Renovate creates only a fraction of PRs for Dependabot security alert #29650

MShekow · 2024-06-13T09:36:16Z

MShekow
Jun 13, 2024

What would you like help with?

I think I found a bug

How are you running Renovate?

Mend Renovate hosted app on github.com

If you're self-hosting Renovate, tell us which platform (GitHub, GitLab, etc) and which version of Renovate.

No response

Please tell us more about your question or problem

I have a test repo that has 17 open Dependabot alerts, 3 of which are found by Renovate.

https://github.com/MShekow/sec-test

Configuration:

{
  "$schema": "https://docs.renovatebot.com/renovate-schema.json",
  "extends": [
    "config:recommended",
    ":disableRateLimiting"
  ],
  "labels": ["dependencies"],
  "vulnerabilityAlerts": {
    "labels": ["security", "dependencies"],
  },
  "baseBranches": ["main"],
  "forkProcessing": "enabled"
}

Alerts:

Any ideas? The log is not really helpful. For instance, if I search for "mio" (a Rust dependency for which the PR is missing), it appears at the top of the log, but is never mentioned anymore towards the bottom (where PR creation happens).

Logs (if relevant)

Logs


DEBUG: Using RE2 regex engine
DEBUG: Parsing configs
DEBUG: Checking for config file in /runner/renovate/job_config.json
DEBUG: Detected config in env RENOVATE_CONFIG
{
  "config": {
    "extends": [
      "mergeConfidence:all-badges"
    ],
    "prFooter": "This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/{{platform}}/{{repository}}).",
    "prHeader": "[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)",
    "redisUrl": "redis:https://mend-developer-platform-renovate-prod.aqffol.ng.0001.use1.cache.amazonaws.com:6379",
    "binarySource": "install",
    "platformCommit": true,
    "repositoryCache": "enabled",
    "cacheTtlOverride": {
      "datasource-docker-hub-tags": 90
    },
    "onboardingConfig": {
      "$schema": "https://docs.renovatebot.com/renovate-schema.json",
      "extends": [
        "config:recommended"
      ]
    },
    "gitIgnoredAuthors": [
      "29139614+renovate[bot]@users.noreply.github.com"
    ],
    "customizeDashboard": {
      "repoProblemsHeader": "These problems occurred while renovating this repository. [View logs](https://developer.mend.io//{{platform}}/{{repository}})."
    },
    "repositoryCacheType": "s3:https://mend-developer-platform-prod/renovate/",
    "dependencyDashboardFooter": "\n- [ ] <!-- manual job -->Check this box to trigger a request for Renovate to run again on this repository\n",
    "allowedPostUpgradeCommands": [
      "^git add --all$",
      "^git reset$",
      "^npx beachball change( --no-fetch)? --no-commit --type (patch|none) --message '{{{commitMessage}}}'$",
      "^pwd$"
    ],
    "allowPostUpgradeCommandTemplating": true
  }
}

DEBUG: File config
{
  "config": {
    "token": "***********",
    "privateKey": "***********",
    "privateKeyOld": "***********",
    "hostRules": [
      {
        "hostType": "docker",
        "matchHost": "docker.io",
        "username": "mdpprod3renovate",
        "password": "***********"
      },
      {
        "hostType": "docker",
        "matchHost": "hub.docker.com",
        "username": "mdpprodrenovatedc2",
        "password": "***********"
      },
      {
        "hostType": "github",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "github-tags",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "github-releases",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "pod",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "terraform-provider",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "rubygems",
        "matchHost": "github.com",
        "token": "***********"
      }
    ],
    "secrets": {}
  }
}

DEBUG: CLI config
{
  "config": {}
}

DEBUG: Env config
{
  "config": {
    "extends": [
      "mergeConfidence:all-badges"
    ],
    "prFooter": "This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/{{platform}}/{{repository}}).",
    "prHeader": "[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)",
    "redisUrl": "redis:https://mend-developer-platform-renovate-prod.aqffol.ng.0001.use1.cache.amazonaws.com:6379",
    "binarySource": "install",
    "platformCommit": true,
    "repositoryCache": "enabled",
    "cacheTtlOverride": {
      "datasource-docker-hub-tags": 90
    },
    "onboardingConfig": {
      "$schema": "https://docs.renovatebot.com/renovate-schema.json",
      "extends": [
        "config:recommended"
      ]
    },
    "gitIgnoredAuthors": [
      "29139614+renovate[bot]@users.noreply.github.com"
    ],
    "customizeDashboard": {
      "repoProblemsHeader": "These problems occurred while renovating this repository. [View logs](https://developer.mend.io//{{platform}}/{{repository}})."
    },
    "repositoryCacheType": "s3:https://mend-developer-platform-prod/renovate/",
    "dependencyDashboardFooter": "\n- [ ] <!-- manual job -->Check this box to trigger a request for Renovate to run again on this repository\n",
    "allowedPostUpgradeCommands": [
      "^git add --all$",
      "^git reset$",
      "^npx beachball change( --no-fetch)? --no-commit --type (patch|none) --message '{{{commitMessage}}}'$",
      "^pwd$"
    ],
    "allowPostUpgradeCommandTemplating": true,
    "hostRules": [],
    "onboardingNoDeps": true,
    "onboarding": true,
    "forkProcessing": "enabled",
    "requireConfig": "required",
    "platform": "github",
    "username": "renovate[bot]",
    "repositories": [
      "MShekow/sec-test"
    ],
    "gitAuthor": "renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>"
  }
}

DEBUG: Combined config
{
  "config": {
    "token": "***********",
    "privateKey": "***********",
    "privateKeyOld": "***********",
    "hostRules": [
      {
        "hostType": "docker",
        "matchHost": "docker.io",
        "username": "mdpprod3renovate",
        "password": "***********"
      },
      {
        "hostType": "docker",
        "matchHost": "hub.docker.com",
        "username": "mdpprodrenovatedc2",
        "password": "***********"
      },
      {
        "hostType": "github",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "github-tags",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "github-releases",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "pod",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "terraform-provider",
        "matchHost": "api.github.com",
        "token": "***********"
      },
      {
        "hostType": "rubygems",
        "matchHost": "github.com",
        "token": "***********"
      }
    ],
    "secrets": {},
    "extends": [
      "mergeConfidence:all-badges"
    ],
    "prFooter": "This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/{{platform}}/{{repository}}).",
    "prHeader": "[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)",
    "redisUrl": "redis:https://mend-developer-platform-renovate-prod.aqffol.ng.0001.use1.cache.amazonaws.com:6379",
    "binarySource": "install",
    "platformCommit": true,
    "repositoryCache": "enabled",
    "cacheTtlOverride": {
      "datasource-docker-hub-tags": 90
    },
    "onboardingConfig": {
      "$schema": "https://docs.renovatebot.com/renovate-schema.json",
      "extends": [
        "config:recommended"
      ]
    },
    "gitIgnoredAuthors": [
      "29139614+renovate[bot]@users.noreply.github.com"
    ],
    "customizeDashboard": {
      "repoProblemsHeader": "These problems occurred while renovating this repository. [View logs](https://developer.mend.io//{{platform}}/{{repository}})."
    },
    "repositoryCacheType": "s3:https://mend-developer-platform-prod/renovate/",
    "dependencyDashboardFooter": "\n- [ ] <!-- manual job -->Check this box to trigger a request for Renovate to run again on this repository\n",
    "allowedPostUpgradeCommands": [
      "^git add --all$",
      "^git reset$",
      "^npx beachball change( --no-fetch)? --no-commit --type (patch|none) --message '{{{commitMessage}}}'$",
      "^pwd$"
    ],
    "allowPostUpgradeCommandTemplating": true,
    "onboardingNoDeps": true,
    "onboarding": true,
    "forkProcessing": "enabled",
    "requireConfig": "required",
    "platform": "github",
    "username": "renovate[bot]",
    "repositories": [
      "MShekow/sec-test"
    ],
    "gitAuthor": "renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>"
  }
}

DEBUG: Enabling forkProcessing while in non-autodiscover mode
DEBUG: Found valid git version: 2.45.2
DEBUG: Setting global hostRules
DEBUG: Adding password authentication for docker.io (hostType=docker) to hostRules
DEBUG: Adding password authentication for hub.docker.com (hostType=docker) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-tags) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-releases) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=pod) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=terraform-provider) to hostRules
DEBUG: Adding token authentication for github.com (hostType=rubygems) to hostRules
DEBUG: Using default github endpoint: https://api.github.com/
DEBUG: Platform config
{
  "platformConfig": {
    "hostType": "github",
    "endpoint": "https://api.github.com/",
    "isGHApp": true,
    "isGhe": false
  }
  "renovateUsername": "renovate[bot]"
}

DEBUG: Using configured gitAuthor (renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>)
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
DEBUG: Using baseDir: /tmp/renovate
DEBUG: Using cacheDir: /tmp/renovate/cache
DEBUG: Using containerbaseDir: /tmp/renovate/cache/containerbase
DEBUG: Redis cache init
DEBUG: Commits limit = null
DEBUG: Setting global hostRules
DEBUG: Adding password authentication for docker.io (hostType=docker) to hostRules
DEBUG: Adding password authentication for hub.docker.com (hostType=docker) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-tags) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-releases) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=pod) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=terraform-provider) to hostRules
DEBUG: Adding token authentication for github.com (hostType=rubygems) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
DEBUG: validatePresets()
DEBUG: Reinitializing hostRules for repo
DEBUG: Clearing hostRules
DEBUG: Adding password authentication for docker.io (hostType=docker) to hostRules
DEBUG: Adding password authentication for hub.docker.com (hostType=docker) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-tags) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github-releases) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=pod) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=terraform-provider) to hostRules
DEBUG: Adding token authentication for github.com (hostType=rubygems) to hostRules
DEBUG: Adding token authentication for api.github.com (hostType=github) to hostRules
INFO: Repository started
{
  "renovateVersion": "37.393.0"
}

