PyPI - kdebug - Versions diffs - 0.2.0__tar.gz → 0.2.1__tar.gz - Mend

kdebug 0.2.0tar.gz → 0.2.1tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

{kdebug-0.2.0 → kdebug-0.2.1}/.github/workflows/pypi-publish.yml RENAMED Viewed

@@ -24,12 +24,12 @@ jobs:
     environment: pypi
     steps:
       - name: Check out
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           ref: ${{ inputs.ref || github.ref }}
       - name: Install uv
-        uses: astral-sh/setup-uv@v5
+        uses: astral-sh/setup-uv@v7
         with:
           version: "latest"

{kdebug-0.2.0 → kdebug-0.2.1}/.github/workflows/release.yml RENAMED Viewed

@@ -23,7 +23,7 @@ jobs:
     outputs:
       version: ${{ steps.new.outputs.version }}
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
         with:
           fetch-depth: 0

{kdebug-0.2.0 → kdebug-0.2.1}/AGENTS.md RENAMED Viewed

@@ -112,6 +112,28 @@ source <(kdebug --completions zsh)
 kdebug --<TAB>
 ```
+## GitHub Actions & Dependencies
+**IMPORTANT: Always use the latest stable versions of GitHub Actions and dependencies to avoid security vulnerabilities (CVEs).**
+### Current Action Versions (keep updated)
+- `actions/checkout@v6`
+- `astral-sh/setup-uv@v7`
+### Guidelines
+1. **Never hardcode old versions** - Check the action's repository for the latest major version
+2. **Use major version tags** (e.g., `@v6`) not specific commits or minor versions
+3. **Dependabot is configured** - Review and merge dependabot PRs promptly
+4. **When adding new actions** - Always check for the latest version first via the action's GitHub repo or marketplace page
+### Workflow Files
+- `.github/workflows/release.yml` - Main release automation
+- `.github/workflows/pypi-publish.yml` - PyPI publishing with OIDC trusted publisher
+- `.github/workflows/update-homebrew.yml` - Homebrew tap updates
 ## Code Conventions
 - Use `colorize()` for colored output

{kdebug-0.2.0 → kdebug-0.2.1}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: kdebug
-Version: 0.2.0
+Version: 0.2.1
 Summary: Universal Kubernetes Debug Container Utility
 Project-URL: Homepage, https://github.com/jessegoodier/kdebug
 Project-URL: Repository, https://github.com/jessegoodier/kdebug

{kdebug-0.2.0 → kdebug-0.2.1}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "hatchling.build"
 [project]
 name = "kdebug"
-version = "0.2.0"
+version = "0.2.1"
 description = "Universal Kubernetes Debug Container Utility"
 readme = "README.md"
 license = "MIT"