632cbbaca5f008723b26a89d70db6315523df6df77d6232", - "sha256:166ad2a22ee770f5656e1257703139d3533b4a0b6909af67c6b4a3adc1c98657", - "sha256:193c3887285eec1dbdb3f2bd7fbc351d570ca9c02ca756c3afbc71b3c98af6ef", - "sha256:1d84e91521c5e4cb6602fe11ece3e1de03b2760e14ae4fcf1a4b56fa3c801fcd", - "sha256:1ed5630d946859de835a85e9a43b721123a8a44ec26e2830b296d478c7fd4259", - "sha256:22486cdafba4f9e471c816a2a5745337742a617fef68e890d8baf9f3036d7833", - "sha256:22ccfe8d9bb0d6134892cbe1262493a8c70d736b9df930f3f3afae0fe3ac924d", - "sha256:24e4e56304fdb56f96f80eabf840eab043b3afea9348b88be680ec5986780a0f", - "sha256:25dc33618d45456ccb1d37bce44bc78cf269909aa14c4db2e03d63146a8a1493", - "sha256:263c3dbccc78e2e331e59e90115941b5f53e85cfcc6b3b2fbff1fd4e3d2c6ea8", - "sha256:28ee1c96109974af104028a8ef57cec21447d42d0e937c0275329272e370ebcf", - "sha256:30a3a201a127ea57f7e14ba43c93c9c4be8b7d17a26e03bb49e6966d019eede9", - "sha256:3188936845cd0cb114fa6a51842a304cdbac2958145d03be2377ec41eb285d19", - "sha256:367449cf07d33dc216c083f2036bb7d976c6e4903ab31be400ad74ad9f85ce98", - "sha256:37eee4e552a65866f15dedd917d5e5f3d59805994260720821e2c1b51ac3248f", - "sha256:3a10260e6a152e5f03f26db4a407c4c62d3830b9af9b7c0450b183615f05d43b", - "sha256:3a7b1cd820e1b6116f92c6128f1188e7afe421c7e1b35fa9836b11444e53ebd9", - "sha256:3ab483ea0e251b5790c2aac03acde31bff0c736bf8a86829b89382b407cd1c3b", - "sha256:3ad968d1e3aa6ce5be295ab5fe3ae1bf5bb4769d0f98a80a0252d543a2ef2e9e", - "sha256:445badb539005283825959ac9fa4a28f712c214b65af3a2c464f1adc90f5fcbc", - "sha256:453b7ec753cf5e4356e14fe858064e5520c460d3bbbcb9c35e55c0d21155c256", - "sha256:494f5459ffa1bd45e18558cd98710c36c0b8fbfa82a5eabcbe671d80ecffbfe8", - "sha256:4b5de7d4583e60d5fd246dd57fcd3a8aa23c6e118a8c72b38adf666ba8e7e927", - "sha256:4f3e223b2b2db5e0db0c2b97286aba0036ca000f06aca9b12112eaa9af3d92ae", - "sha256:4fdb6f54f38e334db97f72fa0c701e66d8479af0bc3f9bfb5b90f1c30f54500f", - "sha256:51a202e0f80f241ccb68e3e26e19ab5b3bf0f813314f2c967642f13ebcf1ddfe", - "sha256:581f086833d24a22c89ae0fe2142cfaa1c92c930adf637ddf122d55083fb5a0f", - "sha256:583221913fbc8f53b88c42e8dbb8fca1d0f2e597cb190ce45916662b8b9d9621", - "sha256:58632b187be6f0be500f553be41e277712baa278147ecb7559983c6d9faf7ae1", - "sha256:5c67dace46f361125e6b9cace8fe0b729ed8479f47e70c89b838d319375c8137", - "sha256:5e70f92ef89bac1ac8a99b3324923b4749f008fdbd7aa9cb35e01d7a284a04f9", - "sha256:5f5d9bd30756fff3e7216491a0d6d520c448d5124d3d8e8f56446d6412499e74", - "sha256:5f8a0297355e652001015e93be345ee54393e45dc3050af4a0475c5a2b767d46", - "sha256:62d7c4f13102148c78d7353c6052af6d899a7f6df66a32bddcc0c0eb7c5326f8", - "sha256:69ac2c492918c2461bc6ace42d0479638e60719f2a4ef3f0815fa2df88e9f940", - "sha256:6abb3a4c52f05e08460bd9acf04fec027f8718ecaa0d09c40ffbc3fbd70ecc39", - "sha256:6e63ccc6e0ad8986386461c3c4b737540f20426e7ec932f42e030320896c311a", - "sha256:6e9e451dee940a86789134b6b0ffbe31c454ade3b849bb8a9d2cca2541a8e91d", - "sha256:6fb2d5d272341565f08e962cce14cdf843a08ac43bd621783527adb06b089c4b", - "sha256:71936a8b3b977ddd0b694c28c6a34f4fff2e9dd201969a4ff5d5fc7742d614b0", - "sha256:73419b89f812f498aca53f757dd834919b48ce4799f9d5cad33ca0ae442bdb1a", - "sha256:739c6c051a7540608d097b8e13c76cfa85263ced467168dc6b477bae3df7d0e2", - "sha256:7464663eaca6adba4175f6c19354feea61ebbdd735563a03d1e472c7072d27bb", - "sha256:74c136e4093627cf04b26a35dab8cbfc9b37c647f0502fc313376e11726ba303", - "sha256:76541dc8d53715fb4f7a3a06b34b0dc6846e3c69bc6204c55653a85dd6220971", - "sha256:7a485ff48fbd231efa32d58f479befce52dcb6bfb2a88bb7bf9a0b89b1bc8030", - "sha256:7e442c013447d1d8d195be62852270b78b6e255b79b8675bad8479641e21fd96", - "sha256:7f15a931a668e58087bc39d05d2b4bf4b14ff2875b49c994bbdb1c2217a8daeb", - "sha256:7f88ae3e69df2ab62fb0bc5219a597cb890ba5c438190ffa87490b315190bb33", - "sha256:8069e831f205d2ff1f3d355e82f511eb7c5522d7d413f5db5756b772ec8697f8", - "sha256:850d2998f380b1e266459ca5b47bc9e7daf9af1d070f66317972f382d46f1904", - "sha256:898cce66d0836973f48dda4e3514d863d70142bdf6dfab932b9b6a90ea5b222d", - "sha256:9097818b6cc1cfb5f174e3263eba4a62a17683bcfe5c4b5d07f4c97fa51fbf28", - "sha256:936bc20503ce24770c71938d1369461f0c5320830800933bc3956e2a4ded930e", - "sha256:9372dff5ea15930fea0445eaf37bbbafbc771a49e70c0aeed8b4e2c2614cc00e", - "sha256:9987a9e4f8197a1000280f7cc089e3ea2c8b3c0a64d750537809879a7b4ceaf9", - "sha256:99acd4dfdfeb58e1937629eb1ab6ab0899b131f183ee5f23e0b5da5cba2fec74", - "sha256:9b01c22bc74a7fb44066aaf765224c0d933ddf1f5047d6cdfe4795504a4493f8", - "sha256:a00d3a393207ae12f7c49bb1c113190883b500f48979abb118d8b72b8c95c032", - "sha256:a23e5a1f8b982d56fa64f8e442e037f6ce29322f1f9e6c2344cd9e9f4407ee57", - "sha256:a2bdb3babb74079f021696cb46b8bb5f5661165c385d3a238712b031a12355be", - "sha256:a394aa27f2d7ff9bc04cf703817773a59ad6dfbd577032e690f961d2460ee936", - "sha256:a6c6e16b663be828a8f0b6c5027d36471d4a9f90d28444aa4ced4d48d7d6ae8f", - "sha256:af0a583efaacc52ae2521f8d7910aff65cdb093091d76291ac5820d5e947fc1c", - "sha256:af827b7cbb303e1befa6c4f94fd2bf72f108089cfa0f8abab8f4ca553cf5ca5a", - "sha256:c4be718e51e86f553bcf515305a158a1cd180d23b72f07ae76d6017c3cc5d791", - "sha256:cdb3c9f8fef0a954c632f64328a3935988d33a6604ce4bf67ec3e39670f12ae5", - "sha256:d10fd186aac2316f9bbb46ef91977f9d394ded67050ad6d84d94ed6ea2e8e54e", - "sha256:d1e97353dcc5587b85986cda4ff3ec98081d7e84dd95e8b2a6d59820f0545f8a", - "sha256:d2a9d7f1c11487b1c69367ab3ac2d81b9b3721f097aa409a3191c3e90f8f3dd7", - "sha256:de7f6748b890708578fc4b7bb967d810aeb6fcc9bff4bb77dbca77dab2f9df6a", - "sha256:e5330fa0cc1f5c3c4c3bb8e101b742025933e7848989370a1d4c8c5e401ea753", - "sha256:e999e2dcc094002d6e2c7bbc1fb85b58ba4f465a760a8014d97619330cdbbbf3", - "sha256:eb76670874fdd6091eedcc856128ee48c41a9bbbb9c3f1c7c3cf169290e3ffd6", - "sha256:f1c23e24a7000da892a312fb17e33c5f94f8b001de44b7cf8ba2e36fbd15859e", - "sha256:f2ffc92b46ed6e6760f1d47a71e56b5664781bc68986dbd1836b2b70c0ce2071", - "sha256:f4f72a85316d8e13234cafe0a9f81b40418ad7a082792fa4165bd7d45d96066b", - "sha256:f59883c643cb19630500f57016f76cfdcd6845ca8c5b5ea1f6e17f74c8e5f511", - "sha256:f6aaef16d65d1787280943f1c8718dc32e9cf141014e4634d64446702d26e0ff", - "sha256:fe81055d8c6c9de76d60c94ddea73c290b416e061d40d542b24a5871bad498b7", - "sha256:ff45e0cd8451e293b63ced93161e189780baf444119391b3e7d25315060368a6" + "sha256:00d34b29a59d2076e6f318b30a00a69bf63687e30cd882984ed444e753990cc1", + "sha256:00dd3f02de6d5f5c9c3d95e3e036c3c2e2a669f8bf2d3ceb92505c4ce7838f67", + "sha256:01119735c690786b6966a1e9f098da4cd7ca9174c4cfe076d04e653105488395", + "sha256:03a6e5e1e50819d6d7436f5bc40c92ded7e484e400716886ac921e35c133149d", + "sha256:05dd25b21afffe545e808265897c35f32d3e4437663923e0d256d9ab5031fb14", + "sha256:06d316dbb3d9fd44cca05b2dbcfbef22948493d63a1f28e828d43e6cc505fed8", + "sha256:06e49c5897cb12e3f7ecdc111d44e97c4f6d0557b81a7a0204ed70a8b038f86f", + "sha256:0b4f345f7265cdbdb5ec2521ffff15fa49de6d6c39abf89fc7ad68aa9e3a55f0", + "sha256:0c2be202a83dde768937a61cdc5d06bf9fb204048ca199d93479488e6247656c", + "sha256:0f45e32ef383ce56e0ca099b2e02fcdf7950be4b1b56afaab27b4ad790befe5b", + "sha256:123ceaf2b9d8c614f01110f908a341e05b1b305d6b2ada98763b9a5a59756051", + "sha256:16d23d6579cf80a474ad160ca14d8b319abaa6db62759d6eef53b2fc979b58c8", + "sha256:2213a8d88ed35459bda71597599d4eec7c2ebad201c88f0bfc2c26fd9b0dd2ea", + "sha256:24db3959de8ee394eeeca89ccb8ba25305c2da9a668dd44173394cbd5aa0777f", + "sha256:284e06eadfe15ddfee2f4ee56631f164ef897a7d7d5a15bca5f0bb88889fc5ba", + "sha256:299d66e9218193f9dc6e4880629ed7c4cd23486005166247c283fb98531656c3", + "sha256:2d098709621d0819039f3f1e471ee554f55a0b2ac0d816883c765b14129b5627", + "sha256:2f5e731627a3d5ef11a2a35aa0c6f7c435867c7ccbc391268eb4f2ca5dbdcc10", + "sha256:303d38b19626c1981e1bb067a9928236d88eb0e4479b18a74812f05a82071508", + "sha256:318002f1fd819bdc1651c619268aa5bc853c35fa5cc6d1e8c96bd9cd6c828b75", + "sha256:318b2e4753cbf611061e01b6cc81477e1cdfeb69c36c4a14e6595e674caadb56", + "sha256:31b6e889c53d4e6687ca63706148049494aace140cffece1c4dc6acadb70a7b3", + "sha256:343aaeb5f8bb7bcd38620fd7bc56e6ee8207847d8c6103a1e7b72322d381ba4a", + "sha256:3d1aed4f4e837a832df2f3b4f68a690eede0de4560a2dbc214ea0bc55aabcdb4", + "sha256:3f379b02c18a64de78c4ccdddf1c81c2c5ae1956c72dacb9133d7dd7809794ab", + "sha256:44f14a62f5da2e9aedf9080e01d2cda61df39197d48e323538ec037336d68da8", + "sha256:46d29926349b5c4f1ea4fca95e8c892835515f3600995a383fa9a923b5739ea4", + "sha256:51c4c42c0e7d09a822b08b6cf79b3c4db8333fffde7450da946719ba0d45730f", + "sha256:53be4aab8ddef18beb6188f3a3fdbf4d1af2277d098d4e618be3a8e6c88e74be", + "sha256:562136b0d401992118d9b49fbee5454e16f95f85b120a4226a04d816e33fe024", + "sha256:5907605ee20e126eeee2abe14aae137043c2c8af2fa9b38d2ab3b7a6b8137f73", + "sha256:59224bfb2e9b37c1335ae35d00daa3a5b4e0b1a20f530be208fff1ecfa436f43", + "sha256:5b1ad2e0dc672625c44bc4fe34514602a9fd8b10d52ddc414dc585f74453516c", + "sha256:5badd7e596e6b0c89aa8ec6d37f4473e4357f982ce57f9a2942b0221cd9cf60c", + "sha256:5d67b9ed6f7b5527b209b24b3df9f2e5bf0198c1bbf99c6971b0e2dcb7e2a107", + "sha256:65436cde5ecabe26fb2f0bf598962f0a054d3f23ad529361326ac002c61a2a1e", + "sha256:6ed2e787249b922a93cd95c671cc9f4c9797a106e81b455c83a9ddb9d34590c0", + "sha256:71295f2d1d170b9977dc386d46a7a1b7cbb30e5405492529b4c930113a33f895", + "sha256:75b3c0300f3fa15809bd62d9ca8b170eb21fcf0100eb4b4154d6dc8b3a5bbd43", + "sha256:79f2670c7e772f4917895c3d89aad59e01f3dbe68a4ed2d0373b431fad1dcfba", + "sha256:7a482f2da9086971efb12daca1d6547007ede3674ea06e16d7663414445c683e", + "sha256:7bbb5aa9016c4c29e3432e087aa29ebee3f8fda089cfbfb4e6d64bd292dcd1c2", + "sha256:7df8759ee57b9f3f7b66799b7660c282f4375bef620ade1686d6a7b03699e75f", + "sha256:824bb95cd71604031ae9a48edb91fd6effde669522f960375668ed21b36e3ec4", + "sha256:853c3d3c79ff0db65797aad79dee6be020efd218ac4510f15a205f1e8d13ce25", + "sha256:87ff33b652b3556b05e204ae20793d1f872161b0fa5ec8a9ac76f8430e152ed6", + "sha256:8bb09e83c603f152d855f666d70a71765ca8e67332e5829e62cb9466c176af23", + "sha256:8f1010029a5b52dc427c8e2a8dbddb2303ddd180b806687d1acd1bb1d06649e7", + "sha256:8f2adf4bcffbbec41f366f2e6dffb9d24e8172d16e91da5799c9b7ed6b5716e6", + "sha256:90a8af9dba6429b2573199622d72e0ebf024d6276f16abce394ad4d181bb0910", + "sha256:94d2ac94bd0cc57c5626f52f8c2fffed1444b5ae8c9fc68320306cc2b255e155", + "sha256:96c3be8bae9d0333e403cc1a8eb078a7f928b5650bae94a18fb4820cc993fb9b", + "sha256:989aa158c0eb19d83c76c26f4ba00dbb272485c56e452010a3450bdbc9daafd9", + "sha256:99fee45adbb1caeb914da16f70e557fb7ff6ddc9e4b14de665bd41af631367ef", + "sha256:9db3a3285d91c0b70fab9f39f0a4aa37d375873677efe4e71e58d8321e8c5d39", + "sha256:9f9efbbaf79f935d5fbe3ad814825cbce4f6cdb3054384cb49f0c0f496125fa0", + "sha256:a2f7589c6132c44c53f6e705e1a6677e2b7821378c22f7703b2cf5388d0d4587", + "sha256:a88705500988c8acad8b8fd86c2a933d3aa96bec1ddc4bc5cb256360db7bbd00", + "sha256:ab6d72bffac9deb6e6cb0f61042e748de3f9f8e98afb0375a8e64b0b6e11746b", + "sha256:ae9306b5299e31e31e0d3b908c66bcb6e7e3ddca143dea0266e9ce6c667346d3", + "sha256:b2182129f4c101272ff5f2f18038d7b698db1bf8e7aa9e615cb48440899ad32e", + "sha256:b2beb64c145593a50d90db5c7178f55daeae129123b0d265bdb3cbec83e5194a", + "sha256:b607a40cba795cfac6d130220d25962931ce101f2f478a29822b19755377fb34", + "sha256:be14d0622125edef21b3a4d8cd2d138c4872bf6e38adc90fd92385e3312f406a", + "sha256:bfeee64ad8b4aae3233abb77eb6b52b51b05fa89da9645518671b9939a78732b", + "sha256:c5e9787cec750793a19a28df7edd85ac4e49d3fb91721afcdc3b86f6c08d9aa8", + "sha256:c672d4e2f0575a4ca2bf2aa0c5ced5188220ab806c1bb6d7179f70a11a017222", + "sha256:c6f6169bbdbdb85aab8ac0392d776948907267fcc91deeacf6f9d55f7a83ae3b", + "sha256:ca46e5c3be3b195098dd88711890b8011a9fa4feca942292bb84714ce5eab5d3", + "sha256:cc7fd0f726795420f3678ac82ff882c7fc33770bd0074463b5aef7293285ace9", + "sha256:cd5dee4fd7659d8306ffa79eeaaafd91fa30a302dac3af723b9b469e549247e0", + "sha256:d1a049b5c51b3b679928dd35e47c4a2235e0b6128b479a7596d0ef5b42fa6301", + "sha256:d358dc408edc28730aed5477a69338e444e62fba0b7e9e4a131c505fadad691e", + "sha256:d3a16d6398666510a6886f67f43d9537bfd0e13aca299688a19daa84f543122f", + "sha256:d401f0864a1d3198422816878e4e84ca89ec1c1bf166ecc0ae01380a39b888cd", + "sha256:d6f4a21328ea49d38565b55599e1c02834e76583a6953e5586d65cb1efebd8f8", + "sha256:db83b77f97129813dbd463a67e5335adc6a6a91db652cc085d60c2d512746f96", + "sha256:debf29e0b157769843dff0981cc76f79e0ed04e36bb773c6cac5f6029054bd8a", + "sha256:dfb428e41377e6b9ba1b0a32df6db5409cb089a0ed1d0a672dc4953ec110d84f", + "sha256:e129328ad1258e49cae0123a3b5fcb93d6c2fa90d540f0b4c7cdcdc019aaa3dc", + "sha256:e5b86db331c682fd0e4be7098e6acee5e8a293f824d41487c667a93705d415ca", + "sha256:ed48b4170caa2c4420e0cd27dc977caaffc7eecc317355751df8373dddcef595", + "sha256:edc7754932682d52cf6e7a71806e529ecd5ce660e630e8bd1d37109a2e5f63ba", + "sha256:f45c9bcb16bee25a798ccba8a2f6a1251b19de6a0d617bb365d7d2f386c4e20e", + "sha256:f75695e157c83d374f88dcc646a60cb94173304a9258b2e74ba5a66b7614a51a", + "sha256:f7f153d0184d45f3873b3ad3ad22694fd73aadcb8cdbc4337ab4b41ea6b4dff1", + "sha256:f7f6182d3dfb8802c1747eacbfe611b669455b69b7c037484bb1efbbb56711ac", + "sha256:f9bada7bc660d20b23d7d312ebe29e927b655cf414dadcdb6335a2075695bd86", + "sha256:fae6a21537519c2af00245e834e5bf2884699cc7c1055738fd0f9dc37a3644ad", + "sha256:fb25061a66802df9fc13a9ba1967d25faa4dae0418db469264fd9860a921dde4", + "sha256:fc970575799a9d17d5c3fafd83a0f6ccf5d5117cdc9ad6fbd791e9ead82418b0", + "sha256:fcda51c918c7a13ad93b5f89a58d56e3a072c9e0ba5c231b0ed81404bf2648fb" ], "markers": "python_version >= '3.10'", - "version": "==7.13.0" - }, - "exceptiongroup": { - "hashes": [ - "sha256:3111b9d131c238bec2f8f516e123e14ba243563fb135d3fe885990585aa7795b", - "sha256:47c2edf7c6738fafb49fd34290706d1a1a2f4d1c6df275526b62cbb4aa5393cc" - ], - "markers": "python_version < '3.11'", - "version": "==1.2.2" + "version": "==7.13.3" }, "flake8": { "hashes": [ @@ -947,15 +905,17 @@ "sha256:20de0e5dd5a18292d36d928cc3d6e52f8b2ac73daec40d41eb62dee154933b68" ], "index": "pypi", + "markers": "python_version >= '3'", "version": "==1.1.4" }, "idna": { "hashes": [ - "sha256:12f65c9b470abda6dc35cf8e63cc574b1c52b11df2c86030af0ac09b01b13ea9", - "sha256:946d195a0d259cbba61165e88e65941f16e9b36ea6ddb97f00452bae8b1287d3" + "sha256:771a87f49d9defaf64091e6e6fe9c18d4833f140bd19464795bc32d966ca37ea", + "sha256:795dafcc9c04ed0c1fb032c2aa73654d8e8c5023a7df64a53f39190ada629902" ], "index": "pypi", - "version": "==3.10" + "markers": "python_version >= '3.8'", + "version": "==3.11" }, "iniconfig": { "hashes": [ @@ -965,6 +925,88 @@ "markers": "python_version >= '3.10'", "version": "==2.3.0" }, + "librt": { + "hashes": [ + "sha256:00105e7d541a8f2ee5be52caacea98a005e0478cfe78c8080fbb7b5d2b340c63", + "sha256:0241a6ed65e6666236ea78203a73d800dbed896cf12ae25d026d75dc1fcd1dac", + "sha256:03679b9856932b8c8f674e87aa3c55ea11c9274301f76ae8dc4d281bda55cf62", + "sha256:047164e5f68b7a8ebdf9fae91a3c2161d3192418aadd61ddd3a86a56cbe3dc85", + "sha256:171ca3a0a06c643bd0a2f62a8944e1902c94aa8e5da4db1ea9a8daf872685365", + "sha256:1a4ede613941d9c3470b0368be851df6bb78ab218635512d0370b27a277a0862", + "sha256:20e3946863d872f7cabf7f77c6c9d370b8b3d74333d3a32471c50d3a86c0a232", + "sha256:2991b6c3775383752b3ca0204842743256f3ad3deeb1d0adc227d56b78a9a850", + "sha256:31724b93baa91512bd0a376e7cf0b59d8b631ee17923b1218a65456fa9bda2e7", + "sha256:3469e1af9f1380e093ae06bedcbdd11e407ac0b303a56bbe9afb1d6824d4982d", + "sha256:389bd25a0db916e1d6bcb014f11aa9676cedaa485e9ec3752dfe19f196fd377b", + "sha256:3968762fec1b2ad34ce57458b6de25dbb4142713e9ca6279a0d352fa4e9f452b", + "sha256:39a4c76fee41007070f872b648cc2f711f9abf9a13d0c7162478043377b52c8e", + "sha256:3d1322800771bee4a91f3b4bd4e49abc7d35e65166821086e5afd1e6c0d9be44", + "sha256:41d7bb1e07916aeb12ae4a44e3025db3691c4149ab788d0315781b4d29b86afb", + "sha256:43d4e71b50763fcdcf64725ac680d8cfa1706c928b844794a7aa0fa9ac8e5f09", + "sha256:445b7304145e24c60288a2f172b5ce2ca35c0f81605f5299f3fa567e189d2e32", + "sha256:44e0c2cbc9bebd074cf2cdbe472ca185e824be4e74b1c63a8e934cea674bebf2", + "sha256:451e7ffcef8f785831fdb791bd69211f47e95dc4c6ddff68e589058806f044c6", + "sha256:46ef1f4b9b6cc364b11eea0ecc0897314447a66029ee1e55859acb3dd8757c93", + "sha256:4864045f49dc9c974dadb942ac56a74cd0479a2aafa51ce272c490a82322ea3c", + "sha256:4adc73614f0d3c97874f02f2c7fd2a27854e7e24ad532ea6b965459c5b757eca", + "sha256:4c3995abbbb60b3c129490fa985dfe6cac11d88fc3c36eeb4fb1449efbbb04fc", + "sha256:4d2f1e492cae964b3463a03dc77a7fe8742f7855d7258c7643f0ee32b6651dd3", + "sha256:535929b6eff670c593c34ff435d5440c3096f20fa72d63444608a5aef64dd581", + "sha256:5363427bc6a8c3b1719f8f3845ea53553d301382928a86e8fab7984426949bce", + "sha256:54feb7b4f2f6706bb82325e836a01be805770443e2400f706e824e91f6441dde", + "sha256:57175aa93f804d2c08d2edb7213e09276bd49097611aefc37e3fa38d1fb99ad0", + "sha256:5bcaaf624fd24e6a0cb14beac37677f90793a96864c67c064a91458611446e83", + "sha256:60c299e555f87e4c01b2eca085dfccda1dde87f5a604bb45c2906b8305819a93", + "sha256:631599598e2c76ded400c0a8722dec09217c89ff64dc54b060f598ed68e7d2a8", + "sha256:63937bd0f4d1cb56653dc7ae900d6c52c41f0015e25aaf9902481ee79943b33a", + "sha256:66daa6ac5de4288a5bbfbe55b4caa7bf0cd26b3269c7a476ffe8ce45f837f87d", + "sha256:6938cc2de153bc927ed8d71c7d2f2ae01b4e96359126c602721340eb7ce1a92d", + "sha256:6d772edc6a5f7835635c7562f6688e031f0b97e31d538412a852c49c9a6c92d5", + "sha256:6db5faf064b5bab9675c32a873436b31e01d66ca6984c6f7f92621656033a708", + "sha256:73fd300f501a052f2ba52ede721232212f3b06503fa12665408ecfc9d8fd149c", + "sha256:79feb4d00b2a4e0e05c9c56df707934f41fcb5fe53fd9efb7549068d0495b758", + "sha256:7aa7d5457b6c542ecaed79cec4ad98534373c9757383973e638ccced0f11f46d", + "sha256:7b0803e9008c62a7ef79058233db7ff6f37a9933b8f2573c05b07ddafa226611", + "sha256:7e03bea66af33c95ce3addf87a9bf1fcad8d33e757bc479957ddbc0e4f7207ac", + "sha256:864c4b7083eeee250ed55135d2127b260d7eb4b5e953a9e5df09c852e327961b", + "sha256:8766ece9de08527deabcd7cb1b4f1a967a385d26e33e536d6d8913db6ef74f06", + "sha256:87808a8d1e0bd62a01cafc41f0fd6818b5a5d0ca0d8a55326a81643cdda8f873", + "sha256:907ad09cfab21e3c86e8f1f87858f7049d1097f77196959c033612f532b4e592", + "sha256:95b67aa7eff150f075fda09d11f6bfb26edffd300f6ab1666759547581e8f666", + "sha256:978e8b5f13e52cf23a9e80f3286d7546baa70bc4ef35b51d97a709d0b28e537c", + "sha256:9b6943885b2d49c48d0cff23b16be830ba46b0152d98f62de49e735c6e655a63", + "sha256:9c1ba843ae20db09b9d5c80475376168feb2640ce91cd9906414f23cc267a1ff", + "sha256:a14229ac62adcf1b90a15992f1ab9c69ae8b99ffb23cb64a90878a6e8a2f5b81", + "sha256:a36515b1328dc5b3ffce79fe204985ca8572525452eacabee2166f44bb387b2c", + "sha256:ac9c8a458245c7de80bc1b9765b177055efff5803f08e548dd4bb9ab9a8d789b", + "sha256:ad64a14b1e56e702e19b24aae108f18ad1bf7777f3af5fcd39f87d0c5a814449", + "sha256:b09c52ed43a461994716082ee7d87618096851319bf695d57ec123f2ab708951", + "sha256:b45306a1fc5f53c9330fbee134d8b3227fe5da2ab09813b892790400aa49352d", + "sha256:b5b007bb22ea4b255d3ee39dfd06d12534de2fcc3438567d9f48cdaf67ae1ae3", + "sha256:b7e7f140c5169798f90b80d6e607ed2ba5059784968a004107c88ad61fb3641d", + "sha256:b9122094e3f24aa759c38f46bd8863433820654927370250f460ae75488b66ea", + "sha256:bb7a7807523a31f03061288cc4ffc065d684c39db7644c676b47d89553c0d714", + "sha256:be927c3c94c74b05128089a955fba86501c3b544d1d300282cc1b4bd370cb418", + "sha256:bfde8a130bd0f239e45503ab39fab239ace094d63ee1d6b67c25a63d741c0f71", + "sha256:c6f8947d3dfd7f91066c5b4385812c18be26c9d5a99ca56667547f2c39149d94", + "sha256:c7e8f88f79308d86d8f39c491773cbb533d6cb7fa6476f35d711076ee04fceb6", + "sha256:ca916919793a77e4a98d4a1701e345d337ce53be4a16620f063191f7322ac80f", + "sha256:cf243da9e42d914036fd362ac3fa77d80a41cadcd11ad789b1b5eec4daaf67ca", + "sha256:d6f254d096d84156a46a84861183c183d30734e52383602443292644d895047c", + "sha256:dbd79caaf77a3f590cbe32dc2447f718772d6eea59656a7dcb9311161b10fa75", + "sha256:ddb52499d0b3ed4aa88746aaf6f36a08314677d5c346234c3987ddc506404eac", + "sha256:e90a8e237753c83b8e484d478d9a996dc5e39fd5bd4c6ce32563bc8123f132be", + "sha256:e9c0afebbe6ce177ae8edba0c7c4d626f2a0fc12c33bb993d163817c41a7a05c", + "sha256:f11b300027ce19a34f6d24ebb0a25fd0e24a9d53353225a5c1e6cadbf2916b2e", + "sha256:f1ade7f31675db00b514b98f9ab9a7698c7282dad4be7492589109471852d398", + "sha256:f8f4a901a3fa28969d6e4519deceab56c55a09d691ea7b12ca830e2fa3461e34", + "sha256:fdec6e2368ae4f796fc72fad7fd4bd1753715187e6d870932b0904609e7c878e", + "sha256:ff3e9c11aa260c31493d4b3197d1e28dd07768594a4f92bec4506849d736248f", + "sha256:ff71447cb778a4f772ddc4ce360e6ba9c95527ed84a52096bd1bbf9fee2ec7c0" + ], + "markers": "python_version >= '3.9'", + "version": "==0.7.8" + }, "mccabe": { "hashes": [ "sha256:348e0240c33b60bbdf4e523192ef919f28cb2c3d7d5c7794f74009290f236325", @@ -975,42 +1017,48 @@ }, "mypy": { "hashes": [ - "sha256:1124a18bc11a6a62887e3e137f37f53fbae476dc36c185d549d4f837a2a6a14e", - "sha256:171a9ca9a40cd1843abeca0e405bc1940cd9b305eaeea2dda769ba096932bb22", - "sha256:1905f494bfd7d85a23a88c5d97840888a7bd516545fc5aaedff0267e0bb54e2f", - "sha256:1fbb8da62dc352133d7d7ca90ed2fb0e9d42bb1a32724c287d3c76c58cbaa9c2", - "sha256:2922d42e16d6de288022e5ca321cd0618b238cfc5570e0263e5ba0a77dbef56f", - "sha256:2e2c2e6d3593f6451b18588848e66260ff62ccca522dd231cd4dd59b0160668b", - "sha256:2ee2d57e01a7c35de00f4634ba1bbf015185b219e4dc5909e281016df43f5ee5", - "sha256:2f2147ab812b75e5b5499b01ade1f4a81489a147c01585cda36019102538615f", - "sha256:404534629d51d3efea5c800ee7c42b72a6554d6c400e6a79eafe15d11341fd43", - "sha256:5469affef548bd1895d86d3bf10ce2b44e33d86923c29e4d675b3e323437ea3e", - "sha256:5a95fb17c13e29d2d5195869262f8125dfdb5c134dc8d9a9d0aecf7525b10c2c", - "sha256:6983aae8b2f653e098edb77f893f7b6aca69f6cffb19b2cc7443f23cce5f4828", - "sha256:712e962a6357634fef20412699a3655c610110e01cdaa6180acec7fc9f8513ba", - "sha256:8023ff13985661b50a5928fc7a5ca15f3d1affb41e5f0a9952cb68ef090b31ee", - "sha256:811aeccadfb730024c5d3e326b2fbe9249bb7413553f15499a4050f7c30e801d", - "sha256:8f8722560a14cde92fdb1e31597760dc35f9f5524cce17836c0d22841830fd5b", - "sha256:93faf3fdb04768d44bf28693293f3904bbb555d076b781ad2530214ee53e3445", - "sha256:973500e0774b85d9689715feeffcc980193086551110fd678ebe1f4342fb7c5e", - "sha256:979e4e1a006511dacf628e36fadfecbcc0160a8af6ca7dad2f5025529e082c13", - "sha256:98b7b9b9aedb65fe628c62a6dc57f6d5088ef2dfca37903a7d9ee374d03acca5", - "sha256:aea39e0583d05124836ea645f412e88a5c7d0fd77a6d694b60d9b6b2d9f184fd", - "sha256:b9378e2c00146c44793c98b8d5a61039a048e31f429fb0eb546d93f4b000bedf", - "sha256:baefc32840a9f00babd83251560e0ae1573e2f9d1b067719479bfb0e987c6357", - "sha256:be68172e9fd9ad8fb876c6389f16d1c1b5f100ffa779f77b1fb2176fcc9ab95b", - "sha256:c43a7682e24b4f576d93072216bf56eeff70d9140241f9edec0c104d0c515036", - "sha256:c4bb0e1bd29f7d34efcccd71cf733580191e9a264a2202b0239da95984c5b559", - "sha256:c7be1e46525adfa0d97681432ee9fcd61a3964c2446795714699a998d193f1a3", - "sha256:c9817fa23833ff189db061e6d2eff49b2f3b6ed9856b4a0a73046e41932d744f", - "sha256:ce436f4c6d218a070048ed6a44c0bbb10cd2cc5e272b29e7845f6a2f57ee4464", - "sha256:d10d994b41fb3497719bbf866f227b3489048ea4bbbb5015357db306249f7980", - "sha256:e601a7fa172c2131bff456bb3ee08a88360760d0d2f8cbd7a75a65497e2df078", - "sha256:f95579473af29ab73a10bada2f9722856792a36ec5af5399b653aa28360290a5" + "sha256:016f2246209095e8eda7538944daa1d60e1e8134d98983b9fc1e92c1fc0cb8dd", + "sha256:022ea7279374af1a5d78dfcab853fe6a536eebfda4b59deab53cd21f6cd9f00b", + "sha256:06e6170bd5836770e8104c8fdd58e5e725cfeb309f0a6c681a811f557e97eac1", + "sha256:19d88bb05303fe63f71dd2c6270daca27cb9401c4ca8255fe50d1d920e0eb9ba", + "sha256:21761006a7f497cb0d4de3d8ef4ca70532256688b0523eee02baf9eec895e27b", + "sha256:28902ee51f12e0f19e1e16fbe2f8f06b6637f482c459dd393efddd0ec7f82045", + "sha256:2899753e2f61e571b3971747e302d5f420c3fd09650e1951e99f823bc3089dac", + "sha256:2abb24cf3f17864770d18d673c85235ba52456b36a06b6afc1e07c1fdcd3d0e6", + "sha256:34c81968774648ab5ac09c29a375fdede03ba253f8f8287847bd480782f73a6a", + "sha256:409088884802d511ee52ca067707b90c883426bd95514e8cfda8281dc2effe24", + "sha256:481daf36a4c443332e2ae9c137dfee878fcea781a2e3f895d54bd3002a900957", + "sha256:4b84a7a18f41e167f7995200a1d07a4a6810e89d29859df936f1c3923d263042", + "sha256:4f28f99c824ecebcdaa2e55d82953e38ff60ee5ec938476796636b86afa3956e", + "sha256:5f05aa3d375b385734388e844bc01733bd33c644ab48e9684faa54e5389775ec", + "sha256:7bcfc336a03a1aaa26dfce9fff3e287a3ba99872a157561cbfcebe67c13308e3", + "sha256:804bd67b8054a85447c8954215a906d6eff9cabeabe493fb6334b24f4bfff718", + "sha256:8bb5c6f6d043655e055be9b542aa5f3bdd30e4f3589163e85f93f3640060509f", + "sha256:a009ffa5a621762d0c926a078c2d639104becab69e79538a494bcccb62cc0331", + "sha256:a8174a03289288c1f6c46d55cef02379b478bfbc8e358e02047487cad44c6ca1", + "sha256:ab43590f9cd5108f41aacf9fca31841142c786827a74ab7cc8a2eacb634e09a1", + "sha256:b10e7c2cd7870ba4ad9b2d8a6102eb5ffc1f16ca35e3de6bfa390c1113029d13", + "sha256:b13cfdd6c87fc3efb69ea4ec18ef79c74c3f98b4e5498ca9b85ab3b2c2329a67", + "sha256:b64d987153888790bcdb03a6473d321820597ab8dd9243b27a92153c4fa50fd2", + "sha256:b7951a701c07ea584c4fe327834b92a30825514c868b1f69c30445093fdd9d5a", + "sha256:bdb12f69bcc02700c2b47e070238f42cb87f18c0bc1fc4cdb4fb2bc5fd7a3b8b", + "sha256:c35d298c2c4bba75feb2195655dfea8124d855dfd7343bf8b8c055421eaf0cf8", + "sha256:c608937067d2fc5a4dd1a5ce92fd9e1398691b8c5d012d66e1ddd430e9244376", + "sha256:c9a6538e0415310aad77cb94004ca6482330fece18036b5f360b62c45814c4ef", + "sha256:d8dfc6ab58ca7dda47d9237349157500468e404b17213d44fc1cb77bce532288", + "sha256:da4869fc5e7f62a88f3fe0b5c919d1d9f7ea3cef92d3689de2823fd27e40aa75", + "sha256:de759aafbae8763283b2ee5869c7255391fbc4de3ff171f8f030b5ec48381b74", + "sha256:e3157c7594ff2ef1634ee058aafc56a82db665c9438fd41b390f3bde1ab12250", + "sha256:e3f276d8493c3c97930e354b2595a44a21348b320d859fb4a2b9f66da9ed27ab", + "sha256:ee4c11e460685c3e0c64a4c5de82ae143622410950d6be863303a1c4ba0e36d6", + "sha256:f1235f5ea01b7db5468d53ece6aaddf1ad0b88d9e7462b86ef96fe04995d7247", + "sha256:f7cee03c9a2e2ee26ec07479f38ea9c884e301d42c6d43a19d20fb014e3ba925", + "sha256:f859fb09d9583a985be9a493d5cfc5515b56b08f7447759a0c5deaf68d80506e", + "sha256:ffcebe56eb09ff0c0885e750036a095e23793ba6c2e894e7e63f6d89ad51f22e" ], "index": "pypi", "markers": "python_version >= '3.9'", - "version": "==1.15.0" + "version": "==1.19.1" }, "mypy-extensions": { "hashes": [ @@ -1022,19 +1070,19 @@ }, "packaging": { "hashes": [ - "sha256:29572ef2b1f17581046b3a2227d5c611fb25ec70ca1ba8554b24b0e69331a484", - "sha256:d443872c98d677bf60f6a1f2f8c1cb748e8fe762d2bf9d3148b5599295b0fc4f" + "sha256:00243ae351a257117b6a241061796684b084ed1c516a08c48a3f7e147a9d80b4", + "sha256:b36f1fef9334a5588b4166f8bcd26a14e521f2b55e6b9de3aaa80d3ff7a37529" ], "markers": "python_version >= '3.8'", - "version": "==25.0" + "version": "==26.0" }, "pathspec": { "hashes": [ - "sha256:a0d503e138a4c123b27490a4f7beda6a01c6f288df0e4a8b79c7eb0dc7b4cc08", - "sha256:a482d51503a1ab33b1c67a6c3813a26953dbdc71c31dacaef9a838c4e29f5712" + "sha256:bac5cf97ae2c2876e2d25ebb15078eb04d76e4b98921ee31c6f85ade8b59444d", + "sha256:e80767021c1cc524aa3fb14bedda9c34406591343cc42797b386ce7b9354fb6c" ], - "markers": "python_version >= '3.8'", - "version": "==0.12.1" + "markers": "python_version >= '3.9'", + "version": "==1.0.3" }, "platformdirs": { "hashes": [ @@ -1104,19 +1152,60 @@ }, "pytokens": { "hashes": [ - "sha256:2f932b14ed08de5fcf0b391ace2642f858f1394c0857202959000b68ed7a458a", - "sha256:95b2b5eaf832e469d141a378872480ede3f251a5a5041b8ec6e581d3ac71bbf3" + "sha256:01d1a61e36812e4e971cfe2c0e4c1f2d66d8311031dac8bf168af8a249fa04dd", + "sha256:0508d11b4de157ee12063901603be87fb0253e8f4cb9305eb168b1202ab92068", + "sha256:06ac081c1187389762b58823d90d6339e6880ce0df912f71fb9022d81d7fd429", + "sha256:0cd3fa1caf9e47a72ee134a29ca6b5bea84712724bba165d6628baa190c6ea5b", + "sha256:0cdca8159df407dbd669145af4171a0d967006e0be25f3b520896bc7068f02c4", + "sha256:0d7374c917197106d3c4761374718bc55ea2e9ac0fb94171588ef5840ee1f016", + "sha256:237ba7cfb677dbd3b01b09860810aceb448871150566b93cd24501d5734a04b1", + "sha256:25cacc20c2ad90acb56f3739d87905473c54ca1fa5967ffcd675463fe965865e", + "sha256:278129d54573efdc79e75c6082e73ebd19858e22a2e848359f93629323186ca6", + "sha256:3d36954aba4557fd5a418a03cf595ecbb1cdcce119f91a49b19ef09d691a22ae", + "sha256:4b5770abeb2a24347380a1164a558f0ebe06e98aedbd54c45f7929527a5fb26e", + "sha256:4d0f568d7e82b7e96be56d03b5081de40e43c904eb6492bf09aaca47cd55f35b", + "sha256:54691cf8f299e7efabcc25adb4ce715d3cef1491e1c930eaf555182f898ef66a", + "sha256:55efcc36f9a2e0e930cfba0ce7f83445306b02f8326745585ed5551864eba73a", + "sha256:5dbf56f3c748aed9310b310d5b8b14e2c96d3ad682ad5a943f381bdbbdddf753", + "sha256:628fab535ebc9079e4db35cd63cb401901c7ce8720a9834f9ad44b9eb4e0f1d4", + "sha256:658f870523ac1a5f4733d7db61ce9af61a0c23b2aeea3d03d1800c93f760e15f", + "sha256:6b0b03e6ea7c9f9d47c5c61164b69ad30f4f0d70a5d9fe7eac4d19f24f77af2d", + "sha256:73eff3bdd8ad08da679867992782568db0529b887bed4c85694f84cdf35eafc6", + "sha256:74500d72c561dad14c037a9e86a657afd63e277dd5a3bb7570932ab7a3b12551", + "sha256:865cc65c75c8f2e9e0d8330338f649b12bfd9442561900ebaf58c596a72107d2", + "sha256:8cd795191c4127fcb3d7b76d84006a07748c390226f47657869235092eedbc05", + "sha256:92eb3ef88f27c22dc9dbab966ace4d61f6826e02ba04dac8e2d65ea31df56c8e", + "sha256:9380fb6d96fa5ab83ed606ebad27b6171930cc14a8a8d215f6adb187ba428690", + "sha256:94ff5db97a0d3cd7248a5b07ba2167bd3edc1db92f76c6db00137bbaf068ddf8", + "sha256:9940f7c2e2f54fb1cb5fe17d0803c54da7a2bf62222704eb4217433664a186a7", + "sha256:9c6986576b7b07fe9791854caa5347923005a80b079d45b63b0be70d50cce5f1", + "sha256:a2c8952c537cb73a1a74369501a83b7f9d208c3cf92c41dd88a17814e68d48ce", + "sha256:af0c3166aea367a9e755a283171befb92dd3043858b94ae9b3b7efbe9def26a3", + "sha256:cd8da894e5a29ba6b6da8be06a4f7589d7220c099b5e363cb0643234b9b38c2a", + "sha256:d0dd6261cd9cc95fae1227b1b6ebee023a5fd4a4b6330b071c73a516f5f59b63", + "sha256:d69a2491190a74e4b6f87f3b9dfce7a6873de3f3bf330d20083d374380becac0", + "sha256:d97cc1f91b1a8e8ebccf31c367f28225699bea26592df27141deade771ed0afb", + "sha256:daae524ed14ca459932cbf51d74325bea643701ba8a8b0cc2d10f7cd4b3e2b63", + "sha256:dbb9338663b3538f31c4ca7afe4f38d9b9b3a16a8be18a273a5704a1bc7a2367", + "sha256:df58d44630eaf25f587540e94bdf1fc50b4e6d5f212c786de0fb024bfcb8753a", + "sha256:e131804513597f2dff2b18f9911d9b6276e21ef3699abeffc1c087c65a3d975e", + "sha256:e368e0749e4e9d86a6e08763310dc92bc69ad73d9b6db5243b30174c71a8a534", + "sha256:e47e2ef3ec6ee86909e520d79f965f9b23389fda47460303cf715d510a6fe544", + "sha256:e95cb158c44d642ed62f555bf8136bbe780dbd64d2fb0b9169e11ffb944664c3", + "sha256:ef2bcbddb73ac18599a86c8c549d5145130f2cd9d83dc2b5482fd8322b7806cd", + "sha256:f4b77858a680635ee9904306f54b0ee4781effb89e211ba0a773d76539537165" ], "markers": "python_version >= '3.8'", - "version": "==0.3.0" + "version": "==0.4.0" }, "requests": { "hashes": [ - "sha256:55365417734eb18255590a9ff9eb97e9e1da868d4ccd6402399eaf68af20a760", - "sha256:70761cfe03c773ceb22aa2f671b4757976145175cdfca038c02654d061d6dcc6" + "sha256:2462f94637a34fd532264295e186976db0f5d453d1cdd31473c85a6a161affb6", + "sha256:dbba0bac56e100853db0ea71b82b4dfd5fe2bf6d3754a8893c3af500cec7d7cf" ], "index": "pypi", - "version": "==2.32.3" + "markers": "python_version >= '3.9'", + "version": "==2.32.5" }, "security": { "hashes": [ @@ -1124,6 +1213,7 @@ "sha256:9df6e75393f494ca3fd06dac3ed02f3c4fed60842b13fd00757b026cedff426b" ], "index": "pypi", + "markers": "python_version >= '3.8'", "version": "==1.3.1" }, "six": { @@ -1134,29 +1224,32 @@ "markers": "python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2'", "version": "==1.17.0" }, - "tomli": { + "types-pyyaml": { "hashes": [ - "sha256:2ebe24485c53d303f690b0ec092806a085f07af5a5aa1464f3931eec36caaa38", - "sha256:d46d457a85337051c36524bc5349dd91b1877838e2979ac5ced3e710ed8a60ed" + "sha256:0f8b54a528c303f0e6f7165687dd33fafa81c807fcac23f632b63aa624ced1d3", + "sha256:e7d4d9e064e89a3b3cae120b4990cd370874d2bf12fa5f46c97018dd5d3c9ab6" ], - "markers": "python_version < '3.11'", - "version": "==2.0.2" + "index": "pypi", + "markers": "python_version >= '3.9'", + "version": "==6.0.12.20250915" }, "typing-extensions": { "hashes": [ "sha256:8f92fc8806f9a6b641eaa5318da32b44d401efaac0f6678c9bc448ba3605faa0", "sha256:df8e4339e9cb77357558cbdbceca33c303714cf861d1eef15e1070055ae8b7ef" ], + "index": "pypi", "markers": "python_version >= '3.8'", "version": "==4.8.0" }, "urllib3": { "hashes": [ - "sha256:ca899ca043dcb1bafa3e262d73aa25c465bfb49e0bd9dd5d59f1d0acba2f8fac", - "sha256:e7d814a81dad81e6caf2ec9fdedb284ecc9c73076b62654547cc64ccdcae26e9" + "sha256:1b62b6884944a57dbe321509ab94fd4d3b307075e0c2eae991ac71ee15ad38ed", + "sha256:bf272323e553dfb2e87d9bfd225ca7b0f467b919d7bbd355436d3fd37cb0acd4" ], "index": "pypi", - "version": "==2.2.3" + "markers": "python_version >= '3.9'", + "version": "==2.6.3" } } } diff --git a/copi.owasp.org/README.md b/copi.owasp.org/README.md index ca283c1e1..ca3d9cd49 100644 --- a/copi.owasp.org/README.md +++ b/copi.owasp.org/README.md @@ -4,12 +4,12 @@ Copi is an online place where you can play Cornucopia and Elevation of Privilege. You can play all the editions of Cornucopia (website and mobile) as well as the Elevation of Privileges game. - ## Dev Environment Setup If you want to contribute to Copi, follow the guide below to set up your development environment. ### Installation by Operating System + #### Mac ##### Get Homebrew @@ -23,42 +23,49 @@ eval "$(/opt/homebrew/bin/brew shellenv)" ``` ##### Get Elixir + ```bash brew install elixir ``` #### Linux and Windows + Follow the installation process for your [Linux distribution](https://elixir-lang.org/install.html#gnulinux) and [Windows](https://elixir-lang.org/install.html#windows). ### Install the Elixir package manager, Hex + ```bash mix local.hex ``` #### Check you've got Elixir 1.18 and Erlang 27, or higher + ```bash elixir -v ``` ### Install the web application framework, Phoenix (this line will change when 1.7 goes GA) + ```bash mix archive.install hex phx_new ``` ### PostgreSQL with Docker -https://docs.docker.com/desktop/install/mac-install/ + +[docs.docker.com/desktop/install/mac-install/](https://docs.docker.com/desktop/install/mac-install/) After installing docker, You can create an instance of the Postgres image: ```bash -docker run --name copi_dev -p 5432:5432 -e POSTGRES_USER=postgres -e POSTGRES_PASSWORD=y9EAY7xeVucjM2yM -d postgres +docker run --name copi_dev -p 5432:5432 -e POSTGRES_USER=postgres -e POSTGRES_PASSWORD=POSTGRES_TEST_PWD -d postgres ``` Note: the password must be the same as the one in the config file of your dev environment. You've now got Elixir, Hex, Phoenix and Postgres. You are ready to run Copi locally and contribute. -Bonus: set up vscode for elixir dev https://fly.io/phoenix-files/setup-vscode-for-elixir-development/ +Bonus: set up vscode for elixir dev [fly.io/phoenix-files/setup-vscode-for-elixir-development/](https://fly.io/phoenix-files/setup-vscode-for-elixir-development/) ### Clone the copi code, then + To start your Phoenix server: * Install dependencies with `mix deps.get` @@ -68,74 +75,27 @@ To start your Phoenix server: ### Run tests - docker run --name copi_dev -p 5432:5432 -e POSTGRES_USER=postgres -e POSTGRES_PASSWORD=y9EAY7xeVucjM2yM -d postgres - export POSTGRES_TEST_PWD=y9EAY7xeVucjM2yM + docker run --name copi_dev -p 5432:5432 -e POSTGRES_USER=postgres -e POSTGRES_PASSWORD=POSTGRES_TEST_PWD -d postgres + export POSTGRES_TEST_PWD=POSTGRES_TEST_PWD mix test - * Now you can visit [`localhost:4000`](http://localhost:4000) from your browser. -## Security Features - -### Rate Limiting - -Copi implements IP-based rate limiting to protect against abuse and ensure availability for all users. This addresses CAPEC 212 (Functionality Misuse) attacks. - -**Features:** -- **Game Creation Limiting**: Limits the number of games that can be created from a single IP address -- **Connection Limiting**: Limits the number of WebSocket connections from a single IP address -- **Configurable Limits**: All limits and time windows are configurable via environment variables - -**Configuration:** - -Set the following environment variables to customize rate limits: - -```bash -# Maximum games per IP (default: 10) -export MAX_GAMES_PER_IP=10 - -# Time window for game creation in seconds (default: 3600 = 1 hour) -export GAME_CREATION_WINDOW_SECONDS=3600 - -# Maximum connections per IP (default: 50) -export MAX_CONNECTIONS_PER_IP=50 - -# Time window for connections in seconds (default: 300 = 5 minutes) -export CONNECTION_WINDOW_SECONDS=300 -``` - -**How it works:** -- The rate limiter tracks requests by IP address -- When a limit is exceeded, users receive a clear error message with a retry time -- Expired entries are automatically cleaned up every 5 minutes -- Rate limits are independent for game creation vs. connections -- The system handles both IPv4 and IPv6 addresses -- X-Forwarded-For headers are respected for reverse proxy deployments - -**For Reverse Proxy Deployments:** - -If deploying behind a reverse proxy (nginx, Apache, Cloudflare, etc.), ensure the proxy passes the real client IP: - -```nginx -# Nginx example -proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; -``` - Ready to run in production? Please [check our deployment guides](https://hexdocs.pm/phoenix/deployment.html). ## More about Phoenix - * Official website: https://www.phoenixframework.org/ - * Guides: https://hexdocs.pm/phoenix/overview.html - * Docs: https://hexdocs.pm/phoenix - * Forum: https://elixirforum.com/c/phoenix-forum - * Source: https://github.com/phoenixframework/phoenix + * Official website: [https://www.phoenixframework.org/](https://www.phoenixframework.org/) + * Guides: [https://hexdocs.pm/phoenix/overview.html](https://hexdocs.pm/phoenix/overview.html) + * Docs: [https://hexdocs.pm/phoenix](https://hexdocs.pm/phoenix) + * Forum: [https://elixirforum.com/c/phoenix-forum](https://elixirforum.com/c/phoenix-forum) + * Source: [https://github.com/phoenixframework/phoenix](https://github.com/phoenixframework/phoenix) ## Fly deployment -Fly.io support clustering Elixir apps which means that you can scale horizontally. https://fly.io/docs/elixir/the-basics/clustering/ -You'll need to install elixir in order to launch the app. see: https://github.com/OWASP/cornucopia/tree/master/copi.owasp.org#get-elixir -Login to fly and create a PostgreSQL cluster. See: see: https://fly.io/dashboard/ (Click managed postgres in the menu) +Fly.io support clustering Elixir apps which means that you can scale horizontally. [https://fly.io/docs/elixir/the-basics/clustering/](https://fly.io/docs/elixir/the-basics/clustering/) +You'll need to install elixir in order to launch the app. see: [https://github.com/OWASP/cornucopia/tree/master/copi.owasp.org#get-elixir](https://github.com/OWASP/cornucopia/tree/master/copi.owasp.org#get-elixir) +Login to fly and create a PostgreSQL cluster. See: see: [https://fly.io/dashboard/](https://fly.io/dashboard/) (Click managed postgres in the menu) 1 GB memory and 10GB storage for the db is enough. cd copi.owasp.org @@ -143,14 +103,6 @@ Login to fly and create a PostgreSQL cluster. See: see: https://fly.io/dashboard fly launch --no-deploy Make a note of the host and name of the app and the name of the postgresql cluster. - -Configure rate limiting (optional, uses defaults if not set): - - fly secrets set MAX_GAMES_PER_IP=10 --app - fly secrets set GAME_CREATION_WINDOW_SECONDS=3600 --app - fly secrets set MAX_CONNECTIONS_PER_IP=50 --app - fly secrets set CONNECTION_WINDOW_SECONDS=300 --app - Then deploy the app from `./copi.owasp.org` fly mpg attach --app @@ -170,7 +122,7 @@ NB: The challenge should not be proxied through cloudflare! Please allow for 30 min for the change to take effect, but check that the "Domain ownership verification" went ok. Follow the instructions given. -If you use get issues. See the troubleshooting section: https://fly.io/docs/networking/custom-domain/#troubleshoot-certificate-creation +If you use get issues. See the troubleshooting section: [https://fly.io/docs/networking/custom-domain/#troubleshoot-certificate-creation](https://fly.io/docs/networking/custom-domain/#troubleshoot-certificate-creation) ## Heroku deployment @@ -193,12 +145,6 @@ Set your prefered app name instead of `` heroku config:set SECRET_KEY_BASE=$(mix phx.gen.secret) heroku config:set POOL_SIZE=18 heroku config:set PROJECT_PATH=copi.owasp.org # points to the subdirectory - - # Optional: Configure rate limiting (uses defaults if not set) - heroku config:set MAX_GAMES_PER_IP=10 - heroku config:set GAME_CREATION_WINDOW_SECONDS=3600 - heroku config:set MAX_CONNECTIONS_PER_IP=50 - heroku config:set CONNECTION_WINDOW_SECONDS=300 ### Heroku deploy @@ -210,18 +156,18 @@ Set your local branch name instead of `` heroku domains:add copi.owaspcornucopia.org -a copiweb-stage -Then continue setting up the dns at your dns proivder: https://devcenter.heroku.com/articles/custom-domains#configuring-dns-for-subdomains +Then continue setting up the dns at your dns proivder: [https://devcenter.heroku.com/articles/custom-domains#configuring-dns-for-subdomains](https://devcenter.heroku.com/articles/custom-domains#configuring-dns-for-subdomains) You'll find the dns target under -https://dashboard.heroku.com/apps//settings +[https://dashboard.heroku.com/apps//settings](https://dashboard.heroku.com/apps//settings) Reconfigure the apps host address heroku config:set PHX_HOST=copi.owaspcornucopia.org -Setup SSL on for your dns provider e.g: https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/ +Setup SSL on for your dns provider e.g: [https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/](https://developers.cloudflare.com/ssl/origin-configuration/origin-ca/) # PEM format heroku certs:add cloudflare.crt cloudflare.key @@ -234,5 +180,60 @@ Get the number of games and users per month. We do not track users. We only look SELECT EXTRACT(YEAR FROM created_at) AS year, EXTRACT(MONTH FROM created_at) AS month, count(*) AS games_count FROM games WHERE created_at is not null group by year, month ORDER by year ASC, month ASC; - SELECT EXTRACT(YEAR FROM inserted_at) AS year, EXTRACT(MONTH FROM inserted_at) AS month, count(*) AS players_count FROM players WHERE inserted_at is not null group by year, month ORDER by year ASC, month ASC; + +## Our Threat Model + +The Copi threat model can be found at [../ThreatDragonModels/copi.json](../ThreatDragonModels/copi.json). You may review it by using [OWASP Threat Dragon](https://www.threatdragon.com/#/dashboard). + +Here is a short summary of what you need to be aware of: + +### Be aware of data exposure risk! Copi does not support authentication + +#### What can go wrong? + +We have not implemented Authentication when using Copi, instead we use a secure randomized string to prevent accidental data exposure. Still, an attacker may get hold of such a url by spoofing Copi or other Colleagues in your organization by leveraging various social engineering techniques like establishing a rogue location: [https://capec.mitre.org/data/definitions/616.html](https://capec.mitre.org/data/definitions/616.html). + +An attacker could use various tools for capturing logs or http requests which may lead to information disclosure if your participants' network has been comporised: [https://capec.mitre.org/data/definitions/569.html](https://capec.mitre.org/data/definitions/569.html). + +#### What can you do about it? + +As a security measure, you can choose to run copi on a private cluster +You should avoid using your own name or the name of a company or project when creating players and games at copi.owasp.org. And remind others not to do so as well. Instead use a pseudonyme and a fake threat model name. + +### Data is not encrypted at rest by default + +#### What can go wrong? + +When hosting Copi yourself, be aware that the data at REST might not be encrypted. Even if you tell your threat modeling participants not to use their own name or use information about your company or project when creating the game, they may end up doing it by accident or because of a temporary lapse in memory. + +#### What can you do about it? + +Ensure that your service provider ensures that the data is encrypted at REST. +OWASP host the data on Fly.io. Databases built on Fly.io uses volumes, which provide persistent storage. These drives are block-level encrypted with AES-XTS. Fly.io manages the encryption keys, ensuring they are accessible only to privileged processes running your application instances. New volumes (and thus new Postgres apps) are encrypted by default. + +### If deploying Copi, configure TLS between the DB and your app and between the nodes in your app cluster + +#### What can go wrong? + +Erlang clustering does not happen over TLS by default. This may allow an attacker to launch a MTM attack and do RCE against your cluster. It may also allow an attacker to take over your database connection and both disclose sensitive information and compromise the integrity of the data sent between your database and Copi. + +#### What can you do about it? + +if you deploy Copi yourself, make sure you configure TLS appropriatly according to your needs. +OWASP host Copi on Fly.io that uses a built-in, WireGuard-encrypted 6PN (IPv6 Private Networking) mesh to automatically connect all your app instances, providing zero-config, secure, private communication with internal DNS (e.g., app-name.internal), allowing services to talk as if they're on the same network, even across regions, for simple and secure microservices communication. This mesh handles complex routing, making it easy to build distributed apps securely without manual VPN setup. + +### An attacker can deny access to user's by CAPEC 212, functionality misuse + +#### What can go wrong? + +An attacker can continue to create an unlimited amount of games and players until the application stops responding. + +#### What can you do about it? + +We are working on minimizing the probability of functionality misue by implementing rate limiting on the creating of games and players (see: [issues/1877](https://github.com/OWASP/cornucopia/issues/1877)). Once that is taken care of, you should be able to configure these limits to prevent DoS attacks when hosting Copi yourself. + +### Did we do a good job? + +We welcome any input or improvments you might be willing to share with us regarding our current threat model. +Arguably, we created the system before the threat modeling, and several improvements need to be made to properly balance the inherrant risks of compromise against the current security controls. For anyone choosing to host the game engine, please take this into account. diff --git a/copi.owasp.org/mix.lock b/copi.owasp.org/mix.lock index 0d076d619..12836c15f 100644 --- a/copi.owasp.org/mix.lock +++ b/copi.owasp.org/mix.lock @@ -1,22 +1,22 @@ %{ - "bandit": {:hex, :bandit, "1.8.0", "c2e93d7e3c5c794272fa4623124f827c6f24b643acc822be64c826f9447d92fb", [:mix], [{:hpax, "~> 1.0", [hex: :hpax, repo: "hexpm", optional: false]}, {:plug, "~> 1.18", [hex: :plug, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}, {:thousand_island, "~> 1.0", [hex: :thousand_island, repo: "hexpm", optional: false]}, {:websock, "~> 0.5", [hex: :websock, repo: "hexpm", optional: false]}], "hexpm", "8458ff4eed20ff2a2ea69d4854883a077c33ea42b51f6811b044ceee0fa15422"}, + "bandit": {:hex, :bandit, "1.10.2", "d15ea32eb853b5b42b965b24221eb045462b2ba9aff9a0bda71157c06338cbff", [:mix], [{:hpax, "~> 1.0", [hex: :hpax, repo: "hexpm", optional: false]}, {:plug, "~> 1.18", [hex: :plug, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}, {:thousand_island, "~> 1.0", [hex: :thousand_island, repo: "hexpm", optional: false]}, {:websock, "~> 0.5", [hex: :websock, repo: "hexpm", optional: false]}], "hexpm", "27b2a61b647914b1726c2ced3601473be5f7aa6bb468564a688646a689b3ee45"}, "bunt": {:hex, :bunt, "1.0.0", "081c2c665f086849e6d57900292b3a161727ab40431219529f13c4ddcf3e7a44", [:mix], [], "hexpm", "dc5f86aa08a5f6fa6b8096f0735c4e76d54ae5c9fa2c143e5a1fc7c1cd9bb6b5"}, "castore": {:hex, :castore, "1.0.14", "4582dd7d630b48cf5e1ca8d3d42494db51e406b7ba704e81fbd401866366896a", [:mix], [], "hexpm", "7bc1b65249d31701393edaaac18ec8398d8974d52c647b7904d01b964137b9f4"}, "certifi": {:hex, :certifi, "2.15.0", "0e6e882fcdaaa0a5a9f2b3db55b1394dba07e8d6d9bcad08318fb604c6839712", [:rebar3], [], "hexpm", "b147ed22ce71d72eafdad94f055165c1c182f61a2ff49df28bcc71d1d5b94a60"}, "cowboy": {:hex, :cowboy, "2.14.2", "4008be1df6ade45e4f2a4e9e2d22b36d0b5aba4e20b0a0d7049e28d124e34847", [:make, :rebar3], [{:cowlib, ">= 2.16.0 and < 3.0.0", [hex: :cowlib, repo: "hexpm", optional: false]}, {:ranch, ">= 1.8.0 and < 3.0.0", [hex: :ranch, repo: "hexpm", optional: false]}], "hexpm", "569081da046e7b41b5df36aa359be71a0c8874e5b9cff6f747073fc57baf1ab9"}, "cowboy_telemetry": {:hex, :cowboy_telemetry, "0.4.0", "f239f68b588efa7707abce16a84d0d2acf3a0f50571f8bb7f56a15865aae820c", [:rebar3], [{:cowboy, "~> 2.7", [hex: :cowboy, repo: "hexpm", optional: false]}, {:telemetry, "~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "7d98bac1ee4565d31b62d59f8823dfd8356a169e7fcbb83831b8a5397404c9de"}, "cowlib": {:hex, :cowlib, "2.16.0", "54592074ebbbb92ee4746c8a8846e5605052f29309d3a873468d76cdf932076f", [:make, :rebar3], [], "hexpm", "7f478d80d66b747344f0ea7708c187645cfcc08b11aa424632f78e25bf05db51"}, - "credo": {:hex, :credo, "1.7.14", "c7e75216cea8d978ba8c60ed9dede4cc79a1c99a266c34b3600dd2c33b96bc92", [:mix], [{:bunt, "~> 0.2.1 or ~> 1.0", [hex: :bunt, repo: "hexpm", optional: false]}, {:file_system, "~> 0.2 or ~> 1.0", [hex: :file_system, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}], "hexpm", "12a97d6bb98c277e4fb1dff45aaf5c137287416009d214fb46e68147bd9e0203"}, - "db_connection": {:hex, :db_connection, "2.8.1", "9abdc1e68c34c6163f6fb96a96532272d13ad7ca45262156ae8b7ec6d9dc4bec", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "a61a3d489b239d76f326e03b98794fb8e45168396c925ef25feb405ed09da8fd"}, + "credo": {:hex, :credo, "1.7.16", "a9f1389d13d19c631cb123c77a813dbf16449a2aebf602f590defa08953309d4", [:mix], [{:bunt, "~> 0.2.1 or ~> 1.0", [hex: :bunt, repo: "hexpm", optional: false]}, {:file_system, "~> 0.2 or ~> 1.0", [hex: :file_system, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}], "hexpm", "d0562af33756b21f248f066a9119e3890722031b6d199f22e3cf95550e4f1579"}, + "db_connection": {:hex, :db_connection, "2.9.0", "a6a97c5c958a2d7091a58a9be40caf41ab496b0701d21e1d1abff3fa27a7f371", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "17d502eacaf61829db98facf6f20808ed33da6ccf495354a41e64fe42f9c509c"}, "decimal": {:hex, :decimal, "2.3.0", "3ad6255aa77b4a3c4f818171b12d237500e63525c2fd056699967a3e7ea20f62", [:mix], [], "hexpm", "a4d66355cb29cb47c3cf30e71329e58361cfcb37c34235ef3bf1d7bf3773aeac"}, "dns_cluster": {:hex, :dns_cluster, "0.2.0", "aa8eb46e3bd0326bd67b84790c561733b25c5ba2fe3c7e36f28e88f384ebcb33", [:mix], [], "hexpm", "ba6f1893411c69c01b9e8e8f772062535a4cf70f3f35bcc964a324078d8c8240"}, "ecto": {:hex, :ecto, "3.13.5", "9d4a69700183f33bf97208294768e561f5c7f1ecf417e0fa1006e4a91713a834", [:mix], [{:decimal, "~> 2.0", [hex: :decimal, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "df9efebf70cf94142739ba357499661ef5dbb559ef902b68ea1f3c1fabce36de"}, - "ecto_sql": {:hex, :ecto_sql, "3.13.3", "81f7067dd1951081888529002dbc71f54e5e891b69c60195040ea44697e1104a", [:mix], [{:db_connection, "~> 2.4.1 or ~> 2.5", [hex: :db_connection, repo: "hexpm", optional: false]}, {:ecto, "~> 3.13.0", [hex: :ecto, repo: "hexpm", optional: false]}, {:myxql, "~> 0.7", [hex: :myxql, repo: "hexpm", optional: true]}, {:postgrex, "~> 0.19 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}, {:tds, "~> 2.1.1 or ~> 2.2", [hex: :tds, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.0 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "5751caea36c8f5dd0d1de6f37eceffea19d10bd53f20e5bbe31c45f2efc8944a"}, + "ecto_sql": {:hex, :ecto_sql, "3.13.4", "b6e9d07557ddba62508a9ce4a484989a5bb5e9a048ae0e695f6d93f095c25d60", [:mix], [{:db_connection, "~> 2.4.1 or ~> 2.5", [hex: :db_connection, repo: "hexpm", optional: false]}, {:ecto, "~> 3.13.0", [hex: :ecto, repo: "hexpm", optional: false]}, {:myxql, "~> 0.7", [hex: :myxql, repo: "hexpm", optional: true]}, {:postgrex, "~> 0.19 or ~> 1.0", [hex: :postgrex, repo: "hexpm", optional: true]}, {:tds, "~> 2.1.1 or ~> 2.2", [hex: :tds, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.0 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "2b38cf0749ca4d1c5a8bcbff79bbe15446861ca12a61f9fba604486cb6b62a14"}, "ecto_ulid": {:hex, :ecto_ulid, "0.3.0", "fd6426ff30da547d6f5c31e43170ad307cbda2e680c7793c891e9ef86bd68dbe", [:mix], [{:ecto, "~> 2.0 or ~> 3.0", [hex: :ecto, repo: "hexpm", optional: false]}], "hexpm", "82cb3be73635587700f1a4aec08e4ad894e7b3d2f6ed63236b9f3afd3859c74d"}, "excoveralls": {:hex, :excoveralls, "0.18.5", "e229d0a65982613332ec30f07940038fe451a2e5b29bce2a5022165f0c9b157e", [:mix], [{:castore, "~> 1.0", [hex: :castore, repo: "hexpm", optional: true]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}], "hexpm", "523fe8a15603f86d64852aab2abe8ddbd78e68579c8525ae765facc5eae01562"}, "expo": {:hex, :expo, "1.1.1", "4202e1d2ca6e2b3b63e02f69cfe0a404f77702b041d02b58597c00992b601db5", [:mix], [], "hexpm", "5fb308b9cb359ae200b7e23d37c76978673aa1b06e2b3075d814ce12c5811640"}, "file_system": {:hex, :file_system, "1.1.1", "31864f4685b0148f25bd3fbef2b1228457c0c89024ad67f7a81a3ffbc0bbad3a", [:mix], [], "hexpm", "7a15ff97dfe526aeefb090a7a9d3d03aa907e100e262a0f8f7746b78f8f87a5d"}, - "finch": {:hex, :finch, "0.20.0", "5330aefb6b010f424dcbbc4615d914e9e3deae40095e73ab0c1bb0968933cadf", [:mix], [{:mime, "~> 1.0 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mint, "~> 1.6.2 or ~> 1.7", [hex: :mint, repo: "hexpm", optional: false]}, {:nimble_options, "~> 0.4 or ~> 1.0", [hex: :nimble_options, repo: "hexpm", optional: false]}, {:nimble_pool, "~> 1.1", [hex: :nimble_pool, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "2658131a74d051aabfcba936093c903b8e89da9a1b63e430bee62045fa9b2ee2"}, + "finch": {:hex, :finch, "0.21.0", "b1c3b2d48af02d0c66d2a9ebfb5622be5c5ecd62937cf79a88a7f98d48a8290c", [:mix], [{:mime, "~> 1.0 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mint, "~> 1.6.2 or ~> 1.7", [hex: :mint, repo: "hexpm", optional: false]}, {:nimble_options, "~> 0.4 or ~> 1.0", [hex: :nimble_options, repo: "hexpm", optional: false]}, {:nimble_pool, "~> 1.1", [hex: :nimble_pool, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "87dc6e169794cb2570f75841a19da99cfde834249568f2a5b121b809588a4377"}, "floki": {:hex, :floki, "0.38.0", "62b642386fa3f2f90713f6e231da0fa3256e41ef1089f83b6ceac7a3fd3abf33", [:mix], [], "hexpm", "a5943ee91e93fb2d635b612caf5508e36d37548e84928463ef9dd986f0d1abd9"}, "gettext": {:hex, :gettext, "1.0.2", "5457e1fd3f4abe47b0e13ff85086aabae760497a3497909b8473e0acee57673b", [:mix], [{:expo, "~> 0.5.1 or ~> 1.0", [hex: :expo, repo: "hexpm", optional: false]}], "hexpm", "eab805501886802071ad290714515c8c4a17196ea76e5afc9d06ca85fb1bfeb3"}, "hackney": {:hex, :hackney, "1.25.0", "390e9b83f31e5b325b9f43b76e1a785cbdb69b5b6cd4e079aa67835ded046867", [:rebar3], [{:certifi, "~> 2.15.0", [hex: :certifi, repo: "hexpm", optional: false]}, {:idna, "~> 6.1.0", [hex: :idna, repo: "hexpm", optional: false]}, {:metrics, "~> 1.0.0", [hex: :metrics, repo: "hexpm", optional: false]}, {:mimerl, "~> 1.4", [hex: :mimerl, repo: "hexpm", optional: false]}, {:parse_trans, "3.4.1", [hex: :parse_trans, repo: "hexpm", optional: false]}, {:ssl_verify_fun, "~> 1.1.0", [hex: :ssl_verify_fun, repo: "hexpm", optional: false]}, {:unicode_util_compat, "~> 0.7.1", [hex: :unicode_util_compat, repo: "hexpm", optional: false]}], "hexpm", "7209bfd75fd1f42467211ff8f59ea74d6f2a9e81cbcee95a56711ee79fd6b1d4"}, @@ -42,18 +42,18 @@ "phoenix_pubsub": {:hex, :phoenix_pubsub, "2.2.0", "ff3a5616e1bed6804de7773b92cbccfc0b0f473faf1f63d7daf1206c7aeaaa6f", [:mix], [], "hexpm", "adc313a5bf7136039f63cfd9668fde73bba0765e0614cba80c06ac9460ff3e96"}, "phoenix_template": {:hex, :phoenix_template, "1.0.4", "e2092c132f3b5e5b2d49c96695342eb36d0ed514c5b252a77048d5969330d639", [:mix], [{:phoenix_html, "~> 2.14.2 or ~> 3.0 or ~> 4.0", [hex: :phoenix_html, repo: "hexpm", optional: true]}], "hexpm", "2c0c81f0e5c6753faf5cca2f229c9709919aba34fab866d3bc05060c9c444206"}, "plug": {:hex, :plug, "1.19.1", "09bac17ae7a001a68ae393658aa23c7e38782be5c5c00c80be82901262c394c0", [:mix], [{:mime, "~> 1.0 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:plug_crypto, "~> 1.1.1 or ~> 1.2 or ~> 2.0", [hex: :plug_crypto, repo: "hexpm", optional: false]}, {:telemetry, "~> 0.4.3 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "560a0017a8f6d5d30146916862aaf9300b7280063651dd7e532b8be168511e62"}, - "plug_cowboy": {:hex, :plug_cowboy, "2.7.5", "261f21b67aea8162239b2d6d3b4c31efde4daa22a20d80b19c2c0f21b34b270e", [:mix], [{:cowboy, "~> 2.7", [hex: :cowboy, repo: "hexpm", optional: false]}, {:cowboy_telemetry, "~> 0.3", [hex: :cowboy_telemetry, repo: "hexpm", optional: false]}, {:plug, "~> 1.14", [hex: :plug, repo: "hexpm", optional: false]}], "hexpm", "20884bf58a90ff5a5663420f5d2c368e9e15ed1ad5e911daf0916ea3c57f77ac"}, + "plug_cowboy": {:hex, :plug_cowboy, "2.8.0", "07789e9c03539ee51bb14a07839cc95aa96999fd8846ebfd28c97f0b50c7b612", [:mix], [{:cowboy, "~> 2.7", [hex: :cowboy, repo: "hexpm", optional: false]}, {:cowboy_telemetry, "~> 0.3", [hex: :cowboy_telemetry, repo: "hexpm", optional: false]}, {:plug, "~> 1.14", [hex: :plug, repo: "hexpm", optional: false]}], "hexpm", "9cbfaaf17463334ca31aed38ea7e08a68ee37cabc077b1e9be6d2fb68e0171d0"}, "plug_crypto": {:hex, :plug_crypto, "2.1.1", "19bda8184399cb24afa10be734f84a16ea0a2bc65054e23a62bb10f06bc89491", [:mix], [], "hexpm", "6470bce6ffe41c8bd497612ffde1a7e4af67f36a15eea5f921af71cf3e11247c"}, - "postgrex": {:hex, :postgrex, "0.21.1", "2c5cc830ec11e7a0067dd4d623c049b3ef807e9507a424985b8dcf921224cd88", [:mix], [{:db_connection, "~> 2.1", [hex: :db_connection, repo: "hexpm", optional: false]}, {:decimal, "~> 1.5 or ~> 2.0", [hex: :decimal, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:table, "~> 0.1.0", [hex: :table, repo: "hexpm", optional: true]}], "hexpm", "27d8d21c103c3cc68851b533ff99eef353e6a0ff98dc444ea751de43eb48bdac"}, + "postgrex": {:hex, :postgrex, "0.22.0", "fb027b58b6eab1f6de5396a2abcdaaeb168f9ed4eccbb594e6ac393b02078cbd", [:mix], [{:db_connection, "~> 2.9", [hex: :db_connection, repo: "hexpm", optional: false]}, {:decimal, "~> 1.5 or ~> 2.0", [hex: :decimal, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: true]}, {:table, "~> 0.1.0", [hex: :table, repo: "hexpm", optional: true]}], "hexpm", "a68c4261e299597909e03e6f8ff5a13876f5caadaddd0d23af0d0a61afcc5d84"}, "ranch": {:hex, :ranch, "2.2.0", "25528f82bc8d7c6152c57666ca99ec716510fe0925cb188172f41ce93117b1b0", [:make, :rebar3], [], "hexpm", "fa0b99a1780c80218a4197a59ea8d3bdae32fbff7e88527d7d8a4787eff4f8e7"}, "slugify": {:hex, :slugify, "1.3.1", "0d3b8b7e5c1eeaa960e44dce94382bee34a39b3ea239293e457a9c5b47cc6fd3", [:mix], [], "hexpm", "cb090bbeb056b312da3125e681d98933a360a70d327820e4b7f91645c4d8be76"}, "ssl_verify_fun": {:hex, :ssl_verify_fun, "1.1.7", "354c321cf377240c7b8716899e182ce4890c5938111a1296add3ec74cf1715df", [:make, :mix, :rebar3], [], "hexpm", "fe4c190e8f37401d30167c8c405eda19469f34577987c76dde613e838bbc67f8"}, - "swoosh": {:hex, :swoosh, "1.19.9", "4eb2c471b8cf06adbdcaa1d57a0ad53c0ed9348ce8586a06cc491f9f0dbcb553", [:mix], [{:bandit, ">= 1.0.