PyPI - oe-python-template - Versions diffs - 0.5.7__tar.gz → 0.5.9__tar.gz - Mend

oe-python-template 0.5.7tar.gz → 0.5.9tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (166) hide show

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/.copier-answers.yml RENAMED Viewed

@@ -1,4 +1,4 @@
-_commit: v0.5.6-1-gb86f82d
+_commit: v0.5.8-1-gdcff5eb
 _src_path: .
 author_email: helmuthva@gmail.com
 author_github_username: helmut-hoffer-von-ankershoffen

oe_python_template-0.5.9/.coverage ADDED Viewed

Binary file

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/.github/workflows/package-build-publish-release.yml RENAMED Viewed

@@ -53,7 +53,7 @@ jobs:
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
-          gh release create ${{ github.ref_name }} ./dist/* sbom.json licenses.json licenses-inverted.json vulnerabilities.json --notes-file ${{ steps.git-cliff.outputs.changelog }}
+          gh release create ${{ github.ref_name }} ./dist/* ./reports/* --notes-file ${{ steps.git-cliff.outputs.changelog }}
       - name: Allow other workflows to trigger on release
         env:

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/.gitignore RENAMED Viewed

@@ -43,16 +43,10 @@ develop-eggs/
 .mypy_cache/
-# Build Artefacts
-junit.xml
-.coverage*
-coverage.xml
-coverage_html/
-vulnerabilities.json
-licenses.json
-licenses-inverted.json
-sbom.json
-mypi_junit.xml
+# Build Report
+reports/*
+!reports/.keep
+!reports/README.md
 # IDE
 .idea/

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/CHANGELOG.md RENAMED Viewed

@@ -1,6 +1,20 @@
 [🧠 OE Python Template](https://oe-python-template.readthedocs.io/en/latest/)
-## [0.5.7](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/compare/v0.5.6..0.5.7) - 2025-03-14
+## [0.5.9](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/compare/v0.5.8..0.5.9) - 2025-03-15
+### 🐛 Bug Fixes
+- .gitignore - ([8de2b49](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/commit/8de2b49cea020038c96e1e6fe9ff7559d172c427))
+## [0.5.8](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/compare/v0.5.7..v0.5.8) - 2025-03-15
+### 🚜 Refactor
+- *(tooling)* Simplify - ([478674f](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/commit/478674f7e2fc6395bdec79b5c5e893d7266c4d56))
+## [0.5.7](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/compare/v0.5.6..v0.5.7) - 2025-03-14
 ### ⛰️  Features

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/CONTRIBUTING.md RENAMED Viewed

@@ -90,10 +90,28 @@ uv run nox -s audit     # run security and license audit, inc. sbom generation
 uv run nox -s docs      # build documentation, output in docs/build/html
 ```
+As a shortcut, you can run build steps using `./n`:
+```shell
+./n test
+./n lint
+# ...
+```
+Generate a wheel using uv
+```shell
+uv build
+```
+Notes:
+1. Reports dumped into ```reports/```
+3. Documentation dumped into ```docs/build/html/```
+2. Distribution dumped into ```dist/```
 ### Running GitHub CI workflow locally
 ```shell
-./github-action-run.sh
+uv run nox -s act
 ```
 Notes:
@@ -116,13 +134,7 @@ docker run --env THE_VAR=THE_VALUE oe-python-template --help
 Update scaffold from template
 ```shell
-copier update --trust --skip-tasks --skip-answered
-```
-### Updating demo application contained within oe-python-template
-```shell
-copier copy -r HEAD . . --force --trust
+uv run nox -s update_from_template
 ```
 ## Pull Request Guidelines

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: oe-python-template
-Version: 0.5.7
+Version: 0.5.9
 Summary: 🧠 Copier template to scaffold Python projects compliant with best practices and modern tooling.
 Project-URL: Homepage, https://oe-python-template.readthedocs.io/en/latest/
 Project-URL: Documentation, https://oe-python-template.readthedocs.io/en/latest/
@@ -66,13 +66,14 @@ Description-Content-Type: text/markdown
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/oe-python-template.svg?logo=python&color=204361&labelColor=1E2933)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![CI](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml)
 [![Read the Docs](https://img.shields.io/readthedocs/oe-python-template)](https://oe-python-template.readthedocs.io/en/latest/)
-[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
-[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
 [![Quality Gate](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Security](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=security_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Maintainability](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Technical Debt](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_index)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Code Smells](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=code_smells)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
+[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
+[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
+[![Renovate enabled](https://img.shields.io/badge/renovate-enabled-brightgreen.svg)](https://renovatebot.com/)
 [![Coverage](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template/graph/badge.svg?token=SX34YRP30E)](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template)
 [![Ruff](https://img.shields.io/badge/style-Ruff-blue?color=D6FF65)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![MyPy](https://img.shields.io/badge/mypy-checked-blue)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
@@ -179,8 +180,8 @@ uvx oe-python-template serve --port=4711 # serves webservice API on port 4711
 ```
 Notes:
-* The API is versioned, mounted at ```/api/v1``` resp. ```/api/v2```
-* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the ```hello-world``` operation.
+* The API is versioned, mounted at `/api/v1` resp. `/api/v2`
+* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the `hello-world` operation.
 * Interactive documentation is provided at [http://127.0.0.1:8000/api/docs](http://127.0.0.1:8000/api/docs)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/README.md RENAMED Viewed

