Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.

## Awaiting Schedule

The following updates are awaiting their schedule. To get an update now, click on a checkbox below.

 - [ ] chore(deps): lock file maintenance

## Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

 - [ ] chore(deps): update dependency charset-normalizer to v3.4.7
 - [ ] chore(deps): update dependency click to v8.3.2
 - [ ] chore(deps): update dependency requests to v2.33.1
 - [ ] chore(deps): update dependency werkzeug to v3.1.8
 - [ ] chore(deps): update pre-commit hook python-poetry/poetry to v2.3.4
 - [ ] ci(action): update actions/upload-artifact action to v7.0.1
 - [ ] chore(deps): update python docker tag to v3.14
 - [ ] ci(action): update actions/create-github-app-token action to v3.1.1

## Other Branches

The following updates are pending. To force the creation of a PR, click on a checkbox below.

 - [ ] chore(deps): update dependency flask to v3.1.3 [security]
 - [ ] chore(deps): update dependency pyjwt to v2.12.0 [security]
 - [ ] chore(deps): update dependency requests to v2.33.0 [security]

## Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

 - [ ] [chore(deps): update dependency types-requests to v2.32.4.20260107](../pull/504)
 - [ ] [chore(deps): update dependency flake8 to v7.3.0](../pull/554)
 - [ ] [chore(deps): update dependency mypy to v1.19.1](../pull/493)
 - [ ] [chore(deps): update dependency pep8-naming to v0.15.1](../pull/574)
 - [ ] [chore(deps): update dependency pytest to v8.4.2](../pull/597)
 - [ ] [chore(deps): update dependency tox to v4.50.3](../pull/584)
 - [ ] [chore(deps): update dependency types-setuptools to v75.8.2.20250305](../pull/495)
 - [ ] [chore(deps): update dependency certifi to v2026](../pull/750)
 - [ ] [chore(deps): update dependency cffi to v2](../pull/662)
 - [ ] [chore(deps): update dependency flake8-bugbear to v25](../pull/686)
 - [ ] [chore(deps): update dependency importlib-metadata to v9](../pull/834)
 - [ ] [chore(deps): update dependency isort to v6](../pull/486)
 - [ ] [chore(deps): update dependency isort to v7](../pull/679)
 - [ ] [chore(deps): update dependency isort to v8](../pull/782)
 - [ ] [chore(deps): update dependency pycparser to v3](../pull/763)
 - [ ] [chore(deps): update dependency pytest to v9](../pull/693)
 - [ ] [chore(deps): update dependency types-setuptools to v76](../pull/541)
 - [ ] [chore(deps): update dependency types-setuptools to v77](../pull/552)
 - [ ] [chore(deps): update dependency types-setuptools to v78](../pull/553)
 - [ ] [chore(deps): update dependency types-setuptools to v79](../pull/567)
 - [ ] [chore(deps): update dependency types-setuptools to v80](../pull/573)
 - [ ] [chore(deps): update dependency types-setuptools to v81](../pull/776)
 - [ ] [chore(deps): update dependency types-setuptools to v82](../pull/777)
 - [ ] [chore(deps): update pre-commit hook compilerla/conventional-pre-commit to v4](../pull/731)
 - [ ] [chore(deps): update pre-commit hook psf/black to v26](../pull/755)
 - [ ] [chore(deps): update pre-commit hook pycqa/isort to v8](../pull/783)
 - [ ] **Click on this checkbox to rebase all open PRs at once**

## Vulnerabilities

> [!IMPORTANT]
> `4`/`4` CVEs have Renovate fixes.

<details><summary>poetry</summary>
<blockquote>

<details><summary>pyproject.toml</summary>
<blockquote>

<details><summary>requests</summary>
<blockquote>

- [GHSA-gc5v-m9x4-r6x2](https://osv.dev/vulnerability/GHSA-gc5v-m9x4-r6x2) (fixed in >= 2.33.0)
</blockquote>
</details>

<details><summary>pyjwt</summary>
<blockquote>

- [GHSA-752w-5fwx-jx9f](https://osv.dev/vulnerability/GHSA-752w-5fwx-jx9f) (fixed in >= 2.12.0)
</blockquote>
</details>

<details><summary>flask</summary>
<blockquote>

- [GHSA-68rp-wp8r-4726](https://osv.dev/vulnerability/GHSA-68rp-wp8r-4726) (fixed in >= 3.1.3)
</blockquote>
</details>

<details><summary>black</summary>
<blockquote>

- [GHSA-3936-cmfr-pm3m](https://osv.dev/vulnerability/GHSA-3936-cmfr-pm3m) (fixed in >= 26.3.1)
</blockquote>
</details>

</blockquote>
</details>

</blockquote>
</details>

## Detected Dependencies

<details><summary>dockerfile (1)</summary>
<blockquote>

<details><summary>Dockerfile (1)</summary>

 - `python 3.9-slim` → [Updates: `3.14-slim`]

</details>

</blockquote>
</details>

<details><summary>github-actions (2)</summary>
<blockquote>

<details><summary>.github/workflows/ci.yml (10)</summary>

 - `amannn/action-semantic-pull-request v6.1.1@48f256284bd46cdaab1048c3721360e808335d50`
 - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd`
 - `actions/setup-python v6.2.0@a309ff8b426b58ec0e2a45f0f869d46889d02405`
 - `actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f` → [Updates: `v7.0.1`]
 - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd`
 - `actions/download-artifact v8.0.1@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c`
 - `py-cov-action/python-coverage-comment-action v3.1.0@b3d7e98bf5528b07d6951ef7a93e2b156f960112`
 - `actions/upload-artifact v7.0.0@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f` → [Updates: `v7.0.1`]
 - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd`
 - `gitleaks/gitleaks-action v2.3.9@ff98106e4c7b2bc287b24eaf42907196329070c7`