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:cowboy, "~> 1.1 or ~> 2.4", [hex: :cowboy, repo: "hexpm", optional: true]}, {:ex_aws, "~> 2.1", [hex: :ex_aws, repo: "hexpm", optional: true]}, {:finch, "~> 0.6", [hex: :finch, repo: "hexpm", optional: true]}, {:gen_smtp, "~> 0.13 or ~> 1.0", [hex: :gen_smtp, repo: "hexpm", optional: true]}, {:hackney, "~> 1.9", [hex: :hackney, repo: "hexpm", optional: true]}, {:idna, "~> 6.0", [hex: :idna, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}, {:mail, "~> 0.2", [hex: :mail, repo: "hexpm", optional: true]}, {:mime, "~> 1.1 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mua, "~> 0.2.3", [hex: :mua, repo: "hexpm", optional: true]}, {:multipart, "~> 0.4", [hex: :multipart, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: true]}, {:plug_cowboy, ">= 1.0.0", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:req, "~> 0.5.10 or ~> 0.6 or ~> 1.0", [hex: :req, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "516898263a64925c31723c56bc7999a26e97b04e869707f681f4c9bca7ee1688"}, + "swoosh": {:hex, :swoosh, "1.21.0", "9f4fa629447774cfc9ad684d8a87a85384e8fce828b6390dd535dfbd43c9ee2a", [:mix], [{:bandit, ">= 1.0.0", [hex: :bandit, repo: "hexpm", optional: true]}, {:cowboy, "~> 1.1 or ~> 2.4", [hex: :cowboy, repo: "hexpm", optional: true]}, {:ex_aws, "~> 2.1", [hex: :ex_aws, repo: "hexpm", optional: true]}, {:finch, "~> 0.6", [hex: :finch, repo: "hexpm", optional: true]}, {:gen_smtp, "~> 0.13 or ~> 1.0", [hex: :gen_smtp, repo: "hexpm", optional: true]}, {:hackney, "~> 1.9", [hex: :hackney, repo: "hexpm", optional: true]}, {:idna, "~> 6.0", [hex: :idna, repo: "hexpm", optional: false]}, {:jason, "~> 1.0", [hex: :jason, repo: "hexpm", optional: false]}, {:mail, "~> 0.2", [hex: :mail, repo: "hexpm", optional: true]}, {:mime, "~> 1.1 or ~> 2.0", [hex: :mime, repo: "hexpm", optional: false]}, {:mua, "~> 0.2.3", [hex: :mua, repo: "hexpm", optional: true]}, {:multipart, "~> 0.4", [hex: :multipart, repo: "hexpm", optional: true]}, {:plug, "~> 1.9", [hex: :plug, repo: "hexpm", optional: true]}, {:plug_cowboy, ">= 1.0.0", [hex: :plug_cowboy, repo: "hexpm", optional: true]}, {:req, "~> 0.5.10 or ~> 0.6 or ~> 1.0", [hex: :req, repo: "hexpm", optional: true]}, {:telemetry, "~> 0.4.2 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "9127157bfb33b7e154d0f1ba4e888e14b08ede84e81dedcb318a2f33dbc6db51"}, "tailwind": {:hex, :tailwind, "0.4.1", "e7bcc222fe96a1e55f948e76d13dd84a1a7653fb051d2a167135db3b4b08d3e9", [:mix], [], "hexpm", "6249d4f9819052911120dbdbe9e532e6bd64ea23476056adb7f730aa25c220d1"}, "telemetry": {:hex, :telemetry, "1.3.0", "fedebbae410d715cf8e7062c96a1ef32ec22e764197f70cda73d82778d61e7a2", [:rebar3], [], "hexpm", "7015fc8919dbe63764f4b4b87a95b7c0996bd539e0d499be6ec9d7f3875b79e6"}, "telemetry_metrics": {:hex, :telemetry_metrics, "1.1.0", "5bd5f3b5637e0abea0426b947e3ce5dd304f8b3bc6617039e2b5a008adc02f8f", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "e7b79e8ddfde70adb6db8a6623d1778ec66401f366e9a8f5dd0955c56bc8ce67"}, "telemetry_poller": {:hex, :telemetry_poller, "1.3.0", "d5c46420126b5ac2d72bc6580fb4f537d35e851cc0f8dbd571acf6d6e10f5ec7", [:rebar3], [{:telemetry, "~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "51f18bed7128544a50f75897db9974436ea9bfba560420b646af27a9a9b35211"}, - "thousand_island": {:hex, :thousand_island, "1.4.2", "735fa783005d1703359bbd2d3a5a3a398075ba4456e5afe3c5b7cf4666303d36", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "1c7637f16558fc1c35746d5ee0e83b18b8e59e18d28affd1f2fa1645f8bc7473"}, + "thousand_island": {:hex, :thousand_island, "1.4.3", "2158209580f633be38d43ec4e3ce0a01079592b9657afff9080d5d8ca149a3af", [:mix], [{:telemetry, "~> 0.4 or ~> 1.0", [hex: :telemetry, repo: "hexpm", optional: false]}], "hexpm", "6e4ce09b0fd761a58594d02814d40f77daff460c48a7354a15ab353bb998ea0b"}, "unicode_util_compat": {:hex, :unicode_util_compat, "0.7.1", "a48703a25c170eedadca83b11e88985af08d35f37c6f664d6dcfb106a97782fc", [:rebar3], [], "hexpm", "b3a917854ce3ae233619744ad1e0102e05673136776fb2fa76234f3e03b23642"}, "want": {:hex, :want, "1.22.0", "362b1d9f7af92c2554481991f88a6a762d8f89389b4e17898ef06e754fef0082", [:mix], [], "hexpm", "32700ba84a9de580c3f66a591beec186aafb8cef49438f351de34fd992a30a5d"}, "websock": {:hex, :websock, "0.5.3", "2f69a6ebe810328555b6fe5c831a851f485e303a7c8ce6c5f675abeb20ebdadc", [:mix], [], "hexpm", "6105453d7fac22c712ad66fab1d45abdf049868f253cf719b625151460b8b453"}, diff --git a/cornucopia.owasp.org/data/website/pages/about/en/index.md b/cornucopia.owasp.org/data/website/pages/about/en/index.md index 6c2bd7272..920b49763 100644 --- a/cornucopia.owasp.org/data/website/pages/about/en/index.md +++ b/cornucopia.owasp.org/data/website/pages/about/en/index.md @@ -56,55 +56,60 @@ Additionally, Adam Shostack maintains a list of tabletop security games and rela Cornucopia is developed, maintained, updated and promoted by a worldwide team of volunteers. The contributors to date have been: -- Artim Banyte -- Simon Bennetts +- Abhijit Sahoo +- Artim Banyte +- Simon Bennetts - Thomas Berson - Rishii Bharadhwaj -- Jorun Kristin Bremseth -- Tom Brennan -- Graham Bryant -- Fabio Cerullo -- Oana Cornea -- Johanna Curiel +- Jorun Kristin Bremseth +- Tom Brennan +- Graham Bryant +- Gerardo Mathías Canedo Prendez +- Fabio Cerullo +- Oana Cornea +- Johanna Curiel - Todd Dahl - Ruggero DallAglio - Andrey Danin +- Darío De Filippis - Luis Enriquez - André Ferreira -- Ken Ferris -- Darío De Filippis -- Norbert Gaspar -- Spyros Gasteratos -- Sebastien Gioria +- Ken Ferris +- Norbert Gaspar +- Spyros Gasteratos +- Sebastien Gioria - Xavier Godard - Tobias Gondrom - Timo Goosen -- Anthony Harrison -- Martin Haslinger -- John Herrlin -- Jerry Hoff -- Toby Irvine +- Anthony Harrison +- Martin Haslinger +- John Herrlin +- Jerry Hoff +- Toby Irvine - Marios Kourtesis - Franck Lacosta - Mathias Lemaire -- Antonis Manaras - Jim Manico +- Antonis Manaras - Jef Meijvis -- Mark Miller +- Mark Miller - Cam Morris - Christoph Niehoff -- Grant Ongers -- Susana Romaniz -- Ravishankar Sahadevan -- Tao Sauvage -- Max Alejandro Gómez Sánchez Vergaray +- Grant Ongers +- Susana Romaniz +- Ravishankar Sahadevan +- Tao Sauvage - Aditya Srivastava - Johan Sydseter - Elias Brattli Sørensen +- Mradul Tiwari +- Max Alejandro Gómez Sánchez Vergaray - Ive Verstappen -- Wagner Voltz -- Stephen de Vries +- Sachin Vishwakarma +- Wagner Voltz +- Stephen de Vries - Colin Watson +- Prasun Srivastav Please let us know if we have missed anyone from this list. diff --git a/cornucopia.owasp.org/package.json b/cornucopia.owasp.org/package.json index 2518d5518..3f98f300e 100644 --- a/cornucopia.owasp.org/package.json +++ b/cornucopia.owasp.org/package.json @@ -61,4 +61,4 @@ "cookie@<0.7.0": ">=0.7.0" } } -} +} \ No newline at end of file diff --git a/cornucopia.owasp.org/pnpm-lock.yaml b/cornucopia.owasp.org/pnpm-lock.yaml index dc777b6b8..6479f71b2 100644 --- a/cornucopia.owasp.org/pnpm-lock.yaml +++ b/cornucopia.owasp.org/pnpm-lock.yaml @@ -13,7 +13,7 @@ importers: dependencies: '@sveltejs/adapter-static': specifier: ^3.0.10 - version: 3.0.10(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) + version: 3.0.10(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1))) '@types/js-yaml': specifier: ^4.0.9 version: 4.0.9 @@ -28,50 +28,53 @@ importers: version: 8.0.1 svelte-i18n: specifier: ^4.0.1 - version: 4.0.1(svelte@5.45.10) + version: 4.0.1(svelte@5.49.2) svelte-markdown: specifier: ^0.4.1 - version: 0.4.1(svelte@5.45.10) + version: 0.4.1(svelte@5.49.2) sveltekit-i18n: specifier: ^2.4.2 - version: 2.4.2(svelte@5.45.10) + version: 2.4.2(svelte@5.49.2) sync-request: specifier: ^6.1.0 version: 6.1.0 vite-plugin-restart: specifier: ^2.0.0 - version: 2.0.0(vite@5.4.21(@types/node@25.0.1)) + version: 2.0.0(vite@7.3.1(@types/node@25.2.1)) vite-plugin-static-copy: - specifier: ^3.1.4 - version: 3.1.4(vite@5.4.21(@types/node@25.0.1)) + specifier: ^3.2.0 + version: 3.2.0(vite@7.3.1(@types/node@25.2.1)) devDependencies: '@sveltejs/adapter-auto': specifier: ^7.0.0 - version: 7.0.0(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))) + version: 7.0.0(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1))) '@sveltejs/adapter-cloudflare': - specifier: ^5.0.1 - version: 5.0.1(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0)) + specifier: ^7.2.6 + version: 7.2.6(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20260128.0)) '@sveltejs/kit': - specifier: ^2.49.2 - version: 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + specifier: ^2.50.2 + version: 2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)) '@sveltejs/vite-plugin-svelte': - specifier: ^4.0.4 - version: 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + specifier: ^6.2.4 + version: 6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)) '@types/node': - specifier: ^25.0.1 - version: 25.0.1 + specifier: ^25.2.1 + version: 25.2.1 '@vitest/coverage-v8': - specifier: ^3.1.4 - version: 3.2.4(vitest@3.2.4(@types/node@25.0.1)) + specifier: ^4.0.17 + version: 4.0.18(vitest@4.0.18(@types/node@25.2.1)) dotenv: - specifier: ^17.2.3 - version: 17.2.3 + specifier: ^17.2.4 + version: 17.2.4 + serve: + specifier: ^14.2.4 + version: 14.2.5 svelte: - specifier: ^5.45.10 - version: 5.45.10 + specifier: ^5.49.2 + version: 5.49.2 svelte-check: - specifier: ^4.3.4 - version: 4.3.4(picomatch@4.0.3)(svelte@5.45.10)(typescript@5.9.3) + specifier: ^4.3.6 + version: 4.3.6(picomatch@4.0.3)(svelte@5.49.2)(typescript@5.9.3) svelte-sitemap: specifier: ^2.7.1 version: 2.7.1 @@ -85,33 +88,32 @@ importers: specifier: ^5.9.3 version: 5.9.3 vite: - specifier: ^5.4.21 - version: 5.4.21(@types/node@25.0.1) + specifier: ^7.3.1 + version: 7.3.1(@types/node@25.2.1) vitest: - specifier: ^3.2.4 - version: 3.2.4(@types/node@25.0.1) + specifier: ^4.0.17 + version: 4.0.18(@types/node@25.2.1) + wait-on: + specifier: ^8.0.2 + version: 8.0.5 packages: - '@ampproject/remapping@2.3.0': - resolution: {integrity: sha512-30iZtAPgz+LTIYoeivqYo853f02jBYSd5uGnGpkFV0M3xOt9aN73erkgYAmZU43x4VfqcnLxW9Kpg3R5LC4YYw==} - engines: {node: '>=6.0.0'} - '@babel/helper-string-parser@7.27.1': resolution: {integrity: sha512-qMlSxKbpRlAridDExk92nSobyDdpPijUq2DW6oDnUqd0iOGxmQjyqhMIihI9+zv4LPyZdRje2cavWPbCbWm3eA==} engines: {node: '>=6.9.0'} - '@babel/helper-validator-identifier@7.27.1': - resolution: {integrity: sha512-D2hP9eA+Sqx1kBZgzxZh0y1trbuU+JoDkiEwqhQ36nodYqJwyEIhPSdMNd7lOm/4io72luTPWH20Yda0xOuUow==} + '@babel/helper-validator-identifier@7.28.5': + resolution: {integrity: sha512-qSs4ifwzKJSV39ucNjsvc6WVHs6b7S03sOh2OcHF9UHfVPqWWALUsNUVzhSBiItjRZoLHx7nIarVjqKVusUZ1Q==} engines: {node: '>=6.9.0'} - '@babel/parser@7.27.2': - resolution: {integrity: sha512-QYLs8299NA7WM/bZAdp+CviYYkVoYXlDW2rzliy3chxd1PQjej7JORuMJDJXJUb9g0TT+B99EwaVLKmX+sPXWw==} + '@babel/parser@7.28.6': + resolution: {integrity: sha512-TeR9zWR18BvbfPmGbLampPMW+uW1NZnJlRuuHso8i87QZNq2JRF9i6RgxRqtEq+wQGsS19NNTWr2duhnE49mfQ==} engines: {node: '>=6.0.0'} hasBin: true - '@babel/types@7.27.1': - resolution: {integrity: sha512-+EzkxvLNfiUeKMgy/3luqfsCWFRXLb7U6wNQTk60tovuckwB15B191tJWvpp4HjiQWdJkCxO3Wbvc6jlk3Xb2Q==} + '@babel/types@7.28.6': + resolution: {integrity: sha512-0ZrskXVEHSWIqZM/sQZ4EV3jZJXRkio/WCxaqKZP1g//CEWEPSfeZFcms4XeKBCHU0ZKnIkdJeU/kF+eRp5lBg==} engines: {node: '>=6.9.0'} '@bcoe/v8-coverage@1.0.2': @@ -152,8 +154,8 @@ packages: cpu: [x64] os: [win32] - '@cloudflare/workers-types@4.20250121.0': - resolution: {integrity: sha512-2bBosmudcwvUOKzuCL/Jum18LDh3QoU0QnTNMXIgcVwuq3LaNzyZnOW14bFXPhLU/84ZjNO3zO5R/U11Zgag2Q==} + '@cloudflare/workers-types@4.20260128.0': + resolution: {integrity: sha512-oid8qPnF4K5Wmgf66bUUrGycwL8BOCGm9ptQOoQNR/jhY5TmDObLtPjJm+BmDklkpAkaM1FnqKY9lo+FNo78AA==} '@cspotcode/source-map-support@0.8.1': resolution: {integrity: sha512-IchNf6dN4tHoMFIn/7OE8LWZ19Y6q/67Bmf6vnGREv8RSbBVb9LPJxEcnwrcwX6ixSvaiGoomAUvu4YSxXrVgw==} @@ -175,14 +177,8 @@ packages: cpu: [ppc64] os: [aix] - '@esbuild/aix-ppc64@0.21.5': - resolution: {integrity: sha512-1SDgH6ZSPTlggy1yI6+Dbkiz8xzpHJEVAlF/AM1tHPLsf5STom9rwtjE4hKAF20FfXXNTFqEYXyJNWh1GiZedQ==} - engines: {node: '>=12'} - cpu: [ppc64] - os: [aix] - - '@esbuild/aix-ppc64@0.24.2': - resolution: {integrity: sha512-thpVCb/rhxE/BnMLQ7GReQLLN8q9qbHmI55F4489/ByVg2aQaQ6kbcLb6FHkocZzQhxc4gx0sCk0tJkKBFzDhA==} + '@esbuild/aix-ppc64@0.27.2': + resolution: {integrity: sha512-GZMB+a0mOMZs4MpDbj8RJp4cw+w1WV5NYD6xzgvzUJ5Ek2jerwfO2eADyI6ExDSUED+1X8aMbegahsJi+8mgpw==} engines: {node: '>=18'} cpu: [ppc64] os: [aix] @@ -199,14 +195,8 @@ packages: cpu: [arm64] os: [android] - '@esbuild/android-arm64@0.21.5': - resolution: {integrity: sha512-c0uX9VAUBQ7dTDCjq+wdyGLowMdtR/GoC2U5IYk/7D1H1JYC0qseD7+11iMP2mRLN9RcCMRcjC4YMclCzGwS/A==} - engines: {node: '>=12'} - cpu: [arm64] - os: [android] - - '@esbuild/android-arm64@0.24.2': - resolution: {integrity: sha512-cNLgeqCqV8WxfcTIOeL4OAtSmL8JjcN6m09XIgro1Wi7cF4t/THaWEa7eL5CMoMBdjoHOTh/vwTO/o2TRXIyzg==} + '@esbuild/android-arm64@0.27.2': + resolution: {integrity: sha512-pvz8ZZ7ot/RBphf8fv60ljmaoydPU12VuXHImtAs0XhLLw+EXBi2BLe3OYSBslR4rryHvweW5gmkKFwTiFy6KA==} engines: {node: '>=18'} cpu: [arm64] os: [android] @@ -223,14 +213,8 @@ packages: cpu: [arm] os: [android] - '@esbuild/android-arm@0.21.5': - resolution: {integrity: sha512-vCPvzSjpPHEi1siZdlvAlsPxXl7WbOVUBBAowWug4rJHb68Ox8KualB+1ocNvT5fjv6wpkX6o/iEpbDrf68zcg==} - engines: {node: '>=12'} - cpu: [arm] - os: [android] - - '@esbuild/android-arm@0.24.2': - resolution: {integrity: sha512-tmwl4hJkCfNHwFB3nBa8z1Uy3ypZpxqxfTQOcHX+xRByyYgunVbZ9MzUUfb0RxaHIMnbHagwAxuTL+tnNM+1/Q==} + '@esbuild/android-arm@0.27.2': + resolution: {integrity: sha512-DVNI8jlPa7Ujbr1yjU2PfUSRtAUZPG9I1RwW4F4xFB1Imiu2on0ADiI/c3td+KmDtVKNbi+nffGDQMfcIMkwIA==} engines: {node: '>=18'} cpu: [arm] os: [android] @@ -247,14 +231,8 @@ packages: cpu: [x64] os: [android] - '@esbuild/android-x64@0.21.5': - resolution: {integrity: sha512-D7aPRUUNHRBwHxzxRvp856rjUHRFW1SdQATKXH2hqA0kAZb1hKmi02OpYRacl0TxIGz/ZmXWlbZgjwWYaCakTA==} - engines: {node: '>=12'} - cpu: [x64] - os: [android] - - '@esbuild/android-x64@0.24.2': - resolution: {integrity: sha512-B6Q0YQDqMx9D7rvIcsXfmJfvUYLoP722bgfBlO5cGvNVb5V/+Y7nhBE3mHV9OpxBf4eAS2S68KZztiPaWq4XYw==} + '@esbuild/android-x64@0.27.2': + resolution: {integrity: sha512-z8Ank4Byh4TJJOh4wpz8g2vDy75zFL0TlZlkUkEwYXuPSgX8yzep596n6mT7905kA9uHZsf/o2OJZubl2l3M7A==} engines: {node: '>=18'} cpu: [x64] os: [android] @@ -271,14 +249,8 @@ packages: cpu: [arm64] os: [darwin] - '@esbuild/darwin-arm64@0.21.5': - resolution: {integrity: sha512-DwqXqZyuk5AiWWf3UfLiRDJ5EDd49zg6O9wclZ7kUMv2WRFr4HKjXp/5t8JZ11QbQfUS6/cRCKGwYhtNAY88kQ==} - engines: {node: '>=12'} - cpu: [arm64] - os: [darwin] - - '@esbuild/darwin-arm64@0.24.2': - resolution: {integrity: sha512-kj3AnYWc+CekmZnS5IPu9D+HWtUI49hbnyqk0FLEJDbzCIQt7hg7ucF1SQAilhtYpIujfaHr6O0UHlzzSPdOeA==} + '@esbuild/darwin-arm64@0.27.2': + resolution: {integrity: sha512-davCD2Zc80nzDVRwXTcQP/28fiJbcOwvdolL0sOiOsbwBa72kegmVU0Wrh1MYrbuCL98Omp5dVhQFWRKR2ZAlg==} engines: {node: '>=18'} cpu: [arm64] os: [darwin] @@ -295,14 +267,8 @@ packages: cpu: [x64] os: [darwin] - '@esbuild/darwin-x64@0.21.5': - resolution: {integrity: sha512-se/JjF8NlmKVG4kNIuyWMV/22ZaerB+qaSi5MdrXtd6R08kvs2qCN4C09miupktDitvh8jRFflwGFBQcxZRjbw==} - engines: {node: '>=12'} - cpu: [x64] - os: [darwin] - - '@esbuild/darwin-x64@0.24.2': - resolution: {integrity: sha512-WeSrmwwHaPkNR5H3yYfowhZcbriGqooyu3zI/3GGpF8AyUdsrrP0X6KumITGA9WOyiJavnGZUwPGvxvwfWPHIA==} + '@esbuild/darwin-x64@0.27.2': + resolution: {integrity: sha512-ZxtijOmlQCBWGwbVmwOF/UCzuGIbUkqB1faQRf5akQmxRJ1ujusWsb3CVfk/9iZKr2L5SMU5wPBi1UWbvL+VQA==} engines: {node: '>=18'} cpu: [x64] os: [darwin] @@ -319,14 +285,8 @@ packages: cpu: [arm64] os: [freebsd] - '@esbuild/freebsd-arm64@0.21.5': - resolution: {integrity: sha512-5JcRxxRDUJLX8JXp/wcBCy3pENnCgBR9bN6JsY4OmhfUtIHe3ZW0mawA7+RDAcMLrMIZaf03NlQiX9DGyB8h4g==} - engines: {node: '>=12'} - cpu: [arm64] - os: [freebsd] - - '@esbuild/freebsd-arm64@0.24.2': - resolution: {integrity: sha512-UN8HXjtJ0k/Mj6a9+5u6+2eZ2ERD7Edt1Q9IZiB5UZAIdPnVKDoG7mdTVGhHJIeEml60JteamR3qhsr1r8gXvg==} + '@esbuild/freebsd-arm64@0.27.2': + resolution: {integrity: sha512-lS/9CN+rgqQ9czogxlMcBMGd+l8Q3Nj1MFQwBZJyoEKI50XGxwuzznYdwcav6lpOGv5BqaZXqvBSiB/kJ5op+g==} engines: {node: '>=18'} cpu: [arm64] os: [freebsd] @@ -343,14 +303,8 @@ packages: cpu: [x64] os: [freebsd] - '@esbuild/freebsd-x64@0.21.5': - resolution: {integrity: sha512-J95kNBj1zkbMXtHVH29bBriQygMXqoVQOQYA+ISs0/2l3T9/kj42ow2mpqerRBxDJnmkUDCaQT/dfNXWX/ZZCQ==} - engines: {node: '>=12'} - cpu: [x64] - os: [freebsd] - - '@esbuild/freebsd-x64@0.24.2': - resolution: {integrity: sha512-TvW7wE/89PYW+IevEJXZ5sF6gJRDY/14hyIGFXdIucxCsbRmLUcjseQu1SyTko+2idmCw94TgyaEZi9HUSOe3Q==} + '@esbuild/freebsd-x64@0.27.2': + resolution: {integrity: sha512-tAfqtNYb4YgPnJlEFu4c212HYjQWSO/w/h/lQaBK7RbwGIkBOuNKQI9tqWzx7Wtp7bTPaGC6MJvWI608P3wXYA==} engines: {node: '>=18'} cpu: [x64] os: [freebsd] @@ -367,14 +321,8 @@ packages: cpu: [arm64] os: [linux] - '@esbuild/linux-arm64@0.21.5': - resolution: {integrity: sha512-ibKvmyYzKsBeX8d8I7MH/TMfWDXBF3db4qM6sy+7re0YXya+K1cem3on9XgdT2EQGMu4hQyZhan7TeQ8XkGp4Q==} - engines: {node: '>=12'} - cpu: [arm64] - os: [linux] - - '@esbuild/linux-arm64@0.24.2': - resolution: {integrity: sha512-7HnAD6074BW43YvvUmE/35Id9/NB7BeX5EoNkK9obndmZBUk8xmJJeU7DwmUeN7tkysslb2eSl6CTrYz6oEMQg==} + '@esbuild/linux-arm64@0.27.2': + resolution: {integrity: sha512-hYxN8pr66NsCCiRFkHUAsxylNOcAQaxSSkHMMjcpx0si13t1LHFphxJZUiGwojB1a/Hd5OiPIqDdXONia6bhTw==} engines: {node: '>=18'} cpu: [arm64] os: [linux] @@ -391,14 +339,8 @@ packages: cpu: [arm] os: [linux] - '@esbuild/linux-arm@0.21.5': - resolution: {integrity: sha512-bPb5AHZtbeNGjCKVZ9UGqGwo8EUu4cLq68E95A53KlxAPRmUyYv2D6F0uUI65XisGOL1hBP5mTronbgo+0bFcA==} - engines: {node: '>=12'} - cpu: [arm] - os: [linux] - - '@esbuild/linux-arm@0.24.2': - resolution: {integrity: sha512-n0WRM/gWIdU29J57hJyUdIsk0WarGd6To0s+Y+LwvlC55wt+GT/OgkwoXCXvIue1i1sSNWblHEig00GBWiJgfA==} + '@esbuild/linux-arm@0.27.2': + resolution: {integrity: sha512-vWfq4GaIMP9AIe4yj1ZUW18RDhx6EPQKjwe7n8BbIecFtCQG4CfHGaHuh7fdfq+y3LIA2vGS/o9ZBGVxIDi9hw==} engines: {node: '>=18'} cpu: [arm] os: [linux] @@ -415,14 +357,8 @@ packages: cpu: [ia32] os: [linux] - '@esbuild/linux-ia32@0.21.5': - resolution: {integrity: sha512-YvjXDqLRqPDl2dvRODYmmhz4rPeVKYvppfGYKSNGdyZkA01046pLWyRKKI3ax8fbJoK5QbxblURkwK/MWY18Tg==} - engines: {node: '>=12'} - cpu: [ia32] - os: [linux] - - '@esbuild/linux-ia32@0.24.2': - resolution: {integrity: sha512-sfv0tGPQhcZOgTKO3oBE9xpHuUqguHvSo4jl+wjnKwFpapx+vUDcawbwPNuBIAYdRAvIDBfZVvXprIj3HA+Ugw==} + '@esbuild/linux-ia32@0.27.2': + resolution: {integrity: sha512-MJt5BRRSScPDwG2hLelYhAAKh9imjHK5+NE/tvnRLbIqUWa+0E9N4WNMjmp/kXXPHZGqPLxggwVhz7QP8CTR8w==} engines: {node: '>=18'} cpu: [ia32] os: [linux] @@ -439,14 +375,8 @@ packages: cpu: [loong64] os: [linux] - '@esbuild/linux-loong64@0.21.5': - resolution: {integrity: sha512-uHf1BmMG8qEvzdrzAqg2SIG/02+4/DHB6a9Kbya0XDvwDEKCoC8ZRWI5JJvNdUjtciBGFQ5PuBlpEOXQj+JQSg==} - engines: {node: '>=12'} - cpu: [loong64] - os: [linux] - - '@esbuild/linux-loong64@0.24.2': - resolution: {integrity: sha512-CN9AZr8kEndGooS35ntToZLTQLHEjtVB5n7dl8ZcTZMonJ7CCfStrYhrzF97eAecqVbVJ7APOEe18RPI4KLhwQ==} + '@esbuild/linux-loong64@0.27.2': + resolution: {integrity: sha512-lugyF1atnAT463aO6KPshVCJK5NgRnU4yb3FUumyVz+cGvZbontBgzeGFO1nF+dPueHD367a2ZXe1NtUkAjOtg==} engines: {node: '>=18'} cpu: [loong64] os: [linux] @@ -463,14 +393,8 @@ packages: cpu: [mips64el] os: [linux] - '@esbuild/linux-mips64el@0.21.5': - resolution: {integrity: sha512-IajOmO+KJK23bj52dFSNCMsz1QP1DqM6cwLUv3W1QwyxkyIWecfafnI555fvSGqEKwjMXVLokcV5ygHW5b3Jbg==} - engines: {node: '>=12'} - cpu: [mips64el] - os: [linux] - - '@esbuild/linux-mips64el@0.24.2': - resolution: {integrity: sha512-iMkk7qr/wl3exJATwkISxI7kTcmHKE+BlymIAbHO8xanq/TjHaaVThFF6ipWzPHryoFsesNQJPE/3wFJw4+huw==} + '@esbuild/linux-mips64el@0.27.2': + resolution: {integrity: sha512-nlP2I6ArEBewvJ2gjrrkESEZkB5mIoaTswuqNFRv/WYd+ATtUpe9Y09RnJvgvdag7he0OWgEZWhviS1OTOKixw==} engines: {node: '>=18'} cpu: [mips64el] os: [linux] @@ -487,14 +411,8 @@ packages: cpu: [ppc64] os: [linux] - '@esbuild/linux-ppc64@0.21.5': - resolution: {integrity: sha512-1hHV/Z4OEfMwpLO8rp7CvlhBDnjsC3CttJXIhBi+5Aj5r+MBvy4egg7wCbe//hSsT+RvDAG7s81tAvpL2XAE4w==} - engines: {node: '>=12'} - cpu: [ppc64] - os: [linux] - - '@esbuild/linux-ppc64@0.24.2': - resolution: {integrity: sha512-shsVrgCZ57Vr2L8mm39kO5PPIb+843FStGt7sGGoqiiWYconSxwTiuswC1VJZLCjNiMLAMh34jg4VSEQb+iEbw==} + '@esbuild/linux-ppc64@0.27.2': + resolution: {integrity: sha512-C92gnpey7tUQONqg1n6dKVbx3vphKtTHJaNG2Ok9lGwbZil6DrfyecMsp9CrmXGQJmZ7iiVXvvZH6Ml5hL6XdQ==} engines: {node: '>=18'} cpu: [ppc64] os: [linux] @@ -511,14 +429,8 @@ packages: cpu: [riscv64] os: [linux] - '@esbuild/linux-riscv64@0.21.5': - resolution: {integrity: sha512-2HdXDMd9GMgTGrPWnJzP2ALSokE/0O5HhTUvWIbD3YdjME8JwvSCnNGBnTThKGEB91OZhzrJ4qIIxk/SBmyDDA==} - engines: {node: '>=12'} - cpu: [riscv64] - os: [linux] - - '@esbuild/linux-riscv64@0.24.2': - resolution: {integrity: sha512-4eSFWnU9Hhd68fW16GD0TINewo1L6dRrB+oLNNbYyMUAeOD2yCK5KXGK1GH4qD/kT+bTEXjsyTCiJGHPZ3eM9Q==} + '@esbuild/linux-riscv64@0.27.2': + resolution: {integrity: sha512-B5BOmojNtUyN8AXlK0QJyvjEZkWwy/FKvakkTDCziX95AowLZKR6aCDhG7LeF7uMCXEJqwa8Bejz5LTPYm8AvA==} engines: {node: '>=18'} cpu: [riscv64] os: [linux] @@ -535,14 +447,8 @@ packages: cpu: [s390x] os: [linux] - '@esbuild/linux-s390x@0.21.5': - resolution: {integrity: sha512-zus5sxzqBJD3eXxwvjN1yQkRepANgxE9lgOW2qLnmr8ikMTphkjgXu1HR01K4FJg8h1kEEDAqDcZQtbrRnB41A==} - engines: {node: '>=12'} - cpu: [s390x] - os: [linux] - - '@esbuild/linux-s390x@0.24.2': - resolution: {integrity: sha512-S0Bh0A53b0YHL2XEXC20bHLuGMOhFDO6GN4b3YjRLK//Ep3ql3erpNcPlEFed93hsQAjAQDNsvcK+hV90FubSw==} + '@esbuild/linux-s390x@0.27.2': + resolution: {integrity: sha512-p4bm9+wsPwup5Z8f4EpfN63qNagQ47Ua2znaqGH6bqLlmJ4bx97Y9JdqxgGZ6Y8xVTixUnEkoKSHcpRlDnNr5w==} engines: {node: '>=18'} cpu: [s390x] os: [linux] @@ -559,20 +465,14 @@ packages: cpu: [x64] os: [linux] - '@esbuild/linux-x64@0.21.5': - resolution: {integrity: sha512-1rYdTpyv03iycF1+BhzrzQJCdOuAOtaqHTWJZCWvijKD2N5Xu0TtVC8/+1faWqcP9iBCWOmjmhoH94dH82BxPQ==} - engines: {node: '>=12'} - cpu: [x64] - os: [linux] - - '@esbuild/linux-x64@0.24.2': - resolution: {integrity: sha512-8Qi4nQcCTbLnK9WoMjdC9NiTG6/E38RNICU6sUNqK0QFxCYgoARqVqxdFmWkdonVsvGqWhmm7MO0jyTqLqwj0Q==} + '@esbuild/linux-x64@0.27.2': + resolution: {integrity: sha512-uwp2Tip5aPmH+NRUwTcfLb+W32WXjpFejTIOWZFw/v7/KnpCDKG66u4DLcurQpiYTiYwQ9B7KOeMJvLCu/OvbA==} engines: {node: '>=18'} cpu: [x64] os: [linux] - '@esbuild/netbsd-arm64@0.24.2': - resolution: {integrity: sha512-wuLK/VztRRpMt9zyHSazyCVdCXlpHkKm34WUyinD2lzK07FAHTq0KQvZZlXikNWkDGoT6x3TD51jKQ7gMVpopw==} + '@esbuild/netbsd-arm64@0.27.2': + resolution: {integrity: sha512-Kj6DiBlwXrPsCRDeRvGAUb/LNrBASrfqAIok+xB0LxK8CHqxZ037viF13ugfsIpePH93mX7xfJp97cyDuTZ3cw==} engines: {node: '>=18'} cpu: [arm64] os: [netbsd] @@ -589,20 +489,14 @@ packages: cpu: [x64] os: [netbsd] - '@esbuild/netbsd-x64@0.21.5': - resolution: {integrity: sha512-Woi2MXzXjMULccIwMnLciyZH4nCIMpWQAs049KEeMvOcNADVxo0UBIQPfSmxB3CWKedngg7sWZdLvLczpe0tLg==} - engines: {node: '>=12'} - cpu: [x64] - os: [netbsd] - - '@esbuild/netbsd-x64@0.24.2': - resolution: {integrity: sha512-VefFaQUc4FMmJuAxmIHgUmfNiLXY438XrL4GDNV1Y1H/RW3qow68xTwjZKfj/+Plp9NANmzbH5R40Meudu8mmw==} + '@esbuild/netbsd-x64@0.27.2': + resolution: {integrity: sha512-HwGDZ0VLVBY3Y+Nw0JexZy9o/nUAWq9MlV7cahpaXKW6TOzfVno3y3/M8Ga8u8Yr7GldLOov27xiCnqRZf0tCA==} engines: {node: '>=18'} cpu: [x64] os: [netbsd] - '@esbuild/openbsd-arm64@0.24.2': - resolution: {integrity: sha512-YQbi46SBct6iKnszhSvdluqDmxCJA+Pu280Av9WICNwQmMxV7nLRHZfjQzwbPs3jeWnuAhE9Jy0NrnJ12Oz+0A==} + '@esbuild/openbsd-arm64@0.27.2': + resolution: {integrity: sha512-DNIHH2BPQ5551A7oSHD0CKbwIA/Ox7+78/AWkbS5QoRzaqlev2uFayfSxq68EkonB+IKjiuxBFoV8ESJy8bOHA==} engines: {node: '>=18'} cpu: [arm64] os: [openbsd] @@ -619,17 +513,17 @@ packages: cpu: [x64] os: [openbsd] - '@esbuild/openbsd-x64@0.21.5': - resolution: {integrity: sha512-HLNNw99xsvx12lFBUwoT8EVCsSvRNDVxNpjZ7bPn947b8gJPzeHWyNVhFsaerc0n3TsbOINvRP2byTZ5LKezow==} - engines: {node: '>=12'} + '@esbuild/openbsd-x64@0.27.2': + resolution: {integrity: sha512-/it7w9Nb7+0KFIzjalNJVR5bOzA9Vay+yIPLVHfIQYG/j+j9VTH84aNB8ExGKPU4AzfaEvN9/V4HV+F+vo8OEg==} + engines: {node: '>=18'} cpu: [x64] os: [openbsd] - '@esbuild/openbsd-x64@0.24.2': - resolution: {integrity: sha512-+iDS6zpNM6EnJyWv0bMGLWSWeXGN/HTaF/LXHXHwejGsVi+ooqDfMCCTerNFxEkM3wYVcExkeGXNqshc9iMaOA==} + '@esbuild/openharmony-arm64@0.27.2': + resolution: {integrity: sha512-LRBbCmiU51IXfeXk59csuX/aSaToeG7w48nMwA6049Y4J4+VbWALAuXcs+qcD04rHDuSCSRKdmY63sruDS5qag==} engines: {node: '>=18'} - cpu: [x64] - os: [openbsd] + cpu: [arm64] + os: [openharmony] '@esbuild/sunos-x64@0.17.19': resolution: {integrity: sha512-vCRT7yP3zX+bKWFeP/zdS6SqdWB8OIpaRq/mbXQxTGHnIxspRtigpkUcDMlSCOejlHowLqII7K2JKevwyRP2rg==} @@ -643,14 +537,8 @@ packages: cpu: [x64] os: [sunos] - '@esbuild/sunos-x64@0.21.5': - resolution: {integrity: sha512-6+gjmFpfy0BHU5Tpptkuh8+uw3mnrvgs+dSPQXQOv3ekbordwnzTVEb4qnIvQcYXq6gzkyTnoZ9dZG+D4garKg==} - engines: {node: '>=12'} - cpu: [x64] - os: [sunos] - - '@esbuild/sunos-x64@0.24.2': - resolution: {integrity: sha512-hTdsW27jcktEvpwNHJU4ZwWFGkz2zRJUz8pvddmXPtXDzVKTTINmlmga3ZzwcuMpUvLw7JkLy9QLKyGpD2Yxig==} + '@esbuild/sunos-x64@0.27.2': + resolution: {integrity: sha512-kMtx1yqJHTmqaqHPAzKCAkDaKsffmXkPHThSfRwZGyuqyIeBvf08KSsYXl+abf5HDAPMJIPnbBfXvP2ZC2TfHg==} engines: {node: '>=18'} cpu: [x64] os: [sunos] @@ -667,14 +555,8 @@ packages: cpu: [arm64] os: [win32] - '@esbuild/win32-arm64@0.21.5': - resolution: {integrity: sha512-Z0gOTd75VvXqyq7nsl93zwahcTROgqvuAcYDUr+vOv8uHhNSKROyU961kgtCD1e95IqPKSQKH7tBTslnS3tA8A==} - engines: {node: '>=12'} - cpu: [arm64] - os: [win32] - - '@esbuild/win32-arm64@0.24.2': - resolution: {integrity: sha512-LihEQ2BBKVFLOC9ZItT9iFprsE9tqjDjnbulhHoFxYQtQfai7qfluVODIYxt1PgdoyQkz23+01rzwNwYfutxUQ==} + '@esbuild/win32-arm64@0.27.2': + resolution: {integrity: sha512-Yaf78O/B3Kkh+nKABUF++bvJv5Ijoy9AN1ww904rOXZFLWVc5OLOfL56W+C8F9xn5JQZa3UX6m+IktJnIb1Jjg==} engines: {node: '>=18'} cpu: [arm64] os: [win32] @@ -691,14 +573,8 @@ packages: cpu: [ia32] os: [win32] - '@esbuild/win32-ia32@0.21.5': - resolution: {integrity: sha512-SWXFF1CL2RVNMaVs+BBClwtfZSvDgtL//G/smwAc5oVK/UPu2Gu9tIaRgFmYFFKrmg3SyAjSrElf0TiJ1v8fYA==} - engines: {node: '>=12'} - cpu: [ia32] - os: [win32] - - '@esbuild/win32-ia32@0.24.2': - resolution: {integrity: sha512-q+iGUwfs8tncmFC9pcnD5IvRHAzmbwQ3GPS5/ceCyHdjXubwQWI12MKWSNSMYLJMq23/IUCvJMS76PDqXe1fxA==} + '@esbuild/win32-ia32@0.27.2': + resolution: {integrity: sha512-Iuws0kxo4yusk7sw70Xa2E2imZU5HoixzxfGCdxwBdhiDgt9vX9VUCBhqcwY7/uh//78A1hMkkROMJq9l27oLQ==} engines: {node: '>=18'} cpu: [ia32] os: [win32] @@ -715,14 +591,8 @@ packages: cpu: [x64] os: [win32] - '@esbuild/win32-x64@0.21.5': - resolution: {integrity: sha512-tQd/1efJuzPC6rCFwEvLtci/xNFcTZknmXs98FYDfGE4wP9ClFV98nyKrzJKVPMhdDnjzLhdUyMX4PsQAPjwIw==} - engines: {node: '>=12'} - cpu: [x64] - os: [win32] - - '@esbuild/win32-x64@0.24.2': - resolution: {integrity: sha512-7VTgWzgMGvup6aSqDPLiW5zHaxYJGTO4OokMjIlrCtf+VpEL+cXKtCvg723iguPYI5oaUNdS+/V7OU2gvXVWEg==} + '@esbuild/win32-x64@0.27.2': + resolution: {integrity: sha512-sRdU18mcKf7F+YgheI/zGf5alZatMUTKj/jNS6l744f9u3WFu4v7twcUI9vu4mknF4Y9aDlblIie0IM+5xxaqQ==} engines: {node: '>=18'} cpu: [x64] os: [win32] @@ -746,13 +616,25 @@ packages: '@formatjs/intl-localematcher@0.5.10': resolution: {integrity: sha512-af3qATX+m4Rnd9+wHcjJ4w2ijq+rAVP3CCinJQvFv1kgSu1W6jypUmvleJxcewdxmutM8dmIRZFxO/IQBZmP2Q==} - '@isaacs/cliui@8.0.2': - resolution: {integrity: sha512-O8jcjabXaleOG9DQ0+ARXWZBTfnP4WNAqzuiJK7ll44AmxGKv/J2M4TPjxjY3znBCfvBXFzucm1twdyFybFqEA==} - engines: {node: '>=12'} + '@hapi/address@5.1.1': + resolution: {integrity: sha512-A+po2d/dVoY7cYajycYI43ZbYMXukuopIsqCjh5QzsBCipDtdofHntljDlpccMjIfTy6UOkg+5KPriwYch2bXA==} + engines: {node: '>=14.0.0'} - '@istanbuljs/schema@0.1.3': - resolution: {integrity: sha512-ZXRY4jNvVgSVQ8DL3LTcakaAtXwTVUxE81hslsyD2AtoXW/wVob10HkOJ1X/pAlcI7D+2YoZKg5do8G/w6RYgA==} - engines: {node: '>=8'} + '@hapi/formula@3.0.2': + resolution: {integrity: sha512-hY5YPNXzw1He7s0iqkRQi+uMGh383CGdyyIGYtB+W5N3KHPXoqychklvHhKCC9M3Xtv0OCs/IHw+r4dcHtBYWw==} + + '@hapi/hoek@11.0.7': + resolution: {integrity: sha512-HV5undWkKzcB4RZUusqOpcgxOaq6VOAH7zhhIr2g3G8NF/MlFO75SjOr2NfuSx0Mh40+1FqCkagKLJRykUWoFQ==} + + '@hapi/pinpoint@2.0.1': + resolution: {integrity: sha512-EKQmr16tM8s16vTT3cA5L0kZZcTMU5DUOZTuvpnY738m+jyP3JIUj+Mm1xc1rsLkGBQ/gVnfKYPwOmPg1tUR4Q==} + + '@hapi/tlds@1.1.4': + resolution: {integrity: sha512-Fq+20dxsxLaUn5jSSWrdtSRcIUba2JquuorF9UW1wIJS5cSUwxIsO2GIhaWynPRflvxSzFN+gxKte2HEW1OuoA==} + engines: {node: '>=14.0.0'} + + '@hapi/topo@6.0.2': + resolution: {integrity: sha512-KR3rD5inZbGMrHmgPxsJ9dbi6zEK+C3ZwUwTa+eMwWLz7oijWUTWD2pMSNNYJAU6Qq+65NkxXjqHr/7LM2Xkqg==} '@jridgewell/gen-mapping@0.3.13': resolution: {integrity: sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==} @@ -801,10 +683,6 @@ packages: resolution: {integrity: sha512-T8TbSnGsxo6TDBJx/Sgv/BlVJL3tshxZP7Aq5R1mSnM5OcHY2dQaxLMu2+E8u3gN0MLOzdjurqN4ZRVuzQycOQ==} engines: {node: '>=8.0'} - '@pkgjs/parseargs@0.11.0': - resolution: {integrity: sha512-+1VkjdD0QBLPodGrJUeqarH8VAIvQODIbwh9XpP5Syisf7YoQgsJKPNFoqqLQlu+VQ/tVSshMR6loPMn8U+dPg==} - engines: {node: '>=14'} - '@polka/url@1.0.0-next.29': resolution: {integrity: sha512-wwQAWhWSuHaag8c4q/KN/vCoeOJYshAIvMQwD4GpSb3OiZklFfvAgmj0VCBBImRpuF/aFgIRzllXlVX93Jevww==} @@ -918,8 +796,8 @@ packages: cpu: [x64] os: [win32] - '@standard-schema/spec@1.0.0': - resolution: {integrity: sha512-m2bOd0f2RT9k8QJx1JN85cZYyH1RqFBdlwtkSlf4tBDYLCiiZnv1fIIwacK6cqwXavOydf0NPToMQgpKq+dVlA==} + '@standard-schema/spec@1.1.0': + resolution: {integrity: sha512-l2aFy5jALhniG5HgqrD6jXLi/rUWrKvqN/qJx6yoJsgKhblVd+iqqU4RCXavm/jPityDo5TCvKMnpjKnOriy0w==} '@sveltejs/acorn-typescript@1.0.8': resolution: {integrity: sha512-esgN+54+q0NjB0Y/4BomT9samII7jGwNy/2a3wNZbT2A2RpmXsXwUt24LvLhx6jUq2gVk4cWEvcRO6MFQbOfNA==} @@ -931,44 +809,47 @@ packages: peerDependencies: '@sveltejs/kit': ^2.0.0 - '@sveltejs/adapter-cloudflare@5.0.1': - resolution: {integrity: sha512-3aNqJ7O3aOQvlutsDMtT7Wse1cOPyESlvf161nSGjWITy+Un3H/H+Cv8DS/Ac/vSpM9BT9puw6CpOp6HujgrfA==} + '@sveltejs/adapter-cloudflare@7.2.6': + resolution: {integrity: sha512-PmaWW6EdMue8s24bUwa9EMsnjMaCS1HroM8HwlvwSxO8Cq5LldAxnnaUS5cnJ3RdVRorJZtL71eMTs+wbuXHgw==} peerDependencies: '@sveltejs/kit': ^2.0.0 - wrangler: ^3.87.0 + wrangler: ^4.0.0 '@sveltejs/adapter-static@3.0.10': resolution: {integrity: sha512-7D9lYFWJmB7zxZyTE/qxjksvMqzMuYrrsyh1f4AlZqeZeACPRySjbC3aFiY55wb1tWUaKOQG9PVbm74JcN2Iew==} peerDependencies: '@sveltejs/kit': ^2.0.0 - '@sveltejs/kit@2.49.2': - resolution: {integrity: sha512-Vp3zX/qlwerQmHMP6x0Ry1oY7eKKRcOWGc2P59srOp4zcqyn+etJyQpELgOi4+ZSUgteX8Y387NuwruLgGXLUQ==} + '@sveltejs/kit@2.50.2': + resolution: {integrity: sha512-875hTUkEbz+MyJIxWbQjfMaekqdmEKUUfR7JyKcpfMRZqcGyrO9Gd+iS1D/Dx8LpE5FEtutWGOtlAh4ReSAiOA==} engines: {node: '>=18.13'} hasBin: true peerDependencies: '@opentelemetry/api': ^1.0.0 '@sveltejs/vite-plugin-svelte': ^3.0.0 || ^4.0.0-next.1 || ^5.0.0 || ^6.0.0-next.0 svelte: ^4.0.0 || ^5.0.0-next.0 + typescript: ^5.3.3 vite: ^5.0.3 || ^6.0.0 || ^7.0.0-beta.0 peerDependenciesMeta: '@opentelemetry/api': optional: true + typescript: + optional: true - '@sveltejs/vite-plugin-svelte-inspector@3.0.1': - resolution: {integrity: sha512-2CKypmj1sM4GE7HjllT7UKmo4Q6L5xFRd7VMGEWhYnZ+wc6AUVU01IBd7yUi6WnFndEwWoMNOd6e8UjoN0nbvQ==} - engines: {node: ^18.0.0 || ^20.0.0 || >=22} + '@sveltejs/vite-plugin-svelte-inspector@5.0.2': + resolution: {integrity: sha512-TZzRTcEtZffICSAoZGkPSl6Etsj2torOVrx6Uw0KpXxrec9Gg6jFWQ60Q3+LmNGfZSxHRCZL7vXVZIWmuV50Ig==} + engines: {node: ^20.19 || ^22.12 || >=24} peerDependencies: - '@sveltejs/vite-plugin-svelte': ^4.0.0-next.0||^4.0.0 - svelte: ^5.0.0-next.96 || ^5.0.0 - vite: ^5.0.0 + '@sveltejs/vite-plugin-svelte': ^6.0.0-next.0 + svelte: ^5.0.0 + vite: ^6.3.0 || ^7.0.0 - '@sveltejs/vite-plugin-svelte@4.0.4': - resolution: {integrity: sha512-0ba1RQ/PHen5FGpdSrW7Y3fAMQjrXantECALeOiOdBdzR5+5vPP6HVZRLmZaQL+W8m++o+haIAKq5qT+MiZ7VA==} - engines: {node: ^18.0.0 || ^20.0.0 || >=22} + '@sveltejs/vite-plugin-svelte@6.2.4': + resolution: {integrity: sha512-ou/d51QSdTyN26D7h6dSpusAKaZkAiGM55/AKYi+9AGZw7q85hElbjK3kEyzXHhLSnRISHOYzVge6x0jRZ7DXA==} + engines: {node: ^20.19 || ^22.12 || >=24} peerDependencies: - svelte: ^5.0.0-next.96 || ^5.0.0 - vite: ^5.0.0 + svelte: ^5.0.0 + vite: ^6.3.0 || ^7.0.0 '@sveltekit-i18n/base@1.3.7': resolution: {integrity: sha512-kg1kql1/ro/lIudwFiWrv949Q07gmweln87tflUZR51MNdXXzK4fiJQv5Mw50K/CdQ5BOk/dJ0WOH2vOtBI6yw==} @@ -1005,8 +886,8 @@ packages: '@types/node@10.17.60': resolution: {integrity: sha512-F0KIgDJfy2nA3zMLmWGKxcH2ZVEtCZXHHdOQs2gSaQ27+lNeEfGxzkIw90aXswATX7AZ33tahPbzy6KAfUreVw==} - '@types/node@25.0.1': - resolution: {integrity: sha512-czWPzKIAXucn9PtsttxmumiQ9N0ok9FrBwgRWrwmVLlp86BrMExzvXRLFYRJ+Ex3g6yqj+KuaxfX1JTgV2lpfg==} + '@types/node@25.2.1': + resolution: {integrity: sha512-CPrnr8voK8vC6eEtyRzvMpgp3VyVRhgclonE7qYi6P9sXwYb59ucfrnmFBTaP0yUi8Gk4yZg/LlTJULGxvTNsg==} '@types/node@8.10.66': resolution: {integrity: sha512-tktOkFUA4kXx2hhhrB8bIFb5TbwzS4uOhKEmwiD+NoiL0qtP2OQ9mFldbgD4dV1djrlBYP6eBuQZiWjuHUpqFw==} @@ -1014,43 +895,46 @@ packages: '@types/qs@6.9.17': resolution: {integrity: sha512-rX4/bPcfmvxHDv0XjfJELTTr+iB+tn032nPILqHm5wbthUUUuVtNGGqzhya9XUxjTP8Fpr0qYgSZZKxGY++svQ==} - '@vitest/coverage-v8@3.2.4': - resolution: {integrity: sha512-EyF9SXU6kS5Ku/U82E259WSnvg6c8KTjppUncuNdm5QHpe17mwREHnjDzozC8x9MZ0xfBUFSaLkRv4TMA75ALQ==} + '@vitest/coverage-v8@4.0.18': + resolution: {integrity: sha512-7i+N2i0+ME+2JFZhfuz7Tg/FqKtilHjGyGvoHYQ6iLV0zahbsJ9sljC9OcFcPDbhYKCet+sG8SsVqlyGvPflZg==} peerDependencies: - '@vitest/browser': 3.2.4 - vitest: 3.2.4 + '@vitest/browser': 4.0.18 + vitest: 4.0.18 peerDependenciesMeta: '@vitest/browser': optional: true - '@vitest/expect@3.2.4': - resolution: {integrity: sha512-Io0yyORnB6sikFlt8QW5K7slY4OjqNX9jmJQ02QDda8lyM6B5oNgVWoSoKPac8/kgnCUzuHQKrSLtu/uOqqrig==} + '@vitest/expect@4.0.18': + resolution: {integrity: sha512-8sCWUyckXXYvx4opfzVY03EOiYVxyNrHS5QxX3DAIi5dpJAAkyJezHCP77VMX4HKA2LDT/Jpfo8i2r5BE3GnQQ==} - '@vitest/mocker@3.2.4': - resolution: {integrity: sha512-46ryTE9RZO/rfDd7pEqFl7etuyzekzEhUbTW3BvmeO/BcCMEgq59BKhek3dXDWgAj4oMK6OZi+vRr1wPW6qjEQ==} + '@vitest/mocker@4.0.18': + resolution: {integrity: sha512-HhVd0MDnzzsgevnOWCBj5Otnzobjy5wLBe4EdeeFGv8luMsGcYqDuFRMcttKWZA5vVO8RFjexVovXvAM4JoJDQ==} peerDependencies: msw: ^2.4.9 - vite: ^5.0.0 || ^6.0.0 || ^7.0.0-0 + vite: ^6.0.0 || ^7.0.0-0 peerDependenciesMeta: msw: optional: true vite: optional: true - '@vitest/pretty-format@3.2.4': - resolution: {integrity: sha512-IVNZik8IVRJRTr9fxlitMKeJeXFFFN0JaB9PHPGQ8NKQbGpfjlTx9zO4RefN8gp7eqjNy8nyK3NZmBzOPeIxtA==} + '@vitest/pretty-format@4.0.18': + resolution: {integrity: sha512-P24GK3GulZWC5tz87ux0m8OADrQIUVDPIjjj65vBXYG17ZeU3qD7r+MNZ1RNv4l8CGU2vtTRqixrOi9fYk/yKw==} + + '@vitest/runner@4.0.18': + resolution: {integrity: sha512-rpk9y12PGa22Jg6g5M3UVVnTS7+zycIGk9ZNGN+m6tZHKQb7jrP7/77WfZy13Y/EUDd52NDsLRQhYKtv7XfPQw==} - '@vitest/runner@3.2.4': - resolution: {integrity: sha512-oukfKT9Mk41LreEW09vt45f8wx7DordoWUZMYdY/cyAk7w5TWkTRCNZYF7sX7n2wB7jyGAl74OxgwhPgKaqDMQ==} + '@vitest/snapshot@4.0.18': + resolution: {integrity: sha512-PCiV0rcl7jKQjbgYqjtakly6T1uwv/5BQ9SwBLekVg/EaYeQFPiXcgrC2Y7vDMA8dM1SUEAEV82kgSQIlXNMvA==} - '@vitest/snapshot@3.2.4': - resolution: {integrity: sha512-dEYtS7qQP2CjU27QBC5oUOxLE/v5eLkGqPE0ZKEIDGMs4vKWe7IjgLOeauHsR0D5YuuycGRO5oSRXnwnmA78fQ==} + '@vitest/spy@4.0.18': + resolution: {integrity: sha512-cbQt3PTSD7P2OARdVW3qWER5EGq7PHlvE+QfzSC0lbwO+xnt7+XH06ZzFjFRgzUX//JmpxrCu92VdwvEPlWSNw==} - '@vitest/spy@3.2.4': - resolution: {integrity: sha512-vAfasCOe6AIK70iP5UD11Ac4siNUNJ9i/9PZ3NKx07sG6sUxeag1LWdNrMWeKKYBLlzuK+Gn65Yd5nyL6ds+nw==} + '@vitest/utils@4.0.18': + resolution: {integrity: sha512-msMRKLMVLWygpK3u2Hybgi4MNjcYJvwTb0Ru09+fOyCXIgT5raYP041DRRdiJiI3k/2U6SEbAETB3YtBrUkCFA==} - '@vitest/utils@3.2.4': - resolution: {integrity: sha512-fB2V0JFrQSMsCo9HiSq3Ezpdv4iYaXRG1Sx8edX3MwxfyNn83mKiGzOcH+Fkxt4MHxr3y42fQi1oeAInqgX2QA==} + '@zeit/schemas@2.36.0': + resolution: {integrity: sha512-7kjMwcChYEzMKjeex9ZFXkt1AyNov9R5HZtjBKVsmVpw7pa7ZtlCGvCBC2vnnXctaYN+aRI61HjIqeetZW5ROg==} acorn-walk@8.3.4: resolution: {integrity: sha512-ueEepnujpqee2o5aIYnvHU6C0A42MNdsIDeqy5BydrkuC5R1ZuUFnm27EeFJGoEHJQgn3uleRvmTXaJgfXbt4g==} @@ -1061,26 +945,38 @@ packages: engines: {node: '>=0.4.0'} hasBin: true + ajv@8.12.0: + resolution: {integrity: sha512-sRu1kpcO9yLtYxBKvqfTeh9KzZEwO3STyX1HT+4CaDzC6HpTGYhIhPIzj9XuKU7KYDwnaeh5hcOwjy1QuJzBPA==} + + ansi-align@3.0.1: + resolution: {integrity: sha512-IOfwwBF5iczOjp/WeY4YxyjqAFMQoZufdQWDd19SEExbVLNXqvpzSJ/M7Za4/sCPmQ0+GRquoA7bGcINcxew6w==} + ansi-regex@5.0.1: resolution: {integrity: sha512-quJQXlTSUGL2LH9SUXo8VwsY4soanhgo6LNSm84E1LBcE8s3O0wpdiRzyR9z/ZZJMlMWv37qOOb9pdJlMUEKFQ==} engines: {node: '>=8'} - ansi-regex@6.1.0: - resolution: {integrity: sha512-7HSX4QQb4CspciLpVFwyRe79O3xsIZDDLER21kERQ71oaPodF8jL725AgJMFAYbooIqolJoRLuM81SpeUkpkvA==} + ansi-regex@6.2.2: + resolution: {integrity: sha512-Bq3SmSpyFHaWjPk8If9yc6svM8c56dB5BAtW4Qbw5jHTwwXXcTLoRMkpDJp6VL0XzlWaCHTXrkFURMYmD0sLqg==} engines: {node: '>=12'} ansi-styles@4.3.0: resolution: {integrity: sha512-zbB9rCJAT1rbjiVDb2hqKFHNYLxgtk8NURxZ3IZwD3F6NtxbXZQCnnSi1Lkx+IDohdPlFp222wVALIheZJQSEg==} engines: {node: '>=8'} - ansi-styles@6.2.1: - resolution: {integrity: sha512-bN798gFfQX+viw3R7yrGWRqnrN2oRkEkUjjl4JNn4E8GxxbjtG3FbrEIIY3l8/hrwUwIeCZvi4QuOTP4MErVug==} + ansi-styles@6.2.3: + resolution: {integrity: sha512-4Dj6M28JB+oAH8kFkTLUo+a2jwOFkuqb3yucU0CANcRRUbxS0cP0nZYCGjcc3BNXwRIsUVmDGgzawme7zvJHvg==} engines: {node: '>=12'} anymatch@3.1.3: resolution: {integrity: sha512-KMReFUr0B4t+D+OBkjR3KYqvocp2XaSzO55UcB6mgQMd3KbcE+mWTyvVV7D/zsdEbNnV6acZUutkiHQXvTr1Rw==} engines: {node: '>= 8'} + arch@2.2.0: + resolution: {integrity: sha512-Of/R0wqp83cgHozfIYLbBMnej79U/SVGOOyuB3VVFv1NRM/PSFMK12x9KVtiYzJqmnU5WR2qp0Z5rHb7sWGnFQ==} + + arg@5.0.2: + resolution: {integrity: sha512-PYjyFOLKQ9y57JvQ6QLo8dAgNqswh8M1RMJYdQduT6xbWSgK36P/Z/v+p888pM69jMMfS8Xd8F6I1kQ/I9HUGg==} + argparse@1.0.10: resolution: {integrity: sha512-o5Roy6tNG4SL/FOkCAN6RzjiakZS25RLYFrcMttJqbdd8BWrnA+fGz57iN5Pb06pvBGvl5gQ0B48dJlslXvoTg==} @@ -1097,16 +993,15 @@ packages: asap@2.0.6: resolution: {integrity: sha512-BSHWgDSAiKs50o2Re8ppvp3seVHXSRM44cdSsT9FfNEUUZLOGWVCsiWaRPWM1Znn+mqZ1OfVZ3z3DWEzSp7hRA==} - assertion-error@2.0.1: - resolution: {integrity: sha512-Izi8RQcffqCeNVgFigKli1ssklIbpHnCYc6AknXGYoB6grJqyeby7jv12JUQgmTAnIDnbck1uxksT4dzN3PWBA==} - engines: {node: '>=12'} - - ast-v8-to-istanbul@0.3.5: - resolution: {integrity: sha512-9SdXjNheSiE8bALAQCQQuT6fgQaoxJh7IRYrRGZ8/9nv8WhJeC1aXAwN8TbaOssGOukUvyvnkgD9+Yuykvl1aA==} + ast-v8-to-istanbul@0.3.10: + resolution: {integrity: sha512-p4K7vMz2ZSk3wN8l5o3y2bJAoZXT3VuJI5OLTATY/01CYWumWvwkUw0SqDBnNq6IiTO3qDa1eSQDibAV8g7XOQ==} asynckit@0.4.0: resolution: {integrity: sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==} + axios@1.13.4: + resolution: {integrity: sha512-1wVkUaAO6WyaYtCkcYCOx12ZgpGf9Zif+qXa4n+oYzK558YryKqiL6UWwd5DqiH3VRW0GYhTZQ/vlgJrCoNQlg==} + axobject-query@4.1.0: resolution: {integrity: sha512-qIj0G9wZbMGNLjLmg1PT6v2mE9AH2zlnADJD/2tC6E00hgmhUOfEB6greHPAfLRSufHqROIUTkw6E+M3lH0PTQ==} engines: {node: '>= 0.4'} @@ -1121,8 +1016,12 @@ packages: blake3-wasm@2.1.5: resolution: {integrity: sha512-F1+K8EbfOZE49dtoPtmxUQrpXaBIl3ICvasLh+nJta0xkz+9kF/7uet9fLnwKqhDrmj6g+6K3Tw9yQPUg2ka5g==} - brace-expansion@2.0.2: - resolution: {integrity: sha512-Jt0vHyM+jmUBqojB7E1NIYadt0vI0Qxjxd2TErW94wDz+E2LAm5vKMXXwg6ZZBTHPuUlDgQHKXvjGBdfcF1ZDQ==} + boxen@7.0.0: + resolution: {integrity: sha512-j//dBVuyacJbvW+tvZ9HuH03fZ46QcaKvvhZickZqtB271DxJ7SNRSNxrV/dZX0085m7hISRZWbzWlJvx/rHSg==} + engines: {node: '>=14.16'} + + brace-expansion@1.1.12: + resolution: {integrity: sha512-9T9UjW3r0UW5c1Q7GTwllptXwhvYmEzFhzMfZ9H7FQWt+uZePjZPjBP/W1ZEyZ1twGWom5/56TF4lPcqjnDHcg==} braces@3.0.3: resolution: {integrity: sha512-yQbXgO/OSZVD2IsiLlro+7Hf6Q18EJrKSEsdoMzKePKXct3gvD8oLcOQdIzGupr5Fj+EDe8gO/lxc1BzfMpxvA==} @@ -1131,9 +1030,13 @@ packages: buffer-from@1.1.2: resolution: {integrity: sha512-E+XQCRwSbaaiChtv6k6Dwgc+bx+Bs6vuKJHHl5kox/BaKbhiXzqQOwK4cO22yElGp2OCmjwVhT3HmxgyPGnJfQ==} - cac@6.7.14: - resolution: {integrity: sha512-b6Ilus+c3RrdDk+JhLKUAQfzzgLEPy6wcXqS7f/xe1EETvsDP6GORG7SFuOs6cID5YkqchW/LXZbX5bc8j7ZcQ==} - engines: {node: '>=8'} + bytes@3.0.0: + resolution: {integrity: sha512-pMhOfFDPiv9t5jjIXkHosWmkSyQbvsgEVNkz0ERHbuLh2T/7j4Mqqpz523Fe8MVY89KC6Sh/QfS2sM+SjgFDcw==} + engines: {node: '>= 0.8'} + + bytes@3.1.2: + resolution: {integrity: sha512-/Nf7TyzTx6S3yRJObOAV7956r8cr2+Oj8AC5dt8wSP3BQAoeX58NoHyCU8P8zGkNXStjTSi6fzO6F0pBdcYbEg==} + engines: {node: '>= 0.8'} call-bind-apply-helpers@1.0.2: resolution: {integrity: sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==} @@ -1143,19 +1046,31 @@ packages: resolution: {integrity: sha512-YTd+6wGlNlPxSuri7Y6X8tY2dmm12UMH66RpKMhiX6rsk5wXXnYgbUcOt8kiS31/AjfoTOvCsE+w8nZQLQnzHA==} engines: {node: '>= 0.4'} + camelcase@7.0.1: + resolution: {integrity: sha512-xlx1yCK2Oc1APsPXDL2LdlNP6+uu8OCDdhOBSVT279M/S+y75O30C2VuD8T2ogdePBBl7PfPF4504tnLgX3zfw==} + engines: {node: '>=14.16'} + capnp-ts@0.7.0: resolution: {integrity: sha512-XKxXAC3HVPv7r674zP0VC3RTXz+/JKhfyw94ljvF80yynK6VkTnqE3jMuN8b3dUVmmc43TjyxjW4KTsmB3c86g==} caseless@0.12.0: resolution: {integrity: sha512-4tYFyifaFfGacoiObjJegolkwSU4xQNGbVgUiNYVUxbQ2x2lUsFvY4hVgVzGiIe6WLOPqycWXA40l+PWsxthUw==} - chai@5.3.3: - resolution: {integrity: sha512-4zNhdJD/iOjSH0A05ea+Ke6MU5mmpQcbQsSOkgdaUMJ9zTlDTD/GYlwohmIE2u0gaxHYiVHEn1Fw9mZ/ktJWgw==} + chai@6.2.2: + resolution: {integrity: sha512-NUPRluOfOiTKBKvWPtSD4PhFvWCqOi0BGStNWs57X9js7XGTprSmFoz5F0tWhR4WPjNeR9jXqdC7/UpSJTnlRg==} engines: {node: '>=18'} - check-error@2.1.1: - resolution: {integrity: sha512-OAlb+T7V4Op9OwdkjmguYRqncdlx5JiofwOAUkmTF+jNdHwzTaTs4sRAGpzLF3oOz5xAyDGrPgeIDFQmDOTiJw==} - engines: {node: '>= 16'} + chalk-template@0.4.0: + resolution: {integrity: sha512-/ghrgmhfY8RaSdeo43hNXxpoHAtxdbskUHjPpfqUWGttFgycUhYPGx3YZBCnUCvOa7Doivn1IZec3DEGFoMgLg==} + engines: {node: '>=12'} + + chalk@4.1.2: + resolution: {integrity: sha512-oKnbhFyRIXpUuez8iBMmyEa4nbj4IOQyuhc/wy9kY7/WVPcwIO9VA668Pu8RkO7+0G76SLROeyw9CpQ061i4mA==} + engines: {node: '>=10'} + + chalk@5.0.1: + resolution: {integrity: sha512-Fo07WOYGqMfCWHOzSXOt2CxDbC6skS/jO9ynEcmpANMoPrD+W1r1K6Vx7iNm+AQmETU1Xr2t+n8nzkV9t6xh3w==} + engines: {node: ^12.17.0 || ^14.13 || >=16.0.0} chokidar@3.6.0: resolution: {integrity: sha512-7VT13fmjotKpGipCW9JEQAusEPE+Ei8nl6/g4FBAmIm0GOOLMua9NDDo/DWp0ZAxCr3cPq5ZpBqmPAQgDda2Pw==} @@ -1165,10 +1080,18 @@ packages: resolution: {integrity: sha512-Qgzu8kfBvo+cA4962jnP1KkS6Dop5NS6g7R5LFYJr4b8Ub94PPQXUksCw9PvXoeXPRRddRNC5C1JQUR2SMGtnA==} engines: {node: '>= 14.16.0'} + cli-boxes@3.0.0: + resolution: {integrity: sha512-/lzGpEWL/8PfI0BmBOPRwp0c/wFNX1RdUML3jK/RcSBA9T8mZDdQpqYBKtCFTOfQbwPqWEOpjqW+Fnayc0969g==} + engines: {node: '>=10'} + cli-color@2.0.4: resolution: {integrity: sha512-zlnpg0jNcibNrO7GG9IeHH7maWFeCz+Ja1wx/7tZNU5ASSSSZ+/qZciM0/LHCYxSdqv5h2sdbQ/PXYdOuetXvA==} engines: {node: '>=0.10'} + clipboardy@3.0.0: + resolution: {integrity: sha512-Su+uU5sr1jkUy1sGRpLKjKrvEOVXgSgiSInwa/qeID6aJ07yh+5NWc3h2QfjHjBnfX4LhtFcuAWKUsJ3r+fjbg==} + engines: {node: ^12.20.0 || ^14.13.1 || >=16.0.0} + clsx@2.1.1: resolution: {integrity: sha512-eYm0QWBtUrBWZWG0d386OGAw16Z995PiOVo2B7bjWSbHedGl5e0ZWaq65kOGgUSNesEIDkB9ISbTg/JK9dhCZA==} engines: {node: '>=6'} @@ -1184,6 +1107,17 @@ packages: resolution: {integrity: sha512-FQN4MRfuJeHf7cBbBMJFXhKSDq+2kAArBlmRBvcvFE5BB1HZKXtSFASDhdlz9zOYwxh8lDdnvmMOe/+5cdoEdg==} engines: {node: '>= 0.8'} + compressible@2.0.18: + resolution: {integrity: sha512-AF3r7P5dWxL8MxyITRMlORQNaOA2IkAFaTr4k7BUumjPtRpGDTZpl0Pb1XCO6JeDCBdp126Cgs9sMxqSjgYyRg==} + engines: {node: '>= 0.6'} + + compression@1.8.1: + resolution: {integrity: sha512-9mAqGPHLakhCLeNyxPkK4xVo746zQ/czLH1Ky+vkitMnWfWZps8r0qXuwhwizagCRttsL4lfG4pIOvaWLpAP0w==} + engines: {node: '>= 0.8.0'} + + concat-map@0.0.1: + resolution: {integrity: sha512-/Srv4dswyQNBfohGpz9o6Yb3Gz3SrUDqBH5rTuhGR7ahtlbYKnVxw2bCFMRljaA7EXHaXZ8wsHdodFvbkhKmqg==} + concat-stream@1.6.2: resolution: {integrity: sha512-27HBghJxjiZtIk3Ycvn/4kbJk/1uZuJFfuPEns6LaEvpvG1f0hTea8lilrouyo9mVc2GWdcEZ8OLoGmSADlrCw==} engines: {'0': node >= 0.8} @@ -1191,6 +1125,10 @@ packages: confbox@0.1.8: resolution: {integrity: sha512-RMtmw0iFkeR4YV+fUOSucriAQNb9g8zFR52MWCtl+cCZOFRNL6zeB395vPzFhEjjn4fMxXudmELnl/KF/WrK6w==} + content-disposition@0.5.2: + resolution: {integrity: sha512-kRGRZw3bLlFISDBgwTSA1TMBFN6J6GWDeubmDE3AF+3+yXL8hTWv8r5rkLbqYXY4RjPk/EzHnClI3zQf1cFmHA==} + engines: {node: '>= 0.6'} + cookie@0.7.2: resolution: {integrity: sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==} engines: {node: '>= 0.6'} @@ -1213,18 +1151,8 @@ packages: data-uri-to-buffer@2.0.2: resolution: {integrity: sha512-ND9qDTLc6diwj+Xe5cdAgVTbLVdXbtxTJRXRhli8Mowuaan+0EJOtdqJ0QCHNSSPyoXGx9HX2/VMnKeC34AChA==} - debug@4.4.0: - resolution: {integrity: sha512-6WTZ/IxCY/T6BALoZHaE4ctp9xm+Z5kY/pzYaCHRFeyVhojxlrm+46y68HA6hr0TcwEssoxNiDEUJQjfPZ/RYA==} - engines: {node: '>=6.0'} - peerDependencies: - supports-color: '*' - peerDependenciesMeta: - supports-color: - optional: true - - debug@4.4.1: - resolution: {integrity: sha512-KcKCqiftBJcZr++7ykoDIEwSa3XWowTfNPo92BYxjXiyYEVrUQh2aLyhxBCwww+heortUFxEJYcRzosstTEBYQ==} - engines: {node: '>=6.0'} + debug@2.6.9: + resolution: {integrity: sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==} peerDependencies: supports-color: '*' peerDependenciesMeta: @@ -1243,9 +1171,9 @@ packages: decimal.js@10.4.3: resolution: {integrity: sha512-VBBaLc1MgL5XpzgIP7ny5Z6Nx3UrRkIViUkPUdtl9aya5amy3De1gsUUSB1g3+3sExYNjCAsAznmukyxCb1GRA==} - deep-eql@5.0.2: - resolution: {integrity: sha512-h5k/5U50IJJFpzfL6nO9jaaumfjO/f2NjK/oYB2Djzm4p9L+3T9qWpZqZ2hAbLPuuYq9wrU08WQyBTL5GbPk5Q==} - engines: {node: '>=6'} + deep-extend@0.6.0: + resolution: {integrity: sha512-LOHxIOaPYdHlJRtCQfDIVZtfw/ufM8+rVj649RIHzcm/vGwQRXFt6OPqIFWsm2XEMrNIEtWR64sY1LEKD2vAOA==} + engines: {node: '>=4.0.0'} deepmerge@4.3.1: resolution: {integrity: sha512-3sUqbMEc77XqpdNO7FRyRog+eW3ph+GYCbj+rK+uYyRMuwsVy0rMiVtPn+QJlKFvWP/1PYpapqYn0Me2knFn+A==} @@ -1258,11 +1186,11 @@ packages: resolution: {integrity: sha512-ZySD7Nf91aLB0RxL4KGrKHBXl7Eds1DAmEdcoVawXnLD7SDhpNgtuII2aAkg7a7QS41jxPSZ17p4VdGnMHk3MQ==} engines: {node: '>=0.4.0'} - devalue@5.6.1: - resolution: {integrity: sha512-jDwizj+IlEZBunHcOuuFVBnIMPAEHvTsJj0BcIp94xYguLRVBcXO853px/MyIJvbVzWdsGvrRweIUWJw8hBP7A==} + devalue@5.6.2: + resolution: {integrity: sha512-nPRkjWzzDQlsejL1WVifk5rvcFi/y1onBRxjaFMjZeR9mFpqu2gmAZ9xUB9/IEanEP/vBtGeGganC/GO1fmufg==} - dotenv@17.2.3: - resolution: {integrity: sha512-JVUnt+DUIzu87TABbhPmNfVdBDt18BLOWjMUFJMSi/Qqg7NTYtabbvSNJGOJ7afbRuv9D/lngizHtP7QyLQ+9w==} + dotenv@17.2.4: + resolution: {integrity: sha512-mudtfb4zRB4bVvdj0xRo+e6duH1csJRM8IukBqfTRvHotn9+LBXB8ynAidP9zHqoRC/fsllXgk4kCKlR21fIhw==} engines: {node: '>=12'} dunder-proto@1.0.1: @@ -1321,13 +1249,8 @@ packages: engines: {node: '>=12'} hasBin: true - esbuild@0.21.5: - resolution: {integrity: sha512-mg3OPMV4hXywwpoDxu3Qda5xCKQi+vCTZq8S9J/EpkhB2HzKXq4SNFZE3+NK93JYxc8VMSep+lOUSC/RVKaBqw==} - engines: {node: '>=12'} - hasBin: true - - esbuild@0.24.2: - resolution: {integrity: sha512-+9egpBW8I3CD5XPe0n6BfT5fxLzxrlDzqydF3aviG+9ni1lDC/OvMHcxqEFV0+LANZG5R1bFMWfUrjVsdwxJvA==} + esbuild@0.27.2: + resolution: {integrity: sha512-HyNQImnsOC7X9PMNaCIeAm4ISCQXs5a5YasTXVliKv4uuBo1dKrG0A+uQS8M5eXjVMnLg3WgXaKvprHlFJQffw==} engines: {node: '>=18'} hasBin: true @@ -1347,8 +1270,8 @@ packages: engines: {node: '>=4'} hasBin: true - esrap@2.2.1: - resolution: {integrity: sha512-GiYWG34AN/4CUyaWAgunGt0Rxvr1PTMlGC0vvEov/uOQYWne2bpN03Um+k8jT+q3op33mKouP2zeJ6OlM+qeUg==} + esrap@2.2.2: + resolution: {integrity: sha512-zA6497ha+qKvoWIK+WM9NAh5ni17sKZKhbS5B3PoYbBvaYHZWoS33zmFybmyqpn07RLUxSmn+RCls2/XF+d0oQ==} estree-walker@0.6.1: resolution: {integrity: sha512-SqmZANLWS0mnatqbSfRP5g8OXZC12Fgg1IwNtLsyHDzJizORW4khDfjPqJZsemPWBB2uqykUah5YpQ6epsqC/w==} @@ -1362,6 +1285,10 @@ packages: event-emitter@0.3.5: resolution: {integrity: sha512-D9rRn9y7kLPnJ+hMq7S/nhvoKwwvVJahBi2BPmx3bvbsEdK3W9ii8cBSGjP+72/LnM4n6fo3+dkCX5FeTQruXA==} + execa@5.1.1: + resolution: {integrity: sha512-8uSpZZocAZRBAPIEINJj3Lo9HyGitllczc27Eh5YYojjMFMn8yHMDMaUHE2Jqfq05D/wucwI4JGURyXt1vchyg==} + engines: {node: '>=10'} + exit-hook@2.2.1: resolution: {integrity: sha512-eNTPlAD67BmP31LDINZ3U7HSF8l57TxOY2PmBJ1shpCvpnxBF93mWCE8YHBnXs8qiUZJc9WDcWIeC3a2HIAMfw==} engines: {node: '>=6'} @@ -1373,6 +1300,9 @@ packages: ext@1.7.0: resolution: {integrity: sha512-6hxeJYaL110a9b5TEJSj0gojyHQAmA2ch5Os+ySCiA1QGdS697XWY1pzsrSjqA9LDEEgdB/KypIlR59RcLuHYw==} + fast-deep-equal@3.1.3: + resolution: {integrity: sha512-f3qQ9oQy9j2AhBe/H9VC91wLmKBCCU/gDOnKNAYG5hswO7BLKj09Hc5HYNz9cGI++xlpDCIgDaitVs03ATR84Q==} + fast-glob@3.3.3: resolution: {integrity: sha512-7MptL8U0cqcFdzIzwOTHoilX9x5BrNqye7Z/LuC7kCMRio1EMSyqRK3BEAUD7sXRq4iT4AzTVuZdhgQ2TCvYLg==} engines: {node: '>=8.6.0'} @@ -1393,14 +1323,23 @@ packages: resolution: {integrity: sha512-YsGpe3WHLK8ZYi4tWDg2Jy3ebRz2rXowDxnld4bkQB00cc/1Zw9AWnC0i9ztDJitivtQvaI9KaLyKrc+hBW0yg==} engines: {node: '>=8'} - foreground-child@3.3.1: - resolution: {integrity: sha512-gIXjKqtFuWEgzFRJA9WCQeSJLZDjgJUOMCMzxtvFq/37KojM1BFGufqsCy0r4qSQmYLsZYMeyRqzIWOMup03sw==} - engines: {node: '>=14'} + follow-redirects@1.15.11: + resolution: {integrity: sha512-deG2P0JfjrTxl50XGCDyfI97ZGVCxIpfKYmfyrQ54n5FO/0gfIES8C/Psl6kWVDolizcaaxZJnTS0QSMxvnsBQ==} + engines: {node: '>=4.0'} + peerDependencies: + debug: '*' + peerDependenciesMeta: + debug: + optional: true form-data@2.5.5: resolution: {integrity: sha512-jqdObeR2rxZZbPSGL+3VckHMYtu+f9//KXBsVny6JSX/pa38Fy+bGjuG8eW/H6USNQWhLi8Num++cU2yOCNz4A==} engines: {node: '>= 0.12'} + form-data@4.0.5: + resolution: {integrity: sha512-8RipRLol37bNs2bhoV67fiTEvdTrbMUYcFTiy3+wuuOnUog2QBHCZWXDRijWQfAkhBj2Uf5UnVaiWwA5vdd82w==} + engines: {node: '>= 6'} + front-matter@4.0.2: resolution: {integrity: sha512-I8ZuJ/qG92NWX8i5x1Y8qyj3vizhXS31OxjKDu3LKP+7/qBgfIKValiZIEwoVoJKUHlhWtYrktkxV1XsX+pPlg==} @@ -1427,6 +1366,10 @@ packages: get-source@2.0.12: resolution: {integrity: sha512-X5+4+iD+HoSeEED+uwrQ07BOQr0kEDFMVqqpBuI+RaZBpBpHCuXxo70bjar6f0b0u/DQJsJ7ssurpP0V60Az+w==} + get-stream@6.0.1: + resolution: {integrity: sha512-ts6Wi+2j3jQjqi70w5AlN8DFnkSwC+MqmxEzdEALB2qXZYV3X/b1CTfgPLGJNMeAWxdPfU8FO1ms3NUfaHCPYg==} + engines: {node: '>=10'} + glob-parent@5.1.2: resolution: {integrity: sha512-AOIgSQCepiJYwP3ARnGx+5VnTu2HBYdzbGP45eLw1vr3zB3vZLeyed1sC9hnbcOc9/SrMyM5RPQrkGz4aS9Zow==} engines: {node: '>= 6'} @@ -1434,10 +1377,6 @@ packages: glob-to-regexp@0.4.1: resolution: {integrity: sha512-lkX1HJXwyMcprw/5YUZc2s7DrpAiHB21/V+E1rHUrVNokkvB6bqMzT0VfV6/86ZNabt1k14YOIaT7nDvOX3Iiw==} - glob@10.5.0: - resolution: {integrity: sha512-DfXN8DfhJ7NH3Oe7cFmu3NCu1wKbkReJ8TorzSAFbSKrlNaQSKfIzqYqVY8zlbs2NLBbWpRiU52GX2PbaBVNkg==} - hasBin: true - globalyzer@0.1.0: resolution: {integrity: sha512-40oNTM9UfG6aBmuKxk/giHn5nQ8RVz/SS4Ir6zgzOv9/qC3kKZ9v4etGTcJbEl/NyVQH7FGU7d+X1egr57Md2Q==} @@ -1474,9 +1413,16 @@ packages: http-response-object@3.0.2: resolution: {integrity: sha512-bqX0XTF6fnXSQcEJ2Iuyr75yVakyjIDCqroJQ/aHfSdlM743Cwqoi2nDYMzLGWUcuTWGWy8AAvOKXTfiv6q9RA==} + human-signals@2.1.0: + resolution: {integrity: sha512-B4FFZ6q/T2jhhksgkbEW3HBvWIfDW85snkQgawt07S7J5QXTk6BkNV+0yAeZrM5QpMAdYlocGoljn0sJ/WQkFw==} + engines: {node: '>=10.17.0'} + inherits@2.0.4: resolution: {integrity: sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==} + ini@1.3.8: + resolution: {integrity: sha512-JV/yugV2uzW5iMRSiZAyDtQd+nxtUnjeLt0acNdw98kKLrvuRVyB80tsREOE7yvGVgalhZ6RNXCmEHkUKBKxew==} + intl-messageformat@10.7.11: resolution: {integrity: sha512-IB2N1tmI24k2EFH3PWjU7ivJsnWyLwOWOva0jnXFa29WzB6fb0JZ5EMQGu+XN5lDtjHYFo0/UooP67zBwUg7rQ==} @@ -1484,6 +1430,11 @@ packages: resolution: {integrity: sha512-ZMERYes6pDydyuGidse7OsHxtbI7WVeUEozgR/g7rd0xUimYNlvZRE/K2MgZTjWy725IfelLeVcEM97mmtRGXw==} engines: {node: '>=8'} + is-docker@2.2.1: + resolution: {integrity: sha512-F+i2BKsFrH66iaUFc0woD8sLy8getkwTwtOBjvs56Cx4CgJDeKQeqfz8wAYiSb8JOprWhHH5p77PbmYCvvUuXQ==} + engines: {node: '>=8'} + hasBin: true + is-extglob@2.1.1: resolution: {integrity: sha512-SbKbANkN603Vi4jEZv49LeVJMn4yGwsbzZworEoyEiutsN3nJYdbO36zfhGJ6QEDpOZIFkDtnq5JRxmvl3jsoQ==} engines: {node: '>=0.10.0'} @@ -1500,12 +1451,24 @@ packages: resolution: {integrity: sha512-41Cifkg6e8TylSpdtTpeLVMqvSBEVzTttHvERD741+pnZ8ANv0004MRL43QKPDlK9cGvNp6NZWZUBlbGXYxxng==} engines: {node: '>=0.12.0'} + is-port-reachable@4.0.0: + resolution: {integrity: sha512-9UoipoxYmSk6Xy7QFgRv2HDyaysmgSG75TFQs6S+3pDM7ZhKTF/bskZV+0UlABHzKjNVhPjYCLfeZUEg1wXxig==} + engines: {node: ^12.20.0 || ^14.13.1 || >=16.0.0} + is-promise@2.2.2: resolution: {integrity: sha512-+lP4/6lKUBfQjZ2pdxThZvLUAafmZb8OAxFb8XXtiQmS35INgr85hdOGoEs124ez1FCnZJt6jau/T+alh58QFQ==} is-reference@3.0.3: resolution: {integrity: sha512-ixkJoqQvAP88E6wLydLGGqCJsrFUnqoH6HnaczB8XmDH1oaWU+xxdptvikTgaEhtZ53Ky6YXiBuUI2WXLMCwjw==} + is-stream@2.0.1: + resolution: {integrity: sha512-hFoiJiTl63nn+kstHGBtewWSKnQLpyb155KHheA1l39uvtO9nWIop1p3udqPcUd/xbF1VLMO4n7OI6p7RbngDg==} + engines: {node: '>=8'} + + is-wsl@2.2.0: + resolution: {integrity: sha512-fKzAra0rGJUUBwGBgNkHZuToZcn+TtXHpeCgmkMJMMYx1sQDYaCSyjJBSCa2nH1DGm7s3n1oBnohoVTBaN7Lww==} + engines: {node: '>=8'} + isarray@1.0.0: resolution: {integrity: sha512-VLghIWNM6ELQzo7zwmcg0NmTVyWKYjvIeM83yjp0wRDTmUnrM678fQbcKBo6n2CJEF0szoG//ytg+TKla89ALQ==} @@ -1520,16 +1483,13 @@ packages: resolution: {integrity: sha512-GCfE1mtsHGOELCU8e/Z7YWzpmybrx/+dSTfLrvY8qRmaY6zXTKWn6WQIjaAFw069icm6GVMNkgu0NzI4iPZUNw==} engines: {node: '>=10'} - istanbul-lib-source-maps@5.0.6: - resolution: {integrity: sha512-yg2d+Em4KizZC5niWhQaIomgf5WlL4vOOjZ5xGCmF8SnPE/mDWWXgvRExdcpCgh9lLRRa1/fSYp2ymmbJ1pI+A==} - engines: {node: '>=10'} - - istanbul-reports@3.1.7: - resolution: {integrity: sha512-BewmUXImeuRk2YY0PVbxgKAysvhRPUQE0h5QRM++nVWyubKGV0l8qQ5op8+B2DOmwSe63Jivj0BjkPQVf8fP5g==} + istanbul-reports@3.2.0: + resolution: {integrity: sha512-HGYWWS/ehqTV3xN10i23tkPkpH46MLCIMFNCaaKNavAXTF1RkqxawEPtnjnGZ6XKSInBKkiOA5BKS+aZiY3AvA==} engines: {node: '>=8'} - jackspeak@3.4.3: - resolution: {integrity: sha512-OGlZQpz2yfahA/Rd1Y8Cd9SIEsqvXkLVoSw/cgwhnhFMDbsQFeZYoJJ7bIZBS9BcamUW96asq/npPWugM+RQBw==} + joi@18.0.2: + resolution: {integrity: sha512-RuCOQMIt78LWnktPoeBL0GErkNaJPTBGcYuyaBvUOQSpcpcLfWrHPPihYdOGbV5pam9VTWbeoF7TsGiHugcjGA==} + engines: {node: '>= 20'} js-tokens@9.0.1: resolution: {integrity: sha512-mxa9E9ITFOt0ban3j6L5MpjwegGz6lBQmM1IJkWeBZGcMxto50+eWdjC/52xDbS2vy0k7vIMK0Fe2wfL9OQSpQ==} @@ -1542,6 +1502,9 @@ packages: resolution: {integrity: sha512-qQKT4zQxXl8lLwBtHMWwaTcGfFOZviOJet3Oy/xmGk2gZH677CJM9EvtfdSkgWcATZhj/55JZ0rmy3myCT5lsA==} hasBin: true + json-schema-traverse@1.0.0: + resolution: {integrity: sha512-NM8/P9n3XjXhIZn1lLhkFaACTOURQXjWhV4BA/RnOv8xvgqtqpAX9IO4mRQxSx1Rlo4tqzeqb0sOlruaOy3dug==} + kleur@4.1.5: resolution: {integrity: sha512-o+NO+8WrRiQEE4/7nwRJhN1HWpVmJm511pBHUxPLtp0BUISzlBplORYSmTclCnJvQq2tKu/sgl3xVpkc7ZWuQQ==} engines: {node: '>=6'} @@ -1549,11 +1512,8 @@ packages: locate-character@3.0.0: resolution: {integrity: sha512-SW13ws7BjaeJ6p7Q6CO2nchbYEc3X3J6WrmTTDto7yMPqVSZTUyY5Tjbid+Ab8gLnATtygYtiDIJGQRRn2ZOiA==} - loupe@3.2.1: - resolution: {integrity: sha512-CdzqowRJCeLU72bHvWqwRBBlLcMEtIvGrlvef74kMnV2AolS9Y8xUv1I0U/MNAWMhBlKIoyuEgoJ0t/bbwHbLQ==} - - lru-cache@10.4.3: - resolution: {integrity: sha512-JNAzZcXrCt42VGLuYz0zfAzDfAvJWW6AfYlDBQyDV5DClI2m5sAmK+OIO7s59XfsRsWHp02jAJrRadPRGTt6SQ==} + lodash@4.17.23: + resolution: {integrity: sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==} lru-queue@0.1.0: resolution: {integrity: sha512-BpdYkt9EvGl8OfWHDQPISVpcl5xZthb+XPsbELj5AQXxIC8IriDZIQYjBJPEm5rS420sjZ0TLEzRcq5KdBhYrQ==} @@ -1561,17 +1521,11 @@ packages: magic-string@0.25.9: resolution: {integrity: sha512-RmF0AsMzgt25qzqqLc1+MbHmhdx0ojF2Fvs4XnOqz2ZOBXzzkEwc/dJQZCYHAn7v1jbVOjAZfK8msRn4BxO4VQ==} - magic-string@0.30.17: - resolution: {integrity: sha512-sNPKHvyjVf7gyjwS4xGTaW/mCnF8wnjtifKBEhxfZ7E/S8tQ0rssrwGNn6q8JH/ohItJfSQp9mBtQYuTlH5QnA==} - - magic-string@0.30.18: - resolution: {integrity: sha512-yi8swmWbO17qHhwIBNeeZxTceJMeBvWJaId6dyvTSOwTipqeHhMhOrz6513r1sOKnpvQ7zkhlG8tPrpilwTxHQ==} - magic-string@0.30.21: resolution: {integrity: sha512-vd2F4YUyEXKGcLHoq+TEyCjxueSeHnFxyyjNp80yg0XV4vUhnDer/lvvlqM/arB5bXQN5K2/3oinyCRyx8T2CQ==} - magicast@0.3.5: - resolution: {integrity: sha512-L0WhttDl+2BOsybvEOLK7fW3UA0OQ0IQ2d6Zl2x/a6vVRs3bAY0ECOSHHeL5jD+SbOpOCUEi0y1DgHEn9Qn1AQ==} + magicast@0.5.1: + resolution: {integrity: sha512-xrHS24IxaLrvuo613F719wvOIv9xPHFWQHuvGUBmPnCA/3MQxKI3b+r7n1jAoDHmsbC5bRhTZYR77invLAxVnw==} make-dir@4.0.0: resolution: {integrity: sha512-hXdUTZYIVOt1Ex//jAQi+wTZZpUpwBj/0QsOzqegb3rGMMeJiSEu5xLHnYfBrRV4RH2+OCSOO95Is/7x1WJ4bw==} @@ -1590,6 +1544,9 @@ packages: resolution: {integrity: sha512-DGqD7Hjpi/1or4F/aYAspXKNm5Yili0QDAFAY4QYvpqpgiY6+1jOfqpmByzjxbWd/T9mChbCArXAbDAsTm5oXA==} engines: {node: '>=0.12'} + merge-stream@2.0.0: + resolution: {integrity: sha512-abv/qOcuPfk3URPfDzmZU1LKmuw8kT+0nIHvKrKgFrwifol/doWcdA4ZqsWQ8ENrFKkd67Mfpo/LovbIUsbt3w==} + merge2@1.4.1: resolution: {integrity: sha512-8q7VEgMJW4J8tcfVPy8g09NcQwZdbwFEqhe/WZkoIzjn/3TGDwtOCYtXGxA3O8tPzpczCCDgv+P2P5y00ZJOOg==} engines: {node: '>= 8'} @@ -1598,10 +1555,18 @@ packages: resolution: {integrity: sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==} engines: {node: '>=8.6'} + mime-db@1.33.0: + resolution: {integrity: sha512-BHJ/EKruNIqJf/QahvxwQZXKygOQ256myeN/Ew+THcAa5q+PjyTTMMeNQC4DZw5AwfvelsUrA6B67NKMqXDbzQ==} + engines: {node: '>= 0.6'} + mime-db@1.52.0: resolution: {integrity: sha512-sPU4uV7dYlvtWJxwwxHD0PuihVNiE7TyAbQ5SWxDCB9mUYvOgroQOwYQQOKPJ8CIbE+1ETVlOoK1UC2nU3gYvg==} engines: {node: '>= 0.6'} + mime-types@2.1.18: + resolution: {integrity: sha512-lc/aahn+t4/SWV/qcmumYjymLsWfN3ELhpmVuUFjgsORruuZPVSwAQryq+HHGvO/SI2KVX26bx+En+zhM8g8hQ==} + engines: {node: '>= 0.6'} + mime-types@2.1.35: resolution: {integrity: sha512-ZDY+bPm5zTTF+YpCrAU9nK0UgICYPT0QtT1NZWFv4s++TNkcgVaT0g6+4R2uI4MjQjzysHB1zxuWL50hzaeXiw==} engines: {node: '>= 0.6'} @@ -1611,22 +1576,21 @@ packages: engines: {node: '>=10.0.0'} hasBin: true + mimic-fn@2.1.0: + resolution: {integrity: sha512-OqbOk5oEQeAZ8WXWydlu9HJjz9WVdEIvamMCcXmuqUYjTknH/sqsWvhQ3vgwKFRR1HpjvNBKQ37nbJgYzGqGcg==} + engines: {node: '>=6'} + miniflare@3.20241230.2: resolution: {integrity: sha512-gFC3IaUKrLGdtA6y6PLpC/QE5YAjB5ITCfBZHkosRyFZ9ApaCHKcHRvrEFMc/R19QxxtHD+G3tExEHp7MmtsYQ==} engines: {node: '>=16.13'} hasBin: true - minimatch@9.0.5: - resolution: {integrity: sha512-G6T0ZX48xgozx7587koeX9Ys2NYy6Gmv//P89sEte9V9whIapMNF4idKxnW2QtCcLiTWlb/wfCabAtAFWhhBow==} - engines: {node: '>=16 || 14 >=14.17'} + minimatch@3.1.2: + resolution: {integrity: sha512-J7p63hRiAjw1NDEww1W7i37+ByIrOWO5XQQAzZ3VOcL0PNybwpfmV/N05zFAzwQ9USyEcX6t3UO+K5aqBQOIHw==} minimist@1.2.8: resolution: {integrity: sha512-2yyAR8qBkN3YuheJanUpWC5U3bb5osDywNB8RzDVlDwDHbocAJveqqj1u8+SVD7jkWT4yvsHCpWqqWqAxb0zCA==} - minipass@7.1.2: - resolution: {integrity: sha512-qOOzS1cBTWYF4BH8fVePDBOO9iptMnGUEZwNc/cMWnTV2nVLZ7VoNWEPHkYczZA0pdoA7dl6e7FL659nX9S2aw==} - engines: {node: '>=16 || 14 >=14.17'} - mlly@1.8.0: resolution: {integrity: sha512-l8D9ODSRWLe2KHJSifWGwBqpTZXIXTeo8mlKjY+E2HAakaTeNpqAyBZ8GSqLzHgw4XmHmC8whvpjJNMbFZN7/g==} @@ -1638,6 +1602,9 @@ packages: resolution: {integrity: sha512-Y3wQdFg2Va6etvQ5I82yUhGdsKrcYox6p7FfL1LbK2J4V01F9TGlepTIhnK24t7koZibmg82KGglhA1XK5IsLQ==} engines: {node: '>=10'} + ms@2.0.0: + resolution: {integrity: sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==} + ms@2.1.3: resolution: {integrity: sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==} @@ -1650,6 +1617,10 @@ packages: engines: {node: ^10 || ^12 || ^13.7 || ^14 || >=15.0.1} hasBin: true + negotiator@0.6.4: + resolution: {integrity: sha512-myRT3DiWPHqho5PrJaIRyaMv2kgYf0mUVgBNOYMuCH5Ki1yEiQaf/ZJuQ62nvpc44wL5WDbTX7yGJi1Neevw8w==} + engines: {node: '>= 0.6'} + next-tick@1.1.0: resolution: {integrity: sha512-CXdUiJembsNjuToQvxayPZF9Vqht7hewsvy2sOWafLvi2awflj9mOC6bHIg50orX8IJvWKY9wYQ/zB2kogPslQ==} @@ -1660,30 +1631,44 @@ packages: normalize.css@8.0.1: resolution: {integrity: sha512-qizSNPO93t1YUuUhP22btGOo3chcvDFqFaj2TRybP0DMxkHOCTYwp3n34fel4a31ORXy4m1Xq0Gyqpb5m33qIg==} + npm-run-path@4.0.1: + resolution: {integrity: sha512-S48WzZW777zhNIrn7gxOlISNAqi9ZC/uQFnRdbeIHhZhCA6UqpkOT8T1G7BvfdgP4Er8gF4sUbaS0i7QvIfCWw==} + engines: {node: '>=8'} + object-inspect@1.13.3: resolution: {integrity: sha512-kDCGIbxkDSXE3euJZZXzc6to7fCrKHNI/hSRQnRuQ+BWjFNzZwiFF8fj/6o2t2G9/jTj8PSIYTfCLelLZEeRpA==} engines: {node: '>= 0.4'} + obug@2.1.1: + resolution: {integrity: sha512-uTqF9MuPraAQ+IsnPf366RG4cP9RtUi7MLO1N3KEc+wb0a6yKpeL0lmk2IB1jY5KHPAlTc6T/JRdC/YqxHNwkQ==} + ohash@1.1.6: resolution: {integrity: sha512-TBu7PtV8YkAZn0tSxobKY2n2aAQva936lhRrj6957aDaCf9IEtqsKbgMzXE/F/sjqYOwmrukeORHNLe5glk7Cg==} - p-map@7.0.3: - resolution: {integrity: sha512-VkndIv2fIB99swvQoA65bm+fsmt6UNdGeIB0oxBs+WhAhdh08QA04JXpI7rbB9r08/nkbysKoya9rtDERYOYMA==} - engines: {node: '>=18'} + on-headers@1.1.0: + resolution: {integrity: sha512-737ZY3yNnXy37FHkQxPzt4UZ2UWPWiCZWLvFZ4fu5cueciegX0zGPnrlY6bwRg4FdQOe9YU8MkmJwGhoMybl8A==} + engines: {node: '>= 0.8'} + + onetime@5.1.2: + resolution: {integrity: sha512-kbpaSSGJTWdAY5KPVeMOKXSrPtr8C8C7wodJbcsd51jRnmD+GZu8Y0VoU6Dm5Z4vWr0Ig/1NKuWRKf7j5aaYSg==} + engines: {node: '>=6'} - package-json-from-dist@1.0.1: - resolution: {integrity: sha512-UEZIS3/by4OC8vL3P2dTXRETpebLI2NiI5vIrjaD/5UtrkFX/tNbwjTSRAGC/+7CAo2pIcBaRgWmcBBHcsaCIw==} + p-map@7.0.4: + resolution: {integrity: sha512-tkAQEw8ysMzmkhgw8k+1U/iPhWNhykKnSk4Rd5zLoPJCuJaGRPo6YposrZgaxHKzDHdDWWZvE/Sk7hsL2X/CpQ==} + engines: {node: '>=18'} parse-cache-control@1.0.1: resolution: {integrity: sha512-60zvsJReQPX5/QP0Kzfd/VrpjScIQ7SHBW6bFCYfEP+fp0Eppr1SHhIO5nd1PjZtvclzSzES9D/p5nFJurwfWg==} + path-is-inside@1.0.2: + resolution: {integrity: sha512-DUWJr3+ULp4zXmol/SZkFf3JGsS9/SIv+Y3Rt93/UjPpDpklB5f1er4O3POIbUuUJ3FXgqte2Q7SrU6zAqwk8w==} + path-key@3.1.1: resolution: {integrity: sha512-ojmeN0qd+y0jszEtoY48r0Peq5dwMEkIlCOu6Q5f41lfkswXuKtYrhgoTpLnyIcHm24Uhqx+5Tqm2InSwLhE6Q==} engines: {node: '>=8'} - path-scurry@1.11.1: - resolution: {integrity: sha512-Xa4Nw17FS9ApQFJ9umLiJS4orGjm7ZzwUrwamcGQuHSzDyth9boKDaycYdDcZDuqYATXw4HFXgaqWTctW/v1HA==} - engines: {node: '>=16 || 14 >=14.18'} + path-to-regexp@3.3.0: + resolution: {integrity: sha512-qyCH421YQPS2WFDxDjftfc1ZR5WKQzVzqsp4n9M2kQhVOo/ByahFoUNJfl58kOcEGfQ//7weFTDhm+ss8Ecxgw==} path-to-regexp@6.3.0: resolution: {integrity: sha512-Yhpw4T9C6hPpgPeA28us07OJeqZ5EzQTkbfwuhsUg0c237RomFoETJgmp2sa3F/41gfLE6G5cqcYwznmeEeOlQ==} @@ -1694,10 +1679,6 @@ packages: pathe@2.0.3: resolution: {integrity: sha512-WUjGcAqP1gQacoQe+OBJsFA7Ld4DyXuUIjZ5cc75cLHvJ7dtNsTugphxIADwspS+AraAUePCKrSVtPLFj/F88w==} - pathval@2.0.1: - resolution: {integrity: sha512-//nshmD55c46FuFw26xV/xFAaB5HF9Xdap7HJBBnrKdAd6/GxDBaNA1870O79+9ueg61cZLSVc+OaFlfmObYVQ==} - engines: {node: '>= 14.16'} - picocolors@1.1.1: resolution: {integrity: sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA==} @@ -1725,13 +1706,28 @@ packages: promise@8.3.0: resolution: {integrity: sha512-rZPNPKTOYVNEEKFaq1HqTgOwZD+4/YHS5ukLzQCypkj+OkYx7iv0mA91lJlpPPZ8vMau3IIGj5Qlwrx+8iiSmg==} - qs@6.13.1: - resolution: {integrity: sha512-EJPeIn0CYrGu+hli1xilKAPXODtJ12T0sP63Ijx2/khC2JtuaN3JyNIpvmnkmaEtha9ocbG4A4cMcr+TvqvwQg==} + proxy-from-env@1.1.0: + resolution: {integrity: sha512-D+zkORCbA9f1tdWRK0RaCR3GPv50cMxcrz4X8k5LTSUD1Dkw47mKJEZQNunItRTkWwgtaUSo1RVFRIG9ZXiFYg==} + + punycode@2.3.1: + resolution: {integrity: sha512-vYt7UD1U9Wg6138shLtLOvdAu+8DsC/ilFtEVHcH+wydcSpNE20AfSOduf6MkRFahL5FY7X1oU7nKVZFtfq8Fg==} + engines: {node: '>=6'} + + qs@6.14.1: + resolution: {integrity: sha512-4EK3+xJl8Ts67nLYNwqw/dsFVnCf+qR7RgXSK9jEEm9unao3njwMDdmsdvoKBKHzxd7tCYz5e5M+SnMjdtXGQQ==} engines: {node: '>=0.6'} queue-microtask@1.2.3: resolution: {integrity: sha512-NuaNSa6flKT5JaSYQzJok04JzTL1CA6aGhv5rfLW3PgqA+M2ChpZQnAC8h8i4ZFkBS8X5RqkDBHA7r4hej3K9A==} + range-parser@1.2.0: + resolution: {integrity: sha512-kA5WQoNVo4t9lNx2kQNFCxKeBl5IbbSNBl1M/tLkw9WCn+hxNBAW5Qh8gdhs63CJnhjJ2zQWFoqPJP2sK1AV5A==} + engines: {node: '>= 0.6'} + + rc@1.2.8: + resolution: {integrity: sha512-y3bGgqKj3QBdxLbLkomlohkvsA8gdAiUQlSBJnBhfn+BPxg4bc62d8TcBW15wavDfgexCgccckhcZvywyQYPOw==} + hasBin: true + readable-stream@2.3.8: resolution: {integrity: sha512-8p0AUk4XODgIewSi0l8Epjs+EVnWiK7NoDIEGU0HhE7+ZyY8D1IMY7odu5lRrFXGg71L15KG8QrPmum45RTtdA==} @@ -1747,6 +1743,17 @@ packages: resolution: {integrity: sha512-RSYAtP31mvYLkAHrOlh25pCNQ5hWnT106VukGaaFfuJrZFkGRX5GhUAdPqpSDXxOhA2c4akmRuplv1mRqnBn6Q==} engines: {node: '>=8'} + registry-auth-token@3.3.2: + resolution: {integrity: sha512-JL39c60XlzCVgNrO+qq68FoNb56w/m7JYvGR2jT5iR1xBrUA3Mfx5Twk5rqTThPmQKMWydGmq8oFtDlxfrmxnQ==} + + registry-url@3.1.0: + resolution: {integrity: sha512-ZbgR5aZEdf4UKZVBPYIgaglBmSF2Hi94s2PcIHhRGFjKYu+chjJdYfHn4rt3hB6eCKLJ8giVIIfgMa1ehDfZKA==} + engines: {node: '>=0.10.0'} + + require-from-string@2.0.2: + resolution: {integrity: sha512-Xf0nWe6RseziFMu+Ap9biiUbmplq6S9/p+7w7YXP/JBHhrUDDUhwa+vANyubuqfZWTveU//DYVGsDG7RKL/vEw==} + engines: {node: '>=0.10.0'} + reusify@1.1.0: resolution: {integrity: sha512-g6QUff04oZpHs0eG5p83rFLhHeV00ug/Yf9nZM6fLeUrPguBTkTQOdpAWWspMh55TZfVQDPaN3NQJfbVRAxdIw==} engines: {iojs: '>=1.0.0', node: '>=0.10.0'} @@ -1769,6 +1776,9 @@ packages: run-parallel@1.2.0: resolution: {integrity: sha512-5l4VyZR86LZ/lDxZTR6jqL8AFE2S0IFLMP26AbjsLVADxHdhB/c0GUsH+y39UfCi3dzz8OlQuPmnaJOMoDHQBA==} + rxjs@7.8.2: + resolution: {integrity: sha512-dhKf903U/PQZY6boNNtAGdWbG85WAbjT/1xYoZIC7FAY0yWapOBQVsVrDl58W86//e1VpMNBtRV4MaXfdMySFA==} + sade@1.8.1: resolution: {integrity: sha512-xal3CZX1Xlo/k4ApwCFrHVACi9fBqJ7V+mwhBsuf/1IOKbBy098Fex+Wa/5QMubw09pSZ/u8EY8PWgevJsXp1A==} engines: {node: '>=6'} @@ -1784,8 +1794,16 @@ packages: engines: {node: '>=10'} hasBin: true - set-cookie-parser@2.7.2: - resolution: {integrity: sha512-oeM1lpU/UvhTxw+g3cIfxXHyJRc/uidd3yK1P242gzHds0udQBYzs3y8j4gCCW+ZJ7ad0yctld8RYO+bdurlvw==} + serve-handler@6.1.6: + resolution: {integrity: sha512-x5RL9Y2p5+Sh3D38Fh9i/iQ5ZK+e4xuXRd/pGbM4D13tgo/MGwbttUk8emytcr1YYzBYs+apnUngBDFYfpjPuQ==} + + serve@14.2.5: + resolution: {integrity: sha512-Qn/qMkzCcMFVPb60E/hQy+iRLpiU8PamOfOSYoAHmmF+fFFmpPpqa6Oci2iWYpTdOUM3VF+TINud7CfbQnsZbA==} + engines: {node: '>= 14'} + hasBin: true + + set-cookie-parser@3.0.1: + resolution: {integrity: sha512-n7Z7dXZhJbwuAHhNzkTti6Aw9QDDjZtm3JTpTGATIdNzdQz5GuFs22w90BcvF4INfnrL5xrX3oGsuqO5Dx3A1Q==} shebang-command@2.0.0: resolution: {integrity: sha512-kHxr2zZpYtdmrN1qDjrrX/Z1rR1kG8Dx+gkpK1G4eXmvXswmcE1hTWBWYUzlraYw1/yZp6YuDY77YtvbN0dmDA==} @@ -1814,9 +1832,8 @@ packages: siginfo@2.0.0: resolution: {integrity: sha512-ybx0WO1/8bSBLEWXZvEd7gMW3Sn3JFlW3TvX1nREbDLRNQNaeNN8WK0meBwPdAaOI7TtRRRJn/Es1zhrrCHu7g==} - signal-exit@4.1.0: - resolution: {integrity: sha512-bzyZ1e88w9O1iNJbKnOlvYTrWPDl46O1bG0D3XInv+9tkPrxrN8jUUTiFlDkkmKWgn1M6CfIA13SuGqOa9Korw==} - engines: {node: '>=14'} + signal-exit@3.0.7: + resolution: {integrity: sha512-wnD2ZE+l+SPC/uoS0vXeE9L1+0wuaMqKlfz9AMUo38JsyLSBWSFcHR1Rri62LZc12vLr1gb3jl7iwQhgwpAbGQ==} sirv@3.0.2: resolution: {integrity: sha512-2wcC/oGxHis/BoHkkPwldgiPSYcpZK3JU28WoMVv55yHJgcZ8rlXvuG9iZggz+sU1d4bRgIGASwyWqjxu3FM0g==} @@ -1843,8 +1860,8 @@ packages: stacktracey@2.1.8: resolution: {integrity: sha512-Kpij9riA+UNg7TnphqjH7/CzctQ/owJGNbFkfEeve4Z4uxT5+JapVLFXcsurIfN34gnTWZNJ/f7NMG0E8JDzTw==} - std-env@3.9.0: - resolution: {integrity: sha512-UGvjygr6F6tpH7o2qyqR6QYpwraIjKSdtzyBdyytFOHmPZY917kwdwLG0RbOjWOnKmnm3PeHjaoLLMie7kPLQw==} + std-env@3.10.0: + resolution: {integrity: sha512-5GS12FdOZNliM5mAOxFRg7Ir0pWz8MdpYm6AY6VPkGpbA7ZzmbzNcBJQ0GPvvyWgcY7QAhCgf9Uy89I03faLkg==} stoppable@1.1.0: resolution: {integrity: sha512-KXDYZ9dszj6bzvnEMRYvxgeTHU74QBFL54XKtP3nyMuJ81CFYtABZ3bAzL2EdFUaEwJOBOgENyFj3R7oTzDyyw==} @@ -1865,19 +1882,24 @@ packages: resolution: {integrity: sha512-Y38VPSHcqkFrCpFnQ9vuSXmquuv5oXOKpGeT6aGrr3o3Gc9AlVa6JBfUSOCnbxGGZF+/0ooI7KrPuUSztUdU5A==} engines: {node: '>=8'} - strip-ansi@7.1.0: - resolution: {integrity: sha512-iq6eVVI64nQQTRYq2KtEg2d2uU7LElhTJwsH4YzIHZshxlgZms/wIc4VoDQTlG/IvVIrBKG06CrZnp0qv7hkcQ==} + strip-ansi@7.1.2: + resolution: {integrity: sha512-gmBGslpoQJtgnMAvOVqGZpEz9dyoKTCzy2nfz/n8aIFhN/jCE/rCmcxabB6jOOHV+0WNnylOxaxBQPSvcWklhA==} engines: {node: '>=12'} - strip-literal@3.0.0: - resolution: {integrity: sha512-TcccoMhJOM3OebGhSBEmp3UZ2SfDMZUEBdRA/9ynfLi8yYajyWX3JiXArcJt4Umh4vISpspkQIY8ZZoCqjbviA==} + strip-final-newline@2.0.0: + resolution: {integrity: sha512-BrpvfNAE3dcvq7ll3xVumzjKjZQ5tI1sEUIKr3Uoks0XUl45St3FlatVqef9prk4jRDzhW6WZg+3bk93y6pLjA==} + engines: {node: '>=6'} + + strip-json-comments@2.0.1: + resolution: {integrity: sha512-4gB8na07fecVVkOI6Rs4e7T6NOTki5EmL7TUduTs6bu3EdnSycntVJ4re8kgZA+wx9IueI2Y11bfbgwtzuE0KQ==} + engines: {node: '>=0.10.0'} supports-color@7.2.0: resolution: {integrity: sha512-qpCAvRl9stuOHveKsn7HncJRvv501qIacKzQlO/+Lwxc9+0q2wLyv4Dfvt80/DPn2pqOBsJdDiogXGR9+OvwRw==} engines: {node: '>=8'} - svelte-check@4.3.4: - resolution: {integrity: sha512-DVWvxhBrDsd+0hHWKfjP99lsSXASeOhHJYyuKOFYJcP7ThfSCKgjVarE8XfuMWpS5JV3AlDf+iK1YGGo2TACdw==} + svelte-check@4.3.6: + resolution: {integrity: sha512-uBkz96ElE3G4pt9E1Tw0xvBfIUQkeH794kDQZdAUk795UVMr+NJZpuFSS62vcmO/DuSalK83LyOwhgWq8YGU1Q==} engines: {node: '>= 18.0.0'} hasBin: true peerDependencies: @@ -1901,8 +1923,8 @@ packages: engines: {node: '>= 14.17.0'} hasBin: true - svelte@5.45.10: - resolution: {integrity: sha512-GiWXq6akkEN3zVDMQ1BVlRolmks5JkEdzD/67mvXOz6drRfuddT5JwsGZjMGSnsTRv/PjAXX8fqBcOr2g2qc/Q==} + svelte@5.49.2: + resolution: {integrity: sha512-PYLwnngYzyhKzqDlGVlCH4z+NVI8mC0/bTv15vw25CcdOhxENsOHIbQ36oj5DIf3oBazM+STbCAvaskpxtBmWA==} engines: {node: '>=18'} sveltekit-i18n@2.4.2: @@ -1917,10 +1939,6 @@ packages: sync-rpc@1.3.6: resolution: {integrity: sha512-J8jTXuZzRlvU7HemDgHi3pGnh/rkoqR/OZSjhTyyZrEkkYQbk7Z33AXp37mkPfPpfdOuj7Ex3H/TJM1z48uPQw==} - test-exclude@7.0.1: - resolution: {integrity: sha512-pFYqmTw68LXVjeWJMST4+borgQP2AyMNbg1BpZh9LbyhUeNkeaPF9gzfPGUAnSMV3qPYdWUwDIjjCLiSDOl7vg==} - engines: {node: '>=18'} - then-request@6.0.2: resolution: {integrity: sha512-3ZBiG7JvP3wbDzA9iNY5zJQcHL4jn/0BWtXIkagfz7QgOL/LqjCEOBQuJNZfu0XYnv5JhKh+cDxCPM4ILrqruA==} engines: {node: '>=6.0.0'} @@ -1935,27 +1953,16 @@ packages: tinybench@2.9.0: resolution: {integrity: sha512-0+DUvqWMValLmha6lr4kD8iAMK1HzV0/aKnCtWb9v9641TnP/MFb7Pc2bxoxQjTXAErryXVgUOfv2YqNllqGeg==} - tinyexec@0.3.2: - resolution: {integrity: sha512-KQQR9yN7R5+OSwaK0XQoj22pwHoTlgYqmUscPYoknOoWCWfj/5/ABTMRi69FrKU5ffPVh5QcFikpWJI/P1ocHA==} - - tinyglobby@0.2.14: - resolution: {integrity: sha512-tX5e7OM1HnYr2+a2C/4V0htOcSQcoSTH9KgJnVvNm5zm/cyEWKJ7j7YutsH9CxMdtOkkLFy2AHrMci9IM8IPZQ==} - engines: {node: '>=12.0.0'} + tinyexec@1.0.2: + resolution: {integrity: sha512-W/KYk+NFhkmsYpuHq5JykngiOCnxeVL8v8dFnqxSD8qEEdRfXk1SDM6JzNqcERbcGYj9tMrDQBYV9cjgnunFIg==} + engines: {node: '>=18'} tinyglobby@0.2.15: resolution: {integrity: sha512-j2Zq4NyQYG5XMST4cbs02Ak8iJUdxRM0XI5QyxXuZOzKOINmWurp3smXu3y5wDcJrptwpSjgXHzIQxR0omXljQ==} engines: {node: '>=12.0.0'} - tinypool@1.1.1: - resolution: {integrity: sha512-Zba82s87IFq9A9XmjiX5uZA/ARWDrB03OHlq+Vw1fSdt0I+4/Kutwy8BP4Y/y/aORMo61FQ0vIb5j44vSo5Pkg==} - engines: {node: ^18.0.0 || >=20.0.0} - - tinyrainbow@2.0.0: - resolution: {integrity: sha512-op4nsTR47R6p0vMUUoYl/a+ljLFVtlfaXkLQmqfLR1qHma1h/ysYk4hEXZ880bf2CYgTskvTa/e196Vd5dDQXw==} - engines: {node: '>=14.0.0'} - - tinyspy@4.0.3: - resolution: {integrity: sha512-t2T/WLB2WRgZ9EpE4jgPJ9w+i66UZfDc8wHh0xrwiRNN+UwH98GIJkTeZqX9rg0i0ptwzqW+uYeIF0T4F8LR7A==} + tinyrainbow@3.0.3: + resolution: {integrity: sha512-PSkbLUoxOFRzJYjjxHJt9xro7D+iilgMX/C9lawzVuYiIdcihh9DXmVibBe8lmcFrRi/VzlPjBxbN7rH24q8/Q==} engines: {node: '>=14.0.0'} to-regex-range@5.0.1: @@ -1969,6 +1976,10 @@ packages: tslib@2.8.1: resolution: {integrity: sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==} + type-fest@2.19.0: + resolution: {integrity: sha512-RAH822pAdBgcNMAfWnCBU3CFZcfZ/i1eZjwFU/dsLKumyuuP3niueg2UAukXYF0E2AAoc82ZSSf9J0WQBinzHA==} + engines: {node: '>=12.20'} + type@2.7.3: resolution: {integrity: sha512-8j+1QmAbPvLZow5Qpi6NCaN8FB60p/6x8/vfNqOk/hC+HuvFZhL4+WfekuhQLiqFZXOgQdrs3B+XxEmCc6b3FQ==} @@ -1980,8 +1991,8 @@ packages: engines: {node: '>=14.17'} hasBin: true - ufo@1.6.1: - resolution: {integrity: sha512-9a4/uxlTWJ4+a5i0ooc1rU7C7YOw3wT+UGqdeNNHWnOF9qcMBgLRS+4IYUqbczewFx4mLEig6gawh7X6mFlEkA==} + ufo@1.6.3: + resolution: {integrity: sha512-yDJTmhydvl5lJzBmy/hyOAA0d+aqCBuwl818haVdYCRrWV84o7YyeVm4QlVHStqNrrJSTb6jKuFAVqAFsr+K3Q==} undici-types@7.16.0: resolution: {integrity: sha512-Zz+aZWSj8LE6zoxD+xrjh4VfkIG8Ya6LvYkZqtUQGJPZjYl53ypCaUwWqo7eI0x66KBGeRo+mlBEkMSeSZ38Nw==} @@ -1993,41 +2004,51 @@ packages: unenv@2.0.0-rc.0: resolution: {integrity: sha512-H0kl2w8jFL/FAk0xvjVing4bS3jd//mbg1QChDnn58l9Sc5RtduaKmLAL8n+eBw5jJo8ZjYV7CrEGage5LAOZQ==} + update-check@1.5.4: + resolution: {integrity: sha512-5YHsflzHP4t1G+8WGPlvKbJEbAJGCgw+Em+dGR1KmBUbr1J36SJBqlHLjR7oob7sco5hWHGQVcr9B2poIVDDTQ==} + + uri-js@4.4.1: + resolution: {integrity: sha512-7rKUyy33Q1yc98pQ1DAmLtwX109F7TIfWlW1Ydo8Wl1ii1SeHieeh0HHfPeL2fMXK6z0s8ecKs9frCuLJvndBg==} + util-deprecate@1.0.2: resolution: {integrity: sha512-EPD5q1uXyFxJpCrLnCc1nHnq3gOa6DZBocAIiI2TaSCA7VCJ1UJDMagCzIkXNsUYfD1daK//LTEQ8xiIbrHtcw==} - vite-node@3.2.4: - resolution: {integrity: sha512-EbKSKh+bh1E1IFxeO0pg1n4dvoOTt0UDiXMd/qn++r98+jPO1xtJilvXldeuQ8giIB5IkpjCgMleHMNEsGH6pg==} - engines: {node: ^18.0.0 || ^20.0.0 || >=22.0.0} - hasBin: true + vary@1.1.2: + resolution: {integrity: sha512-BNGbWLfd0eUPabhkXUVm0j8uuvREyTh5ovRa/dyow/BqAbZJyC+5fU+IzQOzmAKzYqYRAISoRhdQr3eIZ/PXqg==} + engines: {node: '>= 0.8'} vite-plugin-restart@2.0.0: resolution: {integrity: sha512-OYsD89msjtd72HHpXnidZmQ+14ztJR74IxQq9aPa48LUx3IeukS+NmnVtk+/VaNoYQJLnTFWG3Sbq/AEwaAyeQ==} peerDependencies: vite: ^2.9.0 || ^3.0.0 || ^4.0.0 || ^5.0.0 || ^6.0.0 || ^7.0.0 - vite-plugin-static-copy@3.1.4: - resolution: {integrity: sha512-iCmr4GSw4eSnaB+G8zc2f4dxSuDjbkjwpuBLLGvQYR9IW7rnDzftnUjOH5p4RYR+d4GsiBqXRvzuFhs5bnzVyw==} + vite-plugin-static-copy@3.2.0: + resolution: {integrity: sha512-g2k9z8B/1Bx7D4wnFjPLx9dyYGrqWMLTpwTtPHhcU+ElNZP2O4+4OsyaficiDClus0dzVhdGvoGFYMJxoXZ12Q==} engines: {node: ^18.0.0 || >=20.0.0} peerDependencies: vite: ^5.0.0 || ^6.0.0 || ^7.0.0 - vite@5.4.21: - resolution: {integrity: sha512-o5a9xKjbtuhY6Bi5S3+HvbRERmouabWbyUcpXXUA1u+GNUKoROi9byOJ8M0nHbHYHkYICiMlqxkg1KkYmm25Sw==} - engines: {node: ^18.0.0 || >=20.0.0} + vite@7.3.1: + resolution: {integrity: sha512-w+N7Hifpc3gRjZ63vYBXA56dvvRlNWRczTdmCBBa+CotUzAPf5b7YMdMR/8CQoeYE5LX3W4wj6RYTgonm1b9DA==} + engines: {node: ^20.19.0 || >=22.12.0} hasBin: true peerDependencies: - '@types/node': ^18.0.0 || >=20.0.0 - less: '*' + '@types/node': ^20.19.0 || >=22.12.0 + jiti: '>=1.21.0' + less: ^4.0.0 lightningcss: ^1.21.0 - sass: '*' - sass-embedded: '*' - stylus: '*' - sugarss: '*' - terser: ^5.4.0 + sass: ^1.70.0 + sass-embedded: ^1.70.0 + stylus: '>=0.54.8' + sugarss: ^5.0.0 + terser: ^5.16.0 + tsx: ^4.8.1 + yaml: ^2.4.2 peerDependenciesMeta: '@types/node': optional: true + jiti: + optional: true less: optional: true lightningcss: @@ -2042,35 +2063,45 @@ packages: optional: true terser: optional: true + tsx: + optional: true + yaml: + optional: true - vitefu@1.0.5: - resolution: {integrity: sha512-h4Vflt9gxODPFNGPwp4zAMZRpZR7eslzwH2c5hn5kNZ5rhnKyRJ50U+yGCdc2IRaBs8O4haIgLNGrV5CrpMsCA==} + vitefu@1.1.1: + resolution: {integrity: sha512-B/Fegf3i8zh0yFbpzZ21amWzHmuNlLlmJT6n7bu5e+pCHUKQIfXSYokrqOBGEMMe9UG2sostKQF9mml/vYaWJQ==} peerDependencies: - vite: ^3.0.0 || ^4.0.0 || ^5.0.0 || ^6.0.0 + vite: ^3.0.0 || ^4.0.0 || ^5.0.0 || ^6.0.0 || ^7.0.0-beta.0 peerDependenciesMeta: vite: optional: true - vitest@3.2.4: - resolution: {integrity: sha512-LUCP5ev3GURDysTWiP47wRRUpLKMOfPh+yKTx3kVIEiu5KOMeqzpnYNsKyOoVrULivR8tLcks4+lga33Whn90A==} - engines: {node: ^18.0.0 || ^20.0.0 || >=22.0.0} + vitest@4.0.18: + resolution: {integrity: sha512-hOQuK7h0FGKgBAas7v0mSAsnvrIgAvWmRFjmzpJ7SwFHH3g1k2u37JtYwOwmEKhK6ZO3v9ggDBBm0La1LCK4uQ==} + engines: {node: ^20.0.0 || ^22.0.0 || >=24.0.0} hasBin: true peerDependencies: '@edge-runtime/vm': '*' - '@types/debug': ^4.1.12 - '@types/node': ^18.0.0 || ^20.0.0 || >=22.0.0 - '@vitest/browser': 3.2.4 - '@vitest/ui': 3.2.4 + '@opentelemetry/api': ^1.9.0 + '@types/node': ^20.0.0 || ^22.0.0 || >=24.0.0 + '@vitest/browser-playwright': 4.0.18 + '@vitest/browser-preview': 4.0.18 + '@vitest/browser-webdriverio': 4.0.18 + '@vitest/ui': 4.0.18 happy-dom: '*' jsdom: '*' peerDependenciesMeta: '@edge-runtime/vm': optional: true - '@types/debug': + '@opentelemetry/api': optional: true '@types/node': optional: true - '@vitest/browser': + '@vitest/browser-playwright': + optional: true + '@vitest/browser-preview': + optional: true + '@vitest/browser-webdriverio': optional: true '@vitest/ui': optional: true @@ -2079,6 +2110,11 @@ packages: jsdom: optional: true + wait-on@8.0.5: + resolution: {integrity: sha512-J3WlS0txVHkhLRb2FsmRg3dkMTCV1+M6Xra3Ho7HzZDHpE7DCOnoSoCJsZotrmW3uRMhvIJGSKUKrh/MeF4iag==} + engines: {node: '>=12.0.0'} + hasBin: true + which@2.0.2: resolution: {integrity: sha512-BLI3Tl1TW3Pvl70l3yq3Y64i+awpwXqsGBYWkkqMtnbXgrMD+yj7rhW0kuEDxzJaYXGjEW5ogapKNMEKNMjibA==} engines: {node: '>= 8'} @@ -2089,6 +2125,10 @@ packages: engines: {node: '>=8'} hasBin: true + widest-line@4.0.1: + resolution: {integrity: sha512-o0cyEG0e8GPzT4iGHphIOh0cJOV8fivsXxddQasHPHfoZf1ZexrfeA21w2NaEN1RHE+fXlfISmOE8R9N3u3Qig==} + engines: {node: '>=12'} + workerd@1.20241230.0: resolution: {integrity: sha512-EgixXP0JGXGq6J9lz17TKIZtfNDUvJNG+cl9paPMfZuYWT920fFpBx+K04YmnbQRLnglsivF1GT9pxh1yrlWhg==} engines: {node: '>=16'} @@ -2108,16 +2148,12 @@ packages: '@cloudflare/workers-types': optional: true - wrap-ansi@7.0.0: - resolution: {integrity: sha512-YVGIj2kamLSTxw6NsZjoBxfSwsn0ycdesmc4p+Q21c5zPuZ1pl+NfxVdxPtdHvmNVOQ6XSYG4AUtyt/Fi7D16Q==} - engines: {node: '>=10'} - wrap-ansi@8.1.0: resolution: {integrity: sha512-si7QWI6zUMq56bESFvagtmzMdGOtoxfR+Sez11Mobfc7tm+VkUckk9bW2UeffTGVUbOksxmSw0AA2gs8g71NCQ==} engines: {node: '>=12'} - ws@8.18.3: - resolution: {integrity: sha512-PEIGCY5tSlUt50cqyMXfCzX+oOPqN0vuGqWzbcJ2xvnkzkq46oOpz7dQaTDBdfICb4N14+GARUDw2XV2N4tvzg==} + ws@8.19.0: + resolution: {integrity: sha512-blAT2mjOEIi0ZzruJfIhb3nps74PRWTCz1IjglWEEpQl5XS/UNama6u2/rjFkDDouqr4L67ry+1aGIALViWjDg==} engines: {node: '>=10.0.0'} peerDependencies: bufferutil: ^4.0.1 @@ -2143,23 +2179,18 @@ packages: snapshots: - '@ampproject/remapping@2.3.0': - dependencies: - '@jridgewell/gen-mapping': 0.3.13 - '@jridgewell/trace-mapping': 0.3.31 - '@babel/helper-string-parser@7.27.1': {} - '@babel/helper-validator-identifier@7.27.1': {} + '@babel/helper-validator-identifier@7.28.5': {} - '@babel/parser@7.27.2': + '@babel/parser@7.28.6': dependencies: - '@babel/types': 7.27.1 + '@babel/types': 7.28.6 - '@babel/types@7.27.1': + '@babel/types@7.28.6': dependencies: '@babel/helper-string-parser': 7.27.1 - '@babel/helper-validator-identifier': 7.27.1 + '@babel/helper-validator-identifier': 7.28.5 '@bcoe/v8-coverage@1.0.2': {} @@ -2182,7 +2213,7 @@ snapshots: '@cloudflare/workerd-windows-64@1.20241230.0': optional: true - '@cloudflare/workers-types@4.20250121.0': {} + '@cloudflare/workers-types@4.20260128.0': {} '@cspotcode/source-map-support@0.8.1': dependencies: @@ -2201,10 +2232,7 @@ snapshots: '@esbuild/aix-ppc64@0.19.12': optional: true - '@esbuild/aix-ppc64@0.21.5': - optional: true - - '@esbuild/aix-ppc64@0.24.2': + '@esbuild/aix-ppc64@0.27.2': optional: true '@esbuild/android-arm64@0.17.19': @@ -2213,10 +2241,7 @@ snapshots: '@esbuild/android-arm64@0.19.12': optional: true - '@esbuild/android-arm64@0.21.5': - optional: true - - '@esbuild/android-arm64@0.24.2': + '@esbuild/android-arm64@0.27.2': optional: true '@esbuild/android-arm@0.17.19': @@ -2225,10 +2250,7 @@ snapshots: '@esbuild/android-arm@0.19.12': optional: true - '@esbuild/android-arm@0.21.5': - optional: true - - '@esbuild/android-arm@0.24.2': + '@esbuild/android-arm@0.27.2': optional: true '@esbuild/android-x64@0.17.19': @@ -2237,10 +2259,7 @@ snapshots: '@esbuild/android-x64@0.19.12': optional: true - '@esbuild/android-x64@0.21.5': - optional: true - - '@esbuild/android-x64@0.24.2': + '@esbuild/android-x64@0.27.2': optional: true '@esbuild/darwin-arm64@0.17.19': @@ -2249,10 +2268,7 @@ snapshots: '@esbuild/darwin-arm64@0.19.12': optional: true - '@esbuild/darwin-arm64@0.21.5': - optional: true - - '@esbuild/darwin-arm64@0.24.2': + '@esbuild/darwin-arm64@0.27.2': optional: true '@esbuild/darwin-x64@0.17.19': @@ -2261,10 +2277,7 @@ snapshots: '@esbuild/darwin-x64@0.19.12': optional: true - '@esbuild/darwin-x64@0.21.5': - optional: true - - '@esbuild/darwin-x64@0.24.2': + '@esbuild/darwin-x64@0.27.2': optional: true '@esbuild/freebsd-arm64@0.17.19': @@ -2273,10 +2286,7 @@ snapshots: '@esbuild/freebsd-arm64@0.19.12': optional: true - '@esbuild/freebsd-arm64@0.21.5': - optional: true - - '@esbuild/freebsd-arm64@0.24.2': + '@esbuild/freebsd-arm64@0.27.2': optional: true '@esbuild/freebsd-x64@0.17.19': @@ -2285,10 +2295,7 @@ snapshots: '@esbuild/freebsd-x64@0.19.12': optional: true - '@esbuild/freebsd-x64@0.21.5': - optional: true - - '@esbuild/freebsd-x64@0.24.2': + '@esbuild/freebsd-x64@0.27.2': optional: true '@esbuild/linux-arm64@0.17.19': @@ -2297,10 +2304,7 @@ snapshots: '@esbuild/linux-arm64@0.19.12': optional: true - '@esbuild/linux-arm64@0.21.5': - optional: true - - '@esbuild/linux-arm64@0.24.2': + '@esbuild/linux-arm64@0.27.2': optional: true '@esbuild/linux-arm@0.17.19': @@ -2309,10 +2313,7 @@ snapshots: '@esbuild/linux-arm@0.19.12': optional: true - '@esbuild/linux-arm@0.21.5': - optional: true - - '@esbuild/linux-arm@0.24.2': + '@esbuild/linux-arm@0.27.2': optional: true '@esbuild/linux-ia32@0.17.19': @@ -2321,10 +2322,7 @@ snapshots: '@esbuild/linux-ia32@0.19.12': optional: true - '@esbuild/linux-ia32@0.21.5': - optional: true - - '@esbuild/linux-ia32@0.24.2': + '@esbuild/linux-ia32@0.27.2': optional: true '@esbuild/linux-loong64@0.17.19': @@ -2333,10 +2331,7 @@ snapshots: '@esbuild/linux-loong64@0.19.12': optional: true - '@esbuild/linux-loong64@0.21.5': - optional: true - - '@esbuild/linux-loong64@0.24.2': + '@esbuild/linux-loong64@0.27.2': optional: true '@esbuild/linux-mips64el@0.17.19': @@ -2345,10 +2340,7 @@ snapshots: '@esbuild/linux-mips64el@0.19.12': optional: true - '@esbuild/linux-mips64el@0.21.5': - optional: true - - '@esbuild/linux-mips64el@0.24.2': + '@esbuild/linux-mips64el@0.27.2': optional: true '@esbuild/linux-ppc64@0.17.19': @@ -2357,10 +2349,7 @@ snapshots: '@esbuild/linux-ppc64@0.19.12': optional: true - '@esbuild/linux-ppc64@0.21.5': - optional: true - - '@esbuild/linux-ppc64@0.24.2': + '@esbuild/linux-ppc64@0.27.2': optional: true '@esbuild/linux-riscv64@0.17.19': @@ -2369,10 +2358,7 @@ snapshots: '@esbuild/linux-riscv64@0.19.12': optional: true - '@esbuild/linux-riscv64@0.21.5': - optional: true - - '@esbuild/linux-riscv64@0.24.2': + '@esbuild/linux-riscv64@0.27.2': optional: true '@esbuild/linux-s390x@0.17.19': @@ -2381,10 +2367,7 @@ snapshots: '@esbuild/linux-s390x@0.19.12': optional: true - '@esbuild/linux-s390x@0.21.5': - optional: true - - '@esbuild/linux-s390x@0.24.2': + '@esbuild/linux-s390x@0.27.2': optional: true '@esbuild/linux-x64@0.17.19': @@ -2393,13 +2376,10 @@ snapshots: '@esbuild/linux-x64@0.19.12': optional: true - '@esbuild/linux-x64@0.21.5': - optional: true - - '@esbuild/linux-x64@0.24.2': + '@esbuild/linux-x64@0.27.2': optional: true - '@esbuild/netbsd-arm64@0.24.2': + '@esbuild/netbsd-arm64@0.27.2': optional: true '@esbuild/netbsd-x64@0.17.19': @@ -2408,13 +2388,10 @@ snapshots: '@esbuild/netbsd-x64@0.19.12': optional: true - '@esbuild/netbsd-x64@0.21.5': - optional: true - - '@esbuild/netbsd-x64@0.24.2': + '@esbuild/netbsd-x64@0.27.2': optional: true - '@esbuild/openbsd-arm64@0.24.2': + '@esbuild/openbsd-arm64@0.27.2': optional: true '@esbuild/openbsd-x64@0.17.19': @@ -2423,10 +2400,10 @@ snapshots: '@esbuild/openbsd-x64@0.19.12': optional: true - '@esbuild/openbsd-x64@0.21.5': + '@esbuild/openbsd-x64@0.27.2': optional: true - '@esbuild/openbsd-x64@0.24.2': + '@esbuild/openharmony-arm64@0.27.2': optional: true '@esbuild/sunos-x64@0.17.19': @@ -2435,10 +2412,7 @@ snapshots: '@esbuild/sunos-x64@0.19.12': optional: true - '@esbuild/sunos-x64@0.21.5': - optional: true - - '@esbuild/sunos-x64@0.24.2': + '@esbuild/sunos-x64@0.27.2': optional: true '@esbuild/win32-arm64@0.17.19': @@ -2447,10 +2421,7 @@ snapshots: '@esbuild/win32-arm64@0.19.12': optional: true - '@esbuild/win32-arm64@0.21.5': - optional: true - - '@esbuild/win32-arm64@0.24.2': + '@esbuild/win32-arm64@0.27.2': optional: true '@esbuild/win32-ia32@0.17.19': @@ -2459,10 +2430,7 @@ snapshots: '@esbuild/win32-ia32@0.19.12': optional: true - '@esbuild/win32-ia32@0.21.5': - optional: true - - '@esbuild/win32-ia32@0.24.2': + '@esbuild/win32-ia32@0.27.2': optional: true '@esbuild/win32-x64@0.17.19': @@ -2471,10 +2439,7 @@ snapshots: '@esbuild/win32-x64@0.19.12': optional: true - '@esbuild/win32-x64@0.21.5': - optional: true - - '@esbuild/win32-x64@0.24.2': + '@esbuild/win32-x64@0.27.2': optional: true '@fastify/busboy@2.1.1': {} @@ -2505,16 +2470,21 @@ snapshots: dependencies: tslib: 2.8.1 - '@isaacs/cliui@8.0.2': + '@hapi/address@5.1.1': dependencies: - string-width: 5.1.2 - string-width-cjs: string-width@4.2.3 - strip-ansi: 7.1.0 - strip-ansi-cjs: strip-ansi@6.0.1 - wrap-ansi: 8.1.0 - wrap-ansi-cjs: wrap-ansi@7.0.0 + '@hapi/hoek': 11.0.7 + + '@hapi/formula@3.0.2': {} + + '@hapi/hoek@11.0.7': {} - '@istanbuljs/schema@0.1.3': {} + '@hapi/pinpoint@2.0.1': {} + + '@hapi/tlds@1.1.4': {} + + '@hapi/topo@6.0.2': + dependencies: + '@hapi/hoek': 11.0.7 '@jridgewell/gen-mapping@0.3.13': dependencies: @@ -2569,9 +2539,6 @@ snapshots: '@oozcitak/util@8.3.8': {} - '@pkgjs/parseargs@0.11.0': - optional: true - '@polka/url@1.0.0-next.29': {} '@rollup/rollup-android-arm-eabi@4.52.5': @@ -2640,72 +2607,68 @@ snapshots: '@rollup/rollup-win32-x64-msvc@4.52.5': optional: true - '@standard-schema/spec@1.0.0': {} + '@standard-schema/spec@1.1.0': {} '@sveltejs/acorn-typescript@1.0.8(acorn@8.15.0)': dependencies: acorn: 8.15.0 - '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-auto@7.0.0(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)))': dependencies: - '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)) - '@sveltejs/adapter-cloudflare@5.0.1(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0))': + '@sveltejs/adapter-cloudflare@7.2.6(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)))(wrangler@3.105.0(@cloudflare/workers-types@4.20260128.0))': dependencies: - '@cloudflare/workers-types': 4.20250121.0 - '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - esbuild: 0.24.2 + '@cloudflare/workers-types': 4.20260128.0 + '@sveltejs/kit': 2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)) worktop: 0.8.0-next.18 - wrangler: 3.105.0(@cloudflare/workers-types@4.20250121.0) + wrangler: 3.105.0(@cloudflare/workers-types@4.20260128.0) - '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))': + '@sveltejs/adapter-static@3.0.10(@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)))': dependencies: - '@sveltejs/kit': 2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/kit': 2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1)) - '@sveltejs/kit@2.49.2(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/kit@2.50.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(typescript@5.9.3)(vite@7.3.1(@types/node@25.2.1))': dependencies: - '@standard-schema/spec': 1.0.0 + '@standard-schema/spec': 1.1.0 '@sveltejs/acorn-typescript': 1.0.8(acorn@8.15.0) - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) + '@sveltejs/vite-plugin-svelte': 6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)) '@types/cookie': 0.6.0 acorn: 8.15.0 cookie: 1.1.1 - devalue: 5.6.1 + devalue: 5.6.2 esm-env: 1.2.2 kleur: 4.1.5 magic-string: 0.30.21 mrmime: 2.0.1 sade: 1.8.1 - set-cookie-parser: 2.7.2 + set-cookie-parser: 3.0.1 sirv: 3.0.2 - svelte: 5.45.10 - vite: 5.4.21(@types/node@25.0.1) + svelte: 5.49.2 + vite: 7.3.1(@types/node@25.2.1) + optionalDependencies: + typescript: 5.9.3 - '@sveltejs/vite-plugin-svelte-inspector@3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/vite-plugin-svelte-inspector@5.0.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1))': dependencies: - '@sveltejs/vite-plugin-svelte': 4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - debug: 4.4.0 - svelte: 5.45.10 - vite: 5.4.21(@types/node@25.0.1) - transitivePeerDependencies: - - supports-color + '@sveltejs/vite-plugin-svelte': 6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)) + obug: 2.1.1 + svelte: 5.49.2 + vite: 7.3.1(@types/node@25.2.1) - '@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1))': + '@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1))': dependencies: - '@sveltejs/vite-plugin-svelte-inspector': 3.0.1(@sveltejs/vite-plugin-svelte@4.0.4(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)))(svelte@5.45.10)(vite@5.4.21(@types/node@25.0.1)) - debug: 4.4.0 + '@sveltejs/vite-plugin-svelte-inspector': 5.0.2(@sveltejs/vite-plugin-svelte@6.2.4(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)))(svelte@5.49.2)(vite@7.3.1(@types/node@25.2.1)) deepmerge: 4.3.1 - kleur: 4.1.5 - magic-string: 0.30.17 - svelte: 5.45.10 - vite: 5.4.21(@types/node@25.0.1) - vitefu: 1.0.5(vite@5.4.21(@types/node@25.0.1)) - transitivePeerDependencies: - - supports-color + magic-string: 0.30.21 + obug: 2.1.1 + svelte: 5.49.2 + vite: 7.3.1(@types/node@25.2.1) + vitefu: 1.1.1(vite@7.3.1(@types/node@25.2.1)) - '@sveltekit-i18n/base@1.3.7(svelte@5.45.10)': + '@sveltekit-i18n/base@1.3.7(svelte@5.49.2)': dependencies: - svelte: 5.45.10 + svelte: 5.49.2 '@sveltekit-i18n/parser-default@1.1.1': {} @@ -2715,7 +2678,7 @@ snapshots: '@types/concat-stream@1.6.1': dependencies: - '@types/node': 25.0.1 + '@types/node': 25.2.1 '@types/cookie@0.6.0': {} @@ -2725,7 +2688,7 @@ snapshots: '@types/form-data@0.0.33': dependencies: - '@types/node': 25.0.1 + '@types/node': 25.2.1 '@types/js-yaml@4.0.9': {} @@ -2733,7 +2696,7 @@ snapshots: '@types/node@10.17.60': {} - '@types/node@25.0.1': + '@types/node@25.2.1': dependencies: undici-types: 7.16.0 @@ -2741,66 +2704,60 @@ snapshots: '@types/qs@6.9.17': {} - '@vitest/coverage-v8@3.2.4(vitest@3.2.4(@types/node@25.0.1))': + '@vitest/coverage-v8@4.0.18(vitest@4.0.18(@types/node@25.2.1))': dependencies: - '@ampproject/remapping': 2.3.0 '@bcoe/v8-coverage': 1.0.2 - ast-v8-to-istanbul: 0.3.5 - debug: 4.4.1 + '@vitest/utils': 4.0.18 + ast-v8-to-istanbul: 0.3.10 istanbul-lib-coverage: 3.2.2 istanbul-lib-report: 3.0.1 - istanbul-lib-source-maps: 5.0.6 - istanbul-reports: 3.1.7 - magic-string: 0.30.18 - magicast: 0.3.5 - std-env: 3.9.0 - test-exclude: 7.0.1 - tinyrainbow: 2.0.0 - vitest: 3.2.4(@types/node@25.0.1) - transitivePeerDependencies: - - supports-color + istanbul-reports: 3.2.0 + magicast: 0.5.1 + obug: 2.1.1 + std-env: 3.10.0 + tinyrainbow: 3.0.3 + vitest: 4.0.18(@types/node@25.2.1) - '@vitest/expect@3.2.4': + '@vitest/expect@4.0.18': dependencies: + '@standard-schema/spec': 1.1.0 '@types/chai': 5.2.2 - '@vitest/spy': 3.2.4 - '@vitest/utils': 3.2.4 - chai: 5.3.3 - tinyrainbow: 2.0.0 + '@vitest/spy': 4.0.18 + '@vitest/utils': 4.0.18 + chai: 6.2.2 + tinyrainbow: 3.0.3 - '@vitest/mocker@3.2.4(vite@5.4.21(@types/node@25.0.1))': + '@vitest/mocker@4.0.18(vite@7.3.1(@types/node@25.2.1))': dependencies: - '@vitest/spy': 3.2.4 + '@vitest/spy': 4.0.18 estree-walker: 3.0.3 magic-string: 0.30.21 optionalDependencies: - vite: 5.4.21(@types/node@25.0.1) + vite: 7.3.1(@types/node@25.2.1) - '@vitest/pretty-format@3.2.4': + '@vitest/pretty-format@4.0.18': dependencies: - tinyrainbow: 2.0.0 + tinyrainbow: 3.0.3 - '@vitest/runner@3.2.4': + '@vitest/runner@4.0.18': dependencies: - '@vitest/utils': 3.2.4 + '@vitest/utils': 4.0.18 pathe: 2.0.3 - strip-literal: 3.0.0 - '@vitest/snapshot@3.2.4': + '@vitest/snapshot@4.0.18': dependencies: - '@vitest/pretty-format': 3.2.4 + '@vitest/pretty-format': 4.0.18 magic-string: 0.30.21 pathe: 2.0.3 - '@vitest/spy@3.2.4': - dependencies: - tinyspy: 4.0.3 + '@vitest/spy@4.0.18': {} - '@vitest/utils@3.2.4': + '@vitest/utils@4.0.18': dependencies: - '@vitest/pretty-format': 3.2.4 - loupe: 3.2.1 - tinyrainbow: 2.0.0 + '@vitest/pretty-format': 4.0.18 + tinyrainbow: 3.0.3 + + '@zeit/schemas@2.36.0': {} acorn-walk@8.3.4: dependencies: @@ -2808,21 +2765,36 @@ snapshots: acorn@8.15.0: {} + ajv@8.12.0: + dependencies: + fast-deep-equal: 3.1.3 + json-schema-traverse: 1.0.0 + require-from-string: 2.0.2 + uri-js: 4.4.1 + + ansi-align@3.0.1: + dependencies: + string-width: 4.2.3 + ansi-regex@5.0.1: {} - ansi-regex@6.1.0: {} + ansi-regex@6.2.2: {} ansi-styles@4.3.0: dependencies: color-convert: 2.0.1 - ansi-styles@6.2.1: {} + ansi-styles@6.2.3: {} anymatch@3.1.3: dependencies: normalize-path: 3.0.0 picomatch: 2.3.1 + arch@2.2.0: {} + + arg@5.0.2: {} + argparse@1.0.10: dependencies: sprintf-js: 1.0.3 @@ -2837,9 +2809,7 @@ snapshots: asap@2.0.6: {} - assertion-error@2.0.1: {} - - ast-v8-to-istanbul@0.3.5: + ast-v8-to-istanbul@0.3.10: dependencies: '@jridgewell/trace-mapping': 0.3.31 estree-walker: 3.0.3 @@ -2847,6 +2817,14 @@ snapshots: asynckit@0.4.0: {} + axios@1.13.4: + dependencies: + follow-redirects: 1.15.11 + form-data: 4.0.5 + proxy-from-env: 1.1.0 + transitivePeerDependencies: + - debug + axobject-query@4.1.0: {} balanced-match@1.0.2: {} @@ -2855,9 +2833,21 @@ snapshots: blake3-wasm@2.1.5: {} - brace-expansion@2.0.2: + boxen@7.0.0: + dependencies: + ansi-align: 3.0.1 + camelcase: 7.0.1 + chalk: 5.0.1 + cli-boxes: 3.0.0 + string-width: 5.1.2 + type-fest: 2.19.0 + widest-line: 4.0.1 + wrap-ansi: 8.1.0 + + brace-expansion@1.1.12: dependencies: balanced-match: 1.0.2 + concat-map: 0.0.1 braces@3.0.3: dependencies: @@ -2865,7 +2855,9 @@ snapshots: buffer-from@1.1.2: {} - cac@6.7.14: {} + bytes@3.0.0: {} + + bytes@3.1.2: {} call-bind-apply-helpers@1.0.2: dependencies: @@ -2877,6 +2869,8 @@ snapshots: call-bind-apply-helpers: 1.0.2 get-intrinsic: 1.3.0 + camelcase@7.0.1: {} + capnp-ts@0.7.0: dependencies: debug: 4.4.3 @@ -2886,15 +2880,18 @@ snapshots: caseless@0.12.0: {} - chai@5.3.3: + chai@6.2.2: {} + + chalk-template@0.4.0: dependencies: - assertion-error: 2.0.1 - check-error: 2.1.1 - deep-eql: 5.0.2 - loupe: 3.2.1 - pathval: 2.0.1 + chalk: 4.1.2 - check-error@2.1.1: {} + chalk@4.1.2: + dependencies: + ansi-styles: 4.3.0 + supports-color: 7.2.0 + + chalk@5.0.1: {} chokidar@3.6.0: dependencies: @@ -2912,6 +2909,8 @@ snapshots: dependencies: readdirp: 4.1.2 + cli-boxes@3.0.0: {} + cli-color@2.0.4: dependencies: d: 1.0.2 @@ -2920,6 +2919,12 @@ snapshots: memoizee: 0.4.17 timers-ext: 0.1.8 + clipboardy@3.0.0: + dependencies: + arch: 2.2.0 + execa: 5.1.1 + is-wsl: 2.2.0 + clsx@2.1.1: {} color-convert@2.0.1: @@ -2932,6 +2937,24 @@ snapshots: dependencies: delayed-stream: 1.0.0 + compressible@2.0.18: + dependencies: + mime-db: 1.52.0 + + compression@1.8.1: + dependencies: + bytes: 3.1.2 + compressible: 2.0.18 + debug: 2.6.9 + negotiator: 0.6.4 + on-headers: 1.1.0 + safe-buffer: 5.2.1 + vary: 1.1.2 + transitivePeerDependencies: + - supports-color + + concat-map@0.0.1: {} + concat-stream@1.6.2: dependencies: buffer-from: 1.1.2 @@ -2941,6 +2964,8 @@ snapshots: confbox@0.1.8: {} + content-disposition@0.5.2: {} + cookie@0.7.2: {} cookie@1.1.1: {} @@ -2960,13 +2985,9 @@ snapshots: data-uri-to-buffer@2.0.2: {} - debug@4.4.0: + debug@2.6.9: dependencies: - ms: 2.1.3 - - debug@4.4.1: - dependencies: - ms: 2.1.3 + ms: 2.0.0 debug@4.4.3: dependencies: @@ -2974,7 +2995,7 @@ snapshots: decimal.js@10.4.3: {} - deep-eql@5.0.2: {} + deep-extend@0.6.0: {} deepmerge@4.3.1: {} @@ -2982,9 +3003,9 @@ snapshots: delayed-stream@1.0.0: {} - devalue@5.6.1: {} + devalue@5.6.2: {} - dotenv@17.2.3: {} + dotenv@17.2.4: {} dunder-proto@1.0.1: dependencies: @@ -3091,59 +3112,34 @@ snapshots: '@esbuild/win32-ia32': 0.19.12 '@esbuild/win32-x64': 0.19.12 - esbuild@0.21.5: + esbuild@0.27.2: optionalDependencies: - '@esbuild/aix-ppc64': 0.21.5 - '@esbuild/android-arm': 0.21.5 - '@esbuild/android-arm64': 0.21.5 - '@esbuild/android-x64': 0.21.5 - '@esbuild/darwin-arm64': 0.21.5 - '@esbuild/darwin-x64': 0.21.5 - '@esbuild/freebsd-arm64': 0.21.5 - '@esbuild/freebsd-x64': 0.21.5 - '@esbuild/linux-arm': 0.21.5 - '@esbuild/linux-arm64': 0.21.5 - '@esbuild/linux-ia32': 0.21.5 - '@esbuild/linux-loong64': 0.21.5 - '@esbuild/linux-mips64el': 0.21.5 - '@esbuild/linux-ppc64': 0.21.5 - '@esbuild/linux-riscv64': 0.21.5 - '@esbuild/linux-s390x': 0.21.5 - '@esbuild/linux-x64': 0.21.5 - '@esbuild/netbsd-x64': 0.21.5 - '@esbuild/openbsd-x64': 0.21.5 - '@esbuild/sunos-x64': 0.21.5 - '@esbuild/win32-arm64': 0.21.5 - '@esbuild/win32-ia32': 0.21.5 - '@esbuild/win32-x64': 0.21.5 - - esbuild@0.24.2: - optionalDependencies: - '@esbuild/aix-ppc64': 0.24.2 - '@esbuild/android-arm': 0.24.2 - '@esbuild/android-arm64': 0.24.2 - '@esbuild/android-x64': 0.24.2 - '@esbuild/darwin-arm64': 0.24.2 - '@esbuild/darwin-x64': 0.24.2 - '@esbuild/freebsd-arm64': 0.24.2 - '@esbuild/freebsd-x64': 0.24.2 - '@esbuild/linux-arm': 0.24.2 - '@esbuild/linux-arm64': 0.24.2 - '@esbuild/linux-ia32': 0.24.2 - '@esbuild/linux-loong64': 0.24.2 - '@esbuild/linux-mips64el': 0.24.2 - '@esbuild/linux-ppc64': 0.24.2 - '@esbuild/linux-riscv64': 0.24.2 - '@esbuild/linux-s390x': 0.24.2 - '@esbuild/linux-x64': 0.24.2 - '@esbuild/netbsd-arm64': 0.24.2 - '@esbuild/netbsd-x64': 0.24.2 - '@esbuild/openbsd-arm64': 0.24.2 - '@esbuild/openbsd-x64': 0.24.2 - '@esbuild/sunos-x64': 0.24.2 - '@esbuild/win32-arm64': 0.24.2 - '@esbuild/win32-ia32': 0.24.2 - '@esbuild/win32-x64': 0.24.2 + '@esbuild/aix-ppc64': 0.27.2 + '@esbuild/android-arm': 0.27.2 + '@esbuild/android-arm64': 0.27.2 + '@esbuild/android-x64': 0.27.2 + '@esbuild/darwin-arm64': 0.27.2 + '@esbuild/darwin-x64': 0.27.2 + '@esbuild/freebsd-arm64': 0.27.2 + '@esbuild/freebsd-x64': 0.27.2 + '@esbuild/linux-arm': 0.27.2 + '@esbuild/linux-arm64': 0.27.2 + '@esbuild/linux-ia32': 0.27.2 + '@esbuild/linux-loong64': 0.27.2 + '@esbuild/linux-mips64el': 0.27.2 + '@esbuild/linux-ppc64': 0.27.2 + '@esbuild/linux-riscv64': 0.27.2 + '@esbuild/linux-s390x': 0.27.2 + '@esbuild/linux-x64': 0.27.2 + '@esbuild/netbsd-arm64': 0.27.2 + '@esbuild/netbsd-x64': 0.27.2 + '@esbuild/openbsd-arm64': 0.27.2 + '@esbuild/openbsd-x64': 0.27.2 + '@esbuild/openharmony-arm64': 0.27.2 + '@esbuild/sunos-x64': 0.27.2 + '@esbuild/win32-arm64': 0.27.2 + '@esbuild/win32-ia32': 0.27.2 + '@esbuild/win32-x64': 0.27.2 escape-string-regexp@4.0.0: {} @@ -3158,7 +3154,7 @@ snapshots: esprima@4.0.1: {} - esrap@2.2.1: + esrap@2.2.2: dependencies: '@jridgewell/sourcemap-codec': 1.5.5 @@ -3175,6 +3171,18 @@ snapshots: d: 1.0.2 es5-ext: 0.10.64 + execa@5.1.1: + dependencies: + cross-spawn: 7.0.6 + get-stream: 6.0.1 + human-signals: 2.1.0 + is-stream: 2.0.1 + merge-stream: 2.0.0 + npm-run-path: 4.0.1 + onetime: 5.1.2 + signal-exit: 3.0.7 + strip-final-newline: 2.0.0 + exit-hook@2.2.1: {} expect-type@1.2.2: {} @@ -3183,6 +3191,8 @@ snapshots: dependencies: type: 2.7.3 + fast-deep-equal@3.1.3: {} + fast-glob@3.3.3: dependencies: '@nodelib/fs.stat': 2.0.5 @@ -3203,10 +3213,7 @@ snapshots: dependencies: to-regex-range: 5.0.1 - foreground-child@3.3.1: - dependencies: - cross-spawn: 7.0.6 - signal-exit: 4.1.0 + follow-redirects@1.15.11: {} form-data@2.5.5: dependencies: @@ -3217,6 +3224,14 @@ snapshots: mime-types: 2.1.35 safe-buffer: 5.2.1 + form-data@4.0.5: + dependencies: + asynckit: 0.4.0 + combined-stream: 1.0.8 + es-set-tostringtag: 2.1.0 + hasown: 2.0.2 + mime-types: 2.1.35 + front-matter@4.0.2: dependencies: js-yaml: 3.14.1 @@ -3251,21 +3266,14 @@ snapshots: data-uri-to-buffer: 2.0.2 source-map: 0.6.1 + get-stream@6.0.1: {} + glob-parent@5.1.2: dependencies: is-glob: 4.0.3 glob-to-regexp@0.4.1: {} - glob@10.5.0: - dependencies: - foreground-child: 3.3.1 - jackspeak: 3.4.3 - minimatch: 9.0.5 - minipass: 7.1.2 - package-json-from-dist: 1.0.1 - path-scurry: 1.11.1 - globalyzer@0.1.0: {} globrex@0.1.2: {} @@ -3297,8 +3305,12 @@ snapshots: dependencies: '@types/node': 10.17.60 + human-signals@2.1.0: {} + inherits@2.0.4: {} + ini@1.3.8: {} + intl-messageformat@10.7.11: dependencies: '@formatjs/ecma402-abstract': 2.3.2 @@ -3310,6 +3322,8 @@ snapshots: dependencies: binary-extensions: 2.3.0 + is-docker@2.2.1: {} + is-extglob@2.1.1: {} is-fullwidth-code-point@3.0.0: {} @@ -3320,12 +3334,20 @@ snapshots: is-number@7.0.0: {} + is-port-reachable@4.0.0: {} + is-promise@2.2.2: {} is-reference@3.0.3: dependencies: '@types/estree': 1.0.8 + is-stream@2.0.1: {} + + is-wsl@2.2.0: + dependencies: + is-docker: 2.2.1 + isarray@1.0.0: {} isexe@2.0.0: {} @@ -3338,24 +3360,20 @@ snapshots: make-dir: 4.0.0 supports-color: 7.2.0 - istanbul-lib-source-maps@5.0.6: - dependencies: - '@jridgewell/trace-mapping': 0.3.31 - debug: 4.4.1 - istanbul-lib-coverage: 3.2.2 - transitivePeerDependencies: - - supports-color - - istanbul-reports@3.1.7: + istanbul-reports@3.2.0: dependencies: html-escaper: 2.0.2 istanbul-lib-report: 3.0.1 - jackspeak@3.4.3: + joi@18.0.2: dependencies: - '@isaacs/cliui': 8.0.2 - optionalDependencies: - '@pkgjs/parseargs': 0.11.0 + '@hapi/address': 5.1.1 + '@hapi/formula': 3.0.2 + '@hapi/hoek': 11.0.7 + '@hapi/pinpoint': 2.0.1 + '@hapi/tlds': 1.1.4 + '@hapi/topo': 6.0.2 + '@standard-schema/spec': 1.1.0 js-tokens@9.0.1: {} @@ -3368,13 +3386,13 @@ snapshots: dependencies: argparse: 2.0.1 + json-schema-traverse@1.0.0: {} + kleur@4.1.5: {} locate-character@3.0.0: {} - loupe@3.2.1: {} - - lru-cache@10.4.3: {} + lodash@4.17.23: {} lru-queue@0.1.0: dependencies: @@ -3384,22 +3402,14 @@ snapshots: dependencies: sourcemap-codec: 1.4.8 - magic-string@0.30.17: - dependencies: - '@jridgewell/sourcemap-codec': 1.5.5 - - magic-string@0.30.18: - dependencies: - '@jridgewell/sourcemap-codec': 1.5.5 - magic-string@0.30.21: dependencies: '@jridgewell/sourcemap-codec': 1.5.5 - magicast@0.3.5: + magicast@0.5.1: dependencies: - '@babel/parser': 7.27.2 - '@babel/types': 7.27.1 + '@babel/parser': 7.28.6 + '@babel/types': 7.28.6 source-map-js: 1.2.1 make-dir@4.0.0: @@ -3421,6 +3431,8 @@ snapshots: next-tick: 1.1.0 timers-ext: 0.1.8 + merge-stream@2.0.0: {} + merge2@1.4.1: {} micromatch@4.0.8: @@ -3428,14 +3440,22 @@ snapshots: braces: 3.0.3 picomatch: 2.3.1 + mime-db@1.33.0: {} + mime-db@1.52.0: {} + mime-types@2.1.18: + dependencies: + mime-db: 1.33.0 + mime-types@2.1.35: dependencies: mime-db: 1.52.0 mime@3.0.0: {} + mimic-fn@2.1.0: {} + miniflare@3.20241230.2: dependencies: '@cspotcode/source-map-support': 0.8.1 @@ -3447,7 +3467,7 @@ snapshots: stoppable: 1.1.0 undici: 5.29.0 workerd: 1.20241230.0 - ws: 8.18.3 + ws: 8.19.0 youch: 3.3.4 zod: 3.25.76 transitivePeerDependencies: @@ -3455,53 +3475,64 @@ snapshots: - supports-color - utf-8-validate - minimatch@9.0.5: + minimatch@3.1.2: dependencies: - brace-expansion: 2.0.2 + brace-expansion: 1.1.12 minimist@1.2.8: {} - minipass@7.1.2: {} - mlly@1.8.0: dependencies: acorn: 8.15.0 pathe: 2.0.3 pkg-types: 1.3.1 - ufo: 1.6.1 + ufo: 1.6.3 mri@1.2.0: {} mrmime@2.0.1: {} + ms@2.0.0: {} + ms@2.1.3: {} mustache@4.2.0: {} nanoid@3.3.11: {} + negotiator@0.6.4: {} + next-tick@1.1.0: {} normalize-path@3.0.0: {} normalize.css@8.0.1: {} + npm-run-path@4.0.1: + dependencies: + path-key: 3.1.1 + object-inspect@1.13.3: {} + obug@2.1.1: {} + ohash@1.1.6: {} - p-map@7.0.3: {} + on-headers@1.1.0: {} + + onetime@5.1.2: + dependencies: + mimic-fn: 2.1.0 - package-json-from-dist@1.0.1: {} + p-map@7.0.4: {} parse-cache-control@1.0.1: {} + path-is-inside@1.0.2: {} + path-key@3.1.1: {} - path-scurry@1.11.1: - dependencies: - lru-cache: 10.4.3 - minipass: 7.1.2 + path-to-regexp@3.3.0: {} path-to-regexp@6.3.0: {} @@ -3509,8 +3540,6 @@ snapshots: pathe@2.0.3: {} - pathval@2.0.1: {} - picocolors@1.1.1: {} picomatch@2.3.1: {} @@ -3537,12 +3566,25 @@ snapshots: dependencies: asap: 2.0.6 - qs@6.13.1: + proxy-from-env@1.1.0: {} + + punycode@2.3.1: {} + + qs@6.14.1: dependencies: side-channel: 1.1.0 queue-microtask@1.2.3: {} + range-parser@1.2.0: {} + + rc@1.2.8: + dependencies: + deep-extend: 0.6.0 + ini: 1.3.8 + minimist: 1.2.8 + strip-json-comments: 2.0.1 + readable-stream@2.3.8: dependencies: core-util-is: 1.0.3 @@ -3561,6 +3603,17 @@ snapshots: regexparam@3.0.0: {} + registry-auth-token@3.3.2: + dependencies: + rc: 1.2.8 + safe-buffer: 5.2.1 + + registry-url@3.1.0: + dependencies: + rc: 1.2.8 + + require-from-string@2.0.2: {} + reusify@1.1.0: {} rollup-plugin-inject@3.0.2: @@ -3609,6 +3662,10 @@ snapshots: dependencies: queue-microtask: 1.2.3 + rxjs@7.8.2: + dependencies: + tslib: 2.8.1 + sade@1.8.1: dependencies: mri: 1.2.0 @@ -3619,7 +3676,33 @@ snapshots: semver@7.7.2: {} - set-cookie-parser@2.7.2: {} + serve-handler@6.1.6: + dependencies: + bytes: 3.0.0 + content-disposition: 0.5.2 + mime-types: 2.1.18 + minimatch: 3.1.2 + path-is-inside: 1.0.2 + path-to-regexp: 3.3.0 + range-parser: 1.2.0 + + serve@14.2.5: + dependencies: + '@zeit/schemas': 2.36.0 + ajv: 8.12.0 + arg: 5.0.2 + boxen: 7.0.0 + chalk: 5.0.1 + chalk-template: 0.4.0 + clipboardy: 3.0.0 + compression: 1.8.1 + is-port-reachable: 4.0.0 + serve-handler: 6.1.6 + update-check: 1.5.4 + transitivePeerDependencies: + - supports-color + + set-cookie-parser@3.0.1: {} shebang-command@2.0.0: dependencies: @@ -3657,7 +3740,7 @@ snapshots: siginfo@2.0.0: {} - signal-exit@4.1.0: {} + signal-exit@3.0.7: {} sirv@3.0.2: dependencies: @@ -3680,7 +3763,7 @@ snapshots: as-table: 1.0.55 get-source: 2.0.12 - std-env@3.9.0: {} + std-env@3.10.0: {} stoppable@1.1.0: {} @@ -3694,7 +3777,7 @@ snapshots: dependencies: eastasianwidth: 0.2.0 emoji-regex: 9.2.2 - strip-ansi: 7.1.0 + strip-ansi: 7.1.2 string_decoder@1.1.1: dependencies: @@ -3704,31 +3787,31 @@ snapshots: dependencies: ansi-regex: 5.0.1 - strip-ansi@7.1.0: + strip-ansi@7.1.2: dependencies: - ansi-regex: 6.1.0 + ansi-regex: 6.2.2 - strip-literal@3.0.0: - dependencies: - js-tokens: 9.0.1 + strip-final-newline@2.0.0: {} + + strip-json-comments@2.0.1: {} supports-color@7.2.0: dependencies: has-flag: 4.0.0 - svelte-check@4.3.4(picomatch@4.0.3)(svelte@5.45.10)(typescript@5.9.3): + svelte-check@4.3.6(picomatch@4.0.3)(svelte@5.49.2)(typescript@5.9.3): dependencies: '@jridgewell/trace-mapping': 0.3.31 chokidar: 4.0.3 fdir: 6.5.0(picomatch@4.0.3) picocolors: 1.1.1 sade: 1.8.1 - svelte: 5.45.10 + svelte: 5.49.2 typescript: 5.9.3 transitivePeerDependencies: - picomatch - svelte-i18n@4.0.1(svelte@5.45.10): + svelte-i18n@4.0.1(svelte@5.49.2): dependencies: cli-color: 2.0.4 deepmerge: 4.3.1 @@ -3736,14 +3819,14 @@ snapshots: estree-walker: 2.0.2 intl-messageformat: 10.7.11 sade: 1.8.1 - svelte: 5.45.10 + svelte: 5.49.2 tiny-glob: 0.2.9 - svelte-markdown@0.4.1(svelte@5.45.10): + svelte-markdown@0.4.1(svelte@5.49.2): dependencies: '@types/marked': 5.0.2 marked: 5.1.2 - svelte: 5.45.10 + svelte: 5.49.2 svelte-sitemap@2.7.1: dependencies: @@ -3751,7 +3834,7 @@ snapshots: minimist: 1.2.8 xmlbuilder2: 3.1.1 - svelte@5.45.10: + svelte@5.49.2: dependencies: '@jridgewell/remapping': 2.3.5 '@jridgewell/sourcemap-codec': 1.5.5 @@ -3761,19 +3844,19 @@ snapshots: aria-query: 5.3.2 axobject-query: 4.1.0 clsx: 2.1.1 - devalue: 5.6.1 + devalue: 5.6.2 esm-env: 1.2.2 - esrap: 2.2.1 + esrap: 2.2.2 is-reference: 3.0.3 locate-character: 3.0.0 magic-string: 0.30.21 zimmerframe: 1.1.4 - sveltekit-i18n@2.4.2(svelte@5.45.10): + sveltekit-i18n@2.4.2(svelte@5.49.2): dependencies: - '@sveltekit-i18n/base': 1.3.7(svelte@5.45.10) + '@sveltekit-i18n/base': 1.3.7(svelte@5.49.2) '@sveltekit-i18n/parser-default': 1.1.1 - svelte: 5.45.10 + svelte: 5.49.2 sync-request@6.1.0: dependencies: @@ -3785,12 +3868,6 @@ snapshots: dependencies: get-port: 3.2.0 - test-exclude@7.0.1: - dependencies: - '@istanbuljs/schema': 0.1.3 - glob: 10.5.0 - minimatch: 9.0.5 - then-request@6.0.2: dependencies: '@types/concat-stream': 1.6.1 @@ -3803,7 +3880,7 @@ snapshots: http-basic: 8.1.3 http-response-object: 3.0.2 promise: 8.3.0 - qs: 6.13.1 + qs: 6.14.1 timers-ext@0.1.8: dependencies: @@ -3817,23 +3894,14 @@ snapshots: tinybench@2.9.0: {} - tinyexec@0.3.2: {} - - tinyglobby@0.2.14: - dependencies: - fdir: 6.5.0(picomatch@4.0.3) - picomatch: 4.0.3 + tinyexec@1.0.2: {} tinyglobby@0.2.15: dependencies: fdir: 6.5.0(picomatch@4.0.3) picomatch: 4.0.3 - tinypool@1.1.1: {} - - tinyrainbow@2.0.0: {} - - tinyspy@4.0.3: {} + tinyrainbow@3.0.3: {} to-regex-range@5.0.1: dependencies: @@ -3843,13 +3911,15 @@ snapshots: tslib@2.8.1: {} + type-fest@2.19.0: {} + type@2.7.3: {} typedarray@0.0.6: {} typescript@5.9.3: {} - ufo@1.6.1: {} + ufo@1.6.3: {} undici-types@7.16.0: {} @@ -3863,82 +3933,76 @@ snapshots: mlly: 1.8.0 ohash: 1.1.6 pathe: 1.1.2 - ufo: 1.6.1 + ufo: 1.6.3 - util-deprecate@1.0.2: {} + update-check@1.5.4: + dependencies: + registry-auth-token: 3.3.2 + registry-url: 3.1.0 - vite-node@3.2.4(@types/node@25.0.1): + uri-js@4.4.1: dependencies: - cac: 6.7.14 - debug: 4.4.1 - es-module-lexer: 1.7.0 - pathe: 2.0.3 - vite: 5.4.21(@types/node@25.0.1) - transitivePeerDependencies: - - '@types/node' - - less - - lightningcss - - sass - - sass-embedded - - stylus - - sugarss - - supports-color - - terser + punycode: 2.3.1 + + util-deprecate@1.0.2: {} - vite-plugin-restart@2.0.0(vite@5.4.21(@types/node@25.0.1)): + vary@1.1.2: {} + + vite-plugin-restart@2.0.0(vite@7.3.1(@types/node@25.2.1)): dependencies: micromatch: 4.0.8 - vite: 5.4.21(@types/node@25.0.1) + vite: 7.3.1(@types/node@25.2.1) - vite-plugin-static-copy@3.1.4(vite@5.4.21(@types/node@25.0.1)): + vite-plugin-static-copy@3.2.0(vite@7.3.1(@types/node@25.2.1)): dependencies: chokidar: 3.6.0 - p-map: 7.0.3 + p-map: 7.0.4 picocolors: 1.1.1 tinyglobby: 0.2.15 - vite: 5.4.21(@types/node@25.0.1) + vite: 7.3.1(@types/node@25.2.1) - vite@5.4.21(@types/node@25.0.1): + vite@7.3.1(@types/node@25.2.1): dependencies: - esbuild: 0.21.5 + esbuild: 0.27.2 + fdir: 6.5.0(picomatch@4.0.3) + picomatch: 4.0.3 postcss: 8.5.6 rollup: 4.52.5 + tinyglobby: 0.2.15 optionalDependencies: - '@types/node': 25.0.1 + '@types/node': 25.2.1 fsevents: 2.3.3 - vitefu@1.0.5(vite@5.4.21(@types/node@25.0.1)): + vitefu@1.1.1(vite@7.3.1(@types/node@25.2.1)): optionalDependencies: - vite: 5.4.21(@types/node@25.0.1) + vite: 7.3.1(@types/node@25.2.1) - vitest@3.2.4(@types/node@25.0.1): + vitest@4.0.18(@types/node@25.2.1): dependencies: - '@types/chai': 5.2.2 - '@vitest/expect': 3.2.4 - '@vitest/mocker': 3.2.4(vite@5.4.21(@types/node@25.0.1)) - '@vitest/pretty-format': 3.2.4 - '@vitest/runner': 3.2.4 - '@vitest/snapshot': 3.2.4 - '@vitest/spy': 3.2.4 - '@vitest/utils': 3.2.4 - chai: 5.3.3 - debug: 4.4.1 + '@vitest/expect': 4.0.18 + '@vitest/mocker': 4.0.18(vite@7.3.1(@types/node@25.2.1)) + '@vitest/pretty-format': 4.0.18 + '@vitest/runner': 4.0.18 + '@vitest/snapshot': 4.0.18 + '@vitest/spy': 4.0.18 + '@vitest/utils': 4.0.18 + es-module-lexer: 1.7.0 expect-type: 1.2.2 - magic-string: 0.30.18 + magic-string: 0.30.21 + obug: 2.1.1 pathe: 2.0.3 picomatch: 4.0.3 - std-env: 3.9.0 + std-env: 3.10.0 tinybench: 2.9.0 - tinyexec: 0.3.2 - tinyglobby: 0.2.14 - tinypool: 1.1.1 - tinyrainbow: 2.0.0 - vite: 5.4.21(@types/node@25.0.1) - vite-node: 3.2.4(@types/node@25.0.1) + tinyexec: 1.0.2 + tinyglobby: 0.2.15 + tinyrainbow: 3.0.3 + vite: 7.3.1(@types/node@25.2.1) why-is-node-running: 2.3.0 optionalDependencies: - '@types/node': 25.0.1 + '@types/node': 25.2.1 transitivePeerDependencies: + - jiti - less - lightningcss - msw @@ -3946,8 +4010,19 @@ snapshots: - sass-embedded - stylus - sugarss - - supports-color - terser + - tsx + - yaml + + wait-on@8.0.5: + dependencies: + axios: 1.13.4 + joi: 18.0.2 + lodash: 4.17.23 + minimist: 1.2.8 + rxjs: 7.8.2 + transitivePeerDependencies: + - debug which@2.0.2: dependencies: @@ -3958,6 +4033,10 @@ snapshots: siginfo: 2.0.0 stackback: 0.0.2 + widest-line@4.0.1: + dependencies: + string-width: 5.1.2 + workerd@1.20241230.0: optionalDependencies: '@cloudflare/workerd-darwin-64': 1.20241230.0 @@ -3971,7 +4050,7 @@ snapshots: mrmime: 2.0.1 regexparam: 3.0.0 - wrangler@3.105.0(@cloudflare/workers-types@4.20250121.0): + wrangler@3.105.0(@cloudflare/workers-types@4.20260128.0): dependencies: '@cloudflare/kv-asset-handler': 0.3.4 '@esbuild-plugins/node-globals-polyfill': 0.2.3(esbuild@0.17.19) @@ -3983,26 +4062,20 @@ snapshots: unenv: 2.0.0-rc.0 workerd: 1.20241230.0 optionalDependencies: - '@cloudflare/workers-types': 4.20250121.0 + '@cloudflare/workers-types': 4.20260128.0 fsevents: 2.3.3 transitivePeerDependencies: - bufferutil - supports-color - utf-8-validate - wrap-ansi@7.0.0: - dependencies: - ansi-styles: 4.3.0 - string-width: 4.2.3 - strip-ansi: 6.0.1 - wrap-ansi@8.1.0: dependencies: - ansi-styles: 6.2.1 + ansi-styles: 6.2.3 string-width: 5.1.2 - strip-ansi: 7.1.0 + strip-ansi: 7.1.2 - ws@8.18.3: {} + ws@8.19.0: {} xmlbuilder2@3.1.1: dependencies: diff --git a/install_cornucopia_deps.txt b/install_cornucopia_deps.txt index 44f3a402f..804fa7033 100644 --- a/install_cornucopia_deps.txt +++ b/install_cornucopia_deps.txt @@ -1,4 +1,4 @@ -black == 25.12.0 --hash=sha256:05dd459a19e218078a1f98178c13f861fe6a9a5f88fc969ca4d9b49eb1809783 --hash=sha256:09524b0e6af8ba7a3ffabdfc7a9922fb9adef60fed008c7cd2fc01f3048e6e6f --hash=sha256:0a0953b134f9335c2434864a643c842c44fba562155c738a2a37a4d61f00cad5 --hash=sha256:0e509c858adf63aa61d908061b52e580c40eae0dfa72415fa47ac01b12e29baf --hash=sha256:169506ba91ef21e2e0591563deda7f00030cb466e747c4b09cb0a9dae5db2f43 --hash=sha256:17dcc893da8d73d8f74a596f64b7c98ef5239c2cd2b053c0f25912c4494bf9ea --hash=sha256:1a2f578ae20c19c50a382286ba78bfbeafdf788579b053d8e4980afb079ab9be --hash=sha256:2355bbb6c3b76062870942d8cc450d4f8ac71f9c93c40122762c8784df49543f --hash=sha256:252678f07f5bac4ff0d0e9b261fbb029fa530cfa206d0a636a34ab445ef8ca9d --hash=sha256:274f940c147ddab4442d316b27f9e332ca586d39c85ecf59ebdea82cc9ee8892 --hash=sha256:31f96b7c98c1ddaeb07dc0f56c652e25bdedaac76d5b68a059d998b57c55594a --hash=sha256:48ceb36c16dbc84062740049eef990bb2ce07598272e673c17d1a7720c71c828 --hash=sha256:51e267458f7e650afed8445dc7edb3187143003d52a1b710c7321aef22aa9655 --hash=sha256:546eecfe9a3a6b46f9d69d8a642585a6eaf348bcbbc4d87a19635570e02d9f4a --hash=sha256:778285d9ea197f34704e3791ea9404cd6d07595745907dd2ce3da7a13627b29b --hash=sha256:8d3dd9cea14bff7ddc0eb243c811cdb1a011ebb4800a5f0335a01a68654796a7 --hash=sha256:9678bd991cc793e81d19aeeae57966ee02909877cb65838ccffef24c3ebac08f --hash=sha256:97596189949a8aad13ad12fcbb4ae89330039b96ad6742e6f6b45e75ad5cfd83 --hash=sha256:9ec77439ef3e34896995503865a85732c94396edcc739f302c5673a2315e1e7f --hash=sha256:a05ddeb656534c3e27a05a29196c962877c83fa5503db89e68857d1161ad08a5 --hash=sha256:a3fa71e3b8dd9f7c6ac4d818345237dfb4175ed3bf37cd5a581dbc4c034f1ec5 --hash=sha256:b162653ed89eb942758efeb29d5e333ca5bb90e5130216f8369857db5955a7da --hash=sha256:bc5b1c09fe3c931ddd20ee548511c64ebf964ada7e6f0763d443947fd1c603ce --hash=sha256:c1f68c5eff61f226934be6b5b80296cf6939e5d2f0c2f7d543ea08b204bfaf59 --hash=sha256:d0cfa263e85caea2cff57d8f917f9f51adae8e20b610e2b23de35b5b11ce691a --hash=sha256:d3e1b65634b0e471d07ff86ec338819e2ef860689859ef4501ab7ac290431f9b --hash=sha256:f85ba1ad15d446756b4ab5f3044731bf68b777f8f9ac9cdabd2425b97cd9c4e8 +black == 25.1.0 --hash=sha256:bce2e264d59c91e52d8000d507eb20a9aca4a778731a08cfff7e5ac4a4bb7096 defusedxml == 0.7.1 --hash=sha256:1bb3032db185915b62d7c6209c5a8792be6a32ab2fedacc84e01b52c51aa3e69 flake8 == 7.2.0 --hash=sha256:93b92ba5bdb60754a6da14fa3b93a9361fd00a59632ada61fd7b130436c40343 --hash=sha256:fa558ae3f6f7dbf2b4f22663e5343b6b6023620461f8d4ff2019ef4b5ee70426 httpretty == 1.1.4 --hash=sha256:20de0e5dd5a18292d36d928cc3d6e52f8b2ac73daec40d41eb62dee154933b68 @@ -6,25 +6,25 @@ mypy == 1.18.2 --hash=sha256:01199871b6110a2ce984bde85acd481232d17413868c9807e95 pytest == 9.0.2 --hash=sha256:711ffd45bf766d5264d487b917733b453d917afd2b0ad65223959f59089f875b --hash=sha256:75186651a92bd89611d1d9fc20f0b4345fd827c41ccd5c299a868a05d70edf11 pytest-cov == 6.2.1 --hash=sha256:25cc6cc0a5358204b8108ecedc51a9b57b34cc6b8c967cc2c01a4e00d8a67da2 --hash=sha256:f5bc4c23f42f1cdd23c70b1dab1bbaef4fc505ba950d53e0081d0730dd7e86d5 freezegun == 1.5.5 --hash=sha256:ac7742a6cc6c25a2c35e9292dfd554b897b517d2dec26891a2e8debf205cb94a --hash=sha256:cd557f4a75cf074e84bc374249b9dd491eaeacd61376b9eb3c423282211619d2 -atheris == 2.3.0 --hash=sha256:b91cb296d60915c3efa4f6db48f09c4678b574cddb7ca98035f1cb9d9fb96f64 -idna == 3.10 --hash=sha256:12f65c9b470abda6dc35cf8e63cc574b1c52b11df2c86030af0ac09b01b13ea9 +atheris == 3.0.0 --hash=sha256:1f0929c7bc3040f3fe4102e557718734190cf2d7718bbb8e3ce6d3eb56ef5bb3 +idna == 3.11 --hash=sha256:795dafcc9c04ed0c1fb032c2aa73654d8e8c5023a7df64a53f39190ada629902 pypng == 0.20220715.0 --hash=sha256:4a43e969b8f5aaafb2a415536c1a8ec7e341cd6a3f957fd5b5f32a4cfeed902c qrcode == 8.2 --hash=sha256:16e64e0716c14960108e85d853062c9e8bba5ca8252c0b4d0231b9df4060ff4f --hash=sha256:35c3f2a4172b33136ab9f6b3ef1c00260dd2f66f858f24d88418a015f446506c requests == 2.32.4 --hash=sha256:27babd3cda2a6d50b30443204ee89830707d396671944c998b5975b031ac2b2c --hash=sha256:27d0316682c8a29834d3264820024b62a36942083d52caf2f14c0591336d3422 types-requests == 2.32.4.20250913 --hash=sha256:78c9c1fffebbe0fa487a418e0fa5252017e9c60d1a2da394077f1780f655d7e1 --hash=sha256:abd6d4f9ce3a9383f269775a9835a4c24e5cd6b9f647d64f88aa4613c33def5d typing_extensions == 4.8.0 --hash=sha256:8f92fc8806f9a6b641eaa5318da32b44d401efaac0f6678c9bc448ba3605faa0 urllib3 == 2.5.0 --hash=sha256:3fc47733c7e419d4bc3f6b3dc2b4f890bb743906a30d56ba4a5bfa4bbff92760 --hash=sha256:e6b01673c0fa6a13e374b50871808eb3bf7046c4b125b216f6bf1cc604cff0dc -charset-normalizer == 3.4.4 --hash=sha256:027f6de494925c0ab2a55eab46ae5129951638a49a34d87f4c3eda90f696b4ad --hash=sha256:077fbb858e903c73f6c9db43374fd213b0b6a778106bc7032446a8e8b5b38b93 --hash=sha256:0a98e6759f854bd25a58a73fa88833fba3b7c491169f86ce1180c948ab3fd394 --hash=sha256:0d3d8f15c07f86e9ff82319b3d9ef6f4bf907608f53fe9d92b28ea9ae3d1fd89 --hash=sha256:0f04b14ffe5fdc8c4933862d8306109a2c51e0704acfa35d51598eb45a1e89fc --hash=sha256:11d694519d7f29d6cd09f6ac70028dba10f92f6cdd059096db198c283794ac86 --hash=sha256:194f08cbb32dc406d6e1aea671a68be0823673db2832b38405deba2fb0d88f63 --hash=sha256:1bee1e43c28aa63cb16e5c14e582580546b08e535299b8b6158a7c9c768a1f3d --hash=sha256:21d142cc6c0ec30d2efee5068ca36c128a30b0f2c53c1c07bd78cb6bc1d3be5f --hash=sha256:2437418e20515acec67d86e12bf70056a33abdacb5cb1655042f6538d6b085a8 --hash=sha256:244bfb999c71b35de57821b8ea746b24e863398194a4014e4c76adc2bbdfeff0 --hash=sha256:2677acec1a2f8ef614c6888b5b4ae4060cc184174a938ed4e8ef690e15d3e505 --hash=sha256:277e970e750505ed74c832b4bf75dac7476262ee2a013f5574dd49075879e161 --hash=sha256:2aaba3b0819274cc41757a1da876f810a3e4d7b6eb25699253a4effef9e8e4af --hash=sha256:2b7d8f6c26245217bd2ad053761201e9f9680f8ce52f0fcd8d0755aeae5b2152 --hash=sha256:2c9d3c380143a1fedbff95a312aa798578371eb29da42106a29019368a475318 --hash=sha256:3162d5d8ce1bb98dd51af660f2121c55d0fa541b46dff7bb9b9f86ea1d87de72 --hash=sha256:31fd66405eaf47bb62e8cd575dc621c56c668f27d46a61d975a249930dd5e2a4 --hash=sha256:362d61fd13843997c1c446760ef36f240cf81d3ebf74ac62652aebaf7838561e --hash=sha256:376bec83a63b8021bb5c8ea75e21c4ccb86e7e45ca4eb81146091b56599b80c3 --hash=sha256:44c2a8734b333e0578090c4cd6b16f275e07aa6614ca8715e6c038e865e70576 --hash=sha256:47cc91b2f4dd2833fddaedd2893006b0106129d4b94fdb6af1f4ce5a9965577c --hash=sha256:4902828217069c3c5c71094537a8e623f5d097858ac6ca8252f7b4d10b7560f1 --hash=sha256:4bd5d4137d500351a30687c2d3971758aac9a19208fc110ccb9d7188fbe709e8 --hash=sha256:4fe7859a4e3e8457458e2ff592f15ccb02f3da787fcd31e0183879c3ad4692a1 --hash=sha256:542d2cee80be6f80247095cc36c418f7bddd14f4a6de45af91dfad36d817bba2 --hash=sha256:554af85e960429cf30784dd47447d5125aaa3b99a6f0683589dbd27e2f45da44 --hash=sha256:5833d2c39d8896e4e19b689ffc198f08ea58116bee26dea51e362ecc7cd3ed26 --hash=sha256:5947809c8a2417be3267efc979c47d76a079758166f7d43ef5ae8e9f92751f88 --hash=sha256:5ae497466c7901d54b639cf42d5b8c1b6a4fead55215500d2f486d34db48d016 --hash=sha256:5bd2293095d766545ec1a8f612559f6b40abc0eb18bb2f5d1171872d34036ede --hash=sha256:5bfbb1b9acf3334612667b61bd3002196fe2a1eb4dd74d247e0f2a4d50ec9bbf --hash=sha256:5cb4d72eea50c8868f5288b7f7f33ed276118325c1dfd3957089f6b519e1382a --hash=sha256:5dbe56a36425d26d6cfb40ce79c314a2e4dd6211d51d6d2191c00bed34f354cc --hash=sha256:5f819d5fe9234f9f82d75bdfa9aef3a3d72c4d24a6e57aeaebba32a704553aa0 --hash=sha256:64b55f9dce520635f018f907ff1b0df1fdc31f2795a922fb49dd14fbcdf48c84 --hash=sha256:6515f3182dbe4ea06ced2d9e8666d97b46ef4c75e326b79bb624110f122551db --hash=sha256:65e2befcd84bc6f37095f5961e68a6f077bf44946771354a28ad434c2cce0ae1 --hash=sha256:6aee717dcfead04c6eb1ce3bd29ac1e22663cdea57f943c87d1eab9a025438d7 --hash=sha256:6b39f987ae8ccdf0d2642338faf2abb1862340facc796048b604ef14919e55ed --hash=sha256:6e1fcf0720908f200cd21aa4e6750a48ff6ce4afe7ff5a79a90d5ed8a08296f8 --hash=sha256:74018750915ee7ad843a774364e13a3db91682f26142baddf775342c3f5b1133 --hash=sha256:74664978bb272435107de04e36db5a9735e78232b85b77d45cfb38f758efd33e --hash=sha256:74bb723680f9f7a6234dcf67aea57e708ec1fbdf5699fb91dfd6f511b0a320ef --hash=sha256:752944c7ffbfdd10c074dc58ec2d5a8a4cd9493b314d367c14d24c17684ddd14 --hash=sha256:778d2e08eda00f4256d7f672ca9fef386071c9202f5e4607920b86d7803387f2 --hash=sha256:780236ac706e66881f3b7f2f32dfe90507a09e67d1d454c762cf642e6e1586e0 --hash=sha256:798d75d81754988d2565bff1b97ba5a44411867c0cf32b77a7e8f8d84796b10d --hash=sha256:799a7a5e4fb2d5898c60b640fd4981d6a25f1c11790935a44ce38c54e985f828 --hash=sha256:7a32c560861a02ff789ad905a2fe94e3f840803362c84fecf1851cb4cf3dc37f --hash=sha256:7c308f7e26e4363d79df40ca5b2be1c6ba9f02bdbccfed5abddb7859a6ce72cf --hash=sha256:7fa17817dc5625de8a027cb8b26d9fefa3ea28c8253929b8d6649e705d2835b6 --hash=sha256:81d5eb2a312700f4ecaa977a8235b634ce853200e828fbadf3a9c50bab278328 --hash=sha256:82004af6c302b5d3ab2cfc4cc5f29db16123b1a8417f2e25f9066f91d4411090 --hash=sha256:837c2ce8c5a65a2035be9b3569c684358dfbf109fd3b6969630a87535495ceaa --hash=sha256:840c25fb618a231545cbab0564a799f101b63b9901f2569faecd6b222ac72381 --hash=sha256:8a6562c3700cce886c5be75ade4a5db4214fda19fede41d9792d100288d8f94c --hash=sha256:8af65f14dc14a79b924524b1e7fffe304517b2bff5a58bf64f30b98bbc5079eb --hash=sha256:8ef3c867360f88ac904fd3f5e1f902f13307af9052646963ee08ff4f131adafc --hash=sha256:94537985111c35f28720e43603b8e7b43a6ecfb2ce1d3058bbe955b73404e21a --hash=sha256:99ae2cffebb06e6c22bdc25801d7b30f503cc87dbd283479e7b606f70aff57ec --hash=sha256:9a26f18905b8dd5d685d6d07b0cdf98a79f3c7a918906af7cc143ea2e164c8bc --hash=sha256:9b35f4c90079ff2e2edc5b26c0c77925e5d2d255c42c74fdb70fb49b172726ac --hash=sha256:9cd98cdc06614a2f768d2b7286d66805f94c48cde050acdbbb7db2600ab3197e --hash=sha256:9d1bb833febdff5c8927f922386db610b49db6e0d4f4ee29601d71e7c2694313 --hash=sha256:9f7fcd74d410a36883701fafa2482a6af2ff5ba96b9a620e9e0721e28ead5569 --hash=sha256:a59cb51917aa591b1c4e6a43c132f0cdc3c76dbad6155df4e28ee626cc77a0a3 --hash=sha256:a61900df84c667873b292c3de315a786dd8dac506704dea57bc957bd31e22c7d --hash=sha256:a79cfe37875f822425b89a82333404539ae63dbdddf97f84dcbc3d339aae9525 --hash=sha256:a8a8b89589086a25749f471e6a900d3f662d1d3b6e2e59dcecf787b1cc3a1894 --hash=sha256:a8bf8d0f749c5757af2142fe7903a9df1d2e8aa3841559b2bad34b08d0e2bcf3 --hash=sha256:a9768c477b9d7bd54bc0c86dbaebdec6f03306675526c9927c0e8a04e8f94af9 --hash=sha256:ac1c4a689edcc530fc9d9aa11f5774b9e2f33f9a0c6a57864e90908f5208d30a --hash=sha256:af2d8c67d8e573d6de5bc30cdb27e9b95e49115cd9baad5ddbd1a6207aaa82a9 --hash=sha256:b435cba5f4f750aa6c0a0d92c541fb79f69a387c91e61f1795227e4ed9cece14 --hash=sha256:b5b290ccc2a263e8d185130284f8501e3e36c5e02750fc6b6bdeb2e9e96f1e25 --hash=sha256:b5d84d37db046c5ca74ee7bb47dd6cbc13f80665fdde3e8040bdd3fb015ecb50 --hash=sha256:b7cf1017d601aa35e6bb650b6ad28652c9cd78ee6caff19f3c28d03e1c80acbf --hash=sha256:bc7637e2f80d8530ee4a78e878bce464f70087ce73cf7c1caf142416923b98f1 --hash=sha256:c0463276121fdee9c49b98908b3a89c39be45d86d1dbaa22957e38f6321d4ce3 --hash=sha256:c4ef880e27901b6cc782f1b95f82da9313c0eb95c3af699103088fa0ac3ce9ac --hash=sha256:c8ae8a0f02f57a6e61203a31428fa1d677cbe50c93622b4149d5c0f319c1d19e --hash=sha256:ca5862d5b3928c4940729dacc329aa9102900382fea192fc5e52eb69d6093815 --hash=sha256:cb01158d8b88ee68f15949894ccc6712278243d95f344770fa7593fa2d94410c --hash=sha256:cb6254dc36b47a990e59e1068afacdcd02958bdcce30bb50cc1700a8b9d624a6 --hash=sha256:cc00f04ed596e9dc0da42ed17ac5e596c6ccba999ba6bd92b0e0aef2f170f2d6 --hash=sha256:cd09d08005f958f370f539f186d10aec3377d55b9eeb0d796025d4886119d76e --hash=sha256:cd4b7ca9984e5e7985c12bc60a6f173f3c958eae74f3ef6624bb6b26e2abbae4 --hash=sha256:ce8a0633f41a967713a59c4139d29110c07e826d131a316b50ce11b1d79b4f84 --hash=sha256:cead0978fc57397645f12578bfd2d5ea9138ea0fac82b2f63f7f7c6877986a69 --hash=sha256:d055ec1e26e441f6187acf818b73564e6e6282709e9bcb5b63f5b23068356a15 --hash=sha256:d1f13550535ad8cff21b8d757a3257963e951d96e20ec82ab44bc64aeb62a191 --hash=sha256:d9c7f57c3d666a53421049053eaacdd14bbd0a528e2186fcb2e672effd053bb0 --hash=sha256:d9e45d7faa48ee908174d8fe84854479ef838fc6a705c9315372eacbc2f02897 --hash=sha256:da3326d9e65ef63a817ecbcc0df6e94463713b754fe293eaa03da99befb9a5bd --hash=sha256:de00632ca48df9daf77a2c65a484531649261ec9f25489917f09e455cb09ddb2 --hash=sha256:e1f185f86a6f3403aa2420e815904c67b2f9ebc443f045edd0de921108345794 --hash=sha256:e824f1492727fa856dd6eda4f7cee25f8518a12f3c4a56a74e8095695089cf6d --hash=sha256:e912091979546adf63357d7e2ccff9b44f026c075aeaf25a52d0e95ad2281074 --hash=sha256:eaabd426fe94daf8fd157c32e571c85cb12e66692f15516a83a03264b08d06c3 --hash=sha256:ebf3e58c7ec8a8bed6d66a75d7fb37b55e5015b03ceae72a8e7c74495551e224 --hash=sha256:ecaae4149d99b1c9e7b88bb03e3221956f68fd6d50be2ef061b2381b61d20838 --hash=sha256:eecbc200c7fd5ddb9a7f16c7decb07b566c29fa2161a16cf67b8d068bd21690a --hash=sha256:f155a433c2ec037d4e8df17d18922c3a0d9b3232a396690f17175d2946f0218d --hash=sha256:f1e34719c6ed0b92f418c7c780480b26b5d9c50349e9a9af7d76bf757530350d --hash=sha256:f34be2938726fc13801220747472850852fe6b1ea75869a048d6f896838c896f --hash=sha256:f820802628d2694cb7e56db99213f930856014862f3fd943d290ea8438d07ca8 --hash=sha256:f8bf04158c6b607d747e93949aa60618b61312fe647a6369f88ce2ff16043490 --hash=sha256:f8e160feb2aed042cd657a72acc0b481212ed28b1b9a95c0cee1621b524e1966 --hash=sha256:f9d332f8c2a2fcbffe1378594431458ddbef721c1769d78e2cbc06280d8155f9 --hash=sha256:fa09f53c465e532f4d3db095e0c55b615f010ad81803d383195b6b5ca6cbf5f3 --hash=sha256:faa3a41b2b66b6e50f84ae4a68c64fcd0c44355741c6374813a800cd6695db9e --hash=sha256:fd44c878ea55ba351104cb93cc85e74916eb8fa440ca7903e57575e97394f608 +charset-normalizer == 3.4.4 --hash=sha256:94537985111c35f28720e43603b8e7b43a6ecfb2ce1d3058bbe955b73404e21a python-docx == 1.1.0 --hash=sha256:bac9773278098a1ddc43a52d84e22f5909c4a3080a624530b3ecb3771b07c6cd -PyYAML == 6.0.1 --hash=sha256:ba336e390cd8e4d1739f42dfe9bb83a3cc2e80f567d8805e11b46f4a943f5515 +PyYAML == 6.0.1 --hash=sha256:d2b04aac4d386b172d5b9692e2d2da8de7bfb6c387fa4f801fbf6fb2e6ba4673 pyqrcode == 1.2.1 --hash=sha256:1b2812775fa6ff5c527977c4cd2ccb07051ca7d0bc0aecf937a43864abe5eff6 -types-PyYAML == 6.0.12.12 --hash=sha256:c05bc6c158facb0676674b7f11fe3960db4f389718e19e62bd2b84d6205cfd24 -lxml == 5.4.0 --hash=sha256:91505d3ddebf268bb1588eb0f63821f738d20e1e7f05d3c647a5ca900288760b +types-PyYAML == 6.0.12.20250915 --hash=sha256:0f8b54a528c303f0e6f7165687dd33fafa81c807fcac23f632b63aa624ced1d3 --hash=sha256:e7d4d9e064e89a3b3cae120b4990cd370874d2bf12fa5f46c97018dd5d3c9ab6 +lxml == 5.4.0 --hash=sha256:d2ed1b3cb9ff1c10e6e8b00941bb2e5bb568b307bfc6b17dffbbe8be5eecba86 docx2pdf == 0.1.8 --hash=sha256:6d2c20f9ad36eec75f4da017dc7a97622946954a6124ca0b11772875fa86fbed click == 8.3.0 --hash=sha256:9b9f285302c6e3064f4330c05f05b81945b2a39544279343e6e7c5f27a9baddc --hash=sha256:e7b8232224eba16f4ebe410c25ced9f7875cb5f3263ffc93cc3e8da705e229c4 mypy-extensions == 1.1.0 --hash=sha256:1be4cccdb0f2482337c4743e60421de3a356cd97508abadd57d47403e94f5505 --hash=sha256:52e68efc3284861e772bbcd66823fde5ae21fd2fdb51c62a211403730b916558 pathspec == 0.12.1 --hash=sha256:a0d503e138a4c123b27490a4f7beda6a01c6f288df0e4a8b79c7eb0dc7b4cc08 -tomli == 2.2.1 --hash=sha256:023aa114dd824ade0100497eb2318602af309e5a55595f76b626d6d9f3b7b0a6 +tomli == 2.2.1 --hash=sha256:6972ca9c9cc9f0acaa56a8ca1ff51e7af152a9f87fb64623e31d5c83700080ee mccabe == 0.7.0 --hash=sha256:6c2d30ab6be0e4a46919781807b4f0d834ebdd6c6e3dca0bda5a15f863427b6e pycodestyle == 2.13.0 --hash=sha256:35863c5974a271c7a726ed228a14a4f6daf49df369d8c50cd9a6f58a5e143ba9 --hash=sha256:c8415bf09abe81d9c7f872502a6eee881fbe85d8763dd5b9924bb0a01d67efae pyflakes == 3.3.2 --hash=sha256:5039c8339cbb1944045f4ee5466908906180f13cc99cc9949348d10f82a5c32a --hash=sha256:6dfd61d87b97fba5dcfaaf781171ac16be16453be6d816147989e7f6e6a9576b @@ -32,9 +32,11 @@ iniconfig == 2.1.0 --hash=sha256:3abbd2e30b36733fee78f9c7f7308f2d0050e88f0087fd2 pluggy == 1.6.0 --hash=sha256:7dcc130b76258d33b90f61b658791dede3486c3e6bfb003ee5c9bfb396dd22f3 --hash=sha256:e920276dd6813095e9377c0bc5566d94c932c33b27a3e3945d8389c374dd4746 exceptiongroup == 1.3.0 --hash=sha256:4d111e6e0c13d0644cad6ddaa7ed0261a0b36971f6d23e7ec9b4b9097da78a10 --hash=sha256:b241f5885f560bc56a59ee63ca4c6a8bfa46ae4ad651af316d4e81817bb9fd88 python-dateutil == 2.9.0.post0 --hash=sha256:37dd54208da7e1cd875388217d5e00ebd4179249f90fb72437e91a35459a0ad3 -tqdm == 4.67.1 --hash=sha256:26445eca388f82e72884e0d580d5464cd801a3ea01e63e5601bdff9ba6a48de2 +tqdm == 4.67.3 --hash=sha256:7d825f03f89244ef73f1d4ce193cb1774a8179fd96f31d7e1dcde62092b960bb --hash=sha256:ee1e4c0e59148062281c49d80b25b67771a127c85fc9676d3be5f243206826bf attrs == 25.3.0 --hash=sha256:427318ce031701fea540783410126f03899a97ffc6f61596ad581ac2e40e3bc3 --hash=sha256:75d7cefc7fb576747b2c81b4442d4d4a1ce0900973527c011d1030fd3bf4af1b sortedcontainers == 2.4.0 --hash=sha256:a163dcaede0f1c021485e957a39245190e74249897e2ae4b2aa38595db237ee0 pathvalidate == 3.3.1 --hash=sha256:5263baab691f8e1af96092fa5137ee17df5bdfbd6cff1fcac4d6ef4bc2e1735f --hash=sha256:b18c07212bfead624345bb8e1d6141cdcf15a39736994ea0b94035ad2b1ba177 -coverage == 7.10.7 --hash=sha256:03ffc58aacdf65d2a82bbeb1ffe4d01ead4017a21bfd0454983b88ca73af94b9 --hash=sha256:097c1591f5af4496226d5783d036bf6fd6cd0cbc132e071b33861de756efb880 --hash=sha256:0b944ee8459f515f28b851728ad224fa2d068f1513ef6b7ff1efafeb2185f999 --hash=sha256:0ebbaddb2c19b71912c6f2518e791aa8b9f054985a0769bdb3a53ebbc765c6a1 --hash=sha256:10b24412692df990dbc34f8fb1b6b13d236ace9dfdd68df5b28c2e39cafbba13 --hash=sha256:10b6ba00ab1132a0ce4428ff68cf50a25efd6840a42cdf4239c9b99aad83be8b --hash=sha256:121da30abb574f6ce6ae09840dae322bef734480ceafe410117627aa54f76d82 --hash=sha256:18afb24843cbc175687225cab1138c95d262337f5473512010e46831aa0c2973 --hash=sha256:1b4fd784344d4e52647fd7857b2af5b3fbe6c239b0b5fa63e94eb67320770e0f --hash=sha256:1ca6db7c8807fb9e755d0379ccc39017ce0a84dcd26d14b5a03b78563776f681 --hash=sha256:1ef2319dd15a0b009667301a3f84452a4dc6fddfd06b0c5c53ea472d3989fbf0 --hash=sha256:2120043f147bebb41c85b97ac45dd173595ff14f2a584f2963891cbcc3091541 --hash=sha256:212f8f2e0612778f09c55dd4872cb1f64a1f2b074393d139278ce902064d5b32 --hash=sha256:240af60539987ced2c399809bd34f7c78e8abe0736af91c3d7d0e795df633d17 --hash=sha256:2a78cd46550081a7909b3329e2266204d584866e8d97b898cd7fb5ac8d888b1a --hash=sha256:2af88deffcc8a4d5974cf2d502251bc3b2db8461f0b66d80a449c33757aa9f40 --hash=sha256:2c8b9a0636f94c43cd3576811e05b89aa9bc2d0a85137affc544ae5cb0e4bfbd --hash=sha256:2fafd773231dd0378fdba66d339f84904a8e57a262f583530f4f156ab83863e6 --hash=sha256:314f2c326ded3f4b09be11bc282eb2fc861184bc95748ae67b360ac962770be7 --hash=sha256:33a5e6396ab684cb43dc7befa386258acb2d7fae7f67330ebb85ba4ea27938eb --hash=sha256:3445258bcded7d4aa630ab8296dea4d3f15a255588dd535f980c193ab6b95f3f --hash=sha256:35f5e3f9e455bb17831876048355dca0f758b6df22f49258cb5a91da23ef437d --hash=sha256:39508ffda4f343c35f3236fe8d1a6634a51f4581226a1262769d7f970e73bffe --hash=sha256:399a0b6347bcd3822be369392932884b8216d0944049ae22925631a9b3d4ba4c --hash=sha256:3a622ac801b17198020f09af3eaf45666b344a0d69fc2a6ffe2ea83aeef1d807 --hash=sha256:4376538f36b533b46f8971d3a3e63464f2c7905c9800db97361c43a2b14792ab --hash=sha256:4b583b97ab2e3efe1b3e75248a9b333bd3f8b0b1b8e5b45578e05e5850dfb2c2 --hash=sha256:4b6f236edf6e2f9ae8fcd1332da4e791c1b6ba0dc16a2dc94590ceccb482e546 --hash=sha256:4da86b6d62a496e908ac2898243920c7992499c1712ff7c2b6d837cc69d9467e --hash=sha256:50aa94fb1fb9a397eaa19c0d5ec15a5edd03a47bf1a3a6111a16b36e190cff65 --hash=sha256:567f5c155eda8df1d3d439d40a45a6a5f029b429b06648235f1e7e51b522b396 --hash=sha256:5a02d5a850e2979b0a014c412573953995174743a3f7fa4ea5a6e9a3c5617431 --hash=sha256:5e1e9802121405ede4b0133aa4340ad8186a1d2526de5b7c3eca519db7bb89fb --hash=sha256:5f33166f0dfcce728191f520bd2692914ec70fac2713f6bf3ce59c3deacb4699 --hash=sha256:606cc265adc9aaedcc84f1f064f0e8736bc45814f15a357e30fca7ecc01504e0 --hash=sha256:635adb9a4507c9fd2ed65f39693fa31c9a3ee3a8e6dc64df033e8fdf52a7003f --hash=sha256:65646bb0359386e07639c367a22cf9b5bf6304e8630b565d0626e2bdf329227a --hash=sha256:67f8c5cbcd3deb7a60b3345dffc89a961a484ed0af1f6f73de91705cc6e31235 --hash=sha256:69212fbccdbd5b0e39eac4067e20a4a5256609e209547d86f740d68ad4f04911 --hash=sha256:6b8b09c1fad947c84bbbc95eca841350fad9cbfa5a2d7ca88ac9f8d836c92e23 --hash=sha256:6be8ed3039ae7f7ac5ce058c308484787c86e8437e72b30bf5e88b8ea10f3c87 --hash=sha256:6e16e07d85ca0cf8bafe5f5d23a0b850064e8e945d5677492b06bbe6f09cc699 --hash=sha256:736f227fb490f03c6488f9b6d45855f8e0fd749c007f9303ad30efab0e73c05a --hash=sha256:73ab1601f84dc804f7812dc297e93cd99381162da39c47040a827d4e8dafe63b --hash=sha256:77eb4c747061a6af8d0f7bdb31f1e108d172762ef579166ec84542f711d90256 --hash=sha256:78a384e49f46b80fb4c901d52d92abe098e78768ed829c673fbb53c498bef73a --hash=sha256:7bb3b9ddb87ef7725056572368040c32775036472d5a033679d1fa6c8dc08417 --hash=sha256:7ea7c6c9d0d286d04ed3541747e6597cbe4971f22648b68248f7ddcd329207f0 --hash=sha256:7fe650342addd8524ca63d77b2362b02345e5f1a093266787d210c70a50b471a --hash=sha256:813922f35bd800dca9994c5971883cbc0d291128a5de6b167c7aa697fcf59360 --hash=sha256:83082a57783239717ceb0ad584de3c69cf581b2a95ed6bf81ea66034f00401c0 --hash=sha256:8421e088bc051361b01c4b3a50fd39a4b9133079a2229978d9d30511fd05231b --hash=sha256:86b0e7308289ddde73d863b7683f596d8d21c7d8664ce1dee061d0bcf3fbb4bb --hash=sha256:88127d40df529336a9836870436fc2751c339fbaed3a836d42c93f3e4bd1d0a2 --hash=sha256:8fb190658865565c549b6b4706856d6a7b09302c797eb2cf8e7fe9dabb043f0d --hash=sha256:912e6ebc7a6e4adfdbb1aec371ad04c68854cd3bf3608b3514e7ff9062931d8a --hash=sha256:925a1edf3d810537c5a3abe78ec5530160c5f9a26b1f4270b40e62cc79304a1e --hash=sha256:93c1b03552081b2a4423091d6fb3787265b8f86af404cff98d1b5342713bdd69 --hash=sha256:972b9e3a4094b053a4e46832b4bc829fc8a8d347160eb39d03f1690316a99c14 --hash=sha256:981a651f543f2854abd3b5fcb3263aac581b18209be49863ba575de6edf4c14d --hash=sha256:99e4aa63097ab1118e75a848a28e40d68b08a5e19ce587891ab7fd04475e780f --hash=sha256:9fa6e4dd51fe15d8738708a973470f67a855ca50002294852e9571cdbd9433f2 --hash=sha256:a0ec07fd264d0745ee396b666d47cef20875f4ff2375d7c4f58235886cc1ef0c --hash=sha256:a2d9a3b260cc1d1dbdb1c582e63ddcf5363426a1a68faa0f5da28d8ee3c722a0 --hash=sha256:a3cc8638b2480865eaa3926d192e64ce6c51e3d29c849e09d5b4ad95efae5399 --hash=sha256:a609f9c93113be646f44c2a0256d6ea375ad047005d7f57a5c15f614dc1b2f59 --hash=sha256:a62c6ef0d50e6de320c270ff91d9dd0a05e7250cac2a800b7784bae474506e63 --hash=sha256:a6442c59a8ac8b85812ce33bc4d05bde3fb22321fa8294e2a5b487c3505f611b --hash=sha256:a7b55a944a7f43892e28ad4bc0561dfd5f0d73e605d1aa5c3c976b52aea121d2 --hash=sha256:a8b6f03672aa6734e700bbcd65ff050fd19cddfec4b031cc8cf1c6967de5a68e --hash=sha256:affef7c76a9ef259187ef31599a9260330e0335a3011732c4b9effa01e1cd6e0 --hash=sha256:b06f260b16ead11643a5a9f955bd4b5fd76c1a4c6796aeade8520095b75de520 --hash=sha256:b1c81d0e5e160651879755c9c675b974276f135558cf4ba79fee7b8413a515df --hash=sha256:b281d5eca50189325cfe1f365fafade89b14b4a78d9b40b05ddd1fc7d2a10a9c --hash=sha256:b51dcd060f18c19290d9b8a9dd1e0181538df2ce0717f562fff6cf74d9fc0b5b --hash=sha256:b7b8288eb7cdd268b0304632da8cb0bb93fadcfec2fe5712f7b9cc8f4d487be2 --hash=sha256:b9be91986841a75042b3e3243d0b3cb0b2434252b977baaf0cd56e960fe1e46f --hash=sha256:ba58bbcd1b72f136080c0bccc2400d66cc6115f3f906c499013d065ac33a4b61 --hash=sha256:bb45474711ba385c46a0bfe696c695a929ae69ac636cda8f532be9e8c93d720a --hash=sha256:bc01f57ca26269c2c706e838f6422e2a8788e41b3e3c65e2f41148212e57cd59 --hash=sha256:bc91b314cef27742da486d6839b677b3f2793dfe52b51bbbb7cf736d5c29281c --hash=sha256:bda5e34f8a75721c96085903c6f2197dc398c20ffd98df33f866a9c8fd95f4bf --hash=sha256:c134869d5ffe34547d14e174c866fd8fe2254918cc0a95e99052903bc1543e07 --hash=sha256:c41e71c9cfb854789dee6fc51e46743a6d138b1803fab6cb860af43265b42ea6 --hash=sha256:c4e16bd7761c5e454f4efd36f345286d6f7c5fa111623c355691e2755cae3b9e --hash=sha256:c7315339eae3b24c2d2fa1ed7d7a38654cba34a13ef19fbcb9425da46d3dc594 --hash=sha256:c79124f70465a150e89340de5963f936ee97097d2ef76c869708c4248c63ca49 --hash=sha256:cac0fdca17b036af3881a9d2729a850b76553f3f716ccb0360ad4dbc06b3b843 --hash=sha256:cc87dd1b6eaf0b848eebb1c86469b9f72a1891cb42ac7adcfbce75eadb13dd14 --hash=sha256:cce2109b6219f22ece99db7644b9622f54a4e915dad65660ec435e89a3ea7cc3 --hash=sha256:d41213ea25a86f69efd1575073d34ea11aabe075604ddf3d148ecfec9e1e96a1 --hash=sha256:dc7c389dce432500273eaf48f410b37886be9208b2dd5710aaf7c57fd442c698 --hash=sha256:dd5e856ebb7bfb7672b0086846db5afb4567a7b9714b8a0ebafd211ec7ce6a15 --hash=sha256:e1ed71194ef6dea7ed2d5cb5f7243d4bcd334bfb63e59878519be558078f848d --hash=sha256:e201e015644e207139f7e2351980feb7040e6f4b2c2978892f3e3789d1c125e5 --hash=sha256:e28299d9f2e889e6d51b1f043f58d5f997c373cc12e6403b90df95b8b047c13e --hash=sha256:f3c887f96407cea3916294046fc7dab611c2552beadbed4ea901cbc6a40cc7a0 --hash=sha256:f49a05acd3dfe1ce9715b657e28d138578bc40126760efb962322c56e9ca344b --hash=sha256:f4ab143ab113be368a3e9b795f9cd7906c5ef407d6173fe9675a902e1fffc239 --hash=sha256:f51328ffe987aecf6d09f3cd9d979face89a617eacdaea43e7b3080777f647ba --hash=sha256:f57b2a3c8353d3e04acf75b3fed57ba41f5c0646bbf1d10c7c282291c97936b4 --hash=sha256:f7941f6f2fe6dd6807a1208737b8a0cbcf1cc6d7b07d24998ad2d63590868260 --hash=sha256:fc04cc7a3db33664e0c2d10eb8990ff6b3536f6842c9590ae8da4c614b9ed05a --hash=sha256:fff7b9c3f19957020cac546c70025331113d2e61537f6e2441bc7657913de7d3 +coverage == 7.13.3 --hash=sha256:00d34b29a59d2076e6f318b30a00a69bf63687e30cd882984ed444e753990cc1 --hash=sha256:00dd3f02de6d5f5c9c3d95e3e036c3c2e2a669f8bf2d3ceb92505c4ce7838f67 --hash=sha256:01119735c690786b6966a1e9f098da4cd7ca9174c4cfe076d04e653105488395 --hash=sha256:03a6e5e1e50819d6d7436f5bc40c92ded7e484e400716886ac921e35c133149d --hash=sha256:05dd25b21afffe545e808265897c35f32d3e4437663923e0d256d9ab5031fb14 --hash=sha256:06d316dbb3d9fd44cca05b2dbcfbef22948493d63a1f28e828d43e6cc505fed8 --hash=sha256:06e49c5897cb12e3f7ecdc111d44e97c4f6d0557b81a7a0204ed70a8b038f86f --hash=sha256:0b4f345f7265cdbdb5ec2521ffff15fa49de6d6c39abf89fc7ad68aa9e3a55f0 --hash=sha256:0c2be202a83dde768937a61cdc5d06bf9fb204048ca199d93479488e6247656c --hash=sha256:0f45e32ef383ce56e0ca099b2e02fcdf7950be4b1b56afaab27b4ad790befe5b --hash=sha256:123ceaf2b9d8c614f01110f908a341e05b1b305d6b2ada98763b9a5a59756051 --hash=sha256:16d23d6579cf80a474ad160ca14d8b319abaa6db62759d6eef53b2fc979b58c8 --hash=sha256:2213a8d88ed35459bda71597599d4eec7c2ebad201c88f0bfc2c26fd9b0dd2ea --hash=sha256:24db3959de8ee394eeeca89ccb8ba25305c2da9a668dd44173394cbd5aa0777f --hash=sha256:284e06eadfe15ddfee2f4ee56631f164ef897a7d7d5a15bca5f0bb88889fc5ba --hash=sha256:299d66e9218193f9dc6e4880629ed7c4cd23486005166247c283fb98531656c3 --hash=sha256:2d098709621d0819039f3f1e471ee554f55a0b2ac0d816883c765b14129b5627 --hash=sha256:2f5e731627a3d5ef11a2a35aa0c6f7c435867c7ccbc391268eb4f2ca5dbdcc10 --hash=sha256:303d38b19626c1981e1bb067a9928236d88eb0e4479b18a74812f05a82071508 --hash=sha256:318002f1fd819bdc1651c619268aa5bc853c35fa5cc6d1e8c96bd9cd6c828b75 --hash=sha256:318b2e4753cbf611061e01b6cc81477e1cdfeb69c36c4a14e6595e674caadb56 --hash=sha256:31b6e889c53d4e6687ca63706148049494aace140cffece1c4dc6acadb70a7b3 --hash=sha256:343aaeb5f8bb7bcd38620fd7bc56e6ee8207847d8c6103a1e7b72322d381ba4a --hash=sha256:3d1aed4f4e837a832df2f3b4f68a690eede0de4560a2dbc214ea0bc55aabcdb4 --hash=sha256:3f379b02c18a64de78c4ccdddf1c81c2c5ae1956c72dacb9133d7dd7809794ab --hash=sha256:44f14a62f5da2e9aedf9080e01d2cda61df39197d48e323538ec037336d68da8 --hash=sha256:46d29926349b5c4f1ea4fca95e8c892835515f3600995a383fa9a923b5739ea4 --hash=sha256:51c4c42c0e7d09a822b08b6cf79b3c4db8333fffde7450da946719ba0d45730f --hash=sha256:53be4aab8ddef18beb6188f3a3fdbf4d1af2277d098d4e618be3a8e6c88e74be --hash=sha256:562136b0d401992118d9b49fbee5454e16f95f85b120a4226a04d816e33fe024 --hash=sha256:5907605ee20e126eeee2abe14aae137043c2c8af2fa9b38d2ab3b7a6b8137f73 --hash=sha256:59224bfb2e9b37c1335ae35d00daa3a5b4e0b1a20f530be208fff1ecfa436f43 --hash=sha256:5b1ad2e0dc672625c44bc4fe34514602a9fd8b10d52ddc414dc585f74453516c --hash=sha256:5badd7e596e6b0c89aa8ec6d37f4473e4357f982ce57f9a2942b0221cd9cf60c --hash=sha256:5d67b9ed6f7b5527b209b24b3df9f2e5bf0198c1bbf99c6971b0e2dcb7e2a107 --hash=sha256:65436cde5ecabe26fb2f0bf598962f0a054d3f23ad529361326ac002c61a2a1e --hash=sha256:6ed2e787249b922a93cd95c671cc9f4c9797a106e81b455c83a9ddb9d34590c0 --hash=sha256:71295f2d1d170b9977dc386d46a7a1b7cbb30e5405492529b4c930113a33f895 --hash=sha256:75b3c0300f3fa15809bd62d9ca8b170eb21fcf0100eb4b4154d6dc8b3a5bbd43 --hash=sha256:79f2670c7e772f4917895c3d89aad59e01f3dbe68a4ed2d0373b431fad1dcfba --hash=sha256:7a482f2da9086971efb12daca1d6547007ede3674ea06e16d7663414445c683e --hash=sha256:7bbb5aa9016c4c29e3432e087aa29ebee3f8fda089cfbfb4e6d64bd292dcd1c2 --hash=sha256:7df8759ee57b9f3f7b66799b7660c282f4375bef620ade1686d6a7b03699e75f --hash=sha256:824bb95cd71604031ae9a48edb91fd6effde669522f960375668ed21b36e3ec4 --hash=sha256:853c3d3c79ff0db65797aad79dee6be020efd218ac4510f15a205f1e8d13ce25 --hash=sha256:87ff33b652b3556b05e204ae20793d1f872161b0fa5ec8a9ac76f8430e152ed6 --hash=sha256:8bb09e83c603f152d855f666d70a71765ca8e67332e5829e62cb9466c176af23 --hash=sha256:8f1010029a5b52dc427c8e2a8dbddb2303ddd180b806687d1acd1bb1d06649e7 --hash=sha256:8f2adf4bcffbbec41f366f2e6dffb9d24e8172d16e91da5799c9b7ed6b5716e6 --hash=sha256:90a8af9dba6429b2573199622d72e0ebf024d6276f16abce394ad4d181bb0910 --hash=sha256:94d2ac94bd0cc57c5626f52f8c2fffed1444b5ae8c9fc68320306cc2b255e155 --hash=sha256:96c3be8bae9d0333e403cc1a8eb078a7f928b5650bae94a18fb4820cc993fb9b --hash=sha256:989aa158c0eb19d83c76c26f4ba00dbb272485c56e452010a3450bdbc9daafd9 --hash=sha256:99fee45adbb1caeb914da16f70e557fb7ff6ddc9e4b14de665bd41af631367ef --hash=sha256:9db3a3285d91c0b70fab9f39f0a4aa37d375873677efe4e71e58d8321e8c5d39 --hash=sha256:9f9efbbaf79f935d5fbe3ad814825cbce4f6cdb3054384cb49f0c0f496125fa0 --hash=sha256:a2f7589c6132c44c53f6e705e1a6677e2b7821378c22f7703b2cf5388d0d4587 --hash=sha256:a88705500988c8acad8b8fd86c2a933d3aa96bec1ddc4bc5cb256360db7bbd00 --hash=sha256:ab6d72bffac9deb6e6cb0f61042e748de3f9f8e98afb0375a8e64b0b6e11746b --hash=sha256:ae9306b5299e31e31e0d3b908c66bcb6e7e3ddca143dea0266e9ce6c667346d3 --hash=sha256:b2182129f4c101272ff5f2f18038d7b698db1bf8e7aa9e615cb48440899ad32e --hash=sha256:b2beb64c145593a50d90db5c7178f55daeae129123b0d265bdb3cbec83e5194a --hash=sha256:b607a40cba795cfac6d130220d25962931ce101f2f478a29822b19755377fb34 --hash=sha256:be14d0622125edef21b3a4d8cd2d138c4872bf6e38adc90fd92385e3312f406a --hash=sha256:bfeee64ad8b4aae3233abb77eb6b52b51b05fa89da9645518671b9939a78732b --hash=sha256:c5e9787cec750793a19a28df7edd85ac4e49d3fb91721afcdc3b86f6c08d9aa8 --hash=sha256:c672d4e2f0575a4ca2bf2aa0c5ced5188220ab806c1bb6d7179f70a11a017222 --hash=sha256:c6f6169bbdbdb85aab8ac0392d776948907267fcc91deeacf6f9d55f7a83ae3b --hash=sha256:ca46e5c3be3b195098dd88711890b8011a9fa4feca942292bb84714ce5eab5d3 --hash=sha256:cc7fd0f726795420f3678ac82ff882c7fc33770bd0074463b5aef7293285ace9 --hash=sha256:cd5dee4fd7659d8306ffa79eeaaafd91fa30a302dac3af723b9b469e549247e0 --hash=sha256:d1a049b5c51b3b679928dd35e47c4a2235e0b6128b479a7596d0ef5b42fa6301 --hash=sha256:d358dc408edc28730aed5477a69338e444e62fba0b7e9e4a131c505fadad691e --hash=sha256:d3a16d6398666510a6886f67f43d9537bfd0e13aca299688a19daa84f543122f --hash=sha256:d401f0864a1d3198422816878e4e84ca89ec1c1bf166ecc0ae01380a39b888cd --hash=sha256:d6f4a21328ea49d38565b55599e1c02834e76583a6953e5586d65cb1efebd8f8 --hash=sha256:db83b77f97129813dbd463a67e5335adc6a6a91db652cc085d60c2d512746f96 --hash=sha256:debf29e0b157769843dff0981cc76f79e0ed04e36bb773c6cac5f6029054bd8a --hash=sha256:dfb428e41377e6b9ba1b0a32df6db5409cb089a0ed1d0a672dc4953ec110d84f --hash=sha256:e129328ad1258e49cae0123a3b5fcb93d6c2fa90d540f0b4c7cdcdc019aaa3dc --hash=sha256:e5b86db331c682fd0e4be7098e6acee5e8a293f824d41487c667a93705d415ca --hash=sha256:ed48b4170caa2c4420e0cd27dc977caaffc7eecc317355751df8373dddcef595 --hash=sha256:edc7754932682d52cf6e7a71806e529ecd5ce660e630e8bd1d37109a2e5f63ba --hash=sha256:f45c9bcb16bee25a798ccba8a2f6a1251b19de6a0d617bb365d7d2f386c4e20e --hash=sha256:f75695e157c83d374f88dcc646a60cb94173304a9258b2e74ba5a66b7614a51a --hash=sha256:f7f153d0184d45f3873b3ad3ad22694fd73aadcb8cdbc4337ab4b41ea6b4dff1 --hash=sha256:f7f6182d3dfb8802c1747eacbfe611b669455b69b7c037484bb1efbbb56711ac --hash=sha256:f9bada7bc660d20b23d7d312ebe29e927b655cf414dadcdb6335a2075695bd86 --hash=sha256:fae6a21537519c2af00245e834e5bf2884699cc7c1055738fd0f9dc37a3644ad --hash=sha256:fb25061a66802df9fc13a9ba1967d25faa4dae0418db469264fd9860a921dde4 --hash=sha256:fc970575799a9d17d5c3fafd83a0f6ccf5d5117cdc9ad6fbd791e9ead82418b0 --hash=sha256:fcda51c918c7a13ad93b5f89a58d56e3a072c9e0ba5c231b0ed81404bf2648fb security == 1.3.1 --hash=sha256:7ec0853c74c7dd22a9967bda087db5d4a7df58253574e60ec475c660f839da6d +pytokens == 0.4.1 --hash=sha256:0fc71786e629cef478cbf29d7ea1923299181d0699dbe7c3c0f4a583811d9fc1 --hash=sha256:11edda0942da80ff58c4408407616a310adecae1ddd22eef8c692fe266fa5009 --hash=sha256:140709331e846b728475786df8aeb27d24f48cbcf7bcd449f8de75cae7a45083 --hash=sha256:24afde1f53d95348b5a0eb19488661147285ca4dd7ed752bbc3e1c6242a304d1 --hash=sha256:26cef14744a8385f35d0e095dc8b3a7583f6c953c2e3d269c7f82484bf5ad2de --hash=sha256:27b83ad28825978742beef057bfe406ad6ed524b2d28c252c5de7b4a6dd48fa2 --hash=sha256:292052fe80923aae2260c073f822ceba21f3872ced9a68bb7953b348e561179a --hash=sha256:29d1d8fb1030af4d231789959f21821ab6325e463f0503a61d204343c9b355d1 --hash=sha256:2a44ed93ea23415c54f3face3b65ef2b844d96aeb3455b8a69b3df6beab6acc5 --hash=sha256:30f51edd9bb7f85c748979384165601d028b84f7bd13fe14d3e065304093916a --hash=sha256:34bcc734bd2f2d5fe3b34e7b3c0116bfb2397f2d9666139988e7a3eb5f7400e3 --hash=sha256:3ad72b851e781478366288743198101e5eb34a414f1d5627cdd585ca3b25f1db --hash=sha256:3f901fe783e06e48e8cbdc82d631fca8f118333798193e026a50ce1b3757ea68 --hash=sha256:42f144f3aafa5d92bad964d471a581651e28b24434d184871bd02e3a0d956037 --hash=sha256:4a14d5f5fc78ce85e426aa159489e2d5961acf0e47575e08f35584009178e321 --hash=sha256:4a58d057208cb9075c144950d789511220b07636dd2e4708d5645d24de666bdc --hash=sha256:4e691d7f5186bd2842c14813f79f8884bb03f5995f0575272009982c5ac6c0f7 --hash=sha256:5502408cab1cb18e128570f8d598981c68a50d0cbd7c61312a90507cd3a1276f --hash=sha256:584c80c24b078eec1e227079d56dc22ff755e0ba8654d8383b2c549107528918 --hash=sha256:5ad948d085ed6c16413eb5fec6b3e02fa00dc29a2534f088d3302c47eb59adf9 --hash=sha256:670d286910b531c7b7e3c0b453fd8156f250adb140146d234a82219459b9640c --hash=sha256:682fa37ff4d8e95f7df6fe6fe6a431e8ed8e788023c6bcc0f0880a12eab80ad1 --hash=sha256:6d6c4268598f762bc8e91f5dbf2ab2f61f7b95bdc07953b602db879b3c8c18e1 --hash=sha256:79fc6b8699564e1f9b521582c35435f1bd32dd06822322ec44afdeba666d8cb3 --hash=sha256:8bdb9d0ce90cbf99c525e75a2fa415144fd570a1ba987380190e8b786bc6ef9b --hash=sha256:8fcb9ba3709ff77e77f1c7022ff11d13553f3c30299a9fe246a166903e9091eb --hash=sha256:941d4343bf27b605e9213b26bfa1c4bf197c9c599a9627eb7305b0defcfe40c1 --hash=sha256:967cf6e3fd4adf7de8fc73cd3043754ae79c36475c1c11d514fc72cf5490094a --hash=sha256:970b08dd6b86058b6dc07efe9e98414f5102974716232d10f32ff39701e841c4 --hash=sha256:97f50fd18543be72da51dd505e2ed20d2228c74e0464e4262e4899797803d7fa --hash=sha256:9bd7d7f544d362576be74f9d5901a22f317efc20046efe2034dced238cbbfe78 --hash=sha256:add8bf86b71a5d9fb5b89f023a80b791e04fba57960aa790cc6125f7f1d39dfe --hash=sha256:b35d7e5ad269804f6697727702da3c517bb8a5228afa450ab0fa787732055fc9 --hash=sha256:b49750419d300e2b5a3813cf229d4e5a4c728dae470bcc89867a9ad6f25a722d --hash=sha256:d31b97b3de0f61571a124a00ffe9a81fb9939146c122c11060725bd5aea79975 --hash=sha256:d70e77c55ae8380c91c0c18dea05951482e263982911fc7410b1ffd1dadd3440 --hash=sha256:d9907d61f15bf7261d7e775bd5d7ee4d2930e04424bab1972591918497623a16 --hash=sha256:da5baeaf7116dced9c6bb76dc31ba04a2dc3695f3d9f74741d7910122b456edc --hash=sha256:dc74c035f9bfca0255c1af77ddd2d6ae8419012805453e4b0e7513e17904545d --hash=sha256:dcafc12c30dbaf1e2af0490978352e0c4041a7cde31f4f81435c2a5e8b9cabb6 --hash=sha256:ee44d0f85b803321710f9239f335aafe16553b39106384cef8e6de40cb4ef2f6 --hash=sha256:f66a6bbe741bd431f6d741e617e0f39ec7257ca1f89089593479347cc4d13324 +pygments == 2.19.2 --hash=sha256:636cb2477cec7f8952536970bc533bc43743542f70392ae026374600add5b887 --hash=sha256:86540386c03d588bb81d44bc3928634ff26449851e99741617ecb9037ee5ec0b diff --git a/requirements.txt b/requirements.txt index 0e691b241..2d6fec370 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,9 +1,10 @@ -packaging == 25.0 --hash=sha256:29572ef2b1f17581046b3a2227d5c611fb25ec70ca1ba8554b24b0e69331a484 --hash=sha256:d443872c98d677bf60f6a1f2f8c1cb748e8fe762d2bf9d3148b5599295b0fc4f -pipenv == 2025.1.1 --hash=sha256:c309b5fba6535aca22fd66d3dfcf2d3ca1dd0cae12de52cabecbdddfbfe48938 --hash=sha256:f5acaa089282e93faa24a395a7ecba63d20ca1f477f41aed8261563b7e8f32fb -virtualenv == 20.35.1 --hash=sha256:041dac43b6899858a91838b616599e80000e545dee01a21172a6a46746472cb2 --hash=sha256:1d9d93cd01d35b785476e2fa7af711a98d40d227a078941695bbae394f8737e2 +packaging == 26.0 --hash=sha256:00243ae351a257117b6a241061796684b084ed1c516a08c48a3f7e147a9d80b4 +virtualenv == 20.36.1 --hash=sha256:8befb5c81842c641f8ee658481e42641c68b5eab3521d8e092d18320902466ba virtualenv-clone == 0.5.7 --hash=sha256:44d5263bceed0bac3e1424d64f798095233b64def1c5689afa43dc3223caf5b0 -certifi == 2025.8.3 --hash=sha256:e564105f78ded564e3ae7c923924435e1daa7463faeab5bb932bc53ffae63407 --hash=sha256:f6c12493cfb1b06ba2ff328595af9350c65d6644968e5d3a2ffd78699af217a5 -setuptools == 80.9.0 --hash=sha256:062d34222ad13e0cc312a4c02d73f059e86a4acbfbdea8f8f76b28c99f306922 --hash=sha256:f36b47402ecde768dbfafc46e8e4207b4360c654f1f3bb84475f0a28628fb19c -platformdirs == 4.5.1 --hash=sha256:61d5cdcc6065745cdd94f0f878977f8de9437be93de97c1c12f853c9c0cdcbda --hash=sha256:d03afa3963c806a9bed9d5125c8f4cb2fdaf74a55ab60e5d59b3fde758104d31 -filelock == 3.19.1 --hash=sha256:66eda1888b0171c998b35be2bcc0f6d75c388a7ce20c3f3f37aa8e96c2dddf58 --hash=sha256:d38e30481def20772f5baf097c122c3babc4fcdb7e14e57049eb9d88c6dc017d -distlib == 0.4.0 --hash=sha256:9659f7d87e46584a30b5780e43ac7a2143098441670ff0a49d5f9034c54a6c16 --hash=sha256:feec40075be03a04501a973d81f633735b4b69f98b05450592310c0f401a4e0d +certifi == 2026.1.4 --hash=sha256:ac726dd470482006e014ad384921ed6438c457018f4b3d204aea4281258b2120 +setuptools == 80.10.1 --hash=sha256:bf2e513eb8144c3298a3bd28ab1a5edb739131ec5c22e045ff93cd7f5319703a +platformdirs == 4.5.1 --hash=sha256:61d5cdcc6065745cdd94f0f878977f8de9437be93de97c1c12f853c9c0cdcbda +filelock == 3.20.3 --hash=sha256:18c57ee915c7ec61cff0ecf7f0f869936c7c30191bb0cf406f1341778d0834e1 +distlib == 0.4.0 --hash=sha256:feec40075be03a04501a973d81f633735b4b69f98b05450592310c0f401a4e0d +types-PyYAML == 6.0.12.20250915 --hash=sha256:e7d4d9e064e89a3b3cae120b4990cd370874d2bf12fa5f46c97018dd5d3c9ab6 --hash=sha256:bde01eed384f02555dde685fff1a1ac805c1c7dcb6dd019c916fe659b1c1f9ec +pipenv == 2026.0.3 --hash=sha256:9a39d13a41ed8e4368ad50620941191f357319c8ffb7df45875c7c5dc6604ff6 \ No newline at end of file From e1c9c668c9216ae72ab863e85c9794c9e1464d37 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 14:32:30 -0800 Subject: [PATCH 47/61] test: add IPHelper LiveView integration tests and window expiration test - Added proper LiveView integration tests for IPHelper with @tag peer_ip support - Implemented window expiration test using clear_ip() as suggested by maintainer - Updated ConnCase to support peer_data mocking via Plug.Conn.put_private (Started fresh to aviod complecations) Addresses maintainer feedback on PR #1998 --- .../test/copi/rate_limiter_test.exs | 13 ++-- .../test/copi_web/helpers/ip_helper_test.exs | 75 ++++++++++--------- copi.owasp.org/test/support/conn_case.ex | 17 ++++- 3 files changed, 62 insertions(+), 43 deletions(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 4b03bf548..652e86f10 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -127,13 +127,16 @@ defmodule Copi.RateLimiterTest do test "allows requests after window expires" do ip = "192.168.100.#{:rand.uniform(255)}" - # This test would require waiting for the window to expire - # In a real scenario, you might want to use a mock timer or - # make the window configurable for testing - + # Fill up to the limit assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - # Verify request was recorded + # Clear the IP data (simulates window expiration) + RateLimiter.clear_ip(ip) + + # Give the GenServer a moment to process the clear + Process.sleep(10) + + # Request should now be allowed again assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) end end diff --git a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs index 3d28664d9..ae12eb2aa 100644 --- a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs +++ b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs @@ -1,56 +1,57 @@ defmodule CopiWeb.Helpers.IPHelperTest do - use ExUnit.Case, async: true + use CopiWeb.ConnCase + import Phoenix.LiveViewTest - alias CopiWeb.Helpers.IPHelper + setup do + # Clear rate limiter for all test IPs to prevent rate limit errors + Copi.RateLimiter.clear_ip("127.0.0.1") + Copi.RateLimiter.clear_ip("192.168.1.100") + Copi.RateLimiter.clear_ip("10.0.0.1") + Copi.RateLimiter.clear_ip("172.16.254.1") + Copi.RateLimiter.clear_ip("2001:DB8:0:0:0:0:0:1") + :ok + end - describe "get_connect_ip/1" do - test "extracts IPv4 address from socket" do - # Test IPv4 formatting logic - peer_data = %{address: {192, 168, 1, 100}} - - {a, b, c, d} = peer_data.address - result = "#{a}.#{b}.#{c}.#{d}" + describe "get_connect_ip/1 with LiveView" do + @tag peer_ip: {192, 168, 1, 100} + test "extracts IPv4 address from socket during mount", %{conn: conn} do + {:ok, view, _html} = live(conn, "/games") - assert result == "192.168.1.100" + # Verify the IP was correctly extracted and stored + socket = :sys.get_state(view.pid).socket + assert socket.assigns.ip_address == "192.168.1.100" end - test "extracts IPv6 address from socket" do - # Test IPv6 formatting - peer_data = %{address: {8193, 3512, 0, 0, 0, 0, 0, 1}} + @tag peer_ip: {8193, 3512, 0, 0, 0, 0, 0, 1} + test "extracts IPv6 address from socket during mount", %{conn: conn} do + {:ok, view, _html} = live(conn, "/games") - {a, b, c, d, e, f, g, h} = peer_data.address - result = [a, b, c, d, e, f, g, h] - |> Enum.map(&Integer.to_string(&1, 16)) - |> Enum.join(":") - - assert result == "2001:DB8:0:0:0:0:0:1" + socket = :sys.get_state(view.pid).socket + assert socket.assigns.ip_address == "2001:DB8:0:0:0:0:0:1" end - test "formats IPv6 address with lowercase hex" do - # Test that hex formatting works correctly - peer_data = %{address: {0x2001, 0x0db8, 0x0000, 0x0000, 0x0000, 0x0000, 0x0000, 0x0001}} - - {a, b, c, d, e, f, g, h} = peer_data.address - result = [a, b, c, d, e, f, g, h] - |> Enum.map(&Integer.to_string(&1, 16)) - |> Enum.join(":") + @tag peer_ip: {127, 0, 0, 1} + test "handles localhost IPv4 address", %{conn: conn} do + {:ok, view, _html} = live(conn, "/games") - # Should be uppercase as Integer.to_string uses uppercase for hex - assert String.contains?(result, "2001") + socket = :sys.get_state(view.pid).socket + assert socket.assigns.ip_address == "127.0.0.1" end - test "handles different IPv4 addresses" do + test "handles different IPv4 addresses", %{conn: conn} do test_cases = [ - {127, 0, 0, 1} => "127.0.0.1", - {10, 0, 0, 1} => "10.0.0.1", - {172, 16, 254, 1} => "172.16.254.1", - {255, 255, 255, 255} => "255.255.255.255" + {{10, 0, 0, 1}, "10.0.0.1"}, + {{172, 16, 254, 1}, "172.16.254.1"} ] for {address, expected} <- test_cases do - {a, b, c, d} = address - result = "#{a}.#{b}.#{c}.#{d}" - assert result == expected + conn = Plug.Conn.put_private(conn, :plug_connect_info, %{peer_data: %{address: address, port: 12345, ssl_cert: nil}}) + {:ok, view, _html} = live(conn, "/games") + socket = :sys.get_state(view.pid).socket + assert socket.assigns.ip_address == expected + + # Clear for next iteration + Copi.RateLimiter.clear_ip(expected) end end end diff --git a/copi.owasp.org/test/support/conn_case.ex b/copi.owasp.org/test/support/conn_case.ex index 27384afd1..7972ab793 100644 --- a/copi.owasp.org/test/support/conn_case.ex +++ b/copi.owasp.org/test/support/conn_case.ex @@ -38,6 +38,21 @@ defmodule CopiWeb.ConnCase do Ecto.Adapters.SQL.Sandbox.mode(Copi.Repo, {:shared, self()}) end - {:ok, conn: Phoenix.ConnTest.build_conn()} + conn = Phoenix.ConnTest.build_conn() + + # Set peer data for LiveView tests using @tag peer_ip + conn = if tags[:peer_ip] do + Plug.Conn.put_private(conn, :plug_connect_info, %{ + peer_data: %{ + address: tags[:peer_ip], + port: 12345, + ssl_cert: nil + } + }) + else + conn + end + + {:ok, conn: conn} end end From 939ed1c7af69629d3fcc1e0175cd8f39e9bfc150 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 14:54:10 -0800 Subject: [PATCH 48/61] fix: resolve template and component bugs exposed by new tests - Fix index.html.heex accessing @games.changes when @games is a list The template was treating @games (a list from list_games()) as if it were a single Game changeset, causing 'key :changes not found' errors - Fix FormComponent missing ip_address assign LiveComponent doesn't automatically inherit parent assigns, so we now: 1. Pass ip_address explicitly when calling the component 2. Use Map.get with fallback to avoid crashes if not provided These bugs existed in the original implementation but were only exposed when the new IPHelper tests actually exercised these code paths. --- .../copi_web/live/game_live/index.html.heex | 23 +++++++++++-------- .../live/player_live/form_component.ex | 4 ++-- .../copi_web/live/player_live/index.html.heex | 1 + 3 files changed, 16 insertions(+), 12 deletions(-) diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex index 2c14274e1..52f3f8f35 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex @@ -12,13 +12,14 @@
- <%= if @games != nil && @games do %> + <%= if @games != nil && length(@games) > 0 do %> + <% game = hd(@games) %> <%= cond do %> - <% @games.changes.edition == "eop" -> %> + <% game.edition == "eop" -> %> <.header1 id="howtoplay">How to play Elevation of privilege - <% @games.changes.edition == "mlsec" -> %> + <% game.edition == "mlsec" -> %> <.header1 id="howtoplay">How to play Elevation of MLSec - <% @games.changes.edition == "cumulus" -> %> + <% game.edition == "cumulus" -> %> <.header1 id="howtoplay">How to play OWASP Cumulus <% true -> %> <.header1 id="howtoplay">How to play Cornucopia @@ -28,9 +29,10 @@ <.header2>Preparations
    - <%= if @games != nil && @games do %> + <%= if @games != nil && length(@games) > 0 do %> + <% game = hd(@games) %> <%= cond do %> - <% @games.changes.edition == "cumulus" -> %> + <% game.edition == "cumulus" -> %>
  1. In preparation for a game of OWASP Cumulus an architectural overview is generated. Ideally, this is in the form of a data flow diagram, but in the end every overview which is understood by the players is fine.
