Ivan Gabaldon
c19d86faa3
[mod] ci: remove security ( #6400 )
...
Manage alerts directly from Docker Hub
2026-07-12 13:09:19 +02:00
Ivan Gabaldon
21fa7b0be1
[mod] ci: rework workflows ( #6401 )
...
* [mod] ci: rework workflows
mod: ubuntu 26.04 runners
mod: remove podman-static
mod: longer container cache
mod: remove useless pr information
mod: sort steps
fix: use commit ref on workflow_run children
fix: missing container workflow_run check
fix: nodejs cache
* [fix] ci: apply suggestions
https://github.com/searxng/searxng/pull/6401#discussion_r3566147961
https://github.com/searxng/searxng/pull/6401#discussion_r3566147970
2026-07-12 13:04:11 +02:00
dependabot[bot]
6a4d5148d6
[upd] github-actions: Bump github/codeql-action/upload-sarif ( #6389 )
...
Bumps [github/codeql-action/upload-sarif](https://github.com/github/codeql-action ) from 4.36.3 to 4.37.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](54f647b7e1...99df26d4f1 )
---
updated-dependencies:
- dependency-name: github/codeql-action/upload-sarif
dependency-version: 4.37.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-10 14:17:57 +02:00
dependabot[bot]
799086874d
[upd] github-actions: Bump docker/login-action from 4.3.0 to 4.4.0 ( #6387 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](c99871dec2...af1e73f918 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-10 14:15:21 +02:00
dependabot[bot]
83139c26b3
[upd] github-actions: Bump docker/scout-action from 1.23.0 to 1.23.1 ( #6388 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.23.0 to 1.23.1.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](ce97ec1bb8...2688993af7 )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.23.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-10 14:14:09 +02:00
Markus Heiser
fd5eb84a37
[chore] Google (HTML) engine: remove obsolete GSA User-Agents ( #6366 )
...
The GSA headers that were introduced in PR #5644 unfortunately no longer
work (#6359 ).
The Google engines
- google.py
- google_videos.py
do not work anymore either, but we'll leave it in the code for now:
- In google.py, central functions like get_google_info(..) are provided, which
are also used by other modules.
- We will probably need a Google HTML (and video) engine again very soon.
Related:
- https://github.com/searxng/searxng/issues/6359
- https://github.com/searxng/searxng/pull/6364
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de >
2026-07-05 12:07:23 +02:00
dependabot[bot]
9d7ca4febc
[upd] github-actions: Bump docker/setup-qemu-action from 4.1.0 to 4.2.0 ( #6355 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](06116385d9...96fe6ef7f3 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-version: 4.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-03 15:50:27 +02:00
dependabot[bot]
c5cd510d82
[upd] github-actions: Bump actions/cache from 6.0.0 to 6.1.0 ( #6353 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 6.0.0 to 6.1.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](2c8a9bd745...55cc834586 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-version: 6.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-03 15:35:29 +02:00
dependabot[bot]
73a0219ab8
[upd] github-actions: Bump docker/scout-action from 1.22.0 to 1.23.0 ( #6352 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.22.0 to 1.23.0.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](7520205ff6...ce97ec1bb8 )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.23.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-03 15:35:07 +02:00
dependabot[bot]
7ed7adfb05
[upd] github-actions: Bump github/codeql-action/upload-sarif ( #6354 )
...
Bumps [github/codeql-action/upload-sarif](https://github.com/github/codeql-action ) from 4.36.2 to 4.36.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](8aad20d150...54f647b7e1 )
---
updated-dependencies:
- dependency-name: github/codeql-action/upload-sarif
dependency-version: 4.36.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-03 15:33:41 +02:00
dependabot[bot]
d7367e0897
[upd] github-actions: Bump docker/login-action from 4.2.0 to 4.3.0 ( #6351 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](650006c6eb...c99871dec2 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-07-03 15:30:16 +02:00
dependabot[bot]
357662d86d
[upd] github-actions: Bump docker/scout-action from 1.21.0 to 1.22.0 ( #6317 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.21.0 to 1.22.0.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](cd72f264be...7520205ff6 )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.22.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-28 09:19:29 +02:00
dependabot[bot]
bfa76e4cd9
[upd] github-actions: Bump actions/cache from 5.0.5 to 6.0.0 ( #6316 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.5 to 6.0.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](27d5ce7f10...2c8a9bd745 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-version: 6.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-28 09:19:14 +02:00
dependabot[bot]
a9d49a3349
[upd] github-actions: Bump actions/setup-python from 6.2.0 to 6.3.0 ( #6315 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](a309ff8b42...ece7cb06ca )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-version: 6.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-28 09:18:54 +02:00
dependabot[bot]
38b678c493
[upd] github-actions: Bump actions/checkout from 6.0.3 to 7.0.0 ( #6288 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.3 to 7.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](df4cb1c069...9c091bb21b )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 7.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-19 16:58:27 +02:00
Ivan Gabaldon
9d9d605b15
[fix] ci: use install buildhost script ( #6105 )
2026-06-11 08:23:37 +02:00
dependabot[bot]
2f049cb037
[upd] github-actions: Bump actions/checkout from 6.0.2 to 6.0.3 ( #6204 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.2 to 6.0.3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](de0fac2e45...df4cb1c069 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: 6.0.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-05 16:17:01 +02:00
dependabot[bot]