</details>

<details><summary>.github/workflows/release-please.yml (6)</summary>

 - `actions/create-github-app-token v3.0.0@f8d387b68d61c58ab83c6c016672934102569859` → [Updates: `v3.1.1`]
 - `googleapis/release-please-action v4.4.0@16a9c90856f42705d54a6fda1823352bdc62cf38`
 - `actions/checkout v6.0.2@de0fac2e4500dabe0009e67214ff5f5447ce83dd`
 - `descope/.github main@859f44cc813140acbf497af1775372c143f77327`
 - `descope/.github main@859f44cc813140acbf497af1775372c143f77327`
 - `pypa/gh-action-pypi-publish release/v1@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e` → [Updates: `release/v1`]

</details>

</blockquote>
</details>

<details><summary>html (1)</summary>
<blockquote>

<details><summary>samples/templates/webauthn_demo.html (1)</summary>

 - `jquery 3.7.1`

</details>

</blockquote>
</details>

<details><summary>pip_requirements (1)</summary>
<blockquote>

<details><summary>requirements.txt (24)</summary>

 - `blinker ==1.9.0`
 - `certifi ==2025.11.12` → [Updates: `==2026.2.25`]
 - `cffi ==1.17.1` → [Updates: `==2.0.0`]
 - `charset-normalizer ==3.4.6` → [Updates: `==3.4.7`]
 - `click ==8.3.1` → [Updates: `==8.3.2`]
 - `colorama ==0.4.6`
 - `cryptography ==46.0.7`
 - `dnspython ==2.8.0`
 - `email-validator ==2.3.0`
 - `Flask ==3.1.3`
 - `idna ==3.11`
 - `importlib-metadata ==8.9.0` → [Updates: `==9.0.0`]
 - `itsdangerous ==2.2.0`
 - `Jinja2 ==3.1.6`
 - `liccheck ==0.9.2`
 - `MarkupSafe ==3.0.3`
 - `pycparser ==2.23` → [Updates: `==3.0`]
 - `PyJWT ==2.12.1`
 - `requests ==2.33.0` → [Updates: `==2.33.1`]
 - `semantic-version ==2.10.0`
 - `toml ==0.10.2`
 - `urllib3 ==2.6.3`
 - `Werkzeug ==3.1.6` → [Updates: `==3.1.8`]
 - `zipp ==3.23.0`

</details>

</blockquote>
</details>

<details><summary>poetry (1)</summary>
<blockquote>

<details><summary>pyproject.toml (19)</summary>

 - `poetry-core >=1.1.0`
 - `python >=3.8.1,<4.0`
 - `requests >=2.27.0` → [Updates: `>=2.27.0`]
 - `pyjwt >=2.4.0` → [Updates: `>=2.4.0`]
 - `liccheck ^0.9.1`
 - `Flask >=2` → [Updates: `>=2`]
 - `mock 5.2.0`
 - `flake8 7.1.2` → [Updates: `7.3.0`]
 - `flake8-pyproject 1.2.4`
 - `flake8-bugbear 24.12.12` → [Updates: `25.11.29`]
 - `liccheck 0.9.2`
 - `isort 5.13.2` → [Updates: `6.1.0`, `7.0.0`, `8.0.1`]
 - `pep8-naming 0.14.1` → [Updates: `0.15.1`]
 - `tox 4.25.0` → [Updates: `4.50.3`]
 - `mypy 1.11.2` → [Updates: `1.19.1`]
 - `types-requests 2.32.0.20240914` → [Updates: `2.32.4.20260107`]
 - `types-setuptools 75.1.0.20240917` → [Updates: `75.8.2.20250305`, `76.0.0.20250313`, `77.0.2.20250328`, `78.1.0.20250329`, `79.0.0.20250422`, `80.10.0.20260124`, `81.0.0.20260209`, `82.0.0.20260210`]
 - `pytest 8.3.5` → [Updates: `8.4.2`, `9.0.2`]
 - `coverage ^7.3.1`

</details>

</blockquote>
</details>

<details><summary>pre-commit (1)</summary>
<blockquote>

<details><summary>.pre-commit-config.yaml (12)</summary>

 - `floatingpurr/sync_with_poetry 1.2.1`
 - `pre-commit/pre-commit-hooks v6.0.0`
 - `PyCQA/isort 7.0.0` → [Updates: `8.0.1`]
 - `psf/black 25.12.0` → [Updates: `26.3.1`]
 - `asottile/pyupgrade v3.21.2`
 - `pycqa/flake8 7.3.0`
 - `python-poetry/poetry 2.3.2` → [Updates: `2.3.4`]
 - `python-poetry/poetry-plugin-export 1.10.0`
 - `pre-commit/pre-commit v4.5.1`
 - `tox-dev/tox-ini-fmt 1.7.1`
 - `gitleaks/gitleaks v8.30.1`
 - `compilerla/conventional-pre-commit v3.6.0` → [Updates: `v4.4.0`]

</details>

</blockquote>
</details>

<details><summary>renovate-config-presets (1)</summary>
<blockquote>

<details><summary>renovate.json</summary>


</details>

</blockquote>
</details>

---
- [ ] Check this box to trigger a request for Renovate to run again on this repository
📊 [View in RenoWeb](https://renoweb.devops.descope.io/jobs/descope/python-sdk)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Dependency Dashboard #44

Awaiting Schedule

Pending Status Checks

Other Branches

Open

Vulnerabilities

Detected Dependencies

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Dependency Dashboard #44

Description

Awaiting Schedule

Pending Status Checks

Other Branches

Open

Vulnerabilities

Detected Dependencies

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions