Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Config Migration Needed

See Config Migration PR: #56.

Abandoned Dependencies

The following dependencies have not received updates for an extended period and may be unmaintained.

View abandoned dependencies (3)

[!NOTE]
Packages are marked as abandoned when they exceed the abandonmentThreshold since their last release. Unlike deprecated packages with official notices, abandonment is detected by release inactivity.

Datasource	Package	Last Updated
pip_requirements	Jinja2	2025-03-05
pip_requirements	blinker	2024-11-08
pip_requirements	itsdangerous	2024-04-16

Pending Status Checks

The following updates await pending status checks. To force their creation now, click on a checkbox below.

• chore(deps): pin dependencies (actions/checkout, actions/setup-node, peter-evans/create-pull-request)
• chore(deps): update dependency markupsafe to v2.1.5
• chore(deps): update dependency werkzeug to v3.1.8
• chore(deps): update dependency blinker to v1.9.0
• chore(deps): update dependency certifi to v2024.12.14
• chore(deps): update dependency cffi to v1.17.1
• chore(deps): update dependency charset-normalizer to v3.4.7
• chore(deps): update dependency click to v8.4.1
• chore(deps): update dependency descope to v1.13.0
• chore(deps): update dependency dnspython to v2.8.0
• chore(deps): update dependency email-validator to v2.3.0
• chore(deps): update dependency idna to v3.18
• chore(deps): update dependency itsdangerous to v2.2.0
• chore(deps): update dependency pycparser to v2.23
• chore(deps): update dependency requests to v2.34.2
• chore(deps): update actions/checkout action to v6
• chore(deps): update actions/setup-node action to v6
• chore(deps): update dependency certifi to v2026
• chore(deps): update dependency cffi to v2
• chore(deps): update dependency cryptography to v49
• chore(deps): update dependency descope to v2
• chore(deps): update dependency markupsafe to v3
• chore(deps): update dependency node to v24
• chore(deps): update dependency pycparser to v3
• chore(deps): update peter-evans/create-pull-request action to v8

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• chore(deps): update dependency @descope/web-component to v3.69.3
• chore(deps): update dependency @descope/web-js-sdk to v1.51.0
• Click on this checkbox to rebase all open PRs at once

Vulnerabilities

Renovate has not found any CVEs on osv.dev.

Detected Dependencies

github-actions (1)

.github/workflows/update-dependencies.yml (4)

• actions/checkout v4 → [Updates: v6, v4]
• actions/setup-node v3 → [Updates: v6, v3]
• peter-evans/create-pull-request v4 → [Updates: v8, v4]
• node 16 → [Updates: 24]

pip_requirements (1)

requirements.txt (20)

• blinker ==1.6.2 → [Updates: ==1.9.0]
• certifi ==2024.7.4 → [Updates: ==2024.12.14, ==2026.5.20]
• cffi ==1.15.1 → [Updates: ==1.17.1, ==2.0.0]
• charset-normalizer ==3.1.0 → [Updates: ==3.4.7]
• click ==8.1.3 → [Updates: ==8.4.1]
• cryptography ==48.0.1 → [Updates: ==49.0.0]
• descope ==1.6.5 → [Updates: ==1.13.0, ==2.4.0]
• dnspython ==2.6.1 → [Updates: ==2.8.0]
• email-validator ==2.0.0.post2 → [Updates: ==2.3.0]
• Flask ==3.1.3
• idna ==3.15 → [Updates: ==3.18]
• itsdangerous ==2.1.2 → [Updates: ==2.2.0]
• Jinja2 ==3.1.6
• MarkupSafe ==2.1.2 → [Updates: ==2.1.5, ==3.0.3]
• pycparser ==2.21 → [Updates: ==2.23, ==3.0]
• PyJWT ==2.13.0
• python-dotenv ==1.2.2
• requests ==2.33.0 → [Updates: ==2.34.2]
• urllib3 ==2.7.0
• Werkzeug ==3.1.6 → [Updates: ==3.1.8]

regex (2)

renovate.json

templates/base.html (2)

• @descope/web-component 3.15.5 → [Updates: 3.69.3]
• @descope/web-js-sdk 1.12.1 → [Updates: 1.51.0]

renovate-config (1)

renovate.json

---

• Check this box to trigger a request for Renovate to run again on this repository