DEBUG: Using localDir: /tmp/renovate/repos/github/MShekow/sec-test
DEBUG: PackageFiles.clear() - Package files deleted
DEBUG: initRepo("MShekow/sec-test")
DEBUG: hostRules: authentication already set for api.github.com
DEBUG: MShekow/sec-test default branch = main
DEBUG: Using app token for git init
DEBUG: RepoCacheS3.read() - success
DEBUG: Repository cache fingerprint is invalid
DEBUG: Repository cache is restored from revision 13
DEBUG: Resetting npmrc
DEBUG: Resetting npmrc
DEBUG: checkOnboarding()
DEBUG: isOnboarded()
DEBUG: findPr(renovate/configure, Configure Renovate, !open)
DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/pulls?per_page=100&state=all&sort=updated&direction=desc&page=1 (etag="eabdfe6b48b2e947c58d66802b028948bc5335e642697b1a333d29bc471ce998", lastModified=undefined)
DEBUG: getPrList success
{
  "pullsTotal": 0
  "requestsTotal": 1
  "apiQuotaAffected": true
}

DEBUG: findPr(renovate/configure, chore: Configure Renovate, !open)
DEBUG: findFile(renovate.json)
DEBUG: Initializing git repository into /tmp/renovate/repos/github/MShekow/sec-test
DEBUG: Performing blobless clone
DEBUG: git clone completed
{
  "durationMs": 367
}

DEBUG: latest repository commit
{
  "latestCommit": {
    "hash": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
    "date": "2024-06-13T11:13:56+02:00",
    "message": "renovate upd",
    "refs": "HEAD -> main, origin/main, origin/HEAD",
    "body": "",
    "author_name": "Marius Shekow",
    "author_email": "[email protected]"
  }
}

DEBUG: findFile(renovate.json5)
DEBUG: Config file exists, fileName: renovate.json5
DEBUG: Retrieving issueList
DEBUG: Retrieved 1 issues
DEBUG: Repo is onboarded
DEBUG: Found renovate.json5 config file
DEBUG: Repository config
{
  "fileName": "renovate.json5"
  "config": {
    "$schema": "https://docs.renovatebot.com/renovate-schema.json",
    "extends": [
      "config:recommended",
      ":disableRateLimiting"
    ],
    "labels": [
      "dependencies"
    ],
    "vulnerabilityAlerts": {
      "labels": [
        "security",
        "dependencies"
      ]
    },
    "baseBranches": [
      "main"
    ],
    "forkProcessing": "enabled"
  }
}

DEBUG: migrateAndValidate()
DEBUG: No config migration necessary
DEBUG: Setting hostRules from config
DEBUG: Found repo ignorePaths
{
  "ignorePaths": [
    "**/node_modules/**",
    "**/bower_components/**",
    "**/vendor/**",
    "**/examples/**",
    "**/__tests__/**",
    "**/test/**",
    "**/tests/**",
    "**/__fixtures__/**"
  ]
}

DEBUG: GitHub vulnerability details
{
  "alerts": {
    "pip/flask": {
      "< 2.2.5": "2.2.5"
    },
    "pip/werkzeug": {
      "< 2.3.8": "2.3.8"
    },
    "pip/jinja2": {
      "< 3.1.3": "3.1.3"
    },
    "pip/gunicorn": {
      "< 22.0.0": "22.0.0"
    },
    "pip/flask-cors": {
      "<= 4.0.0": "4.0.1"
    },
    "pip/Jinja2": {
      "< 3.1.4": "3.1.4"
    },
    "pip/Werkzeug": {
      "< 3.0.3": "3.0.3"
    },
    "rust/regex": {
      "< 1.5.5": "1.5.5"
    },
    "rust/thread_local": {
      "< 1.1.4": "1.1.4"
    },
    "rust/remove_dir_all": {
      "< 0.8.0": "0.8.0"
    },
    "rust/spin": {
      ">= 0.9.3, < 0.9.8": "0.9.8"
    },
    "rust/h2": {
      "< 0.3.17": "0.3.17",
      "< 0.3.24": "0.3.24",
      "< 0.3.26": "0.3.26"
    },
    "rust/atty": {
      "<= 0.2.14": null
    },
    "rust/aes-gcm": {
      ">= 0.10.0, <= 0.10.2": "0.10.3"
    },
    "rust/mio": {
      ">= 0.7.2, <= 0.8.10": "0.8.11"
    }
  }
}

DEBUG: Vulnerability alert has no firstPatchedVersion - skipping
{
  "alert": {
    "dismissReason": null,
    "vulnerableManifestFilename": "Cargo.lock",
    "vulnerableManifestPath": "rust_server/Cargo.lock",
    "vulnerableRequirements": "= 0.2.14",
    "securityAdvisory": {
      "description": "On windows, `atty` dereferences a potentially unaligned pointer.\n\nIn practice however, the pointer won't be unaligned unless a custom global allocator is used.\n\nIn particular, the `System` allocator on windows uses `HeapAlloc`, which guarantees a large enough alignment.\n\n# atty is Unmaintained\n\nA Pull Request with a fix has been provided over a year ago but the maintainer seems to be unreachable.\n\nLast release of `atty` was almost 3 years ago.\n\n## Possible Alternative(s)\n\nThe below list has not been vetted in any way and may or may not contain alternatives;\n\n- [std::io::IsTerminal](https://doc.rust-lang.org/stable/std/io/trait.IsTerminal.html) - Stable since Rust 1.70.0\n- [is-terminal](https://crates.io/crates/is-terminal) - Standalone crate supporting Rust older than 1.70.0\"\n",
      "identifiers": [
        {
          "type": "GHSA",
          "value": "GHSA-g98v-hv3f-hcfr"
        }
      ],
      "references": [
        {
          "url": "https://github.com/softprops/atty/issues/50"
        },
        {
          "url": "https://github.com/softprops/atty/pull/51"
        },
        {
          "url": "https://rustsec.org/advisories/RUSTSEC-2021-0145.html"
        },
        {
          "url": "https://github.com/advisories/GHSA-g98v-hv3f-hcfr"
        }
      ],
      "severity": "LOW"
    },
    "securityVulnerability": {
      "package": {
        "name": "atty",
        "ecosystem": "RUST"
      },
      "firstPatchedVersion": null,
      "vulnerableVersionRange": "<= 0.2.14"
    }
  }
}

DEBUG: alert package rules
{
  "alertPackageRules": [
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "flask"
      ],
      "matchCurrentVersion": "== 2.2.2",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==2.2.5",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2023-30861](https://github.com/pallets/flask/security/advisories/GHSA-m2qf-hxjv-5gpq)\n\nWhen all of the following conditions are met, a response containing data intended for one client may be cached and subsequently sent by a proxy to other clients. If the proxy also caches `Set-Cookie` headers, it may send one client's `session` cookie to other clients. The severity depends on the application's use of the session, and the proxy's behavior regarding cookies. The risk depends on _all_ these conditions being met.\n\n1. The application must be hosted behind a caching proxy that does not strip cookies or ignore responses with cookies.\n2. The application sets [`session.permanent = True`](https://flask.palletsprojects.com/en/2.3.x/api/#flask.session.permanent).\n2. The application does not access or modify the session at any point during a request.\n4. [`SESSION_REFRESH_EACH_REQUEST`](https://flask.palletsprojects.com/en/2.3.x/config/#SESSION_REFRESH_EACH_REQUEST) is enabled (the default).\n5. The application does not set a `Cache-Control` header to indicate that a page is private or should not be cached.\n\nThis happens because vulnerable versions of Flask only set the `Vary: Cookie` header when the session is accessed or modified, not when it is refreshed (re-sent to update the expiration) without being accessed or modified."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": [],
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": [
          "security",
          "dependencies"
        ]
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "werkzeug"
      ],
      "matchCurrentVersion": "== 2.2.3",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==2.3.8",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2023-46136](https://github.com/pallets/werkzeug/security/advisories/GHSA-hrfv-mqp8-q5rw)\n\nWerkzeug multipart data parser needs to find a boundary that may be between consecutive chunks. That's why parsing is based on looking for newline characters. Unfortunately, code looking for partial boundary in the buffer is written inefficiently, so if we upload a file that starts with CR or LF and then is followed by megabytes of data without these characters: all of these bytes are appended chunk by chunk into internal bytearray and lookup for boundary is performed on growing buffer.\n\nThis allows an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests. The amount of RAM required can trigger an out of memory kill of the process. If many concurrent requests are sent continuously, this can exhaust or kill all available workers.\n"
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "jinja2"
      ],
      "matchCurrentVersion": "== 3.1.2",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==3.1.3",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-22195](https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95)\n\nThe `xmlattr` filter in affected versions of Jinja accepts keys containing spaces. XML/HTML attributes cannot contain spaces, as each would then be interpreted as a separate attribute. If an application accepts keys (as opposed to only values) as user input, and renders these in pages that other users see as well, an attacker could use this to inject other attributes and perform XSS. Note that accepting keys as user input is not common or a particularly intended use case of the `xmlattr` filter, and an application doing so should already be verifying what keys are provided regardless of this fix."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "gunicorn"
      ],
      "matchCurrentVersion": "== 20.1.0",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==22.0.0",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-1135](https://nvd.nist.gov/vuln/detail/CVE-2024-1135)\n\nGunicorn fails to properly validate Transfer-Encoding headers, leading to HTTP Request Smuggling (HRS) vulnerabilities. By crafting requests with conflicting Transfer-Encoding headers, attackers can bypass security restrictions and access restricted endpoints. This issue is due to Gunicorn's handling of Transfer-Encoding headers, where it incorrectly processes requests with multiple, conflicting Transfer-Encoding headers, treating them as chunked regardless of the final encoding specified. This vulnerability has been shown to allow access to endpoints restricted by gunicorn. This issue has been addressed in version 22.0.0.\n\nTo be affected users must have a network path which does not filter out invalid requests. These users are advised to block access to restricted endpoints via a firewall or other mechanism if they are unable to update."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "flask-cors"
      ],
      "matchCurrentVersion": "== 3.0.10",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==4.0.1",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-1681](https://nvd.nist.gov/vuln/detail/CVE-2024-1681)\n\ncorydolphin/flask-cors is vulnerable to log injection when the log level is set to debug. An attacker can inject fake log entries into the log file by sending a specially crafted GET request containing a CRLF sequence in the request path. This vulnerability allows attackers to corrupt log files, potentially covering tracks of other attacks, confusing log post-processing tools, and forging log entries. The issue is due to improper output neutralization for logs."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "Jinja2",
        "jinja2"
      ],
      "matchCurrentVersion": "== 3.1.2",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==3.1.4",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-34064](https://github.com/pallets/jinja/security/advisories/GHSA-h75v-3vvj-5mfj)\n\nThe `xmlattr` filter in affected versions of Jinja accepts keys containing non-attribute characters. XML/HTML attributes cannot contain spaces, `/`, `>`, or `=`, as each would then be interpreted as starting a separate attribute. If an application accepts keys (as opposed to only values) as user input, and renders these in pages that other users see as well, an attacker could use this to inject other attributes and perform XSS. The fix for the previous GHSA-h5c8-rqwp-cp95 CVE-2024-22195 only addressed spaces but not other characters.\n\nAccepting keys as user input is now explicitly considered an unintended use case of the `xmlattr` filter, and code that does so without otherwise validating the input should be flagged as insecure, regardless of Jinja version. Accepting _values_ as user input continues to be safe."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "pypi"
      ],
      "matchPackageNames": [
        "Werkzeug",
        "werkzeug"
      ],
      "matchCurrentVersion": "== 2.2.3",
      "matchFileNames": [
        "python_server/requirements.txt"
      ],
      "allowedVersions": "==3.0.3",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-34069](https://github.com/pallets/werkzeug/security/advisories/GHSA-2g68-c3qc-8985)\n\nThe debugger in affected versions of Werkzeug can allow an attacker to execute code on a developer's machine under some circumstances. This requires the attacker to get the developer to interact with a domain and subdomain they control, and enter the debugger PIN, but if they are successful it allows access to the debugger even if it is only running on localhost. This also requires the attacker to guess a URL in the developer's application that will trigger the debugger."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "regex"
      ],
      "matchCurrentVersion": "= 0.1.80",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "1.5.5",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2022-24713](https://github.com/rust-lang/regex/security/advisories/GHSA-m5pq-gvj9-9vr8)\n\n> This is a cross-post of [the official security advisory][advisory]. The official advisory contains a signed version with our PGP key, as well.\n\n[advisory]: https://groups.google.com/g/rustlang-security-announcements/c/NcNNL1Jq7Yw\n\nThe Rust Security Response WG was notified that the `regex` crate did not properly limit the complexity of the regular expressions (regex) it parses. An attacker could use this security issue to perform a denial of service, by sending a specially crafted regex to a service accepting untrusted regexes. No known vulnerability is present when parsing untrusted input with trusted regexes.\n\nThis issue has been assigned CVE-2022-24713. The severity of this vulnerability is \"high\" when the `regex` crate is used to parse untrusted regexes. Other uses of the `regex` crate are not affected by this vulnerability.\n\n## Overview\n\nThe `regex` crate features built-in mitigations to prevent denial of service attacks caused by untrusted regexes, or untrusted input matched by trusted regexes. Those (tunable) mitigations already provide sane defaults to prevent attacks. This guarantee is documented and it's considered part of the crate's API.\n\nUnfortunately a bug was discovered in the mitigations designed to prevent untrusted regexes to take an arbitrary amount of time during parsing, and it's possible to craft regexes that bypass such mitigations. This makes it possible to perform denial of service attacks by sending specially crafted regexes to services accepting user-controlled, untrusted regexes.\n\n## Affected versions\n\nAll versions of the `regex` crate before or equal to 1.5.4 are affected by this issue. The fix is include starting from  `regex` 1.5.5.\n\n## Mitigations\n\nWe recommend everyone accepting user-controlled regexes to upgrade immediately to the latest version of the `regex` crate.\n\nUnfortunately there is no fixed set of problematic regexes, as there are practically infinite regexes that could be crafted to exploit this vulnerability. Because of this, we do not recommend denying known problematic regexes.\n\n## Acknowledgements\n\nWe want to thank Addison Crump for responsibly disclosing this to us according to the [Rust security policy](https://www.rust-lang.org/policies/security), and for helping review the fix.\n\nWe also want to thank Andrew Gallant for developing the fix, and Pietro Albini for coordinating the disclosure and writing this advisory."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "thread_local"
      ],
      "matchCurrentVersion": "= 0.2.7",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "1.1.4",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [GHSA-9hpw-r23r-xgm5](https://github.com/Amanieu/thread_local-rs/issues/33)\n\nIn the affected version of this crate, `{Iter, IterMut}::next` used a weaker memory ordering when loading values than what was required, exposing a potential data race\nwhen iterating over a `ThreadLocal`'s values.\n\nCrates using `Iter::next`, or `IterMut::next` are affected by this issue.\n"
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "remove_dir_all"
      ],
      "matchCurrentVersion": "= 0.5.3",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "0.8.0",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [GHSA-mc8h-8q98-g5hr](https://github.com/XAMPPRocky/remove_dir_all/security/advisories/GHSA-mc8h-8q98-g5hr)\n\nThe `remove_dir_all` crate is a Rust library that offers additional features over the Rust standard library `fs::remove_dir_all` function. It suffers the same class of failure as the code it was layering over: TOCTOU race conditions, with the ability to cause arbitrary paths to be deleted by substituting a symlink for a path after the type of the path was checked.\n\nThanks to the Rust security team for identifying the problem and alerting us to it."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "spin"
      ],
      "matchCurrentVersion": "= 0.9.4",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "0.9.8",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [GHSA-2qv5-7mw5-j3cg](https://github.com/mvdnes/spin-rs/issues/148)\n\n`Once::try_call_once` is unsound if invoked more than once concurrently and any call fails to initialise successfully.\n"
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "h2"
      ],
      "matchCurrentVersion": "= 0.3.15",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "0.3.26",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2023-26964](https://nvd.nist.gov/vuln/detail/CVE-2023-26964)\n\nHyper is an HTTP library for Rust and h2 is an HTTP 2.0 client & server implementation for Rust. An issue was discovered in h2 v0.2.4 when processing header frames. It incorrectly processes the HTTP2 `RST_STREAM` frames by not always releasing the memory immediately upon receiving the reset frame, leading to stream stacking. As a result, the memory and CPU usage are high which can lead to a Denial of Service (DoS).\n\nThis issue affects users only when dealing with http2 connections.",
        "#### [GHSA-8r5v-vm4m-4g25](https://github.com/hyperium/h2/pull/737)\n\nAn attacker with an HTTP/2 connection to an affected endpoint can send a steady stream of invalid frames to force the\ngeneration of reset frames on the victim endpoint.\nBy closing their recv window, the attacker could then force these resets to be queued in an unbounded fashion,\nresulting in Out Of Memory (OOM) and high CPU usage.\n\nThis fix is corrected in [hyperium/h2#737](https://github.com/hyperium/h2/pull/737), which limits the total number of\ninternal error resets emitted by default before the connection is closed.\n",
        "#### [GHSA-q6cp-qfwq-4gcv](https://rustsec.org/advisories/RUSTSEC-2024-0332.html)\n\nAn attacker can send a flood of CONTINUATION frames, causing `h2` to process them indefinitely. This results in an increase in CPU usage.\n\nTokio task budget helps prevent this from a complete denial-of-service, as the server can still respond to legitimate requests, albeit with increased latency.\n\nMore details at https://seanmonstar.com/blog/hyper-http2-continuation-flood/.\n\nPatches available for 0.4.x and 0.3.x versions.\n"
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "aes-gcm"
      ],
      "matchCurrentVersion": "= 0.10.1",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "0.10.3",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2023-42811](https://github.com/RustCrypto/AEADs/security/advisories/GHSA-423w-p2w9-r7vq)\n\n### Summary\nIn the AES GCM implementation of decrypt_in_place_detached, the decrypted ciphertext (i.e. the correct plaintext) is exposed even if tag verification fails. \n\n### Impact\nIf a program using the `aes-gcm` crate's `decrypt_in_place*` APIs accesses the buffer after decryption failure, it will contain a decryption of an unauthenticated input. Depending on the specific nature of the program this may enable Chosen Ciphertext Attacks (CCAs) which can cause a catastrophic breakage of the cipher including full plaintext recovery.\n\n### Details\nAs seen in the implementation of [decrypt_in_place_detached](https://docs.rs/aes-gcm/latest/src/aes_gcm/lib.rs.html#309) for AES GCM, if the tag verification fails, an error is returned. Because the decryption of the ciphertext is done in place, the plaintext contents are now exposed via `buffer`. \n\nThis should ideally not be the case - as noted in page 17 of[ NIST's publication _Recommendation for Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC_](https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-38d.pdf): \n_In Step 8, the result of Step 7 is compared with the authentication tag that was received as an input: if they are identical, then the plaintext is returned; otherwise,FAIL is returned._\n\nThis is seems correctly addressed in the [AES GCM SIV implementation](https://docs.rs/aes-gcm-siv/latest/src/aes_gcm_siv/lib.rs.html#307), where the decrypted buffer is encrypted again before the error is returned - this fix is straightforward to implement in AES GCM. To ensure that these types of cases are covered during testing, it would be valuable to add test cases like [23, 24 ](https://github.com/google/wycheproof/blob/master/testvectors/aes_gcm_test.json#L288)etc from [project wycheproof ](https://github.com/google/wycheproof)to ensure that when a bad tag is used, there is an error on decryption _**and**_ that the plaintext value is not exposed. \n\n### PoC\nTo reproduce this issue, I'm using [test case 23](https://github.com/google/wycheproof/blob/master/testvectors/aes_gcm_test.json#L288) from project wycheproof. \n```rust\n    let key = GenericArray::from_slice(&hex!(\"000102030405060708090a0b0c0d0e0f\"));\n    let nonce = GenericArray::from_slice(&hex!(\"505152535455565758595a5b\"));\n    let tag = GenericArray::from_slice(&hex!(\"d9847dbc326a06e988c77ad3863e6083\")); // bad tag\n    let mut ct = hex!(\"eb156d081ed6b6b55f4612f021d87b39\");\n    let msg = hex!(\"202122232425262728292a2b2c2d2e2f\");\n    let aad = hex!(\"\");\n    let cipher = Aes128Gcm::new(&key);\n    let _plaintext = cipher.decrypt_in_place_detached(&nonce, &aad, &mut ct, &tag);\n    assert_eq!(ct, msg);\n```"
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    },
    {
      "matchDatasources": [
        "crate"
      ],
      "matchPackageNames": [
        "mio"
      ],
      "matchCurrentVersion": "= 0.8.5",
      "matchFileNames": [
        "rust_server/Cargo.lock"
      ],
      "allowedVersions": "0.8.11",
      "prBodyNotes": [
        "### GitHub Vulnerability Alerts",
        "#### [CVE-2024-27308](https://github.com/tokio-rs/mio/security/advisories/GHSA-r8w9-5wcg-vfj7)\n\n### Impact\n\nWhen using named pipes on Windows, mio will under some circumstances return invalid tokens that correspond to named pipes that have already been deregistered from the mio registry. The impact of this vulnerability depends on how mio is used. For some applications, invalid tokens may be ignored or cause a warning or a crash. On the other hand, for applications that store pointers in the tokens, this vulnerability may result in a use-after-free.\n\nFor users of Tokio, this vulnerability is serious and can result in a use-after-free in Tokio.\n\nThe vulnerability is Windows-specific, and can only happen if you are using named pipes. Other IO resources are not affected.\n\n### Affected versions\nThis vulnerability has been fixed in mio v0.8.11.\n\nAll versions of mio between v0.7.2 and v0.8.10 are vulnerable.\n\nTokio is vulnerable when you are using a vulnerable version of mio AND you are using at least Tokio v1.30.0. Versions of Tokio prior to v1.30.0 will ignore invalid tokens, so they are not vulnerable.\n\n### Workarounds\nVulnerable libraries that use mio can work around this issue by detecting and ignoring invalid tokens.\n\n### Technical details\n\nWhen an IO resource registered with mio has a readiness event, mio delivers that readiness event to the user using a user-specified token. Mio guarantees that when an IO resource is [deregistered](https://docs.rs/mio/latest/mio/struct.Registry.html#method.deregister), then it will never return the token for that IO resource again. However, for named pipes on windows, mio may sometimes deliver the token for a named pipe even though the named pipe has been previously deregistered.\n\nThis vulnerability was originally reported in the Tokio issue tracker: [tokio-rs/tokio#6369](https://github.com/tokio-rs/tokio/issues/6369)\nThis vulnerability was fixed in: [tokio-rs/mio#1760](https://github.com/tokio-rs/mio/pull/1760)\nThis vulnerability is also known as [RUSTSEC-2024-0019](https://rustsec.org/advisories/RUSTSEC-2024-0019.html).\n\nThank you to @&#8203;rofoun and @&#8203;radekvit for discovering and reporting this issue."
      ],
      "isVulnerabilityAlert": true,
      "force": {
        "groupName": null,
        "schedule": "[Circular]",
        "dependencyDashboardApproval": false,
        "minimumReleaseAge": null,
        "rangeStrategy": "update-lockfile",
        "commitMessageSuffix": "[SECURITY]",
        "branchTopic": "{{{datasource}}}-{{{depName}}}-vulnerability",
        "prCreation": "immediate",
        "labels": "[Circular]"
      }
    }
  ]
}

