[pre-commit.ci] pre-commit autoupdate (#45)

* [pre-commit.ci] pre-commit autoupdate

updates:
- [github.com/psf/black: 22.8.0 → 22.10.0](psf/black@22.8.0...22.10.0)

* Update pre-commit config

* Update CHANGELOG

* Fix linter/formatter warnings

* Fix GitHub Action errors

Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
Co-authored-by: Damien Nguyen <ngn.damien@gmail.com>

Author: pre-commit-ci[bot]

.codespell.allow

@@ -1,3 +1,5 @@
+---
+
 version: 2
 updates:
   - package-ecosystem: "github-actions"

.github/dependabot.yml

@@ -1,3 +1,5 @@
+---
+
 name: CI
 
 on:
@@ -16,69 +18,62 @@ jobs:
       matrix:
         runs-on: [ubuntu-latest, windows-latest, macos-latest]
         python:
-        - 3.6
-        - 3.7
-        - 3.8
-        - 3.9
+          - 3.7
+          - 3.8
+          - 3.9
+          - '3.10'
 
     name: "🐍 ${{ matrix.python }} • ${{ matrix.runs-on }} • x64 ${{ matrix.args }}"
     runs-on: ${{ matrix.runs-on }}
-    if: (github.event_name != 'pull_request' || (github.event_name == 'pull_request' && github.event.pull_request.merged != true))
+    if: >-
+      (github.event_name != 'pull_request'
+        || (github.event_name == 'pull_request' && github.event.pull_request.merged != true))
 
     steps:
-    - uses: actions/checkout@v2
-
-    - name: Get history and tags for SCM versioning to work
-      run: |
-        git fetch --prune --unshallow
-        git fetch --depth=1 origin +refs/tags/*:refs/tags/*
-
-    - name: Setup Python ${{ matrix.python }}
-      uses: actions/setup-python@v2
-      with:
-        python-version: ${{ matrix.python }}
-        architecture: 'x64'
+      - uses: actions/checkout@v3
 
-    - name: Get pip cache dir
-      id: pip-cache
-      run: |
-        echo "::set-output name=dir::$(python -m pip  cache dir)"
+      - name: Get history and tags for SCM versioning to work
+        run: |
+          git fetch --prune --unshallow
+          git fetch --depth=1 origin +refs/tags/*:refs/tags/*
 
-    - name: Cache wheels
-      uses: actions/cache@v2
-      with:
-        path: ${{ steps.pip-cache.outputs.dir }}
-        key: ${{ runner.os }}-${{ matrix.python }}-pip-${{ hashFiles('setup.cfg', 'pyproject.toml') }}
+      - name: Setup Python ${{ matrix.python }}
+        uses: actions/setup-python@v3
+        with:
+          python-version: ${{ matrix.python }}
+          architecture: 'x64'
+          cache: 'pip'
+          cache-dependency-path: '**/setup.cfg'
 
-    - name: Prepare env
-      run: |
-        python -m pip install -U wheel coveralls
+      - name: Prepare env
+        run: |
+          python -m pip install -U wheel coveralls
 
-    - name: Setup annotations on Linux
-      if: runner.os == 'Linux'
-      run: python -m pip install pytest-github-actions-annotate-failures
+      - name: Setup annotations on Linux
+        if: runner.os == 'Linux'
+        run: python -m pip install pytest-github-actions-annotate-failures
 
-    - name: Build and install package
-      run: python -m pip install -e .[test]
+      - name: Build and install package
+        run: python -m pip install -e .[test]
 
-    - name: Run tests
-      run: python -m pytest -v --cov=pylint_secure_coding_standard
+      - name: Run tests
+        run: python -m pytest -v --cov=pylint_secure_coding_standard
 
-    - name: Coveralls.io
-      run: coveralls --service=github
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        COVERALLS_FLAG_NAME: python-${{ matrix.python }}-${{ matrix.runs-on }}-x64
-        COVERALLS_PARALLEL: true
+      - name: Coveralls.io
+        run: coveralls --service=github
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          COVERALLS_FLAG_NAME: python-${{ matrix.python }}-${{ matrix.runs-on }}-x64
+          COVERALLS_PARALLEL: true
 
   finish:
     needs: standard
     runs-on: ubuntu-latest
     container: python:3-slim
     steps:
-    - name: Coveralls Finished
-      run: |
-        pip3 install --upgrade coveralls
-        coveralls --finish
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: Coveralls Finished
+        run: |
+          pip3 install --upgrade coveralls
+          coveralls --finish
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/ci.yml

@@ -9,14 +9,16 @@
 # the `language` matrix defined below to confirm you have the correct set of
 # supported CodeQL languages.
 #
+---
+
 name: "CodeQL"
 
 on:
   push:
-    branches: [ main ]
+    branches: [main]
   pull_request:
     # The branches below must be a subset of the branches above
-    branches: [ main ]
+    branches: [main]
     types: [assigned, opened, synchronize, reopened]
   schedule:
     - cron: '24 9 * * 0'
@@ -25,7 +27,9 @@ jobs:
   analyze:
     name: Analyze
     runs-on: ubuntu-latest
-    if: (github.event_name != 'pull_request' || (github.event_name == 'pull_request' && github.event.pull_request.merged != true))
+    if: >-
+      (github.event_name != 'pull_request'
+        || (github.event_name == 'pull_request' && github.event.pull_request.merged != true))
     permissions:
       actions: read
       contents: read
@@ -34,24 +38,24 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        language: [ 'python' ]
+        language: ['python']
 
     steps:
-    - name: Checkout repository
-      uses: actions/checkout@v2
-
-    # Initializes the CodeQL tools for scanning.
-    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
-      with:
-        languages: ${{ matrix.language }}
-        # If you wish to specify custom queries, you can do so here or in a config file.
-        # By default, queries listed here will override any specified in a config file.
-        # Prefix the list here with "+" to use these queries and those in the config file.
-        # queries: ./path/to/local/query, your-org/your-repo/queries@main
-
-    - name: Autobuild
-      uses: github/codeql-action/autobuild@v2
-
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      # Initializes the CodeQL tools for scanning.
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+          # If you wish to specify custom queries, you can do so here or in a config file.
+          # By default, queries listed here will override any specified in a config file.
+          # Prefix the list here with "+" to use these queries and those in the config file.
+          # queries: ./path/to/local/query, your-org/your-repo/queries@main
+
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2

.github/workflows/codeql-analysis.yml

@@ -1,3 +1,5 @@
+---
+
 name: "Draft new release"
 
 on:
@@ -12,44 +14,45 @@ jobs:
     name: "Draft a new release"
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
-    - name: Create release branch
-      run: |
-        git checkout -b release/${{ github.event.inputs.version }}
+      - name: Create release branch
+        run: |
+          git checkout -b release/${{ github.event.inputs.version }}
 
-    - name: Update changelog
-      uses: thomaseizinger/keep-a-changelog-new-release@1.3.0
-      with:
-        version: ${{ github.event.inputs.version }}
+      - name: Update changelog
+        uses: thomaseizinger/keep-a-changelog-new-release@1.3.0
+        with:
+          version: ${{ github.event.inputs.version }}
 
-    - name: Initialize mandatory git config
-      run: |
-        git config user.name "GitHub actions"
-        git config user.email noreply@github.com
-    - name: Commit changelog and manifest files
-      id: make-commit
-      run: |
-        git add CHANGELOG.md
-        git commit --message "Preparing release v${{ github.event.inputs.version }}"
-        echo "::set-output name=commit::$(git rev-parse HEAD)"
-    - name: Push new branch
-      run: git push origin release/${{ github.event.inputs.version }}
+      - name: Initialize mandatory git config
+        run: |
+          git config user.name "GitHub actions"
+          git config user.email noreply@github.com
+      - name: Commit changelog and manifest files
+        id: make-commit
+        run: |
+          git add CHANGELOG.md
+          git commit --message "Preparing release v${{ github.event.inputs.version }}"
+          echo "::set-output name=commit::$(git rev-parse HEAD)"
+      - name: Push new branch
+        run: git push origin release/${{ github.event.inputs.version }}
 
-    - name: Create pull request
-      uses: thomaseizinger/create-pull-request@1.2.2
-      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-      with:
-        head: release/${{ github.event.inputs.version }}
-        base: main
-        title: Release version ${{ github.event.inputs.version }}
-        reviewers: ${{ github.actor }}
-        # Write a nice message to the user.
-        # We are claiming things here based on the `publish-new-release.yml` workflow.
-        # You should obviously adopt it to say the truth depending on your release workflow :)
-        body: |
-          Hi @${{ github.actor }}!
-          This PR was created in response to a manual trigger of the release workflow here: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}.
-          I've updated the changelog and bumped the versions in the manifest files in this commit: ${{ steps.make-commit.outputs.commit }}.
-          Merging this PR will create a GitHub release and upload any assets that are created as part of the release build.
+      # yamllint disable rule:line-length
+      - name: Create pull request
+        uses: thomaseizinger/create-pull-request@1.2.2
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          head: release/${{ github.event.inputs.version }}
+          base: main
+          title: Release version ${{ github.event.inputs.version }}
+          reviewers: ${{ github.actor }}
+          # Write a nice message to the user.
+          # We are claiming things here based on the `publish-new-release.yml` workflow.
+          # You should obviously adopt it to say the truth depending on your release workflow :)
+          body: |
+            Hi @${{ github.actor }}!
+            This PR was created in response to a manual trigger of the release workflow here: https://github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}.
+            I've updated the changelog and bumped the versions in the manifest files in this commit: ${{ steps.make-commit.outputs.commit }}.
+            Merging this PR will create a GitHub release and upload any assets that are created as part of the release build.

.github/workflows/draft_release.yml

@@ -1,27 +1,33 @@
+---
+
 name: Format
 
 on:
   pull_request:
   push:
     branches:
-    - main
-    - "v*"
+      - main
+      - "v*"
 
 jobs:
   parse-changelog:
     name: Parse CHANGELOG
     runs-on: ubuntu-latest
-    if: github.event_name == 'pull_request'  && (startsWith(github.event.pull_request.head.ref, 'release/') || startsWith(github.event.pull_request.head.ref, 'hotfix/'))
+    if: >-
+      github.event_name == 'pull_request'
+      && (startsWith(github.event.pull_request.head.ref, 'release/')
+          || startsWith(github.event.pull_request.head.ref, 'hotfix/'))
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
       - name: Installing parse-changelog
         env:
           target: x86_64-unknown-linux-musl
-          parse_changelog_tag: v0.4.5
+          parse_changelog_tag: v0.5.1
+          source_url: https://github.com/taiki-e/parse-changelog/releases/download
         run: |
-          curl -LsSf "https://github.com/taiki-e/parse-changelog/releases/download/${parse_changelog_tag}/parse-changelog-${target}.tar.gz" | tar xzf -
+          curl -LsSf "${source_url}/${parse_changelog_tag}/parse-changelog-${target}.tar.gz" | tar xzf -
       - name: Extract version from branch name (for release branches)
-        if:  github.event_name == 'pull_request' && startsWith(github.event.pull_request.head.ref, 'release/')
+        if: github.event_name == 'pull_request' && startsWith(github.event.pull_request.head.ref, 'release/')
         run: |
           BRANCH_NAME="${{ github.event.pull_request.head.ref }}"
           VERSION=${BRANCH_NAME#release/}

.github/workflows/format.yml

@@ -1,3 +1,5 @@
+---
+
 name: "Publish new release"
 
 on:
@@ -14,10 +16,14 @@ jobs:
   release:
     name: Build wheels and release on Pypi
     runs-on: ubuntu-latest
-    if: startsWith(github.ref, 'refs/tags/') || (github.event_name == 'pull_request' && github.event.pull_request.merged == true && (startsWith(github.event.pull_request.head.ref, 'release/') || startsWith(github.event.pull_request.head.ref, 'hotfix/')))
+    if: >-
+      startsWith(github.ref, 'refs/tags/')
+      || (github.event_name == 'pull_request' && github.event.pull_request.merged == true
+          && (startsWith(github.event.pull_request.head.ref, 'release/')
+              || startsWith(github.event.pull_request.head.ref, 'hotfix/')))
 
     steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
 
       - name: Get history and tags for SCM versioning to work
         run: |
@@ -32,7 +38,7 @@ jobs:
           echo "RELEASE_VERSION=$VERSION" >> $GITHUB_ENV
 
       - name: Extract version from branch name (for release branches)
-        if:  github.event_name == 'pull_request' && startsWith(github.event.pull_request.head.ref, 'release/')
+        if: github.event_name == 'pull_request' && startsWith(github.event.pull_request.head.ref, 'release/')
         run: |
           BRANCH_NAME="${{ github.event.pull_request.head.ref }}"
           VERSION=${BRANCH_NAME#release/}
@@ -75,21 +81,25 @@ jobs:
       - name: Create release
         env:
           target: x86_64-unknown-linux-musl
-          parse_changelog_tag: v0.4.7
+          source_url: https://github.com/taiki-e/parse-changelog/releases/download
+          parse_changelog_tag: v0.5.1
           changelog: CHANGELOG.md
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
           # https://github.com/taiki-e/parse-changelog
-          curl -LsSf "https://github.com/taiki-e/parse-changelog/releases/download/${parse_changelog_tag}/parse-changelog-${target}.tar.gz" | tar xzf -
+          curl -LsSf "${source_url}/${parse_changelog_tag}/parse-changelog-${target}.tar.gz" | tar xzf -
           notes=$(./parse-changelog "${changelog}" "${RELEASE_VERSION}")
           rm -f ./parse-changelog
           if [[ "${tag}" =~ ^v?[0-9\.]+-[a-zA-Z_0-9\.-]+(\+[a-zA-Z_0-9\.-]+)?$ ]]; then
             prerelease="--prerelease"
           fi
-          gh release create "v${RELEASE_VERSION}" ${prerelease:-} --title "pylint-secure-coding-standard v${RELEASE_VERSION}" --notes "${notes:-}" dist/*
+          gh release create "v${RELEASE_VERSION}" ${prerelease:-} \
+            --title pylint-secure-coding-standard v${RELEASE_VERSION}" \
+            --notes "${notes:-}" \
+            dist/*
 
       - name: Setup Python for Pypi upload
-        uses: actions/setup-python@v2
+        uses: actions/setup-python@v3
 
       - name: Publish standard package
         uses: pypa/gh-action-pypi-publish@release/v1