eb39bc0dc1
[upd] github-actions: Bump github/codeql-action from 4.36.0 to 4.36.2 ( #6203 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.36.0 to 4.36.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](7211b7c807...8aad20d150 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.36.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-06-05 16:16:35 +02:00
dependabot[bot]
70e810bd7b
[upd] github-actions: Bump docker/setup-qemu-action from 4.0.0 to 4.1.0 ( #6166 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](ce360397dd...06116385d9 )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-29 14:42:48 +02:00
dependabot[bot]
baab1c160a
[upd] github-actions: Bump github/codeql-action from 4.35.5 to 4.36.0 ( #6167 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.5 to 4.36.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](9e0d7b8d25...7211b7c807 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.36.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-29 14:42:28 +02:00
dependabot[bot]
dd4664e03a
[upd] github-actions: Bump docker/login-action from 4.1.0 to 4.2.0 ( #6168 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](4907a6ddec...650006c6eb )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.2.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-29 14:41:49 +02:00
dependabot[bot]
c57f772ad0
[upd] github-actions: Bump github/codeql-action from 4.35.4 to 4.35.5 ( #6114 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.4 to 4.35.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](68bde559de...9e0d7b8d25 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-22 14:50:44 +02:00
dependabot[bot]
b8498d7891
[upd] github-actions: Bump docker/scout-action from 1.20.4 to 1.21.0 ( #6112 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.20.4 to 1.21.0.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](bacf462e8d...cd72f264be )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.21.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-22 14:50:31 +02:00
dependabot[bot]
7eb130b1a8
[upd] github-actions: Bump github/codeql-action from 4.35.2 to 4.35.4 ( #6055 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.2 to 4.35.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](95e58e9a2c...68bde559de )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-05-08 14:25:27 +02:00
dependabot[bot]
1e74a92419
[upd] github-actions: Bump actions/setup-node from 6.3.0 to 6.4.0 ( #6009 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](53b83947a5...48b55a011b )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 6.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-24 14:29:44 +02:00
dependabot[bot]
871ed47f89
[upd] github-actions: Bump peter-evans/create-pull-request ( #5987 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 8.1.0 to 8.1.1.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](c0f553fe54...5f6978faf0 )
---
updated-dependencies:
- dependency-name: peter-evans/create-pull-request
dependency-version: 8.1.1
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-17 14:27:38 +02:00
dependabot[bot]
fc1e1e9c3e
[upd] github-actions: Bump github/codeql-action from 4.35.1 to 4.35.2 ( #5986 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.35.1 to 4.35.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](c10b8064de...95e58e9a2c )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-17 14:27:18 +02:00
dependabot[bot]
aad1ab5e56
[upd] github-actions: Bump actions/cache from 5.0.4 to 5.0.5 ( #5985 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.4 to 5.0.5.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](668228422a...27d5ce7f10 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-version: 5.0.5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-17 14:23:38 +02:00
Markus Heiser
4f9c80160f
[mod] revision of the issue templates
...
BTW blank issues are now longer allowed.
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de >
2026-04-16 15:28:46 +02:00
Markus Heiser
9e08a6771f
[mod] GH workflow "update translations from Weblate" (area:i18n) ( #5968 )
...
Rename label of the Weblate updates (PR) from `translation` to `area:i18n`.
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de >
2026-04-11 11:48:45 +02:00
dependabot[bot]
7737a0da1a
[upd] github-actions: Bump docker/scout-action from 1.20.3 to 1.20.4 ( #5963 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.20.3 to 1.20.4.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](8910519cee...bacf462e8d )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.20.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-10 16:02:22 +02:00
dependabot[bot]
53141be387
[upd] github-actions: Bump github/codeql-action from 4.34.1 to 4.35.1 ( #5945 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.34.1 to 4.35.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](3869755554...c10b8064de )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.35.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-03 09:42:21 +02:00
dependabot[bot]
953933d472
[upd] github-actions: Bump docker/login-action from 4.0.0 to 4.1.0 ( #5944 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](b45d80f862...4907a6ddec )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.1.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-04-03 09:41:08 +02:00
dependabot[bot]
265858ee2b
[upd] github-actions: Bump docker/scout-action from 1.20.2 to 1.20.3 ( #5913 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.20.2 to 1.20.3.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](1128f02d1e...8910519cee )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.20.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-27 14:01:04 +01:00
dependabot[bot]
d7a83b8d8a
[upd] github-actions: Bump github/codeql-action from 4.33.0 to 4.34.1 ( #5914 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.33.0 to 4.34.1.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b1bff81932...3869755554 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.34.1
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-27 14:00:14 +01:00
Markus Heiser
99ec6f296e
[mod] drop support for Python releases older than 4 years ( #5895 )
...