DEBUG: findIssue(Dependency Dashboard)
DEBUG: Found issue 1
DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/issues/1 (etag=W/"401402148c9cf8648d007df136597c431b1378a875299beca6544d614621771e", lastModified=Thu, 13 Jun 2024 09:21:21 GMT)
DEBUG: baseBranches
{
  "baseBranches": [
    "main"
  ]
}

DEBUG: baseBranch: main
{
  "baseBranch": "main"
}

DEBUG: extract()
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main
{
  "baseBranch": "main"
}

DEBUG: latest commit
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: Using file match: (^|/)tasks/[^/]+\.ya?ml$ for manager ansible
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)(galaxy|requirements)(\.ansible)?\.ya?ml$ for manager ansible-galaxy
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.tool-versions$ for manager asdf
{
  "baseBranch": "main"
}

DEBUG: Using file match: azure.*pipelines?.*\.ya?ml$ for manager azure-pipelines
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)batect(-bundle)?\.ya?ml$ for manager batect
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)batect$ for manager batect-wrapper
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)WORKSPACE(|\.bazel|\.bzlmod)$ for manager bazel
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.bzl$ for manager bazel
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)MODULE\.bazel$ for manager bazel-module
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.bazelversion$ for manager bazelisk
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.bicep$ for manager bicep
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.?bitbucket-pipelines\.ya?ml$ for manager bitbucket-pipelines
{
  "baseBranch": "main"
}

DEBUG: Using file match: buildkite\.ya?ml for manager buildkite
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.buildkite/.+\.ya?ml$ for manager buildkite
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)bun\.lockb$ for manager bun
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Gemfile$ for manager bundler
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.cake$ for manager cake
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Cargo\.toml$ for manager cargo
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.circleci/.+\.ya?ml$ for manager circleci
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)cloudbuild\.ya?ml for manager cloudbuild
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Podfile$ for manager cocoapods
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)([\w-]*)composer\.json$ for manager composer
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)conanfile\.(txt|py)$ for manager conan
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)cpanfile$ for manager cpanfile
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)(?:deps|bb)\.edn$ for manager deps-edn
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^.devcontainer/devcontainer.json$ for manager devcontainer
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^.devcontainer.json$ for manager devcontainer
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)(?:docker-)?compose[^/]*\.ya?ml$ for manager docker-compose
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/|\.)([Dd]ocker|[Cc]ontainer)file$ for manager dockerfile
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)([Dd]ocker|[Cc]ontainer)file[^/]*$ for manager dockerfile
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.drone\.yml$ for manager droneci
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)fleet\.ya?ml for manager fleet
{
  "baseBranch": "main"
}

DEBUG: Using file match: (?:^|/)gotk-components\.ya?ml$ for manager flux
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.fvm/fvm_config\.json$ for manager fvm
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.fvmrc$ for manager fvm
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.gitmodules$ for manager git-submodules
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)(workflow-templates|\.(?:github|gitea|forgejo)/(?:workflows|actions))/.+\.ya?ml$ for manager github-actions
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)action\.ya?ml$ for manager github-actions
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.gitlab-ci\.ya?ml$ for manager gitlabci
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.gitlab-ci\.ya?ml$ for manager gitlabci-include
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)go\.mod$ for manager gomod
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.gradle(\.kts)?$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)gradle\.properties$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)gradle/.+\.toml$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)buildSrc/.+\.kt$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.versions\.toml$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)versions.props$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)versions.lock$ for manager gradle
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)gradle/wrapper/gradle-wrapper\.properties$ for manager gradle-wrapper
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)requirements\.ya?ml$ for manager helm-requirements
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)values\.ya?ml$ for manager helm-values
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)helmfile\.ya?ml(?:\.gotmpl)?$ for manager helmfile
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Chart\.ya?ml$ for manager helmv3
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)bin/hermit$ for manager hermit
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^Formula/[^/]+[.]rb$ for manager homebrew
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.html?$ for manager html
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)plugins\.(txt|ya?ml)$ for manager jenkins
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)jsonnetfile\.json$ for manager jsonnet-bundler
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^.+\.main\.kts$ for manager kotlin-script
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)kustomization\.ya?ml$ for manager kustomize
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)project\.clj$ for manager leiningen
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/|\.)pom\.xml$ for manager maven
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^(((\.mvn)|(\.m2))/)?settings\.xml$ for manager maven
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.mvn/extensions\.xml$ for manager maven
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|\/).mvn/wrapper/maven-wrapper.properties$ for manager maven-wrapper
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)package\.js$ for manager meteor
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Mintfile$ for manager mint
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)mix\.exs$ for manager mix
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)flake\.nix$ for manager nix
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.node-version$ for manager nodenv
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)package\.json$ for manager npm
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.(?:cs|fs|vb)proj$ for manager nuget
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.(?:props|targets)$ for manager nuget
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)dotnet-tools\.json$ for manager nuget
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)global\.json$ for manager nuget
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.nvmrc$ for manager nvm
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)src/main/features/.+\.json$ for manager osgi
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)pyproject\.toml$ for manager pep621
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)[\w-]*requirements([-.]\w+)?\.(txt|pip)$ for manager pip_requirements
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)setup\.py$ for manager pip_setup
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Pipfile$ for manager pipenv
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)pyproject\.toml$ for manager poetry
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.pre-commit-config\.ya?ml$ for manager pre-commit
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)pubspec\.ya?ml$ for manager pub
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Puppetfile$ for manager puppet
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.python-version$ for manager pyenv
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.ruby-version$ for manager ruby-version
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.sbt$ for manager sbt
{
  "baseBranch": "main"
}

DEBUG: Using file match: project/[^/]*\.scala$ for manager sbt
{
  "baseBranch": "main"
}

DEBUG: Using file match: project/build\.properties$ for manager sbt
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)repositories$ for manager sbt
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.scalafmt.conf$ for manager scalafmt
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)setup\.cfg$ for manager setup-cfg
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)Package\.swift for manager swift
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.tf$ for manager terraform
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.terraform-version$ for manager terraform-version
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)terragrunt\.hcl$ for manager terragrunt
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.terragrunt-version$ for manager terragrunt-version
{
  "baseBranch": "main"
}

DEBUG: Using file match: \.tflint\.hcl$ for manager tflint-plugin
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^\.travis\.ya?ml$ for manager travis
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)\.vela\.ya?ml$ for manager velaci
{
  "baseBranch": "main"
}

DEBUG: Using file match: (^|/)vendir\.yml$ for manager vendir
{
  "baseBranch": "main"
}

