Dependabot updates for March 2024

.github/workflows/backend.yml

@@ -85,7 +85,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Download coverage artifact
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@87c55149d96e628cc2ef7e6fc2aab372015aec85 # v4.1.3
         with:
           name: coverage
       - name: Upload coverage report
@@ -129,19 +129,19 @@ jobs:
         with:
           dotnet-version: "6.0.x"
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/init@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           languages: csharp
       - name: Autobuild
-        uses: github/codeql-action/autobuild@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/autobuild@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
       - name: Upload artifacts if build failed
         uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
         if: ${{ failure() }}
         with:
           name: tracer-logs
           path: ${{ runner.temp }}/*.log
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/analyze@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
 
   docker_build:
     runs-on: ubuntu-22.04

.github/workflows/codeql.yml

@@ -63,7 +63,7 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/init@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           languages: ${{ matrix.language }}
           # If you wish to specify custom queries, you can do so here or in a config file.
@@ -76,7 +76,7 @@ jobs:
       # Autobuild attempts to build any compiled languages  (C/C++, C#, Go, or Java).
       # If this step fails, then you should remove it and run the build manually (see below)
       - name: Autobuild
-        uses: github/codeql-action/autobuild@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/autobuild@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
 
       # Command-line programs to run using the OS shell.
       # See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -89,6 +89,6 @@ jobs:
       #   ./location_of_script_within_repo/buildscript.sh
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/analyze@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           category: "/language:${{matrix.language}}"

.github/workflows/combine_deploy_image.yml

@@ -40,7 +40,7 @@ jobs:
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3.1.0
       - name: Configure AWS credentials
         uses: aws-actions/configure-aws-credentials@010d0da01d0b5a38af31e9c3470dbfdabdecca3a # v4.0.1
         with:

.github/workflows/frontend.yml

@@ -31,7 +31,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Use Node.js ${{ matrix.node-version }}
-        uses: actions/setup-node@b39b52d1213e96004bfcb1c61a8a6fa8ab84f3e8 # v4.0.1
+        uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
         with:
           node-version: ${{ matrix.node-version }}
       - run: npm ci
@@ -60,7 +60,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Use Node.js ${{ matrix.node-version }}
-        uses: actions/setup-node@b39b52d1213e96004bfcb1c61a8a6fa8ab84f3e8 # v4.0.1
+        uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
         with:
           node-version: ${{ matrix.node-version }}
       - run: npm ci
@@ -95,7 +95,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Download coverage artifact
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@87c55149d96e628cc2ef7e6fc2aab372015aec85 # v4.1.3
         with:
           name: coverage
       - name: Upload coverage report

.github/workflows/scorecards.yml

@@ -89,6 +89,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
+        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           sarif_file: results.sarif

Backend.Tests/Backend.Tests.csproj

@@ -12,11 +12,11 @@
     <NoWarn>$(NoWarn);CA1305;CS1591</NoWarn>
   </PropertyGroup>
   <ItemGroup>
-    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.8.0" />
+    <PackageReference Include="Microsoft.NET.Test.Sdk" Version="17.9.0" />
     <PackageReference Include="NUnit" Version="4.0.1" />
     <PackageReference Include="NUnit3TestAdapter" Version="4.5.0" />
-    <PackageReference Include="coverlet.collector" Version="6.0.0"/>
-    <PackageReference Include="coverlet.msbuild" Version="6.0.0"/>
+    <PackageReference Include="coverlet.collector" Version="6.0.1"/>
+    <PackageReference Include="coverlet.msbuild" Version="6.0.1"/>
   </ItemGroup>
   <ItemGroup>
     <ProjectReference Include="..\Backend\BackendFramework.csproj" />

Backend/BackendFramework.csproj

@@ -13,11 +13,11 @@
     <PackageReference Include="RelaxNG" Version="3.2.3" >
       <NoWarn>NU1701</NoWarn>
     </PackageReference>
-    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="6.0.26" />
+    <PackageReference Include="Microsoft.AspNetCore.Authentication.JwtBearer" Version="6.0.27" />
     <PackageReference Include="Microsoft.IdentityModel.Tokens" Version="6.35.0" />
     <PackageReference Include="System.IdentityModel.Tokens.Jwt" Version="6.35.0" />
     <PackageReference Include="Swashbuckle.AspNetCore" Version="6.5.0" />
-    <PackageReference Include="MongoDB.Driver" Version="2.23.1" />
+    <PackageReference Include="MongoDB.Driver" Version="2.24.0" />
     <PackageReference Include="MailKit" Version="4.3.0" />
     <PackageReference Include="Xabe.FFmpeg" Version="5.2.6"/>
 

Backend/Dockerfile

@@ -1,5 +1,5 @@
 # Docker multi-stage build
-FROM mcr.microsoft.com/dotnet/sdk:6.0.418-focal-amd64 AS builder
+FROM mcr.microsoft.com/dotnet/sdk:6.0.419-focal-amd64 AS builder
 WORKDIR /app
 
 # Copy csproj and restore (fetch dependencies) as distinct layers.
@@ -11,7 +11,7 @@ COPY . ./
 RUN dotnet publish -c Release -o build
 
 # Build runtime image.
-FROM mcr.microsoft.com/dotnet/aspnet:6.0.26-focal-amd64
+FROM mcr.microsoft.com/dotnet/aspnet:6.0.27-focal-amd64
 