@@ -5,13 +5,14 @@
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/oe-python-template.svg?logo=python&color=204361&labelColor=1E2933)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![CI](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml)
 [![Read the Docs](https://img.shields.io/readthedocs/oe-python-template)](https://oe-python-template.readthedocs.io/en/latest/)
-[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
-[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
 [![Quality Gate](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Security](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=security_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Maintainability](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Technical Debt](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_index)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Code Smells](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=code_smells)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
+[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
+[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
+[![Renovate enabled](https://img.shields.io/badge/renovate-enabled-brightgreen.svg)](https://renovatebot.com/)
 [![Coverage](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template/graph/badge.svg?token=SX34YRP30E)](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template)
 [![Ruff](https://img.shields.io/badge/style-Ruff-blue?color=D6FF65)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![MyPy](https://img.shields.io/badge/mypy-checked-blue)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
@@ -118,8 +119,8 @@ uvx oe-python-template serve --port=4711 # serves webservice API on port 4711
 ```
 Notes:
-* The API is versioned, mounted at ```/api/v1``` resp. ```/api/v2```
-* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the ```hello-world``` operation.
+* The API is versioned, mounted at `/api/v1` resp. `/api/v2`
+* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the `hello-world` operation.
 * Interactive documentation is provided at [http://127.0.0.1:8000/api/docs](http://127.0.0.1:8000/api/docs)

oe_python_template-0.5.9/RELEASE_NOTES.md ADDED Viewed

@@ -0,0 +1,8 @@
+## [0.5.9](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/compare/v0.5.8..v0.5.9) - 2025-03-15
+### 🐛 Bug Fixes
+- .gitignore - ([8de2b49](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/commit/8de2b49cea020038c96e1e6fe9ff7559d172c427))

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/SECURITY.md RENAMED Viewed

@@ -22,12 +22,12 @@ OE Python Template employs several automated tools to continuously monitor and i
 - **GitHub Dependabot**: Monitors dependencies for known vulnerabilities and automatically creates pull requests to update them when security issues are found. [Dependendabot alerts](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot) published.
 - **Renovate Bot**: Automatically creates pull requests to update dependencies when new versions are available, with a focus on security patches. [Dependency Dashboard](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/issues) published.
-- **pip-audit**: Regularly scans Python dependencies for known vulnerabilities using data from the Python Advisory Database. ```vulnerabilities.json``` published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
+- **pip-audit**: Regularly scans Python dependencies for known vulnerabilities using data from the Python Advisory Database. `vulnerabilities.json` published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
 ### 2. Dependency Compliance
-- **cyclonedx-py**: Generates a Software Bill of Materials (SBOM) in SPDX format, listing all components and dependencies used in the project. ```sbom.json``` (SPDX format) published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
-- **pip-licenses**: Exports the licenses of all dependencies to ensure compliance with licensing requirements and avoid using components with problematic licenses. ```licenses.json``` and ```licenses-inverted.json``` published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
+- **cyclonedx-py**: Generates a Software Bill of Materials (SBOM) in SPDX format, listing all components and dependencies used in the project. `sbom.json` (SPDX format) published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
+- **pip-licenses**: Exports the licenses of all dependencies to ensure compliance with licensing requirements and avoid using components with problematic licenses. `licenses.csv`, `licenses.json` and `licenses_grouped.json` published [per release](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/releases).
 ### 3. Static Code Analysis

oe_python_template-0.5.9/VERSION ADDED Viewed

	@@ -0,0 +1 @@
1	+ 0.5.9

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/_readme_header.md RENAMED Viewed

@@ -5,13 +5,14 @@
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/oe-python-template.svg?logo=python&color=204361&labelColor=1E2933)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![CI](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/test-and-report.yml)
 [![Read the Docs](https://img.shields.io/readthedocs/oe-python-template)](https://oe-python-template.readthedocs.io/en/latest/)
-[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
-[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
 [![Quality Gate](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Security](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=security_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Maintainability](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Technical Debt](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=sqale_index)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
 [![Code Smells](https://sonarcloud.io/api/project_badges/measure?project=helmut-hoffer-von-ankershoffen_oe-python-template&metric=code_smells)](https://sonarcloud.io/summary/new_code?id=helmut-hoffer-von-ankershoffen_oe-python-template)
+[![CodeQL](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/actions/workflows/codeql.yml/badge.svg)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/code-scanning)
+[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/security/dependabot)
+[![Renovate enabled](https://img.shields.io/badge/renovate-enabled-brightgreen.svg)](https://renovatebot.com/)
 [![Coverage](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template/graph/badge.svg?token=SX34YRP30E)](https://codecov.io/gh/helmut-hoffer-von-ankershoffen/oe-python-template)
 [![Ruff](https://img.shields.io/badge/style-Ruff-blue?color=D6FF65)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)
 [![MyPy](https://img.shields.io/badge/mypy-checked-blue)](https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template/blob/main/noxfile.py)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/_readme_main.md RENAMED Viewed

@@ -80,8 +80,8 @@ uvx oe-python-template serve --port=4711 # serves webservice API on port 4711
 ```
 Notes:
-* The API is versioned, mounted at ```/api/v1``` resp. ```/api/v2```
-* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the ```hello-world``` operation.
+* The API is versioned, mounted at `/api/v1` resp. `/api/v2`
+* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the `hello-world` operation.
 * Interactive documentation is provided at [http://127.0.0.1:8000/api/docs](http://127.0.0.1:8000/api/docs)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/docs/source/conf.py RENAMED Viewed

@@ -29,7 +29,7 @@ extensions = [
 project = "oe-python-template"
 author = "Helmut Hoffer von Ankershoffen"
 copyright = f" (c) 2025-{datetime.now(UTC).year}, {author}"  # noqa: A001
-version = "0.5.7"
+version = "0.5.9"
 release = version
 github_username = "helmut-hoffer-von-ankershoffen"
 github_repository = "oe-python-template"

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/docs/source/index.rst RENAMED Viewed

@@ -14,8 +14,9 @@
    api_v1
    api_v2
    reference
-   release-notes
    contributing
+   security
+   release-notes
 .. sidebar-links::
    :caption: Links

oe_python_template-0.5.9/docs/source/security.rst ADDED Viewed

	@@ -0,0 +1 @@
1	+ .. mdinclude:: ../../SECURITY.md

oe_python_template-0.5.9/n ADDED Viewed

@@ -0,0 +1,27 @@
+#!/bin/sh
+# Wrapper script for running nox tasks with uv.
+# Allows simpler commands: `./n <session>` instead of `uv run nox -s <session>`
+if [ $# -lt 1 ]; then
+echo "Usage: ./n <session_name> [additional_args]"
+    echo "Examples:"
+    echo " ./n setup_dev"
+    echo " ./n lint"
+    echo " ./n docs"
+    echo " ./n audit"
+    echo " ./n test"
+    echo " ./n act"
+    echo " ./n update_from_template"
+    echo " ./n bump patch"
+    echo " ./n bump minor"
+    echo " ./n bump major"
+    echo " ./n bump x.y.z"
+    exit 1
+    fi
+    session=$1
+    shift # Remove the first argument, remaining args will be passed through
+    # Execute the command, forwarding all output
+    exec uv run nox -s "$session" "$@"