DEBUG: Using file match: ^\.woodpecker(?:/[^/]+)?\.ya?ml$ for manager woodpecker
{
  "baseBranch": "main"
}

DEBUG: Matched 1 file(s) for manager cargo: rust_server/Cargo.toml
{
  "baseBranch": "main"
}

DEBUG: Matched 2 file(s) for manager dockerfile: python_server/Dockerfile, rust_server/Dockerfile
{
  "baseBranch": "main"
}

DEBUG: Matched 2 file(s) for manager html: rust_server/404.html, rust_server/hello.html
{
  "baseBranch": "main"
}

DEBUG: Matched 1 file(s) for manager pip_requirements: python_server/requirements.txt
{
  "baseBranch": "main"
}

DEBUG: Neither .cargo/config nor .cargo/config.toml found
{
  "baseBranch": "main"
}

DEBUG: Found lock file rust_server/Cargo.lock for packageFile: rust_server/Cargo.toml
{
  "baseBranch": "main"
}

DEBUG: manager extract durations (ms)
{
  "baseBranch": "main"
  "managers": {
    "pip_requirements": 10,
    "dockerfile": 25,
    "html": 25,
    "cargo": 173
  }
}

DEBUG: Found cargo package files
{
  "baseBranch": "main"
}

DEBUG: Found dockerfile package files
{
  "baseBranch": "main"
}

DEBUG: Found pip_requirements package files
{
  "baseBranch": "main"
}

DEBUG: Found 4 package file(s)
{
  "baseBranch": "main"
}

INFO: Dependency extraction complete
{
  "baseBranch": "main"
  "stats": {
    "managers": {
      "cargo": {
        "fileCount": 1,
        "depCount": 3
      },
      "dockerfile": {
        "fileCount": 2,
        "depCount": 2
      },
      "pip_requirements": {
        "fileCount": 1,
        "depCount": 9
      }
    },
    "total": {
      "fileCount": 4,
      "depCount": 14
    }
  }
}

DEBUG: baseBranch: main
{
  "baseBranch": "main"
}

DEBUG: PackageFiles.add() - Package file saved for base branch
{
  "baseBranch": "main"
}

DEBUG: Package releases lookups complete
{
  "baseBranch": "main"
}

DEBUG: branchifyUpgrades
{
  "baseBranch": "main"
}

DEBUG: detectSemanticCommits()
{
  "baseBranch": "main"
}

DEBUG: getCommitMessages
{
  "baseBranch": "main"
}

DEBUG: semanticCommits: detected "unknown"
{
  "baseBranch": "main"
}

DEBUG: semanticCommits: disabled
{
  "baseBranch": "main"
}

DEBUG: 13 flattened updates found: regex, regex, rocket, rust, click, Flask, Flask, Flask-Cors, gunicorn, itsdangerous, Jinja2, MarkupSafe, Werkzeug
{
  "baseBranch": "main"
}

DEBUG: Returning 13 branch(es)
{
  "baseBranch": "main"
}

DEBUG: config.repoIsOnboarded=true
{
  "baseBranch": "main"
}

DEBUG: packageFiles with updates
{
  "baseBranch": "main"
  "config": {
    "cargo": [
      {
        "deps": [
          {
            "depName": "regex",
            "depType": "dependencies",
            "currentValue": "0.1.41",
            "managerData": {
              "nestedVersion": false
            },
            "datasource": "crate",
            "lockedVersion": "0.1.80",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "0.2.11",
                "newValue": "0.2.0",
                "newMajor": 0,
                "newMinor": 2,
                "newPatch": 11,
                "updateType": "minor",
                "branchName": "renovate/regex-0.x"
              },
              {
                "bucket": "major",
                "newVersion": "1.10.5",
                "newValue": "1.0.0",
                "newMajor": 1,
                "newMinor": 10,
                "newPatch": 5,
                "updateType": "major",
                "branchName": "renovate/regex-1.x"
              }
            ],
            "packageName": "regex",
            "versioning": "cargo",
            "warnings": [],
            "sourceUrl": "https://github.com/rust-lang/regex",
            "registryUrl": "https://crates.io",
            "dependencyUrl": "https://crates.io/crates/regex",
            "currentVersion": "0.1.80",
            "isSingleVersion": false,
            "fixedVersion": "0.1.80"
          },
          {
            "depName": "rocket",
            "depType": "dependencies",
            "currentValue": "0.5.0-rc.2",
            "managerData": {
              "nestedVersion": false
            },
            "datasource": "crate",
            "lockedVersion": "0.5.0-rc.2",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "0.5.1",
                "newValue": "0.5.0-rc.2",
                "newMajor": 0,
                "newMinor": 5,
                "newPatch": 1,
                "updateType": "patch",
                "isLockfileUpdate": true,
                "branchName": "renovate/rocket-0.x-lockfile"
              }
            ],
            "packageName": "rocket",
            "versioning": "cargo",
            "warnings": [],
            "sourceUrl": "https://github.com/rwf2/Rocket",
            "registryUrl": "https://crates.io",
            "homepage": "https://rocket.rs",
            "dependencyUrl": "https://crates.io/crates/rocket",
            "currentVersion": "0.5.0-rc.2",
            "isSingleVersion": true,
            "fixedVersion": "0.5.0-rc.2"
          },
          {
            "depName": "rand",
            "depType": "dependencies",
            "currentValue": "0.8.5",
            "managerData": {
              "nestedVersion": false
            },
            "datasource": "crate",
            "lockedVersion": "0.8.5",
            "updates": [],
            "packageName": "rand",
            "versioning": "cargo",
            "warnings": [],
            "sourceUrl": "https://github.com/rust-random/rand",
            "registryUrl": "https://crates.io",
            "homepage": "https://rust-random.github.io/book",
            "dependencyUrl": "https://crates.io/crates/rand",
            "currentVersion": "0.8.5",
            "fixedVersion": "0.8.5"
          }
        ],
        "packageFileVersion": "0.1.0",
        "lockFiles": [
          "rust_server/Cargo.lock"
        ],
        "packageFile": "rust_server/Cargo.toml"
      }
    ],
    "dockerfile": [
      {
        "deps": [
          {
            "depName": "python",
            "currentValue": "3",
            "replaceString": "python:3",
            "autoReplaceStringTemplate": "{{depName}}{{#if newValue}}:{{newValue}}{{/if}}{{#if newDigest}}@{{newDigest}}{{/if}}",
            "datasource": "docker",
            "depType": "final",
            "updates": [],
            "packageName": "python",
            "versioning": "docker",
            "warnings": [],
            "registryUrl": "https://index.docker.io",
            "lookupName": "library/python",
            "currentVersion": "3",
            "currentVersionTimestamp": "2024-06-12T21:06:24.706Z",
            "fixedVersion": "3"
          }
        ],
        "packageFile": "python_server/Dockerfile"
      },
      {
        "deps": [
          {
            "depName": "rust",
            "currentValue": "1.71",
            "replaceString": "rust:1.71",
            "autoReplaceStringTemplate": "{{depName}}{{#if newValue}}:{{newValue}}{{/if}}{{#if newDigest}}@{{newDigest}}{{/if}}",
            "datasource": "docker",
            "depType": "final",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "1.78",
                "newValue": "1.78",
                "releaseTimestamp": "2024-05-15T17:44:47.252Z",
                "newMajor": 1,
                "newMinor": 78,
                "newPatch": null,
                "updateType": "minor",
                "branchName": "renovate/rust-1.x"
              }
            ],
            "packageName": "rust",
            "versioning": "docker",
            "warnings": [],
            "registryUrl": "https://index.docker.io",
            "lookupName": "library/rust",
            "currentVersion": "1.71",
            "currentVersionTimestamp": "2023-08-16T15:13:14.414Z",
            "isSingleVersion": true,
            "fixedVersion": "1.71"
          }
        ],
        "packageFile": "rust_server/Dockerfile"
      }
    ],
    "pip_requirements": [
      {
        "deps": [
          {
            "depName": "click",
            "currentValue": "==8.1.3",
            "datasource": "pypi",
            "currentVersion": "8.1.3",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "8.1.7",
                "newValue": "==8.1.7",
                "releaseTimestamp": "2023-08-17T17:29:10.000Z",
                "newMajor": 8,
                "newMinor": 1,
                "newPatch": 7,
                "updateType": "patch",
                "isRange": true,
                "branchName": "renovate/click-8.x"
              }
            ],
            "packageName": "click",
            "versioning": "pep440",
            "warnings": [],
            "registryUrl": "https://pypi.org/pypi",
            "homepage": "https://palletsprojects.com/p/click/",
            "changelogUrl": "https://click.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2022-04-28T17:36:06.000Z",
            "isSingleVersion": true,
            "fixedVersion": "8.1.3"
          },
          {
            "depName": "Flask",
            "currentValue": "==2.2.2",
            "datasource": "pypi",
            "currentVersion": "2.2.2",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "2.3.3",
                "newValue": "==2.3.3",
                "releaseTimestamp": "2023-08-21T19:52:33.000Z",
                "newMajor": 2,
                "newMinor": 3,
                "newPatch": 3,
                "updateType": "minor",
                "isRange": true,
                "branchName": "renovate/flask-2.x"
              },
              {
                "bucket": "major",
                "newVersion": "3.0.3",
                "newValue": "==3.0.3",
                "releaseTimestamp": "2024-04-07T19:26:08.000Z",
                "newMajor": 3,
                "newMinor": 0,
                "newPatch": 3,
                "updateType": "major",
                "isRange": true,
                "branchName": "renovate/flask-3.x"
              }
            ],
            "packageName": "Flask",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/pallets/flask",
            "registryUrl": "https://pypi.org/pypi",
            "changelogUrl": "https://flask.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2022-08-08T23:26:30.000Z",
            "isSingleVersion": true,
            "fixedVersion": "2.2.2"
          },
          {
            "depName": "Flask-Cors",
            "currentValue": "==3.0.10",
            "datasource": "pypi",
            "currentVersion": "3.0.10",
            "updates": [
              {
                "bucket": "major",
                "newVersion": "4.0.1",
                "newValue": "==4.0.1",
                "releaseTimestamp": "2024-05-04T19:49:41.000Z",
                "newMajor": 4,
                "newMinor": 0,
                "newPatch": 1,
                "updateType": "major",
                "isRange": true,
                "branchName": "renovate/flask-cors-4.x"
              }
            ],
            "packageName": "Flask-Cors",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/corydolphin/flask-cors",
            "registryUrl": "https://pypi.org/pypi",
            "currentVersionTimestamp": "2021-01-06T00:25:41.000Z",
            "isSingleVersion": true,
            "fixedVersion": "3.0.10"
          },
          {
            "depName": "gunicorn",
            "currentValue": "==20.1.0",
            "datasource": "pypi",
            "currentVersion": "20.1.0",
            "updates": [
              {
                "bucket": "major",
                "newVersion": "22.0.0",
                "newValue": "==22.0.0",
                "releaseTimestamp": "2024-04-16T22:58:15.000Z",
                "newMajor": 22,
                "newMinor": 0,
                "newPatch": 0,
                "updateType": "major",
                "isRange": true,
                "branchName": "renovate/pypi-gunicorn-vulnerability"
              }
            ],
            "packageName": "gunicorn",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/benoitc/gunicorn",
            "registryUrl": "https://pypi.org/pypi",
            "changelogUrl": "https://docs.gunicorn.org/en/stable/news.html",
            "currentVersionTimestamp": "2021-04-27T12:16:23.000Z",
            "isSingleVersion": true,
            "fixedVersion": "20.1.0"
          },
          {
            "depName": "itsdangerous",
            "currentValue": "==2.1.2",
            "datasource": "pypi",
            "currentVersion": "2.1.2",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "2.2.0",
                "newValue": "==2.2.0",
                "releaseTimestamp": "2024-04-16T21:28:14.000Z",
                "newMajor": 2,
                "newMinor": 2,
                "newPatch": 0,
                "updateType": "minor",
                "isRange": true,
                "branchName": "renovate/itsdangerous-2.x"
              }
            ],
            "packageName": "itsdangerous",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/pallets/itsdangerous",
            "registryUrl": "https://pypi.org/pypi",
            "changelogUrl": "https://itsdangerous.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2022-03-24T15:12:13.000Z",
            "isSingleVersion": true,
            "fixedVersion": "2.1.2"
          },
          {
            "depName": "Jinja2",
            "currentValue": "==3.1.2",
            "datasource": "pypi",
            "currentVersion": "3.1.2",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "3.1.4",
                "newValue": "==3.1.4",
                "releaseTimestamp": "2024-05-05T23:41:59.000Z",
                "newMajor": 3,
                "newMinor": 1,
                "newPatch": 4,
                "updateType": "patch",
                "isRange": true,
                "branchName": "renovate/pypi-Jinja2-vulnerability"
              }
            ],
            "packageName": "Jinja2",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/pallets/jinja",
            "registryUrl": "https://pypi.org/pypi",
            "changelogUrl": "https://jinja.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2022-04-28T17:21:25.000Z",
            "isSingleVersion": true,
            "fixedVersion": "3.1.2"
          },
          {
            "depName": "MarkupSafe",
            "currentValue": "==2.1.2",
            "datasource": "pypi",
            "currentVersion": "2.1.2",
            "updates": [
              {
                "bucket": "non-major",
                "newVersion": "2.1.5",
                "newValue": "==2.1.5",
                "releaseTimestamp": "2024-02-02T16:30:04.000Z",
                "newMajor": 2,
                "newMinor": 1,
                "newPatch": 5,
                "updateType": "patch",
                "isRange": true,
                "branchName": "renovate/markupsafe-2.x"
              }
            ],
            "packageName": "MarkupSafe",
            "versioning": "pep440",
            "warnings": [],
            "registryUrl": "https://pypi.org/pypi",
            "homepage": "https://palletsprojects.com/p/markupsafe/",
            "changelogUrl": "https://markupsafe.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2023-01-17T18:22:52.000Z",
            "isSingleVersion": true,
            "fixedVersion": "2.1.2"
          },
          {
            "depName": "six",
            "currentValue": "==1.16.0",
            "datasource": "pypi",
            "currentVersion": "1.16.0",
            "updates": [],
            "packageName": "six",
            "versioning": "pep440",
            "warnings": [],
            "sourceUrl": "https://github.com/benjaminp/six",
            "registryUrl": "https://pypi.org/pypi",
            "currentVersionTimestamp": "2021-05-05T14:18:17.000Z",
            "fixedVersion": "1.16.0"
          },
          {
            "depName": "Werkzeug",
            "currentValue": "==2.2.3",
            "datasource": "pypi",
            "currentVersion": "2.2.3",
            "updates": [
              {
                "bucket": "major",
                "newVersion": "3.0.3",
                "newValue": "==3.0.3",
                "releaseTimestamp": "2024-05-05T23:10:29.000Z",
                "newMajor": 3,
                "newMinor": 0,
                "newPatch": 3,
                "updateType": "major",
                "isRange": true,
                "branchName": "renovate/pypi-Werkzeug-vulnerability"
              }
            ],
            "packageName": "Werkzeug",
            "versioning": "pep440",
            "warnings": [],
            "registryUrl": "https://pypi.org/pypi",
            "changelogUrl": "https://werkzeug.palletsprojects.com/changes/",
            "currentVersionTimestamp": "2023-02-14T17:18:42.000Z",
            "isSingleVersion": true,
            "fixedVersion": "2.2.3"
          }
        ],
        "packageFile": "python_server/requirements.txt"
      }
    ]
  }
}