    2. <% true -> %>
  2. Identify an application or application process to review; this might be a concept, design or an actual implementation
    3. @@ -41,9 +43,10 @@
  3. Have some prizes to hand (gold stars, chocolate, pizza, beer, flowers, whatever you need)
-<%= if @games != nil && @games do %> +<%= if @games != nil && length(@games) > 0 do %> + <% game = hd(@games) %> <%= cond do %> - <% @games.changes.edition == "eop" -> %> + <% game.edition == "eop" -> %> <.header2>Play
  1. Create a game in Copi using the button below
    2. @@ -57,7 +60,7 @@
  2. To win the round the players have to vote. The highest card that is voted on by 2 or more players takes the trick and wins the round, but every card that gets 2 or more votes get a point.
  3. Make sure people take notes on the threats and that you discuss what can be done to mitigate against these threats. Create tasks in you Issue Tracker Software and/or threat model!
- <% @games.changes.edition == "cumulus" -> %> + <% game.edition == "cumulus" -> %> <.header2>Play
  1. Create a game in Copi using the button below
    2. @@ -74,7 +77,7 @@
  2. The player who wins the round, leads the next round (i.e., they play first), and thus define the next lead suit
  3. Make sure people take notes on the risks and that you discuss what can be done to mitigate against these risks. Create tasks in you Issue Tracker Software and/or threat model!
- <% @games.changes.edition == "mlsec" -> %> + <% game.edition == "mlsec" -> %> <.header2>Play
  1. Create a game in Copi using the button below
    2. diff --git a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex index fa40f77d2..6221ee67b 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex @@ -74,8 +74,8 @@ defmodule CopiWeb.PlayerLive.FormComponent do end defp save_player(socket, :new, player_params) do - # Get the IP address for rate limiting - ip_address = socket.assigns.ip_address + # Get the IP address for rate limiting from assigns (passed by parent) + ip_address = Map.get(socket.assigns, :ip_address, "127.0.0.1") # Check and record rate limit atomically case Copi.RateLimiter.check_and_record(ip_address, :player_creation) do diff --git a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex index f7e779148..1e3b814bd 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex @@ -6,6 +6,7 @@ action={@live_action} player={@player} patch={~p"/games/#{@game.id}"} + ip_address={@ip_address} /> From 5708985d8d324c58c2af5a8caba63dc15965f73e Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 15:13:03 -0800 Subject: [PATCH 49/61] fix: rewrite IPHelper tests to not depend on /games page - Removed LiveView integration tests that loaded /games - Changed to direct unit tests of IPHelper.get_connect_ip/1 - Tests now create Socket structs directly instead of mounting pages - Avoids depending on unrelated page templates or functionality This keeps my PR focused on rate limiting tests only without touching original application code files, . --- .../copi_web/live/game_live/index.html.heex | 23 +++--- .../live/player_live/form_component.ex | 4 +- .../copi_web/live/player_live/index.html.heex | 1 - .../test/copi_web/helpers/ip_helper_test.exs | 73 ++++++++++--------- 4 files changed, 51 insertions(+), 50 deletions(-) diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex index 52f3f8f35..2c14274e1 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex @@ -12,14 +12,13 @@
    - <%= if @games != nil && length(@games) > 0 do %> - <% game = hd(@games) %> + <%= if @games != nil && @games do %> <%= cond do %> - <% game.edition == "eop" -> %> + <% @games.changes.edition == "eop" -> %> <.header1 id="howtoplay">How to play Elevation of privilege - <% game.edition == "mlsec" -> %> + <% @games.changes.edition == "mlsec" -> %> <.header1 id="howtoplay">How to play Elevation of MLSec - <% game.edition == "cumulus" -> %> + <% @games.changes.edition == "cumulus" -> %> <.header1 id="howtoplay">How to play OWASP Cumulus <% true -> %> <.header1 id="howtoplay">How to play Cornucopia @@ -29,10 +28,9 @@ <.header2>Preparations
      - <%= if @games != nil && length(@games) > 0 do %> - <% game = hd(@games) %> + <%= if @games != nil && @games do %> <%= cond do %> - <% game.edition == "cumulus" -> %> + <% @games.changes.edition == "cumulus" -> %>
    1. In preparation for a game of OWASP Cumulus an architectural overview is generated. Ideally, this is in the form of a data flow diagram, but in the end every overview which is understood by the players is fine.
      2. <% true -> %>
    2. Identify an application or application process to review; this might be a concept, design or an actual implementation
      3. @@ -43,10 +41,9 @@
    3. Have some prizes to hand (gold stars, chocolate, pizza, beer, flowers, whatever you need)
    -<%= if @games != nil && length(@games) > 0 do %> - <% game = hd(@games) %> +<%= if @games != nil && @games do %> <%= cond do %> - <% game.edition == "eop" -> %> + <% @games.changes.edition == "eop" -> %> <.header2>Play
    1. Create a game in Copi using the button below
      2. @@ -60,7 +57,7 @@
    2. To win the round the players have to vote. The highest card that is voted on by 2 or more players takes the trick and wins the round, but every card that gets 2 or more votes get a point.
    3. Make sure people take notes on the threats and that you discuss what can be done to mitigate against these threats. Create tasks in you Issue Tracker Software and/or threat model!
    - <% game.edition == "cumulus" -> %> + <% @games.changes.edition == "cumulus" -> %> <.header2>Play
    1. Create a game in Copi using the button below
      2. @@ -77,7 +74,7 @@
    2. The player who wins the round, leads the next round (i.e., they play first), and thus define the next lead suit
    3. Make sure people take notes on the risks and that you discuss what can be done to mitigate against these risks. Create tasks in you Issue Tracker Software and/or threat model!
    - <% game.edition == "mlsec" -> %> + <% @games.changes.edition == "mlsec" -> %> <.header2>Play
    1. Create a game in Copi using the button below
      2. diff --git a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex index 6221ee67b..fa40f77d2 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex @@ -74,8 +74,8 @@ defmodule CopiWeb.PlayerLive.FormComponent do end defp save_player(socket, :new, player_params) do - # Get the IP address for rate limiting from assigns (passed by parent) - ip_address = Map.get(socket.assigns, :ip_address, "127.0.0.1") + # Get the IP address for rate limiting + ip_address = socket.assigns.ip_address # Check and record rate limit atomically case Copi.RateLimiter.check_and_record(ip_address, :player_creation) do diff --git a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex index 1e3b814bd..f7e779148 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex @@ -6,7 +6,6 @@ action={@live_action} player={@player} patch={~p"/games/#{@game.id}"} - ip_address={@ip_address} /> diff --git a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs index ae12eb2aa..b1780eb75 100644 --- a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs +++ b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs @@ -1,57 +1,62 @@ defmodule CopiWeb.Helpers.IPHelperTest do use CopiWeb.ConnCase import Phoenix.LiveViewTest + + alias Phoenix.LiveView.Socket - setup do - # Clear rate limiter for all test IPs to prevent rate limit errors - Copi.RateLimiter.clear_ip("127.0.0.1") - Copi.RateLimiter.clear_ip("192.168.1.100") - Copi.RateLimiter.clear_ip("10.0.0.1") - Copi.RateLimiter.clear_ip("172.16.254.1") - Copi.RateLimiter.clear_ip("2001:DB8:0:0:0:0:0:1") - :ok - end - - describe "get_connect_ip/1 with LiveView" do - @tag peer_ip: {192, 168, 1, 100} - test "extracts IPv4 address from socket during mount", %{conn: conn} do - {:ok, view, _html} = live(conn, "/games") + describe "get_connect_ip/1" do + test "extracts IPv4 address from socket" do + socket = %Socket{ + private: %{ + connect_info: %{ + peer_data: %{address: {192, 168, 1, 100}, port: 12345, ssl_cert: nil} + } + } + } - # Verify the IP was correctly extracted and stored - socket = :sys.get_state(view.pid).socket - assert socket.assigns.ip_address == "192.168.1.100" + assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == "192.168.1.100" end - @tag peer_ip: {8193, 3512, 0, 0, 0, 0, 0, 1} - test "extracts IPv6 address from socket during mount", %{conn: conn} do - {:ok, view, _html} = live(conn, "/games") + test "extracts IPv6 address from socket" do + socket = %Socket{ + private: %{ + connect_info: %{ + peer_data: %{address: {8193, 3512, 0, 0, 0, 0, 0, 1}, port: 12345, ssl_cert: nil} + } + } + } - socket = :sys.get_state(view.pid).socket - assert socket.assigns.ip_address == "2001:DB8:0:0:0:0:0:1" + assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == "2001:DB8:0:0:0:0:0:1" end - @tag peer_ip: {127, 0, 0, 1} - test "handles localhost IPv4 address", %{conn: conn} do - {:ok, view, _html} = live(conn, "/games") + test "handles localhost IPv4 address" do + socket = %Socket{ + private: %{ + connect_info: %{ + peer_data: %{address: {127, 0, 0, 1}, port: 12345, ssl_cert: nil} + } + } + } - socket = :sys.get_state(view.pid).socket - assert socket.assigns.ip_address == "127.0.0.1" + assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == "127.0.0.1" end - test "handles different IPv4 addresses", %{conn: conn} do + test "handles different IPv4 addresses" do test_cases = [ {{10, 0, 0, 1}, "10.0.0.1"}, {{172, 16, 254, 1}, "172.16.254.1"} ] for {address, expected} <- test_cases do - conn = Plug.Conn.put_private(conn, :plug_connect_info, %{peer_data: %{address: address, port: 12345, ssl_cert: nil}}) - {:ok, view, _html} = live(conn, "/games") - socket = :sys.get_state(view.pid).socket - assert socket.assigns.ip_address == expected + socket = %Socket{ + private: %{ + connect_info: %{ + peer_data: %{address: address, port: 12345, ssl_cert: nil} + } + } + } - # Clear for next iteration - Copi.RateLimiter.clear_ip(expected) + assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == expected end end end From e19273d8ada47623b479dd62c47a7c7337fba70d Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 15:52:56 -0800 Subject: [PATCH 50/61] fix: guard connected? before get_connect_ip and handle nil peer_data Root cause: get_connect_ip was called during disconnected mount (initial static HTML render) when peer_data is unavailable. Phoenix LiveView's get_connect_info/2 only returns real data during the connected (WebSocket) mount phase. Changes: - GameLive.Index: only call get_connect_ip and rate-limit inside connected? block - PlayerLive.Index: only call get_connect_ip inside connected? block - IPHelper: return fallback '127.0.0.1' instead of raising when peer_data is nil - CreateGameForm: use Map.get with fallback for ip_address assign - FormComponent: use Map.get with fallback for ip_address assign - Pass ip_address to both LiveComponents via template assigns - Add test for nil peer_data fallback behavior --- .../lib/copi_web/helpers/ip_helper.ex | 3 +- .../live/game_live/create_game_form.ex | 4 +- .../lib/copi_web/live/game_live/index.ex | 41 ++++++++++--------- .../copi_web/live/game_live/index.html.heex | 1 + .../live/player_live/form_component.ex | 4 +- .../lib/copi_web/live/player_live/index.ex | 8 +++- .../copi_web/live/player_live/index.html.heex | 1 + .../test/copi_web/helpers/ip_helper_test.exs | 10 +++++ 8 files changed, 47 insertions(+), 25 deletions(-) diff --git a/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex b/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex index c87f028b4..411e77dfe 100644 --- a/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex +++ b/copi.owasp.org/lib/copi_web/helpers/ip_helper.ex @@ -31,7 +31,8 @@ defmodule CopiWeb.Helpers.IPHelper do |> Enum.join(":") nil -> - raise "Unable to determine IP address from socket connection. peer_data is nil." + # peer_data not available (e.g., during disconnected mount or test environment) + "127.0.0.1" other -> raise "Unexpected peer_data format: #{inspect(other)}" diff --git a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex index f585ed85a..6968c34aa 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/create_game_form.ex @@ -107,8 +107,8 @@ defmodule CopiWeb.GameLive.CreateGameForm do end defp save_game(socket, :new, game_params) do - # Get the IP address for rate limiting - ip_address = socket.assigns.ip_address + # Get the IP address for rate limiting (passed from parent via assigns) + ip_address = Map.get(socket.assigns, :ip_address, "127.0.0.1") # Check and record rate limit atomically case Copi.RateLimiter.check_and_record(ip_address, :game_creation) do diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.ex b/copi.owasp.org/lib/copi_web/live/game_live/index.ex index 6fa924961..2fc61bafb 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.ex @@ -7,26 +7,29 @@ defmodule CopiWeb.GameLive.Index do @impl true def mount(_params, _session, socket) do - # Rate limit WebSocket connections - ip_address = CopiWeb.Helpers.IPHelper.get_connect_ip(socket) - - case Copi.RateLimiter.check_and_record(ip_address, :connection) do - {:ok, _remaining} -> - if connected?(socket) do - Phoenix.PubSub.subscribe(Copi.PubSub, "games") - end + if connected?(socket) do + # Rate limit WebSocket connections (only on connected mount) + ip_address = CopiWeb.Helpers.IPHelper.get_connect_ip(socket) + Phoenix.PubSub.subscribe(Copi.PubSub, "games") - {:ok, assign(socket, games: list_games(), ip_address: ip_address)} - - {:error, :rate_limited, retry_after} -> - {:ok, - socket - |> put_flash( - :error, - "Connection rate limit exceeded. Too many connections from your IP address. " <> - "Please try again in #{retry_after} seconds." - ) - |> assign(:games, nil)} + case Copi.RateLimiter.check_and_record(ip_address, :connection) do + {:ok, _remaining} -> + {:ok, assign(socket, games: list_games(), ip_address: ip_address)} + + {:error, :rate_limited, retry_after} -> + {:ok, + socket + |> put_flash( + :error, + "Connection rate limit exceeded. Too many connections from your IP address. " <> + "Please try again in #{retry_after} seconds." + ) + |> assign(games: nil, ip_address: ip_address)} + end + else + # Disconnected mount (initial static render) - no WebSocket yet + # Assign games: nil to match original behavior expected by templates + {:ok, assign(socket, games: nil, ip_address: "127.0.0.1")} end end diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex index 2c14274e1..4005bad28 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.html.heex @@ -6,6 +6,7 @@ action={@live_action} game={@game} patch={~p"/games"} + ip_address={@ip_address} />
    diff --git a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex index fa40f77d2..3c72f1ebb 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/form_component.ex @@ -74,8 +74,8 @@ defmodule CopiWeb.PlayerLive.FormComponent do end defp save_player(socket, :new, player_params) do - # Get the IP address for rate limiting - ip_address = socket.assigns.ip_address + # Get the IP address for rate limiting (passed from parent via assigns) + ip_address = Map.get(socket.assigns, :ip_address, "127.0.0.1") # Check and record rate limit atomically case Copi.RateLimiter.check_and_record(ip_address, :player_creation) do diff --git a/copi.owasp.org/lib/copi_web/live/player_live/index.ex b/copi.owasp.org/lib/copi_web/live/player_live/index.ex index 8f7308970..fc678e321 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/player_live/index.ex @@ -6,7 +6,13 @@ defmodule CopiWeb.PlayerLive.Index do @impl true def mount(%{"game_id" => game_id}, _session, socket) do - ip_address = CopiWeb.Helpers.IPHelper.get_connect_ip(socket) + ip_address = + if connected?(socket) do + CopiWeb.Helpers.IPHelper.get_connect_ip(socket) + else + "127.0.0.1" + end + {:ok, assign(socket, players: list_players(game_id), game: Cornucopia.get_game!(game_id), ip_address: ip_address)} end diff --git a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex index f7e779148..1e3b814bd 100644 --- a/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex +++ b/copi.owasp.org/lib/copi_web/live/player_live/index.html.heex @@ -6,6 +6,7 @@ action={@live_action} player={@player} patch={~p"/games/#{@game.id}"} + ip_address={@ip_address} /> diff --git a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs index b1780eb75..a3d110b38 100644 --- a/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs +++ b/copi.owasp.org/test/copi_web/helpers/ip_helper_test.exs @@ -59,5 +59,15 @@ defmodule CopiWeb.Helpers.IPHelperTest do assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == expected end end + + test "returns fallback IP when peer_data is nil" do + socket = %Socket{ + private: %{ + connect_info: %{peer_data: nil} + } + } + + assert CopiWeb.Helpers.IPHelper.get_connect_ip(socket) == "127.0.0.1" + end end end From 93b9ff59cd546926989164bd9fc6d58b459ad7d8 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 16:28:58 -0800 Subject: [PATCH 51/61] fix: assign games: nil in connected mount to match original template expectations --- copi.owasp.org/lib/copi_web/live/game_live/index.ex | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/lib/copi_web/live/game_live/index.ex b/copi.owasp.org/lib/copi_web/live/game_live/index.ex index 2fc61bafb..748b5ba89 100644 --- a/copi.owasp.org/lib/copi_web/live/game_live/index.ex +++ b/copi.owasp.org/lib/copi_web/live/game_live/index.ex @@ -14,7 +14,7 @@ defmodule CopiWeb.GameLive.Index do case Copi.RateLimiter.check_and_record(ip_address, :connection) do {:ok, _remaining} -> - {:ok, assign(socket, games: list_games(), ip_address: ip_address)} + {:ok, assign(socket, games: nil, ip_address: ip_address)} {:error, :rate_limited, retry_after} -> {:ok, From ee48918bfe2c41e203bb2863597f21ec2b9d3ee9 Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 06:48:04 +0545 Subject: [PATCH 52/61] Fix test database password configuration with fallback --- copi.owasp.org/config/test.exs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/copi.owasp.org/config/test.exs b/copi.owasp.org/config/test.exs index 5f146b191..5dbe72c99 100644 --- a/copi.owasp.org/config/test.exs +++ b/copi.owasp.org/config/test.exs @@ -7,7 +7,7 @@ import Config # Run `mix help test` for more information. config :copi, Copi.Repo, username: "postgres", - password: System.get_env("POSTGRES_TEST_PWD"), + password: System.get_env("POSTGRES_TEST_PWD") || "postgres", database: "copi_test#{System.get_env("MIX_TEST_PARTITION")}", hostname: "localhost", pool: Ecto.Adapters.SQL.Sandbox @@ -19,4 +19,4 @@ config :copi, CopiWeb.Endpoint, server: false # Print only warnings and errors during test -config :logger, level: :warning +config :logger, level: :warning \ No newline at end of file From 521f620a2d15534f67ed74a8148b9f73f1ba6024 Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 07:18:50 +0545 Subject: [PATCH 53/61] Update configuration for testing and rate limiting in test.exs --- copi.owasp.org/config/test.exs | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/copi.owasp.org/config/test.exs b/copi.owasp.org/config/test.exs index 5dbe72c99..9cc69d217 100644 --- a/copi.owasp.org/config/test.exs +++ b/copi.owasp.org/config/test.exs @@ -18,5 +18,11 @@ config :copi, CopiWeb.Endpoint, http: [port: 4002], server: false +# Configure rate limiter with very high limits for testing to prevent blocking test execution +config :copi, Copi.RateLimiter, + max_games_per_ip: 100_000, + max_players_per_ip: 100_000, + max_connections_per_ip: 100_000 + # Print only warnings and errors during test -config :logger, level: :warning \ No newline at end of file +config :logger, level: :warning From f9a7159787887ef05a3cadd0e1a462d461865f4c Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 07:35:02 +0545 Subject: [PATCH 54/61] Fix test database configuration after branch update From 38380400b39c124a56f91adc705f06ba62f2454b Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 07:54:18 +0545 Subject: [PATCH 55/61] Update rate limiter test to add setup blocks and improve coverage --- .../test/copi/rate_limiter_test.exs | 182 +----------------- 1 file changed, 1 insertion(+), 181 deletions(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 652e86f10..2bf8af8c0 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -1,181 +1 @@ -defmodule Copi.RateLimiterTest do - use ExUnit.Case, async: false - - alias Copi.RateLimiter - - setup do - # Tests run sequentially and use unique IPs to avoid conflicts - :ok - end - - describe "game creation rate limiting" do - test "allows requests under the limit" do - ip = "127.0.0.#{:rand.uniform(255)}" - - # First request should be allowed - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) - assert remaining >= 0 - - # Second request should still be allowed - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - - test "blocks requests over the limit" do - ip = "192.168.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Make max_requests number of game creations - for _i <- 1..max_games do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - - # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) - assert retry_after > 0 - end - - test "different IPs have independent limits" do - ip1 = "10.0.0.#{:rand.uniform(255)}" - ip2 = "10.0.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Exhaust limit for ip1 - for _i <- 1..max_games do - RateLimiter.check_and_record(ip1, :game_creation) - end - - # ip1 should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) - - # ip2 should still be allowed - assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) - end - end - - describe "connection rate limiting" do - test "allows connections under the limit" do - ip = "172.16.0.#{:rand.uniform(255)}" - - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) - assert remaining >= 0 - - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) - end - - test "blocks connections over the limit" do - ip = "172.16.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_connections = config.connection.max_requests - - # Make max_requests number of connections - for _i <- 1..max_connections do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) - end - - # Next connection should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) - assert retry_after > 0 - end - end - - describe "player creation rate limiting" do - test "allows player creation under the limit" do - ip = "192.168.2.#{:rand.uniform(255)}" - - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) - assert remaining >= 0 - - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - - test "blocks player creation over the limit" do - ip = "192.168.3.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_players = config.player_creation.max_requests - - # Make max_requests number of player creations - for _i <- 1..max_players do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - - # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) - assert retry_after > 0 - end - - test "player creation limit is separate from game creation limit" do - ip = "192.168.4.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Exhaust game creation limit - for _i <- 1..max_games do - RateLimiter.check_and_record(ip, :game_creation) - end - - # Game creation should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) - - # Player creation should still be allowed (separate limit) - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - end - - describe "rate limit window expiration" do - test "allows requests after window expires" do - ip = "192.168.100.#{:rand.uniform(255)}" - - # Fill up to the limit - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - - # Clear the IP data (simulates window expiration) - RateLimiter.clear_ip(ip) - - # Give the GenServer a moment to process the clear - Process.sleep(10) - - # Request should now be allowed again - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - end - - describe "configuration" do - test "returns current configuration" do - config = RateLimiter.get_config() - - assert is_map(config) - assert Map.has_key?(config, :game_creation) - assert Map.has_key?(config, :player_creation) - assert Map.has_key?(config, :connection) - - assert config.game_creation.max_requests > 0 - assert config.game_creation.window_seconds > 0 - - assert config.player_creation.max_requests > 0 - assert config.player_creation.window_seconds > 0 - - assert config.connection.max_requests > 0 - assert config.connection.window_seconds > 0 - end - end - - describe "IP clearing" do - test "clears rate limit data for an IP" do - ip = "10.20.30.40" - - # Record some actions - RateLimiter.record_action(ip, :game_creation) - RateLimiter.record_action(ip, :connection) - - # Clear the IP - RateLimiter.clear_ip(ip) - - # Should be able to make full limit of requests again - config = RateLimiter.get_config() - assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) - assert remaining == config.game_creation.max_requests - end - end -end +// This is a placeholder for the file content. Replace this with actual content from the file to retrieve. \ No newline at end of file From 7d18c63aaeace83c826ee3400687bf37ccca15a1 Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 07:59:30 +0545 Subject: [PATCH 56/61] Update rate_limiter_test.exs file --- .../owasp.org/test/copi/rate_limiter_test.exs | 204 ++++++++++++++++++ 1 file changed, 204 insertions(+) create mode 100644 copi/owasp.org/test/copi/rate_limiter_test.exs diff --git a/copi/owasp.org/test/copi/rate_limiter_test.exs b/copi/owasp.org/test/copi/rate_limiter_test.exs new file mode 100644 index 000000000..522519e2d --- /dev/null +++ b/copi/owasp.org/test/copi/rate_limiter_test.exs @@ -0,0 +1,204 @@ +defmodule Copi.RateLimiterTest do + use ExUnit.Case, async: false + + alias Copi.RateLimiter + + setup do + # Tests run sequentially and use unique IPs to avoid conflicts + :ok + end + + describe "game creation rate limiting" do + test "allows requests under the limit" do + ip = "127.0.0.#{:rand.uniform(255)}" + + # First request should be allowed + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) + assert remaining >= 0 + + # Second request should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + @tag timeout: :infinity + test "blocks requests over the limit" do + ip = "192.168.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Make max_requests number of game creations + for _i <- 1..max_games do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "different IPs have independent limits" do + ip1 = "10.0.0.#{:rand.uniform(255)}" + ip2 = "10.0.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust limit for ip1 + for _i <- 1..max_games do + RateLimiter.check_and_record(ip1, :game_creation) + end + + # ip1 should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) + + # ip2 should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) + end + end + + describe "connection rate limiting" do + test "allows connections under the limit" do + ip = "172.16.0.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + @tag timeout: :infinity + test "blocks connections over the limit" do + ip = "172.16.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_connections = config.connection.max_requests + + # Make max_requests number of connections + for _i <- 1..max_connections do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + # Next connection should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) + assert retry_after > 0 + end + end + + describe "player creation rate limiting" do + test "allows player creation under the limit" do + ip = "192.168.2.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + @tag timeout: :infinity + test "blocks player creation over the limit" do + ip = "192.168.3.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_players = config.player_creation.max_requests + + # Make max_requests number of player creations + for _i <- 1..max_players do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "player creation limit is separate from game creation limit" do + ip = "192.168.4.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust game creation limit + for _i <- 1..max_games do + RateLimiter.check_and_record(ip, :game_creation) + end + + # Game creation should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) + + # Player creation should still be allowed (separate limit) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + end + + describe "rate limit window expiration" do + test "allows requests after window expires" do + ip = "192.168.100.#{:rand.uniform(255)}" + + # Fill up to the limit + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + + # Clear the IP data (simulates window expiration) + RateLimiter.clear_ip(ip) + + # Give the GenServer a moment to process the clear + Process.sleep(10) + + # Request should now be allowed again + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + end + + describe "configuration" do + test "returns current configuration" do + config = RateLimiter.get_config() + + assert is_map(config) + assert Map.has_key?(config, :game_creation) + assert Map.has_key?(config, :player_creation) + assert Map.has_key?(config, :connection) + + assert config.game_creation.max_requests > 0 + assert config.game_creation.window_seconds > 0 + + assert config.player_creation.max_requests > 0 + assert config.player_creation.window_seconds > 0 + + assert config.connection.max_requests > 0 + assert config.connection.window_seconds > 0 + end + end + + describe "IP clearing" do + test "clears rate limit data for an IP" do + ip = "10.20.30.40" + + # Record some actions + RateLimiter.record_action(ip, :game_creation) + RateLimiter.record_action(ip, :connection) + + # Clear the IP + RateLimiter.clear_ip(ip) + + # Give time for async operation + Process.sleep(10) + + # Should be able to make full limit of requests again + config = RateLimiter.get_config() + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert remaining == config.game_creation.max_requests + end + end + + describe "cleanup mechanism" do + test "cleanup runs periodically" do + # This test verifies the cleanup handler exists and can be called + ip = "192.168.99.#{:rand.uniform(255)}" + + # Record an action + RateLimiter.record_action(ip, :game_creation) + + # Verify it was recorded + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + config = RateLimiter.get_config() + assert remaining < config.game_creation.max_requests + end + end +end \ No newline at end of file From b205daedd0ac49afb0f1d79d1f0ad23d9a2cc5d3 Mon Sep 17 00:00:00 2001 From: Aashish kharel Date: Sun, 8 Feb 2026 08:20:17 +0545 Subject: [PATCH 57/61] Update rate_limiter_test.exs with new tests for rate limiting --- test/copi/rate_limiter_test.exs | 204 ++++++++++++++++++++++++++++++++ 1 file changed, 204 insertions(+) create mode 100644 test/copi/rate_limiter_test.exs diff --git a/test/copi/rate_limiter_test.exs b/test/copi/rate_limiter_test.exs new file mode 100644 index 000000000..522519e2d --- /dev/null +++ b/test/copi/rate_limiter_test.exs @@ -0,0 +1,204 @@ +defmodule Copi.RateLimiterTest do + use ExUnit.Case, async: false + + alias Copi.RateLimiter + + setup do + # Tests run sequentially and use unique IPs to avoid conflicts + :ok + end + + describe "game creation rate limiting" do + test "allows requests under the limit" do + ip = "127.0.0.#{:rand.uniform(255)}" + + # First request should be allowed + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) + assert remaining >= 0 + + # Second request should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + @tag timeout: :infinity + test "blocks requests over the limit" do + ip = "192.168.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Make max_requests number of game creations + for _i <- 1..max_games do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "different IPs have independent limits" do + ip1 = "10.0.0.#{:rand.uniform(255)}" + ip2 = "10.0.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust limit for ip1 + for _i <- 1..max_games do + RateLimiter.check_and_record(ip1, :game_creation) + end + + # ip1 should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) + + # ip2 should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) + end + end + + describe "connection rate limiting" do + test "allows connections under the limit" do + ip = "172.16.0.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + @tag timeout: :infinity + test "blocks connections over the limit" do + ip = "172.16.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_connections = config.connection.max_requests + + # Make max_requests number of connections + for _i <- 1..max_connections do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + # Next connection should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) + assert retry_after > 0 + end + end + + describe "player creation rate limiting" do + test "allows player creation under the limit" do + ip = "192.168.2.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + @tag timeout: :infinity + test "blocks player creation over the limit" do + ip = "192.168.3.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_players = config.player_creation.max_requests + + # Make max_requests number of player creations + for _i <- 1..max_players do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "player creation limit is separate from game creation limit" do + ip = "192.168.4.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust game creation limit + for _i <- 1..max_games do + RateLimiter.check_and_record(ip, :game_creation) + end + + # Game creation should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) + + # Player creation should still be allowed (separate limit) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + end + + describe "rate limit window expiration" do + test "allows requests after window expires" do + ip = "192.168.100.#{:rand.uniform(255)}" + + # Fill up to the limit + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + + # Clear the IP data (simulates window expiration) + RateLimiter.clear_ip(ip) + + # Give the GenServer a moment to process the clear + Process.sleep(10) + + # Request should now be allowed again + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + end + + describe "configuration" do + test "returns current configuration" do + config = RateLimiter.get_config() + + assert is_map(config) + assert Map.has_key?(config, :game_creation) + assert Map.has_key?(config, :player_creation) + assert Map.has_key?(config, :connection) + + assert config.game_creation.max_requests > 0 + assert config.game_creation.window_seconds > 0 + + assert config.player_creation.max_requests > 0 + assert config.player_creation.window_seconds > 0 + + assert config.connection.max_requests > 0 + assert config.connection.window_seconds > 0 + end + end + + describe "IP clearing" do + test "clears rate limit data for an IP" do + ip = "10.20.30.40" + + # Record some actions + RateLimiter.record_action(ip, :game_creation) + RateLimiter.record_action(ip, :connection) + + # Clear the IP + RateLimiter.clear_ip(ip) + + # Give time for async operation + Process.sleep(10) + + # Should be able to make full limit of requests again + config = RateLimiter.get_config() + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert remaining == config.game_creation.max_requests + end + end + + describe "cleanup mechanism" do + test "cleanup runs periodically" do + # This test verifies the cleanup handler exists and can be called + ip = "192.168.99.#{:rand.uniform(255)}" + + # Record an action + RateLimiter.record_action(ip, :game_creation) + + # Verify it was recorded + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + config = RateLimiter.get_config() + assert remaining < config.game_creation.max_requests + end + end +end \ No newline at end of file From 77aa6928dc2c14c24b923e658e7fcfe9b1cc63d8 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 22:10:25 -0800 Subject: [PATCH 58/61] fix: restore rate_limiter_test.exs with correct content (removed placeholder comment) --- .../test/copi/rate_limiter_test.exs | 205 +++++++++++++++++- 1 file changed, 204 insertions(+), 1 deletion(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 2bf8af8c0..522519e2d 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -1 +1,204 @@ -// This is a placeholder for the file content. Replace this with actual content from the file to retrieve. \ No newline at end of file +defmodule Copi.RateLimiterTest do + use ExUnit.Case, async: false + + alias Copi.RateLimiter + + setup do + # Tests run sequentially and use unique IPs to avoid conflicts + :ok + end + + describe "game creation rate limiting" do + test "allows requests under the limit" do + ip = "127.0.0.#{:rand.uniform(255)}" + + # First request should be allowed + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) + assert remaining >= 0 + + # Second request should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + @tag timeout: :infinity + test "blocks requests over the limit" do + ip = "192.168.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Make max_requests number of game creations + for _i <- 1..max_games do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "different IPs have independent limits" do + ip1 = "10.0.0.#{:rand.uniform(255)}" + ip2 = "10.0.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust limit for ip1 + for _i <- 1..max_games do + RateLimiter.check_and_record(ip1, :game_creation) + end + + # ip1 should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) + + # ip2 should still be allowed + assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) + end + end + + describe "connection rate limiting" do + test "allows connections under the limit" do + ip = "172.16.0.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + @tag timeout: :infinity + test "blocks connections over the limit" do + ip = "172.16.1.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_connections = config.connection.max_requests + + # Make max_requests number of connections + for _i <- 1..max_connections do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) + end + + # Next connection should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) + assert retry_after > 0 + end + end + + describe "player creation rate limiting" do + test "allows player creation under the limit" do + ip = "192.168.2.#{:rand.uniform(255)}" + + assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) + assert remaining >= 0 + + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + @tag timeout: :infinity + test "blocks player creation over the limit" do + ip = "192.168.3.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_players = config.player_creation.max_requests + + # Make max_requests number of player creations + for _i <- 1..max_players do + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + + # Next request should be blocked + assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) + assert retry_after > 0 + end + + @tag timeout: :infinity + test "player creation limit is separate from game creation limit" do + ip = "192.168.4.#{:rand.uniform(255)}" + config = RateLimiter.get_config() + max_games = config.game_creation.max_requests + + # Exhaust game creation limit + for _i <- 1..max_games do + RateLimiter.check_and_record(ip, :game_creation) + end + + # Game creation should be blocked + assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) + + # Player creation should still be allowed (separate limit) + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) + end + end + + describe "rate limit window expiration" do + test "allows requests after window expires" do + ip = "192.168.100.#{:rand.uniform(255)}" + + # Fill up to the limit + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + + # Clear the IP data (simulates window expiration) + RateLimiter.clear_ip(ip) + + # Give the GenServer a moment to process the clear + Process.sleep(10) + + # Request should now be allowed again + assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) + end + end + + describe "configuration" do + test "returns current configuration" do + config = RateLimiter.get_config() + + assert is_map(config) + assert Map.has_key?(config, :game_creation) + assert Map.has_key?(config, :player_creation) + assert Map.has_key?(config, :connection) + + assert config.game_creation.max_requests > 0 + assert config.game_creation.window_seconds > 0 + + assert config.player_creation.max_requests > 0 + assert config.player_creation.window_seconds > 0 + + assert config.connection.max_requests > 0 + assert config.connection.window_seconds > 0 + end + end + + describe "IP clearing" do + test "clears rate limit data for an IP" do + ip = "10.20.30.40" + + # Record some actions + RateLimiter.record_action(ip, :game_creation) + RateLimiter.record_action(ip, :connection) + + # Clear the IP + RateLimiter.clear_ip(ip) + + # Give time for async operation + Process.sleep(10) + + # Should be able to make full limit of requests again + config = RateLimiter.get_config() + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + assert remaining == config.game_creation.max_requests + end + end + + describe "cleanup mechanism" do + test "cleanup runs periodically" do + # This test verifies the cleanup handler exists and can be called + ip = "192.168.99.#{:rand.uniform(255)}" + + # Record an action + RateLimiter.record_action(ip, :game_creation) + + # Verify it was recorded + assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) + config = RateLimiter.get_config() + assert remaining < config.game_creation.max_requests + end + end +end \ No newline at end of file From 9d6b86b2e06ce66ca37e523b3d2061268e1108f6 Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 22:53:01 -0800 Subject: [PATCH 59/61] fix: move rate_limiter_test.exs to correct location (copi.owasp.org/test/copi/) --- .../test/copi/rate_limiter_test.exs | 4 +- test/copi/rate_limiter_test.exs | 204 ------------------ 2 files changed, 2 insertions(+), 206 deletions(-) delete mode 100644 test/copi/rate_limiter_test.exs diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 522519e2d..674936444 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -1,4 +1,4 @@ -defmodule Copi.RateLimiterTest do +defmodule Copi.RateLimiterTest do use ExUnit.Case, async: false alias Copi.RateLimiter @@ -201,4 +201,4 @@ defmodule Copi.RateLimiterTest do assert remaining < config.game_creation.max_requests end end -end \ No newline at end of file +end diff --git a/test/copi/rate_limiter_test.exs b/test/copi/rate_limiter_test.exs deleted file mode 100644 index 522519e2d..000000000 --- a/test/copi/rate_limiter_test.exs +++ /dev/null @@ -1,204 +0,0 @@ -defmodule Copi.RateLimiterTest do - use ExUnit.Case, async: false - - alias Copi.RateLimiter - - setup do - # Tests run sequentially and use unique IPs to avoid conflicts - :ok - end - - describe "game creation rate limiting" do - test "allows requests under the limit" do - ip = "127.0.0.#{:rand.uniform(255)}" - - # First request should be allowed - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) - assert remaining >= 0 - - # Second request should still be allowed - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - - @tag timeout: :infinity - test "blocks requests over the limit" do - ip = "192.168.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Make max_requests number of game creations - for _i <- 1..max_games do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - - # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :game_creation) - assert retry_after > 0 - end - - @tag timeout: :infinity - test "different IPs have independent limits" do - ip1 = "10.0.0.#{:rand.uniform(255)}" - ip2 = "10.0.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Exhaust limit for ip1 - for _i <- 1..max_games do - RateLimiter.check_and_record(ip1, :game_creation) - end - - # ip1 should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip1, :game_creation) - - # ip2 should still be allowed - assert {:ok, _remaining} = RateLimiter.check_and_record(ip2, :game_creation) - end - end - - describe "connection rate limiting" do - test "allows connections under the limit" do - ip = "172.16.0.#{:rand.uniform(255)}" - - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) - assert remaining >= 0 - - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) - end - - @tag timeout: :infinity - test "blocks connections over the limit" do - ip = "172.16.1.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_connections = config.connection.max_requests - - # Make max_requests number of connections - for _i <- 1..max_connections do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) - end - - # Next connection should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :connection) - assert retry_after > 0 - end - end - - describe "player creation rate limiting" do - test "allows player creation under the limit" do - ip = "192.168.2.#{:rand.uniform(255)}" - - assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) - assert remaining >= 0 - - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - - @tag timeout: :infinity - test "blocks player creation over the limit" do - ip = "192.168.3.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_players = config.player_creation.max_requests - - # Make max_requests number of player creations - for _i <- 1..max_players do - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - - # Next request should be blocked - assert {:error, :rate_limited, retry_after} = RateLimiter.check_and_record(ip, :player_creation) - assert retry_after > 0 - end - - @tag timeout: :infinity - test "player creation limit is separate from game creation limit" do - ip = "192.168.4.#{:rand.uniform(255)}" - config = RateLimiter.get_config() - max_games = config.game_creation.max_requests - - # Exhaust game creation limit - for _i <- 1..max_games do - RateLimiter.check_and_record(ip, :game_creation) - end - - # Game creation should be blocked - assert {:error, :rate_limited, _} = RateLimiter.check_and_record(ip, :game_creation) - - # Player creation should still be allowed (separate limit) - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) - end - end - - describe "rate limit window expiration" do - test "allows requests after window expires" do - ip = "192.168.100.#{:rand.uniform(255)}" - - # Fill up to the limit - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - - # Clear the IP data (simulates window expiration) - RateLimiter.clear_ip(ip) - - # Give the GenServer a moment to process the clear - Process.sleep(10) - - # Request should now be allowed again - assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) - end - end - - describe "configuration" do - test "returns current configuration" do - config = RateLimiter.get_config() - - assert is_map(config) - assert Map.has_key?(config, :game_creation) - assert Map.has_key?(config, :player_creation) - assert Map.has_key?(config, :connection) - - assert config.game_creation.max_requests > 0 - assert config.game_creation.window_seconds > 0 - - assert config.player_creation.max_requests > 0 - assert config.player_creation.window_seconds > 0 - - assert config.connection.max_requests > 0 - assert config.connection.window_seconds > 0 - end - end - - describe "IP clearing" do - test "clears rate limit data for an IP" do - ip = "10.20.30.40" - - # Record some actions - RateLimiter.record_action(ip, :game_creation) - RateLimiter.record_action(ip, :connection) - - # Clear the IP - RateLimiter.clear_ip(ip) - - # Give time for async operation - Process.sleep(10) - - # Should be able to make full limit of requests again - config = RateLimiter.get_config() - assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) - assert remaining == config.game_creation.max_requests - end - end - - describe "cleanup mechanism" do - test "cleanup runs periodically" do - # This test verifies the cleanup handler exists and can be called - ip = "192.168.99.#{:rand.uniform(255)}" - - # Record an action - RateLimiter.record_action(ip, :game_creation) - - # Verify it was recorded - assert {:ok, remaining} = RateLimiter.check_rate(ip, :game_creation) - config = RateLimiter.get_config() - assert remaining < config.game_creation.max_requests - end - end -end \ No newline at end of file From 74cc2d00d39ba33510171a8cee66a6ddb8d4ee2f Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 23:03:51 -0800 Subject: [PATCH 60/61] fix: add RateLimiter.clear_ip calls and remove timeout tags to prevent test timeouts --- copi.owasp.org/test/copi/rate_limiter_test.exs | 18 ++++++++++++------ 1 file changed, 12 insertions(+), 6 deletions(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 674936444..4b4493e72 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -4,13 +4,15 @@ alias Copi.RateLimiter setup do - # Tests run sequentially and use unique IPs to avoid conflicts + # Clear rate limiter state to prevent test interference + # Each test uses a unique IP but we clear it anyway for safety :ok end describe "game creation rate limiting" do test "allows requests under the limit" do ip = "127.0.0.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) # First request should be allowed assert {:ok, remaining} = RateLimiter.check_and_record(ip, :game_creation) @@ -20,9 +22,9 @@ assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :game_creation) end - @tag timeout: :infinity test "blocks requests over the limit" do ip = "192.168.1.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) config = RateLimiter.get_config() max_games = config.game_creation.max_requests @@ -36,10 +38,11 @@ assert retry_after > 0 end - @tag timeout: :infinity test "different IPs have independent limits" do ip1 = "10.0.0.#{:rand.uniform(255)}" ip2 = "10.0.1.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip1) + RateLimiter.clear_ip(ip2) config = RateLimiter.get_config() max_games = config.game_creation.max_requests @@ -59,6 +62,7 @@ describe "connection rate limiting" do test "allows connections under the limit" do ip = "172.16.0.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) assert {:ok, remaining} = RateLimiter.check_and_record(ip, :connection) assert remaining >= 0 @@ -66,9 +70,9 @@ assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :connection) end - @tag timeout: :infinity test "blocks connections over the limit" do ip = "172.16.1.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) config = RateLimiter.get_config() max_connections = config.connection.max_requests @@ -86,6 +90,7 @@ describe "player creation rate limiting" do test "allows player creation under the limit" do ip = "192.168.2.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) assert {:ok, remaining} = RateLimiter.check_and_record(ip, :player_creation) assert remaining >= 0 @@ -93,9 +98,9 @@ assert {:ok, _remaining} = RateLimiter.check_and_record(ip, :player_creation) end - @tag timeout: :infinity test "blocks player creation over the limit" do ip = "192.168.3.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) config = RateLimiter.get_config() max_players = config.player_creation.max_requests @@ -109,9 +114,9 @@ assert retry_after > 0 end - @tag timeout: :infinity test "player creation limit is separate from game creation limit" do ip = "192.168.4.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) config = RateLimiter.get_config() max_games = config.game_creation.max_requests @@ -191,6 +196,7 @@ test "cleanup runs periodically" do # This test verifies the cleanup handler exists and can be called ip = "192.168.99.#{:rand.uniform(255)}" + RateLimiter.clear_ip(ip) # Record an action RateLimiter.record_action(ip, :game_creation) From 3ab0919cb5970e50c4e11d0965b99979610669ad Mon Sep 17 00:00:00 2001 From: immortal71 Date: Sat, 7 Feb 2026 23:14:43 -0800 Subject: [PATCH 61/61] fix: remove BOM from rate_limiter_test.exs --- copi.owasp.org/test/copi/rate_limiter_test.exs | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/copi.owasp.org/test/copi/rate_limiter_test.exs b/copi.owasp.org/test/copi/rate_limiter_test.exs index 4b4493e72..afdb1f1c6 100644 --- a/copi.owasp.org/test/copi/rate_limiter_test.exs +++ b/copi.owasp.org/test/copi/rate_limiter_test.exs @@ -1,4 +1,4 @@ -defmodule Copi.RateLimiterTest do +defmodule Copi.RateLimiterTest do use ExUnit.Case, async: false alias Copi.RateLimiter