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/noxfile.py RENAMED Viewed

@@ -2,9 +2,11 @@
 import json
 import os
+import re
 from pathlib import Path
 import nox
+import tomli
 nox.options.reuse_existing_virtualenvs = True
 nox.options.default_venv_backend = "uv"
@@ -80,39 +82,40 @@ def docs(session: nox.Session) -> None:
 @nox.session(python=["3.13"])
 def audit(session: nox.Session) -> None:
     """Run security audit and license checks."""
-    _setup_venv(session)
-    session.run("pip-audit", "-f", "json", "-o", "vulnerabilities.json")
-    session.run("jq", ".", "vulnerabilities.json", external=True)
-    session.run("pip-licenses", "--format=json", "--output-file=licenses.json")
-    session.run("jq", ".", "licenses.json", external=True)
+    _setup_venv(session, True)
+    session.run("pip-audit", "-f", "json", "-o", "reports/vulnerabilities.json")
+    session.run("jq", ".", "reports/vulnerabilities.json", external=True)
+    session.run("pip-licenses", "--format=csv", "--order=license", "--output-file=reports/licenses.csv")
+    session.run("pip-licenses", "--format=json", "--output-file=reports/licenses.json")
+    session.run("jq", ".", "reports/licenses.json", external=True)
     # Read and parse licenses.json
-    licenses_data = json.loads(Path("licenses.json").read_text(encoding="utf-8"))
+    licenses_data = json.loads(Path("reports/licenses.json").read_text(encoding="utf-8"))
-    licenses_inverted: dict[str, list[dict[str, str]]] = {}
-    licenses_inverted = {}
+    licenses_grouped: dict[str, list[dict[str, str]]] = {}
+    licenses_grouped = {}
     for pkg in licenses_data:
         license_name = pkg["License"]
         package_info = {"Name": pkg["Name"], "Version": pkg["Version"]}
-        if license_name not in licenses_inverted:
-            licenses_inverted[license_name] = []
-        licenses_inverted[license_name].append(package_info)
+        if license_name not in licenses_grouped:
+            licenses_grouped[license_name] = []
+        licenses_grouped[license_name].append(package_info)
-    # Write inverted data
-    Path("licenses-inverted.json").write_text(
-        json.dumps(licenses_inverted, indent=2),
+    # Write grouped data
+    Path("reports/licenses_grouped.json").write_text(
+        json.dumps(licenses_grouped, indent=2),
         encoding="utf-8",
     )
-    session.run("jq", ".", "licenses-inverted.json", external=True)
-    session.run("cyclonedx-py", "environment", "-o", "sbom.json")
-    session.run("jq", ".", "sbom.json", external=True)
+    session.run("jq", ".", "reports/licenses_grouped.json", external=True)
+    session.run("cyclonedx-py", "environment", "-o", "reports/sbom.json")
+    session.run("jq", ".", "reports/sbom.json", external=True)
 @nox.session(python=["3.11", "3.12", "3.13"])
 def test(session: nox.Session) -> None:
     """Run tests with pytest."""
     _setup_venv(session)
-    pytest_args = ["pytest", "--disable-warnings", "--junitxml=junit.xml", "-n", "auto", "--dist", "loadgroup"]
+    pytest_args = ["pytest", "--disable-warnings", "--junitxml=reports/junit.xml", "-n", "auto", "--dist", "loadgroup"]
     if _is_act_environment():
         pytest_args.extend(["-k", NOT_SKIP_WITH_ACT])
     session.run(*pytest_args)
@@ -136,3 +139,57 @@ def setup_dev(session: nox.Session) -> None:
         except Exception:  # noqa: BLE001
             session.log("pre-commit run failed, continuing anyway")
         session.run("git", "add", ".", external=True)
+@nox.session(default=False)
+def update_from_template(session: nox.Session) -> None:
+    """Update from copier template."""
+    if Path("copier.yaml").is_file() or Path("copier.yml").is_file():
+        # Read the current version from pyproject.toml
+        with Path("pyproject.toml").open("rb") as f:
+            pyproject = tomli.load(f)
+            current_version = pyproject["tool"]["bumpversion"]["current_version"]
+            # In this case the project itself is the template
+            session.run("copier", "copy", "-r", "HEAD", ".", ".", "--force", "--trust", "--skip-tasks", external=True)
+            # Bump the version using the current version from pyproject.toml
+            session.run("bump-my-version", "replace", "--new-version", current_version, "--allow-dirty", external=True)
+    else:
+        # In this case the template has been generated from a template
+        session.run("copier", "update", "--trust", "--skip-answered", "--skip-tasks", external=True)
+@nox.session(default=False)
+def act(session: nox.Session) -> None:
+    """Run GitHub Actions workflow locally with act."""
+    session.run(
+        "act",
+        "-j",
+        "test",
+        "--env-file",
+        ".act-env-public",
+        "--secret-file",
+        ".act-env-secret",
+        "--container-architecture",
+        "linux/amd64",
+        "-P",
+        "ubuntu-latest=catthehacker/ubuntu:act-latest",
+        "--action-offline-mode",
+        "--container-daemon-socket",
+        "-",
+        external=True,
+    )
+@nox.session(default=False)
+def bump(session: nox.Session) -> None:
+    """Bump version and push changes to git."""
+    version_part = session.posargs[0] if session.posargs else "patch"
+    # Check if the version_part is a specific version (e.g., 1.2.3)
+    if re.match(r"^[0-9]+\.[0-9]+\.[0-9]+$", version_part):
+        session.run("bump-my-version", "bump", "--new-version", version_part, external=True)
+    else:
+        session.run("bump-my-version", "bump", version_part, external=True)
+    # Push changes to git
+    session.run("git", "push", external=True)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/pyproject.toml RENAMED Viewed

@@ -1,6 +1,6 @@
 [project]
 name = "oe-python-template"
-version = "0.5.7"
+version = "0.5.9"
 description = "🧠 Copier template to scaffold Python projects compliant with best practices and modern tooling."
 readme = "README.md"
 authors = [
@@ -198,7 +198,7 @@ docstring-code-format = true
 convention = "google"
 [tool.mypy]  # https://mypy.readthedocs.io/en/latest/config_file.html
-junit_xml = "mypi_junit.xml"
+junit_xml = "reports/mypy_junit.xml"
 plugins = "pydantic.mypy"
 strict = true
 disallow_subclassing_any = false
@@ -217,7 +217,7 @@ warn_required_dynamic_aliases = true
 warn_untyped_fields = true
 [tool.pytest.ini_options]
-addopts = "-v --cov=oe_python_template --cov-report=term-missing --cov-report=xml:coverage.xml --cov-report=html:coverage_html"
+addopts = "-v --cov=oe_python_template --cov-report=term-missing --cov-report=xml:reports/coverage.xml --cov-report=html:reports/coverage_html"
 testpaths = ["tests"]
 python_files = ["*_test.py"]
 asyncio_mode = "auto"
@@ -242,7 +242,7 @@ source = ["src/"]
 [tool.bumpversion]
-current_version = "0.5.7"
+current_version = "0.5.9"
 parse = "(?P<major>\\d+)\\.(?P<minor>\\d+)\\.(?P<patch>\\d+)"
 serialize = ["{major}.{minor}.{patch}"]
 search = "{current_version}"

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/sonar-project.properties RENAMED Viewed

@@ -1,6 +1,6 @@
 sonar.projectKey=helmut-hoffer-von-ankershoffen_oe-python-template
 sonar.organization=helmut-hoffer-von-ankershoffen
-sonar.projectVersion=0.5.7
+sonar.projectVersion=0.5.9
 sonar.projectDescription=🧠 Copier template to scaffold Python projects compliant with best practices and modern tooling.
 sonar.links.homepage=https://oe-python-template.readthedocs.io/en/latest/
 sonar.links.scm=https://github.com/helmut-hoffer-von-ankershoffen/oe-python-template

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/.github/workflows/package-build-publish-release.yml.jinja RENAMED Viewed