DEBUG: detectSemanticCommits()
DEBUG: semanticCommits: returning "disabled" from cache
DEBUG: processRepo()
DEBUG: Processing 13 branches: renovate/click-8.x, renovate/flask-2.x, renovate/flask-3.x, renovate/flask-cors-4.x, renovate/itsdangerous-2.x, renovate/markupsafe-2.x, renovate/pypi-Jinja2-vulnerability, renovate/pypi-Werkzeug-vulnerability, renovate/pypi-gunicorn-vulnerability, renovate/regex-0.x, renovate/regex-1.x, renovate/rocket-0.x-lockfile, renovate/rust-1.x
DEBUG: Calculated maximum PRs remaining this run: 9007199254740991
DEBUG: PullRequests limit = 9007199254740991
DEBUG: Calculated maximum branches remaining this run: 9007199254740991
DEBUG: Branches limit = 9007199254740991
DEBUG: syncBranchState() (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-Jinja2-vulnerability) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, undefined, open) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, undefined, closed) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, Update dependency Jinja2 to v3.1.4 [SECURITY], !open) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=, tz=null, now=2024-06-13T09:22:22.282Z) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 88 (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Jinja2"
}

DEBUG: Found match at index 88 (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Jinja2"
}

DEBUG: Contents updated (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Jinja2"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/pypi-Jinja2-vulnerability (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting git author name: renovate[bot] (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting git author email: 29139614+renovate[bot]@users.noreply.github.com (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/pypi-Jinja2-vulnerability",
    "commit": "17039efb4ae75dfb7d68b1a834123101366674fb",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Jinja2-vulnerability/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=113) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Jinja2-vulnerability = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=143) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/pypi-Jinja2-vulnerability (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "commitSha": "474e360b54bd09d52994777077e9876c50bc95de"
}

DEBUG: Ensuring PR (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-Jinja2-vulnerability) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, undefined, open) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, undefined, closed) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/pallets/jinja (3.1.2 -> 3.1.4) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "prTitle": "Update dependency Jinja2 to v3.1.4 [SECURITY]"
}

DEBUG: Creating PR (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "title": "Update dependency Jinja2 to v3.1.4 [SECURITY]"
  "head": "MShekow:renovate/pypi-Jinja2-vulnerability"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "pr": 2
  "draft": false
}

DEBUG: Adding labels 'dependencies, security' to #2 (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
  "pr": 2
  "prTitle": "Update dependency Jinja2 to v3.1.4 [SECURITY]"
}

DEBUG: addParticipants(pr=2) (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #2 (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/pypi-Jinja2-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-Werkzeug-vulnerability) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, undefined, open) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, undefined, closed) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, Update dependency Werkzeug to v3 [SECURITY], !open) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=, tz=null, now=2024-06-13T09:22:27.245Z) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 134 (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Werkzeug"
}

DEBUG: Found match at index 134 (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Werkzeug"
}

DEBUG: Contents updated (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Werkzeug"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/pypi-Werkzeug-vulnerability (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/pypi-Werkzeug-vulnerability",
    "commit": "fde21d8bca1273dc5b12eac3b61a2b3c68506c81",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Werkzeug-vulnerability/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=106) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Werkzeug-vulnerability = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=96) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/pypi-Werkzeug-vulnerability (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "commitSha": "a8ca0840f622b6fa0fcdec4277eb9d4a717ce6df"
}

DEBUG: Ensuring PR (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-Werkzeug-vulnerability) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, undefined, open) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, undefined, closed) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "prTitle": "Update dependency Werkzeug to v3 [SECURITY]"
}

DEBUG: Creating PR (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "title": "Update dependency Werkzeug to v3 [SECURITY]"
  "head": "MShekow:renovate/pypi-Werkzeug-vulnerability"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "pr": 3
  "draft": false
}

DEBUG: Adding labels 'dependencies, security' to #3 (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
  "pr": 3
  "prTitle": "Update dependency Werkzeug to v3 [SECURITY]"
}

DEBUG: addParticipants(pr=3) (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #3 (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/pypi-Werkzeug-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-gunicorn-vulnerability) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, undefined, open) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, undefined, closed) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, Update dependency gunicorn to v22 [SECURITY], !open) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=, tz=null, now=2024-06-13T09:22:31.678Z) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 53 (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "gunicorn"
}

DEBUG: Found match at index 53 (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "gunicorn"
}

