Markus Heiser
99ec6f296e
[mod] drop support for Python releases older than 4 years ( #5895 )
...
The end-of-life (EOL) of a Python release is reached after 5 years, with the
last three years dedicated to security fixes. [1]
Unfortunately, this doesn't apply to common libraries (dependencies): bug fixes
are often only included in major releases, and minor releases with corresponding
security fixes are rarely offered.
To make matters worse, these dependencies often prematurely discontinue their
support for older Python releases (because, for example, they want/need to use
new Python features).
If we want to offer secure software, we are faced with the dilemma of either
supporting old Python releases and accepting that there are security bugs in the
dependencies, or ending support for older Python versions before the actual EOL
of the Python release.
[1] https://devguide.python.org/versions/
Closes: https://github.com/searxng/searxng/issues/5869
Signed-off-by: Markus Heiser <markus.heiser@darmarit.de>
2026-03-24 20:26:34 +01:00
dependabot[bot]
6c7e9c1976
[upd] github-actions: Bump actions/cache from 5.0.3 to 5.0.4 ( #5873 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.3 to 5.0.4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](cdf6c1fa76...668228422a
2026-03-20 22:00:17 +01:00
dependabot[bot]
8ad72872b5
[upd] github-actions: Bump github/codeql-action from 4.32.6 to 4.33.0 ( #5872 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.6 to 4.33.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0d579ffd05...b1bff81932
2026-03-20 21:00:27 +01:00
dependabot[bot]
3c1f68c59e
[upd] github-actions: Bump docker/scout-action from 1.18.2 to 1.20.2 ( #5854 )
...
Bumps [docker/scout-action](https://github.com/docker/scout-action ) from 1.18.2 to 1.20.2.
- [Release notes](https://github.com/docker/scout-action/releases )
- [Commits](f8c7768240...1128f02d1e
2026-03-13 14:09:07 +01:00
dependabot[bot]
0716de6bc8
[upd] github-actions: Bump github/codeql-action from 4.32.4 to 4.32.6 ( #5814 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.4 to 4.32.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](89a39a4e59...0d579ffd05
2026-03-06 23:00:07 +01:00
dependabot[bot]
c1b211aeea
[upd] github-actions: Bump docker/login-action from 3.7.0 to 4.0.0 ( #5816 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](c94ce9fb46...b45d80f862
2026-03-06 14:18:54 +01:00
dependabot[bot]
08d2b92b2a
[upd] github-actions: Bump docker/setup-qemu-action from 3.7.0 to 4.0.0 ( #5815 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](c7c5346462...ce360397dd
2026-03-06 14:15:36 +01:00
dependabot[bot]
7cc4eedc1a
[upd] github-actions: Bump actions/setup-node from 6.2.0 to 6.3.0 ( #5813 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](6044e13b5d...53b83947a5
2026-03-06 14:14:46 +01:00
Ivan Gabaldon
dd98f761ad
[mod] ci: remove checker
...
Missed on https://github.com/searxng/searxng/pull/5767
2026-03-02 07:18:32 +01:00
dependabot[bot]
2756341b21
[upd] github-actions: Bump github/codeql-action from 4.32.3 to 4.32.4 ( #5774 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.3 to 4.32.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](9e907b5e64...89a39a4e59
2026-02-27 09:30:00 +01:00
dependabot[bot]
8f824d34a8
[upd] github-actions: Bump github/codeql-action from 4.32.2 to 4.32.3 ( #5753 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.2 to 4.32.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](45cbd0c69e...9e907b5e64
2026-02-20 10:52:55 +01:00
Ivan Gabaldon
17544140fb
[fix] ci: cache keys ( #5745 )
...
YAML block (literal) scalar style also takes quotes into account:
Expected:
`container-amd64-20260216-acbc0ea29f44f7fc7eeadcf91d421c66f26dbbdd48cc284691f8fd8982ab7323, container-amd64-20260216-, container-amd64-`
Got:
`container-amd64-20260216-acbc0ea29f44f7fc7eeadcf91d421c66f26dbbdd48cc284691f8fd8982ab7323, "container-amd64-20260216-", "container-amd64-"`
2026-02-19 10:37:20 +01:00
dependabot[bot]
9f5dedabba
[upd] github-actions: Bump github/codeql-action from 4.32.0 to 4.32.2 ( #5721 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.32.0 to 4.32.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](b20883b0cd...45cbd0c69e
2026-02-06 11:18:26 +01:00
Ivan Gabaldon
92d37152c2
[upd] ci: static podman v5.7.1 ( #5714 )
2026-02-02 22:40:33 +01:00
dependabot[bot]
1c292dd9a4
[upd] github-actions: Bump docker/login-action from 3.6.0 to 3.7.0 ( #5710 )
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](5e57cd1181...c94ce9fb46
2026-01-30 19:41:00 +01:00
dependabot[bot]
2ad404a3bf
[upd] github-actions: Bump github/codeql-action from 4.31.10 to 4.32.0 ( #5707 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.10 to 4.32.0.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cdefb33c0f...b20883b0cd
2026-01-30 19:40:15 +01:00
dependabot[bot]
ca67782626
[upd] github-actions: Bump actions/cache from 5.0.2 to 5.0.3 ( #5708 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.2 to 5.0.3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](8b402f58fb...cdf6c1fa76
2026-01-30 19:39:55 +01:00
dependabot[bot]
68944b4484
[upd] github-actions: Bump peter-evans/create-pull-request ( #5681 )
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 8.0.0 to 8.1.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](98357b18bf...c0f553fe54
2026-01-23 10:14:17 +01:00
dependabot[bot]
c60f59609e
[upd] github-actions: Bump actions/setup-python from 6.1.0 to 6.2.0 ( #5682 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 6.1.0 to 6.2.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](83679a892e...a309ff8b42
2026-01-23 10:13:22 +01:00
dependabot[bot]
8473b030c5
[upd] github-actions: Bump actions/cache from 5.0.1 to 5.0.2 ( #5685 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.1 to 5.0.2.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](9255dc7a25...8b402f58fb
2026-01-23 10:10:38 +01:00
dependabot[bot]
9dd3baf45c
[upd] github-actions: Bump actions/checkout from 6.0.1 to 6.0.2 ( #5679 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](8e8c483db8...de0fac2e45
2026-01-23 10:10:14 +01:00
dependabot[bot]
086c1533a4
[upd] github-actions: Bump JamesIves/github-pages-deploy-action ( #5666 )
...
Bumps [JamesIves/github-pages-deploy-action](https://github.com/jamesives/github-pages-deploy-action ) from 4.7.6 to 4.8.0.
- [Release notes](https://github.com/jamesives/github-pages-deploy-action/releases )
- [Commits](9d877eea73...d92aa235d0
2026-01-16 10:22:26 +01:00
dependabot[bot]
55c01c0757
[upd] github-actions: Bump github/codeql-action from 4.31.9 to 4.31.10 ( #5665 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.9 to 4.31.10.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](5d4e8d1aca...cdefb33c0f
2026-01-16 10:21:56 +01:00
dependabot[bot]
279e098168
[upd] github-actions: Bump actions/setup-node from 6.1.0 to 6.2.0 ( #5664 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.1.0 to 6.2.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](395ad32622...6044e13b5d
2026-01-16 10:21:32 +01:00
mg95
cf74e1d9e9
[fix] google: switch to using GSA for iPhone useragent
2026-01-11 16:21:01 +01:00
dependabot[bot]
c32b8100c3
[upd] github-actions: Bump actions/cache from 5.0.0 to 5.0.1
...
Bumps [actions/cache](https://github.com/actions/cache ) from 5.0.0 to 5.0.1.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](a783357455...9255dc7a25
2025-12-19 08:35:15 +00:00
dependabot[bot]
f93257941e
[upd] github-actions: Bump github/codeql-action from 4.31.7 to 4.31.9
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.7 to 4.31.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](cf1bb45a27...5d4e8d1aca
2025-12-19 08:34:32 +00:00
dependabot[bot]
21bf8a6973
[upd] github-actions: Bump peter-evans/create-pull-request
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.9 to 8.0.0.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](84ae59a2cd...98357b18bf
2025-12-12 19:56:18 +00:00
dependabot[bot]
f5475ba782
[upd] github-actions: Bump JamesIves/github-pages-deploy-action
...
Bumps [JamesIves/github-pages-deploy-action](https://github.com/jamesives/github-pages-deploy-action ) from 4.7.4 to 4.7.6.
- [Release notes](https://github.com/jamesives/github-pages-deploy-action/releases )
- [Commits](4a3abc783e...9d877eea73
2025-12-12 19:52:52 +00:00
dependabot[bot]
265f15498c
[upd] github-actions: Bump github/codeql-action from 4.31.6 to 4.31.7
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.6 to 4.31.7.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fe4161a26a...cf1bb45a27
2025-12-12 19:51:40 +00:00
dependabot[bot]
666409ec7e
[upd] github-actions: Bump actions/cache from 4.3.0 to 5.0.0
...
Bumps [actions/cache](https://github.com/actions/cache ) from 4.3.0 to 5.0.0.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](0057852bfa...a783357455
2025-12-12 19:51:17 +00:00
dependabot[bot]
7017393647
[upd] github-actions: Bump actions/setup-node from 6.0.0 to 6.1.0
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 6.0.0 to 6.1.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](2028fbc5c2...395ad32622
2025-12-05 10:26:25 +00:00
dependabot[bot]
aa49f5b933
[upd] github-actions: Bump github/codeql-action from 4.31.5 to 4.31.6
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.5 to 4.31.6.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](fdbfb4d275...fe4161a26a
2025-12-05 10:25:37 +00:00
dependabot[bot]
3f91ac47e6
[upd] github-actions: Bump actions/checkout from 6.0.0 to 6.0.1
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 6.0.0 to 6.0.1.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](1af3b93b68...8e8c483db8
2025-12-05 10:14:41 +00:00
dependabot[bot]
39b9922609
[upd] github-actions: Bump actions/setup-python from 6.0.0 to 6.1.0
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 6.0.0 to 6.1.0.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](e797f83bcb...83679a892e
2025-11-28 09:28:12 +00:00
dependabot[bot]
7018e6583b
[upd] github-actions: Bump peter-evans/create-pull-request
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 7.0.8 to 7.0.9.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](271a8d0340...84ae59a2cd
2025-11-28 09:27:25 +00:00
dependabot[bot]
b957e587da
[upd] github-actions: Bump github/codeql-action from 4.31.4 to 4.31.5
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.4 to 4.31.5.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e12f017898...fdbfb4d275
2025-11-28 09:25:18 +00:00
Ivan Gabaldon
2f0e52d6eb
[upd] ci: docker secret maintenance
...
I've narrowed the permissions and rotated the token for the deploy account on
DockerHub registry. I replaced the secret ref in GitHub so that it's available
organization wide. No further actions are necessary.
2025-11-23 12:26:40 +00:00
dependabot[bot]
33a176813d
[upd] github-actions: Bump actions/checkout from 5.0.0 to 6.0.0
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](08c6903cd8...1af3b93b68
2025-11-21 09:38:50 +00:00
dependabot[bot]
20ec01c5f7
[upd] github-actions: Bump github/codeql-action from 4.31.3 to 4.31.4
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.3 to 4.31.4.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](014f16e7ab...e12f017898
2025-11-21 09:21:20 +00:00
dependabot[bot]
1e200a1107
[upd] github-actions: Bump github/codeql-action from 4.31.2 to 4.31.3 ( #5445 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.31.2 to 4.31.3.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](0499de31b9...014f16e7ab
2025-11-14 08:33:14 +00:00
dependabot[bot]
1cfbd32a1d
[upd] github-actions: Bump JamesIves/github-pages-deploy-action ( #5425 )
...
Bumps [JamesIves/github-pages-deploy-action](https://github.com/jamesives/github-pages-deploy-action ) from 4.7.3 to 4.7.4.
- [Release notes](https://github.com/jamesives/github-pages-deploy-action/releases )
- [Commits](6c2d9db40f...4a3abc783e
2025-11-07 10:01:43 +01:00
dependabot[bot]
a15b594003
[upd] github-actions: Bump docker/setup-qemu-action from 3.6.0 to 3.7.0 ( #5424 )
...
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action ) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases )
- [Commits](29109295f8...c7c5346462
2025-11-07 09:56:18 +01:00
dependabot[bot]
b8e4ebdc0c
[upd] github-actions: Bump github/codeql-action from 4.30.9 to 4.31.2 ( #5403 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.30.9 to 4.31.2.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](16140ae1a1...0499de31b9
2025-10-31 11:31:10 +01:00
dependabot[bot]
c41b769f97
[upd] github-actions: Bump github/codeql-action from 4.30.8 to 4.30.9 ( #5369 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.30.8 to 4.30.9.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](f443b600d9...16140ae1a1
2025-10-24 10:04:49 +02:00
Ivan Gabaldon
16293132e3
[mod] ci: use custom static podman ( #5354 )
...
We only need updated podman on `build`. `test` and `release` can use image
provided container engine binaries.
2025-10-22 14:38:59 +02:00
dependabot[bot]
080f3a5f87
[upd] github-actions: Bump actions/setup-node from 5.0.0 to 6.0.0 ( #5334 )
...
Bumps [actions/setup-node](https://github.com/actions/setup-node ) from 5.0.0 to 6.0.0.
- [Release notes](https://github.com/actions/setup-node/releases )
- [Commits](a0853c2454...2028fbc5c2
2025-10-17 10:03:07 +02:00
dependabot[bot]
f54cf643b2
[upd] github-actions: Bump github/codeql-action from 4.30.7 to 4.30.8 ( #5335 )
...
Bumps [github/codeql-action](https://github.com/github/codeql-action ) from 4.30.7 to 4.30.8.
- [Release notes](https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](e296a93559...f443b600d9
2025-10-17 10:02:59 +02:00
Ivan Gabaldon
5492de15bb
[mod] container: move base to own repository ( #5310 )
...
The base images will be now built in
[another repository](https://github.com/searxng/base ).
2025-10-12 16:30:57 +02:00
Ivan Gabaldon
ced08e12aa
[enh] ci: bump to cp3.14 ( #5302 )
2025-10-11 16:59:40 +02:00