@@ -53,7 +53,7 @@ jobs:
         env:
           GITHUB_TOKEN: {% raw %}${{ secrets.GITHUB_TOKEN }}{% endraw %}
         run: |
-          gh release create {% raw %}${{ github.ref_name }} ./dist/* sbom.json licenses.json licenses-inverted.json vulnerabilities.json --notes-file ${{ steps.git-cliff.outputs.changelog }}{% endraw %}
+          gh release create {% raw %}${{ github.ref_name }} ./dist/* ./reports/* --notes-file ${{ steps.git-cliff.outputs.changelog }}{% endraw %}
       - name: Allow other workflows to trigger on release
         env:

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/.gitignore.jinja RENAMED Viewed

@@ -43,16 +43,10 @@ develop-eggs/
 .mypy_cache/
-# Build Artefacts
-junit.xml
-.coverage*
-coverage.xml
-coverage_html/
-vulnerabilities.json
-licenses.json
-licenses-inverted.json
-sbom.json
-mypi_junit.xml
+# Build Report
+reports/*
+!reports/.keep
+!reports/README.md
 # IDE
 .idea/

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/CONTRIBUTING.md.jinja RENAMED Viewed

@@ -90,10 +90,28 @@ uv run nox -s audit     # run security and license audit, inc. sbom generation
 uv run nox -s docs      # build documentation, output in docs/build/html
 ```
+As a shortcut, you can run build steps using `./n`:
+```shell
+./n test
+./n lint
+# ...
+```
+Generate a wheel using uv
+```shell
+uv build
+```
+Notes:
+1. Reports dumped into ```reports/```
+3. Documentation dumped into ```docs/build/html/```
+2. Distribution dumped into ```dist/```
 ### Running GitHub CI workflow locally
 ```shell
-./github-action-run.sh
+uv run nox -s act
 ```
 Notes:
@@ -116,13 +134,7 @@ docker run --env THE_VAR=THE_VALUE {{ pypi_distribution_name }} --help
 Update scaffold from template
 ```shell
-copier update --trust --skip-tasks --skip-answered
-```
-### Updating demo application contained within {{ project_name_kebab_case }}
-```shell
-copier copy -r HEAD . . --force --trust
+uv run nox -s update_from_template
 ```
 ## Pull Request Guidelines

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/SECURITY.md.jinja RENAMED Viewed

@@ -22,12 +22,12 @@ We currently provide security updates for the latest minor version.
 - **GitHub Dependabot**: Monitors dependencies for known vulnerabilities and automatically creates pull requests to update them when security issues are found. [Dependendabot alerts]({{ github_repository_url_https }}/security/dependabot) published.
 - **Renovate Bot**: Automatically creates pull requests to update dependencies when new versions are available, with a focus on security patches. [Dependency Dashboard]({{ github_repository_url_https }}/issues) published.
-- **pip-audit**: Regularly scans Python dependencies for known vulnerabilities using data from the Python Advisory Database. ```vulnerabilities.json``` published [per release]({{ github_repository_url_https }}/releases).
+- **pip-audit**: Regularly scans Python dependencies for known vulnerabilities using data from the Python Advisory Database. `vulnerabilities.json` published [per release]({{ github_repository_url_https }}/releases).
 ### 2. Dependency Compliance
-- **cyclonedx-py**: Generates a Software Bill of Materials (SBOM) in SPDX format, listing all components and dependencies used in the project. ```sbom.json``` (SPDX format) published [per release]({{ github_repository_url_https }}/releases).
-- **pip-licenses**: Exports the licenses of all dependencies to ensure compliance with licensing requirements and avoid using components with problematic licenses. ```licenses.json``` and ```licenses-inverted.json``` published [per release]({{ github_repository_url_https }}/releases).
+- **cyclonedx-py**: Generates a Software Bill of Materials (SBOM) in SPDX format, listing all components and dependencies used in the project. `sbom.json` (SPDX format) published [per release]({{ github_repository_url_https }}/releases).
+- **pip-licenses**: Exports the licenses of all dependencies to ensure compliance with licensing requirements and avoid using components with problematic licenses. `licenses.csv`, `licenses.json` and `licenses_grouped.json` published [per release]({{ github_repository_url_https }}/releases).