The end-of-life (EOL) of a Python release is reached after 5 years, with the
last three years dedicated to security fixes. [1]
Unfortunately, this doesn't apply to common libraries (dependencies): bug fixes
are often only included in major releases, and minor releases with corresponding
security fixes are rarely offered.
To make matters worse, these dependencies often prematurely discontinue their
support for older Python releases (because, for example, they want/need to use
new Python features).
If we want to offer secure software, we are faced with the dilemma of either
supporting old Python releases and accepting that there are security bugs in the
dependencies, or ending support for older Python versions before the actual EOL
of the Python release.
[1] https://devguide.python.org/versions/
Closes: https://github.com/searxng/searxng/issues/5869
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de >
2026-03-24 20:26:34 +01:00
dependabot[bot]
6c7e9c1976
[upd] github-actions: Bump actions/cache from 5.0.3 to 5.0.4 ( #5873 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.3 to 5.0.4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](cdf6c1fa76...668228422a )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-version: 5.0.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 22:00:17 +01:00
dependabot[bot]
8ad72872b5
[upd] github-actions: Bump github/codeql-action from 4.32.6 to 4.33.0 ( #5872 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.6 to 4.33.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0d579ffd05...b1bff81932 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.33.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-20 21:00:27 +01:00
dependabot[bot]
3c1f68c59e
[upd] github-actions: Bump docker/scout-action from 1.18.2 to 1.20.2 ( #5854 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.18.2 to 1.20.2.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](f8c7768240...1128f02d1e )
---
updated-dependencies:
- dependency-name: docker/scout-action
dependency-version: 1.20.2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-13 14:09:07 +01:00
Bnyro
3d3a78f3aa
chore: add link to ai policy in issue/pr templates
2026-03-12 16:04:00 +01:00
dependabot[bot]
0716de6bc8
[upd] github-actions: Bump github/codeql-action from 4.32.4 to 4.32.6 ( #5814 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.4 to 4.32.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](89a39a4e59...0d579ffd05 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.6
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 23:00:07 +01:00
dependabot[bot]
c1b211aeea
[upd] github-actions: Bump docker/login-action from 3.7.0 to 4.0.0 ( #5816 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](c94ce9fb46...b45d80f862 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: 4.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 14:18:54 +01:00
dependabot[bot]
08d2b92b2a
[upd] github-actions: Bump docker/setup-qemu-action from 3.7.0 to 4.0.0 ( #5815 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](c7c5346462...ce360397dd )
---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
dependency-version: 4.0.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 14:15:36 +01:00
dependabot[bot]
7cc4eedc1a
[upd] github-actions: Bump actions/setup-node from 6.2.0 to 6.3.0 ( #5813 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](6044e13b5d...53b83947a5 )
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 6.3.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-03-06 14:14:46 +01:00
Ivan Gabaldon
dd98f761ad
[mod] ci: remove checker
...
Missed on https://github.com/searxng/searxng/pull/5767
2026-03-02 07:18:32 +01:00
dependabot[bot]
2756341b21
[upd] github-actions: Bump github/codeql-action from 4.32.3 to 4.32.4 ( #5774 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.3 to 4.32.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](9e907b5e64...89a39a4e59 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.4
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-27 09:30:00 +01:00
dependabot[bot]
8f824d34a8
[upd] github-actions: Bump github/codeql-action from 4.32.2 to 4.32.3 ( #5753 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.2 to 4.32.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](45cbd0c69e...9e907b5e64 )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-20 10:52:55 +01:00
Ivan Gabaldon
17544140fb
[fix] ci: cache keys ( #5745 )
...
YAML block (literal) scalar style also takes quotes into account:
Expected:
`container-amd64-20260216-acbc0ea29f44f7fc7eeadcf91d421c66f26dbbdd48cc284691f8fd8982ab7323, container-amd64-20260216-, container-amd64-`
Got:
`container-amd64-20260216-acbc0ea29f44f7fc7eeadcf91d421c66f26dbbdd48cc284691f8fd8982ab7323, "container-amd64-20260216-", "container-amd64-"`
2026-02-19 10:37:20 +01:00
dependabot[bot]
9f5dedabba
[upd] github-actions: Bump github/codeql-action from 4.32.0 to 4.32.2 ( #5721 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.0 to 4.32.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b20883b0cd...45cbd0c69e )
---
updated-dependencies:
- dependency-name: github/codeql-action
dependency-version: 4.32.2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-02-06 11:18:26 +01:00
Ivan Gabaldon
92d37152c2
[upd] ci: static podman v5.7.1 ( #5714 )
2026-02-02 22:40:33 +01:00