 ENV ASPNETCORE_URLS=http://+:5000
 ENV COMBINE_IS_IN_CONTAINER=1

Dockerfile

@@ -16,7 +16,7 @@ COPY docs/user_guide docs/user_guide
 RUN tox -e user-guide
 
 # Frontend build environment.
-FROM node:18.19.0-bookworm-slim AS frontend_builder
+FROM node:18.19.1-bookworm-slim AS frontend_builder
 WORKDIR /app
 
 # Install app dependencies.

database/Dockerfile

@@ -1,4 +1,4 @@
-FROM mongo:7.0.5-jammy
+FROM mongo:7.0.6-jammy
 
 WORKDIR /
 

deploy/requirements.txt

@@ -4,11 +4,11 @@
 #
 #    pip-compile requirements.in
 #
-ansible==9.2.0
+ansible==9.3.0
     # via -r requirements.in
-ansible-core==2.16.3
+ansible-core==2.16.4
     # via ansible
-cachetools==5.3.2
+cachetools==5.3.3
     # via google-auth
 certifi==2024.2.2
     # via
@@ -18,11 +18,11 @@ cffi==1.16.0
     # via cryptography
 charset-normalizer==3.3.2
     # via requests
-cryptography==42.0.2
+cryptography==42.0.5
     # via
     #   ansible-core
     #   pyopenssl
-google-auth==2.27.0
+google-auth==2.28.1
     # via kubernetes
 idna==3.6
     # via requests
@@ -53,7 +53,7 @@ pycparser==2.21
     # via cffi
 pyopenssl==24.0.0
     # via -r requirements.in
-python-dateutil==2.8.2
+python-dateutil==2.9.0
     # via kubernetes
 pyyaml==6.0.1
     # via
@@ -74,7 +74,7 @@ six==1.16.0
     # via
     #   kubernetes
     #   python-dateutil
-urllib3==2.2.0
+urllib3==2.2.1
     # via
     #   kubernetes
     #   requests

dev-requirements.txt

@@ -12,9 +12,9 @@ babel==2.14.0
     # via mkdocs-material
 beautifulsoup4==4.12.3
     # via mkdocs-htmlproofer-plugin
-black==24.1.1
+black==24.2.0
     # via -r dev-requirements.in
-cachetools==5.3.2
+cachetools==5.3.3
     # via
     #   google-auth
     #   tox
@@ -37,13 +37,13 @@ colorama==0.4.6
     #   -r dev-requirements.in
     #   mkdocs-material
     #   tox
-cryptography==42.0.2
+cryptography==42.0.5
     # via
     #   pyopenssl
     #   types-pyopenssl
 distlib==0.3.8
     # via virtualenv
-dnspython==2.5.0
+dnspython==2.6.1
     # via pymongo
 eradicate==2.3.0
     # via flake8-eradicate
@@ -61,15 +61,15 @@ flake8==7.0.0
     #   pep8-naming
 flake8-broken-line==1.0.0
     # via -r dev-requirements.in
-flake8-bugbear==24.1.17
+flake8-bugbear==24.2.6
     # via -r dev-requirements.in
 flake8-comprehensions==3.14.0
     # via -r dev-requirements.in
 flake8-eradicate==1.5.0
     # via -r dev-requirements.in
 ghp-import==2.1.0
     # via mkdocs
-google-auth==2.27.0
+google-auth==2.28.1
     # via kubernetes
 humanfriendly==10.0
     # via -r dev-requirements.in
@@ -106,13 +106,13 @@ mkdocs==1.5.3
     #   mkdocs-htmlproofer-plugin
     #   mkdocs-material
     #   mkdocs-static-i18n
-mkdocs-htmlproofer-plugin==1.0.0
+mkdocs-htmlproofer-plugin==1.1.0
     # via -r dev-requirements.in
-mkdocs-material==9.5.7
+mkdocs-material==9.5.12
     # via -r dev-requirements.in
 mkdocs-material-extensions==1.3.1
     # via mkdocs-material
-mkdocs-static-i18n==1.2.0
+mkdocs-static-i18n==1.2.2
     # via -r dev-requirements.in
 mypy==1.8.0
     # via -r dev-requirements.in
@@ -162,15 +162,15 @@ pygments==2.17.2
     # via mkdocs-material
 pymdown-extensions==10.7
     # via mkdocs-material
-pymongo==4.6.1
+pymongo==4.6.2
     # via -r dev-requirements.in
 pyopenssl==24.0.0
     # via -r dev-requirements.in
 pyproject-api==1.6.1
     # via tox
 pyreadline3==3.4.1
     # via -r dev-requirements.in
-python-dateutil==2.8.2
+python-dateutil==2.9.0
     # via
     #   ghp-import
     #   kubernetes
@@ -207,28 +207,28 @@ tomli==2.0.1
     #   mypy
     #   pyproject-api
     #   tox
-tox==4.12.1
+tox==4.13.0
     # via -r dev-requirements.in
-types-pyopenssl==24.0.0.20240130
+types-pyopenssl==24.0.0.20240228
     # via -r dev-requirements.in
 types-python-dateutil==2.8.19.20240106
     # via -r dev-requirements.in
 types-pyyaml==6.0.12.12
     # via -r dev-requirements.in
-types-requests==2.31.0.20240125
+types-requests==2.31.0.20240218
     # via -r dev-requirements.in
-typing-extensions==4.9.0
+typing-extensions==4.10.0
     # via
     #   black
     #   mypy
-urllib3==2.2.0
+urllib3==2.2.1
     # via
     #   kubernetes
     #   requests
     #   types-requests
-virtualenv==20.25.0
+virtualenv==20.25.1
     # via tox
-watchdog==3.0.0
+watchdog==4.0.0
     # via mkdocs
 websocket-client==1.7.0
     # via kubernetes