Skip to content

Bump copier from 9.16.0 to 9.17.0#44

Merged
twsl merged 1 commit into
mainfrom
dependabot/pip/copier-9.17.0
Jul 16, 2026
Merged

Bump copier from 9.16.0 to 9.17.0#44
twsl merged 1 commit into
mainfrom
dependabot/pip/copier-9.17.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 16, 2026

Copy link
Copy Markdown
Contributor

Bumps copier from 9.16.0 to 9.17.0.

Release notes

Sourced from copier's releases.

v9.17.0 (2026-07-13)

Feat

  • add --ask flag to force prompting of selected questions (#2705)

Security

  • prevent trust bypass via encoded URL traversal
Changelog

Sourced from copier's changelog.

v9.17.0 (2026-07-13)

Feat

  • add --ask flag to force prompting of selected questions (#2705)

Security

  • prevent trust bypass via encoded URL traversal
Commits
  • 02e1574 bump: version 9.16.0 → 9.17.0
  • 7408f0d fix: prevent trust bypass via encoded URL traversal
  • b8e2218 build(deps): update dependency mypy to v2.2.0
  • baeffda build(deps): update astral-sh/setup-uv action to v8.3.1
  • c89ebf5 build(deps): update dependency markdown-exec to v1.12.3
  • fcedc44 build(deps): update dependency poethepoet to v0.48.0
  • ccd5372 build(deps): update dependency rumdl to v0.2.28
  • eef3f68 test: expect update test failure with Git v2.55.0+
  • 946a805 build(deps): update dependency typing-extensions to v4.16.0
  • 7de4abc build(deps): update dependency typing-extensions to v4.16.0
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [copier](https://github.com/copier-org/copier) from 9.16.0 to 9.17.0.
- [Release notes](https://github.com/copier-org/copier/releases)
- [Changelog](https://github.com/copier-org/copier/blob/master/CHANGELOG.md)
- [Commits](copier-org/copier@v9.16.0...v9.17.0)

---
updated-dependencies:
- dependency-name: copier
  dependency-version: 9.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 16, 2026
@twsl
twsl merged commit 083c569 into main Jul 16, 2026
8 checks passed
@dependabot
dependabot Bot deleted the dependabot/pip/copier-9.17.0 branch July 16, 2026 14:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant