chore(deps-dev): update pre-commit hooks (#776)

Signed-off-by: behnazh-w <behnaz.hassanshahi@oracle.com>

Author: behnazh-w

.pre-commit-config.yaml

@@ -17,23 +17,23 @@ repos:
 
 # Commitizen enforces semantic and conventional commit messages.
 - repo: https://github.com/commitizen-tools/commitizen
-  rev: v3.13.0
+  rev: v3.27.0
   hooks:
   - id: commitizen
     name: Check conventional commit message
     stages: [commit-msg]
 
 # Sort imports.
 - repo: https://github.com/pycqa/isort
-  rev: 5.12.0
+  rev: 5.13.2
   hooks:
   - id: isort
     name: Sort import statements
     args: [--settings-path, pyproject.toml]
 
 # Add Black code formatters.
 - repo: https://github.com/ambv/black
-  rev: 23.11.0
+  rev: 24.4.2
   hooks:
   - id: black
     name: Format code
@@ -48,7 +48,7 @@ repos:
 
 # Upgrade and rewrite Python idioms.
 - repo: https://github.com/asottile/pyupgrade
-  rev: v3.15.0
+  rev: v3.16.0
   hooks:
   - id: pyupgrade
     name: Upgrade code idioms
@@ -69,7 +69,7 @@ repos:
 
 # Check GitHub Actions workflow files.
 - repo: https://github.com/Mateusz-Grzelinski/actionlint-py
-  rev: v1.6.26.11
+  rev: v1.7.1.15
   hooks:
   - id: actionlint
 
@@ -98,7 +98,7 @@ repos:
 
 # Check for potential security issues.
 - repo: https://github.com/PyCQA/bandit
-  rev: 1.7.5
+  rev: 1.7.9
   hooks:
   - id: bandit
     name: Check for security issues
@@ -110,7 +110,7 @@ repos:
 # Enable a whole bunch of useful helper hooks, too.
 # See https://pre-commit.com/hooks.html for more hooks.
 - repo: https://github.com/pre-commit/pre-commit-hooks
-  rev: v4.5.0
+  rev: v4.6.0
   hooks:
   - id: check-ast
   - id: check-case-conflict
@@ -151,7 +151,7 @@ repos:
 
 # Check and prettify the configuration files.
 - repo: https://github.com/macisamuele/language-formatters-pre-commit-hooks
-  rev: v2.11.0
+  rev: v2.13.0
   hooks:
   - id: pretty-format-ini
     args: [--autofix]
@@ -187,7 +187,7 @@ repos:
 
 # A linter for Golang
 - repo: https://github.com/golangci/golangci-lint
-  rev: v1.55.2
+  rev: v1.59.1
   hooks:
   - id: golangci-lint
 

src/macaron/parsers/github_workflow_model.py

@@ -153,7 +153,7 @@ class Environment(TypedDict):
     #   appears to be a datamodel-codegen issue, because workflow files that pass jsonschema validation end up with
     #   a matrix value incompatible with the above type
     dict[str, Union[ExpressionSyntax, list[Configuration]]],
-    ExpressionSyntax
+    ExpressionSyntax,
     # END MODIFIED
 ]
 

src/macaron/slsa_analyzer/analyze_context.py

@@ -242,9 +242,11 @@ def get_dict(self) -> dict:
         result = {
             "info": {
                 "full_name": self.component.purl,
-                "local_cloned_path": os.path.relpath(self.component.repository.fs_path, self.output_dir)
-                if self.component.repository
-                else "Unable to find a repository.",
+                "local_cloned_path": (
+                    os.path.relpath(self.component.repository.fs_path, self.output_dir)
+                    if self.component.repository
+                    else "Unable to find a repository."
+                ),
                 "remote_path": self.component.repository.remote_path if self.component.repository else "",
                 "branch": self.component.repository.branch_name if self.component.repository else "",
                 "commit_hash": self.component.repository.commit_sha if self.component.repository else "",

src/macaron/slsa_analyzer/checks/build_as_code_check.py

@@ -175,11 +175,13 @@ def run_check(self, ctx: AnalyzeContext) -> CheckResultData:
                                 trigger_link = ci_service.api_client.get_file_link(
                                     ctx.component.repository.full_name,
                                     ctx.component.repository.commit_sha,
-                                    file_path=ci_service.api_client.get_relative_path_of_workflow(
-                                        os.path.basename(caller_path)
-                                    )
-                                    if caller_path
-                                    else "",
+                                    file_path=(
+                                        ci_service.api_client.get_relative_path_of_workflow(
+                                            os.path.basename(caller_path)
+                                        )
+                                        if caller_path
+                                        else ""
+                                    ),
                                 )
                                 store_inferred_provenance(
                                     ctx=ctx,
@@ -228,28 +230,34 @@ def run_check(self, ctx: AnalyzeContext) -> CheckResultData:
                                     ci_info=ci_info,
                                     ci_service=ci_service,
                                     trigger_link=trigger_link,
-                                    job_id=build_command["step_node"].caller.name
-                                    if isinstance(build_command["step_node"].caller, GitHubJobNode)
-                                    else None,
+                                    job_id=(
+                                        build_command["step_node"].caller.name
+                                        if isinstance(build_command["step_node"].caller, GitHubJobNode)
+                                        else None
+                                    ),
                                     step_id=build_command["step_node"].node_id,
-                                    step_name=build_command["step_node"].name
-                                    if isinstance(build_command["step_node"], BashNode)
-                                    else None,
+                                    step_name=(
+                                        build_command["step_node"].name
+                                        if isinstance(build_command["step_node"], BashNode)
+                                        else None
+                                    ),
                                 )
                             result_tables.append(
                                 BuildAsCodeFacts(
                                     build_tool_name=tool.name,
                                     ci_service_name=ci_service.name,
                                     build_trigger=trigger_link,
                                     language=build_command["language"],
-                                    language_distributions=tool.serialize_to_json(
-                                        build_command["language_distributions"]
-                                    )
-                                    if build_command["language_distributions"]
-                                    else None,
-                                    language_versions=tool.serialize_to_json(build_command["language_versions"])
-                                    if build_command["language_versions"]
-                                    else None,
+                                    language_distributions=(
+                                        tool.serialize_to_json(build_command["language_distributions"])
+                                        if build_command["language_distributions"]
+                                        else None
+                                    ),
+                                    language_versions=(
+                                        tool.serialize_to_json(build_command["language_versions"])
+                                        if build_command["language_versions"]
+                                        else None
+                                    ),
                                     language_url=build_command["language_url"],
                                     deploy_command=tool.serialize_to_json(build_command["command"]),
                                     confidence=confidence,

src/macaron/slsa_analyzer/checks/build_script_check.py

@@ -130,12 +130,16 @@ def run_check(self, ctx: AnalyzeContext) -> CheckResultData:
                                 ci_service_name=ci_service.name,
                                 build_trigger=trigger_link,
                                 language=build_command["language"],
-                                language_distributions=tool.serialize_to_json(build_command["language_distributions"])
-                                if build_command["language_distributions"]
-                                else None,
-                                language_versions=tool.serialize_to_json(build_command["language_versions"])
-                                if build_command["language_versions"]
-                                else None,
+                                language_distributions=(
+                                    tool.serialize_to_json(build_command["language_distributions"])
+                                    if build_command["language_distributions"]
+                                    else None
+                                ),
+                                language_versions=(
+                                    tool.serialize_to_json(build_command["language_versions"])
+                                    if build_command["language_versions"]
+                                    else None
+                                ),
                                 language_url=build_command["language_url"],
                                 build_tool_command=tool.serialize_to_json(build_command["command"]),
                                 confidence=Confidence.HIGH,

src/macaron/slsa_analyzer/checks/build_service_check.py

@@ -149,14 +149,16 @@ def run_check(self, ctx: AnalyzeContext) -> CheckResultData:
                                     ci_service_name=ci_service.name,
                                     build_trigger=trigger_link,
                                     language=build_command["language"],
-                                    language_distributions=tool.serialize_to_json(
-                                        build_command["language_distributions"]
-                                    )
-                                    if build_command["language_distributions"]
-                                    else None,
-                                    language_versions=tool.serialize_to_json(build_command["language_versions"])
-                                    if build_command["language_versions"]
-                                    else None,
+                                    language_distributions=(
+                                        tool.serialize_to_json(build_command["language_distributions"])
+                                        if build_command["language_distributions"]
+                                        else None
+                                    ),
+                                    language_versions=(
+                                        tool.serialize_to_json(build_command["language_versions"])
+                                        if build_command["language_versions"]
+                                        else None
+                                    ),
                                     language_url=build_command["language_url"],
                                     build_command=tool.serialize_to_json(build_command["command"]),
                                     confidence=confidence,

tests/parsers/bashparser/test_bashparser.py

@@ -29,9 +29,12 @@ def test_bashparser_parse(script_file_name: str, expected_json_file_name: str) -
     resources_dir = Path(__file__).parent.joinpath("resources")
 
     # Parse the bash scripts.
-    with open(os.path.join(resources_dir, "bash_files", script_file_name), encoding="utf8") as bash_file, open(
-        os.path.join(resources_dir, "expected_results", expected_json_file_name), encoding="utf8"
-    ) as expected_file:
+    with (
+        open(os.path.join(resources_dir, "bash_files", script_file_name), encoding="utf8") as bash_file,
+        open(
+            os.path.join(resources_dir, "expected_results", expected_json_file_name), encoding="utf8"
+        ) as expected_file,
+    ):
         result = parse(bash_file.read(), MACARON_PATH)
         expected_result = json.load(expected_file)
         assert result == expected_result