 ### 3. Static Code Analysis

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/_readme_header.md.jinja RENAMED Viewed

@@ -5,13 +5,14 @@
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/{{ pypi_distribution_name }}.svg?logo=python&color=204361&labelColor=1E2933)]({{ github_repository_url_https }}/blob/main/noxfile.py)
 [![CI]({{ github_repository_url_https }}/actions/workflows/test-and-report.yml/badge.svg)]({{ github_repository_url_https }}/actions/workflows/test-and-report.yml)
 [![Read the Docs](https://img.shields.io/readthedocs/{{ readthedocs_project_key }})](https://{{ readthedocs_project_key }}.readthedocs.io/en/latest/)
-[![CodeQL]({{ github_repository_url_https }}/actions/workflows/codeql.yml/badge.svg)]({{ github_repository_url_https }}/security/code-scanning)
-[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)]({{ github_repository_url_https }}/security/dependabot)
 [![Quality Gate](https://sonarcloud.io/api/project_badges/measure?project={{ sonarqube_key }}&metric=alert_status)](https://sonarcloud.io/summary/new_code?id={{ sonarqube_key }})
 [![Security](https://sonarcloud.io/api/project_badges/measure?project={{ sonarqube_key }}&metric=security_rating)](https://sonarcloud.io/summary/new_code?id={{ sonarqube_key }})
 [![Maintainability](https://sonarcloud.io/api/project_badges/measure?project={{ sonarqube_key }}&metric=sqale_rating)](https://sonarcloud.io/summary/new_code?id={{ sonarqube_key }})
 [![Technical Debt](https://sonarcloud.io/api/project_badges/measure?project={{ sonarqube_key }}&metric=sqale_index)](https://sonarcloud.io/summary/new_code?id={{ sonarqube_key }})
 [![Code Smells](https://sonarcloud.io/api/project_badges/measure?project={{ sonarqube_key }}&metric=code_smells)](https://sonarcloud.io/summary/new_code?id={{ sonarqube_key }})
+[![CodeQL]({{ github_repository_url_https }}/actions/workflows/codeql.yml/badge.svg)]({{ github_repository_url_https }}/security/code-scanning)
+[![Dependabot](https://img.shields.io/badge/dependabot-active-brightgreen?style=flat-square&logo=dependabot)]({{ github_repository_url_https }}/security/dependabot)
+[![Renovate enabled](https://img.shields.io/badge/renovate-enabled-brightgreen.svg)](https://renovatebot.com/)
 [![Coverage](https://codecov.io/gh/{{ github_repository_owner }}/{{ github_repository_name }}/graph/badge.svg?token=SX34YRP30E)](https://codecov.io/gh/{{ github_repository_owner }}/{{ github_repository_name }})
 [![Ruff](https://img.shields.io/badge/style-Ruff-blue?color=D6FF65)]({{ github_repository_url_https }}/blob/main/noxfile.py)
 [![MyPy](https://img.shields.io/badge/mypy-checked-blue)]({{ github_repository_url_https }}/blob/main/noxfile.py)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/_readme_main.md.jinja RENAMED Viewed

@@ -80,8 +80,8 @@ uvx {{ pypi_distribution_name}} serve --port=4711 # serves webservice API on por
 ```
 Notes:
-* The API is versioned, mounted at ```/api/v1``` resp. ```/api/v2```
-* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the ```hello-world``` operation.
+* The API is versioned, mounted at `/api/v1` resp. `/api/v2`
+* While serving the webservice API go to [http://127.0.0.1:8000/api/v1/hello-world](http://127.0.0.1:8000/api/v1/hello-world) to see the respons of the `hello-world` operation.
 * Interactive documentation is provided at [http://127.0.0.1:8000/api/docs](http://127.0.0.1:8000/api/docs)

{oe_python_template-0.5.7 → oe_python_template-0.5.9}/template/docs/source/index.rst.jinja RENAMED Viewed

@@ -14,8 +14,9 @@
    api_v1
    api_v2
    reference
-   release-notes
    contributing
+   security
+   release-notes
 .. sidebar-links::
    :caption: Links

oe_python_template-0.5.9/template/docs/source/security.rst.jinja ADDED Viewed

	@@ -0,0 +1 @@
1	+ .. mdinclude:: ../../SECURITY.md

oe-python-template 0.5.7__tar.gz → 0.5.9__tar.gz

oe-python-template 0.5.7tar.gz → 0.5.9tar.gz