DEBUG: Contents updated (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "gunicorn"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/pypi-gunicorn-vulnerability (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/pypi-gunicorn-vulnerability",
    "commit": "93be584c39d1f5d40ef54227e96ae0099f5edb1f",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-gunicorn-vulnerability/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=118) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-gunicorn-vulnerability = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=95) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/pypi-gunicorn-vulnerability (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "commitSha": "37692bc44261bb65a32b2437bccdcfe157c16f7c"
}

DEBUG: Ensuring PR (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-gunicorn-vulnerability) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, undefined, open) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, undefined, closed) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/benoitc/gunicorn (20.1.0 -> 22.0.0) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "prTitle": "Update dependency gunicorn to v22 [SECURITY]"
}

DEBUG: Creating PR (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "title": "Update dependency gunicorn to v22 [SECURITY]"
  "head": "MShekow:renovate/pypi-gunicorn-vulnerability"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "pr": 4
  "draft": false
}

DEBUG: Adding labels 'dependencies, security' to #4 (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
  "pr": 4
  "prTitle": "Update dependency gunicorn to v22 [SECURITY]"
}

DEBUG: addParticipants(pr=4) (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #4 (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/pypi-gunicorn-vulnerability")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/rocket-0.x-lockfile) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rocket-0.x-lockfile, undefined, open) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rocket-0.x-lockfile, undefined, closed) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rocket-0.x-lockfile, Update Rust crate rocket to v0.5.1, !open) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:22:36.472Z) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: cargo.updateLockedDependency: [email protected] -> 0.5.1 [rust_server/Cargo.lock] (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: updateArtifacts for nonUpdatedPackageFiles (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: cargo.updateArtifacts(rust_server/Cargo.toml) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Updating rust_server/Cargo.lock (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Setting CONTAINERBASE_CACHE_DIR to /tmp/renovate/cache/containerbase (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Using containerbase dynamic installs (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Resolved stable matching version (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "toolName": "rust"
  "resolvedVersion": "1.78.0"
}

DEBUG: Executing command (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "command": "install-tool rust 1.78.0"
}

DEBUG: exec completed (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "durationMs": 32487
  "stdout": "[09:22:37.277] INFO (207): Installing tool [email protected]...\ninstalling v2 tool rust v1.78.0\ninstall: creating uninstall script at /opt/containerbase/tools/rust/1.78.0/lib/rustlib/uninstall.sh\ninstall: installing component 'cargo'\ninstall: installing component 'rust-std-x86_64-unknown-linux-gnu'\ninstall: installing component 'rustc'\ninstall: WARNING: failed to run ldconfig. this may happen when not installing as root. run with --verbose to see the error\n\n    rust installed.\n\nlinking tool rust v1.78.0\ncargo 1.78.0 (54d8815d0 2024-03-26)\nrustc 1.78.0 (9b00956e5 2024-04-29)\n[09:23:08.782] INFO (207): Installed tool rust in 31.5s.\n"
  "stderr": ""
}

DEBUG: Executing command (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --workspace"
}

DEBUG: exec completed (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "durationMs": 648
  "stdout": ""
  "stderr": "    Updating crates.io index\nnote: pass `--verbose` to see 142 unchanged dependencies behind latest\n"
}

DEBUG: Executing command (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 0.5.1"
}

DEBUG: exec completed (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "durationMs": 446
  "stdout": ""
  "stderr": "    Updating crates.io index\n    Removing aead v0.5.1\n    Removing aes v0.8.2\n    Removing aes-gcm v0.10.1\n    Removing atty v0.2.14\n    Removing base64 v0.20.0\n      Adding bitflags v2.5.0\n    Removing block-buffer v0.10.3\n    Removing cipher v0.4.3\n    Updating cookie v0.16.2 -> v0.18.1\n    Removing cpufeatures v0.2.5\n    Removing crypto-common v0.1.6\n    Removing ctr v0.9.2\n    Updating devise v0.3.1 -> v0.4.1\n    Updating devise_codegen v0.3.1 -> v0.4.1\n    Updating devise_core v0.3.1 -> v0.4.1\n    Removing digest v0.10.6\n      Adding equivalent v1.0.1\n    Removing generic-array v0.14.6\n    Removing ghash v0.5.0\n      Adding hashbrown v0.14.5\n    Updating hermit-abi v0.1.19 -> v0.3.9 (latest: v0.4.0)\n    Removing hkdf v0.12.3\n    Removing hmac v0.12.1\n      Adding http v1.1.0\n      Adding indexmap v2.2.6\n    Removing inout v0.1.3\n      Adding is-terminal v0.4.12\n    Updating multer v2.0.4 -> v3.1.0\n    Removing opaque-debug v0.3.0\n    Updating pear v0.2.3 -> v0.2.9\n    Updating pear_codegen v0.2.3 -> v0.2.9\n    Removing polyval v0.6.0\n    Updating proc-macro2 v1.0.50 -> v1.0.85\n    Updating proc-macro2-diagnostics v0.9.1 -> v0.10.1\n    Updating quote v1.0.23 -> v1.0.36\n    Updating rocket v0.5.0-rc.2 -> v0.5.1\n    Updating rocket_codegen v0.5.0-rc.2 -> v0.5.1\n    Updating rocket_http v0.5.0-rc.2 -> v0.5.1\n    Removing sha2 v0.10.6\n    Updating smallvec v1.10.0 -> v1.13.2\n    Updating state v0.5.3 -> v0.6.0\n    Removing subtle v2.4.1\n      Adding syn v2.0.66\n    Removing typenum v1.16.0\n    Removing universal-hash v0.5.0\n      Adding windows-sys v0.52.0\n      Adding windows-targets v0.52.5\n      Adding windows_aarch64_gnullvm v0.52.5\n      Adding windows_aarch64_msvc v0.52.5\n      Adding windows_i686_gnu v0.52.5\n      Adding windows_i686_gnullvm v0.52.5\n      Adding windows_i686_msvc v0.52.5\n      Adding windows_x86_64_gnu v0.52.5\n      Adding windows_x86_64_gnullvm v0.52.5\n      Adding windows_x86_64_msvc v0.52.5\n    Updating yansi v0.5.1 -> v1.0.1\nnote: pass `--verbose` to see 108 unchanged dependencies behind latest\n"
}

DEBUG: Returning updated Cargo.lock (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 lock files (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "updatedArtifacts": [
    "rust_server/Cargo.lock"
  ]
}

DEBUG: 2 file(s) to commit (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/rocket-0.x-lockfile (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/rocket-0.x-lockfile",
    "commit": "861652493795e05a70cbb85d9db965f41eec23d6",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 189,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rocket-0.x-lockfile/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=127) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rocket-0.x-lockfile = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=88) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/rocket-0.x-lockfile (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "commitSha": "aaaf2a73129ddb62af0a54b82e3fabc09a533a51"
}

DEBUG: Ensuring PR (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/rocket-0.x-lockfile) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rocket-0.x-lockfile, undefined, open) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rocket-0.x-lockfile, undefined, closed) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/rwf2/Rocket (0.5.0-rc.2 -> 0.5.1) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "prTitle": "Update Rust crate rocket to v0.5.1"
}

DEBUG: Creating PR (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "title": "Update Rust crate rocket to v0.5.1"
  "head": "MShekow:renovate/rocket-0.x-lockfile"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "pr": 5
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #5 (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
  "pr": 5
  "prTitle": "Update Rust crate rocket to v0.5.1"
}

DEBUG: addParticipants(pr=5) (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #5 (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/rocket-0.x-lockfile")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/markupsafe-2.x) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/markupsafe-2.x, undefined, open) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/markupsafe-2.x, undefined, closed) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/markupsafe-2.x, Update dependency MarkupSafe to v2.1.5, !open) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:18.023Z) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 74 (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "MarkupSafe"
}

DEBUG: Found match at index 74 (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "MarkupSafe"
}

DEBUG: Value is not updated (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "manager": "pip_requirements"
  "packageFile": "python_server/requirements.txt"
  "expectedValue": "==2.1.5"
  "foundValue": "==2.1.2"
}

DEBUG: Found match at index 106 (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "MarkupSafe"
}

DEBUG: Contents updated (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "MarkupSafe"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/markupsafe-2.x (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/markupsafe-2.x",
    "commit": "1e043fc2c414fcccbcba78675bb600d462a3bb99",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/markupsafe-2.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=97) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/markupsafe-2.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=90) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/markupsafe-2.x (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "commitSha": "c96800b50dee6863fd73483325a409861edca795"
}

DEBUG: Ensuring PR (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/markupsafe-2.x) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/markupsafe-2.x, undefined, open) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/markupsafe-2.x, undefined, closed) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency MarkupSafe to v2.1.5"
}

DEBUG: Creating PR (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "title": "Update dependency MarkupSafe to v2.1.5"
  "head": "MShekow:renovate/markupsafe-2.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "pr": 6
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #6 (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
  "pr": 6
  "prTitle": "Update dependency MarkupSafe to v2.1.5"
}

DEBUG: addParticipants(pr=6) (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #6 (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/markupsafe-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/click-8.x) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/click-8.x, undefined, open) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/click-8.x, undefined, closed) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/click-8.x, Update dependency click to v8.1.7, !open) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:23.048Z) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 5 (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "click"
}

DEBUG: Found match at index 5 (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "click"
}

DEBUG: Contents updated (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "click"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/click-8.x (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/click-8.x",
    "commit": "fb06f7d6e454c95ca6a6852b899ee33d3f0eb0ba",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/click-8.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=107) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/click-8.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=114) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/click-8.x (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "commitSha": "6bfdffd55952d265eb0f83bcd23bc4c8dd067c63"
}

DEBUG: Ensuring PR (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/click-8.x) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/click-8.x, undefined, open) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/click-8.x, undefined, closed) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency click to v8.1.7"
}

DEBUG: Creating PR (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "title": "Update dependency click to v8.1.7"
  "head": "MShekow:renovate/click-8.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "pr": 7
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #7 (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/click-8.x")
{
  "baseBranch": "main"
  "pr": 7
  "prTitle": "Update dependency click to v8.1.7"
}

DEBUG: addParticipants(pr=7) (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #7 (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/click-8.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/regex-0.x) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-0.x, undefined, open) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-0.x, undefined, closed) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-0.x, Update Rust crate regex to 0.2.0, !open) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:27.409Z) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 207 (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: Found match at index 207 (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: Neither .cargo/config nor .cargo/config.toml found (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Found lock file rust_server/Cargo.lock for packageFile: rust_server/Cargo.toml (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: No locked version found for package regex in the range of 0.2.0. (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Contents updated (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: cargo.updateArtifacts(rust_server/Cargo.toml) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Updating rust_server/Cargo.lock (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Setting CONTAINERBASE_CACHE_DIR to /tmp/renovate/cache/containerbase (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Using containerbase dynamic installs (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Resolved stable matching version (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "toolName": "rust"
  "resolvedVersion": "1.78.0"
}

DEBUG: Executing command (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "command": "install-tool rust 1.78.0"
}

DEBUG: exec completed (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "durationMs": 1026
  "stdout": "[09:23:29.106] INFO (3770): Installing tool [email protected]...\ntool rust v1.78.0 is already installed\ntool is already linked: rust v1.78.0\n[09:23:29.231] INFO (3770): Installed tool rust in 125ms.\n"
  "stderr": ""
}

DEBUG: Executing command (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --workspace"
}

DEBUG: exec completed (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "durationMs": 1061
  "stdout": ""
  "stderr": "    Updating crates.io index\n    Updating aho-corasick v0.5.3 -> v0.6.10 (latest: v1.1.3)\n    Removing kernel32-sys v0.2.2\n    Removing memchr v0.1.11\n    Updating regex v0.1.80 -> v0.2.11 (latest: v1.10.5)\n    Updating regex-syntax v0.3.9 -> v0.5.6 (latest: v0.8.4)\n    Removing thread-id v2.0.0\n    Updating thread_local v0.2.7 -> v0.3.6 (latest: v1.1.8)\n      Adding ucd-util v0.1.10 (latest: v0.2.1)\n    Updating utf8-ranges v0.1.3 -> v1.0.5\n    Removing winapi v0.2.8\n    Removing winapi-build v0.1.1\nnote: pass `--verbose` to see 134 unchanged dependencies behind latest\n"
}

DEBUG: Executing command (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 0.2.11"
}

DEBUG: rawExec err (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "err": {
    "cmd": "/bin/sh -c cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 0.2.11",
    "stderr": "error: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n  [email protected]\n",
    "stdout": "",
    "options": {
      "cwd": "/tmp/renovate/repos/github/MShekow/sec-test",
      "encoding": "utf-8",
      "env": {
        "GIT_CONFIG_KEY_0": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_0": "ssh:https://**redacted**@github.com/",
        "GIT_CONFIG_KEY_1": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_1": "[email protected]:",
        "GIT_CONFIG_KEY_2": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_2": "https://github.com/",
        "GIT_CONFIG_COUNT": "3",
        "HOME": "/home/ubuntu",
        "PATH": "/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
        "LC_ALL": "C.UTF-8",
        "LANG": "C.UTF-8",
        "CONTAINERBASE_CACHE_DIR": "/tmp/renovate/cache/containerbase"
      },
      "maxBuffer": 10485760,
      "timeout": 900000
    },
    "exitCode": 101,
    "name": "ExecError",
    "message": "Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 0.2.11\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n  [email protected]\n",
    "stack": "ExecError: Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 0.2.11\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n  [email protected]\n\n    at ChildProcess.<anonymous> (/usr/local/renovate/lib/util/exec/common.ts:99:11)\n    at ChildProcess.emit (node:events:529:35)\n    at ChildProcess.emit (node:domain:489:12)\n    at Process.ChildProcess._handle.onexit (node:internal/child_process:292:12)"
  }
  "durationMs": 92
}

DEBUG: Dependency already up to date - reattempting recursively (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: cargo.updateArtifacts(rust_server/Cargo.toml) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: No more dependencies to update (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 lock files (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "updatedArtifacts": [
    "rust_server/Cargo.lock"
  ]
}

DEBUG: 2 file(s) to commit (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/regex-0.x (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/regex-0.x",
    "commit": "2c786f5c1cba2f9f1f9c5506a65605c6a3beda26",
    "root": false,
    "summary": {
      "changes": 2,
      "insertions": 37,
      "deletions": 69
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-0.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=95) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-0.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=137) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/regex-0.x (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "commitSha": "1d90909e2f4e833d0e92e3c752f72d9264e04065"
}

DEBUG: Ensuring PR (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/regex-0.x) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-0.x, undefined, open) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-0.x, undefined, closed) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/rust-lang/regex (0.1.80 -> 0.2.11) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "prTitle": "Update Rust crate regex to 0.2.0"
}

DEBUG: Creating PR (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "title": "Update Rust crate regex to 0.2.0"
  "head": "MShekow:renovate/regex-0.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "pr": 8
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #8 (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
  "pr": 8
  "prTitle": "Update Rust crate regex to 0.2.0"
}

DEBUG: addParticipants(pr=8) (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #8 (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/regex-0.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-2.x) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-2.x, undefined, open) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-2.x, undefined, closed) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-2.x, Update dependency Flask to v2.3.3, !open) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:36.204Z) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 18 (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: Found match at index 18 (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: Contents updated (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/flask-2.x (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/flask-2.x",
    "commit": "42d7774a1b42d3653dc082a14f173a85aab2f7eb",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-2.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=98) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-2.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=83) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/flask-2.x (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "commitSha": "a35c9eabe7588f066f168dd4f47024fe5ff83414"
}

DEBUG: Ensuring PR (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-2.x) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-2.x, undefined, open) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-2.x, undefined, closed) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/pallets/flask (2.2.2 -> 2.3.3) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency Flask to v2.3.3"
}

DEBUG: Creating PR (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "title": "Update dependency Flask to v2.3.3"
  "head": "MShekow:renovate/flask-2.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "pr": 9
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #9 (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
  "pr": 9
  "prTitle": "Update dependency Flask to v2.3.3"
}

DEBUG: addParticipants(pr=9) (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #9 (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/flask-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/itsdangerous-2.x) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/itsdangerous-2.x, undefined, open) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/itsdangerous-2.x, undefined, closed) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/itsdangerous-2.x, Update dependency itsdangerous to v2.2.0, !open) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:41.044Z) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 74 (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "itsdangerous"
}

DEBUG: Found match at index 74 (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "itsdangerous"
}

DEBUG: Contents updated (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "itsdangerous"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/itsdangerous-2.x (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/itsdangerous-2.x",
    "commit": "068533662ee33b17e7b67cc9a9f1f71b2614bc83",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/itsdangerous-2.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=102) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/itsdangerous-2.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=82) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/itsdangerous-2.x (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "commitSha": "e562c0033936016f9d8f4db650c7b1c742d3fd54"
}

DEBUG: Ensuring PR (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/itsdangerous-2.x) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/itsdangerous-2.x, undefined, open) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/itsdangerous-2.x, undefined, closed) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/pallets/itsdangerous (2.1.2 -> 2.2.0) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency itsdangerous to v2.2.0"
}

DEBUG: Creating PR (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "title": "Update dependency itsdangerous to v2.2.0"
  "head": "MShekow:renovate/itsdangerous-2.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "pr": 10
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #10 (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
  "pr": 10
  "prTitle": "Update dependency itsdangerous to v2.2.0"
}

DEBUG: addParticipants(pr=10) (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #10 (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/itsdangerous-2.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/rust-1.x) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rust-1.x, undefined, open) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rust-1.x, undefined, closed) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rust-1.x, Update rust Docker tag to v1.78, !open) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:45.650Z) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 6 (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Dockerfile"
  "depName": "rust"
}

DEBUG: Found match at index 6 (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Dockerfile"
  "depName": "rust"
}

DEBUG: Contents updated (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Dockerfile"
  "depName": "rust"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/rust-1.x (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/rust-1.x",
    "commit": "337e78e123d86b55093052aad897c0f00a8e7aa3",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rust-1.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=110) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rust-1.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=92) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/rust-1.x (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "commitSha": "4f3004a22005ae2a7541673b740adbc39576f0f7"
}

DEBUG: Ensuring PR (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/rust-1.x) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rust-1.x, undefined, open) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/rust-1.x, undefined, closed) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "prTitle": "Update rust Docker tag to v1.78"
}

DEBUG: Creating PR (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "title": "Update rust Docker tag to v1.78"
  "head": "MShekow:renovate/rust-1.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "pr": 11
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #11 (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
  "pr": 11
  "prTitle": "Update rust Docker tag to v1.78"
}

DEBUG: addParticipants(pr=11) (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #11 (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/rust-1.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/regex-1.x) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-1.x, undefined, open) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-1.x, undefined, closed) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-1.x, Update Rust crate regex to v1, !open) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:50.124Z) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 207 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: Found match at index 207 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: Neither .cargo/config nor .cargo/config.toml found (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Found lock file rust_server/Cargo.lock for packageFile: rust_server/Cargo.toml (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Contents updated (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "packageFile": "rust_server/Cargo.toml"
  "depName": "regex"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: cargo.updateArtifacts(rust_server/Cargo.toml) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Updating rust_server/Cargo.lock (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting CONTAINERBASE_CACHE_DIR to /tmp/renovate/cache/containerbase (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Using containerbase dynamic installs (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Resolved stable matching version (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "toolName": "rust"
  "resolvedVersion": "1.78.0"
}

DEBUG: Executing command (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "command": "install-tool rust 1.78.0"
}

DEBUG: exec completed (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "durationMs": 1145
  "stdout": "[09:23:51.625] INFO (3998): Installing tool [email protected]...\ntool rust v1.78.0 is already installed\ntool is already linked: rust v1.78.0\n[09:23:51.792] INFO (3998): Installed tool rust in 167ms.\n"
  "stderr": ""
}

DEBUG: Executing command (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --workspace"
}

DEBUG: exec completed (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "durationMs": 628
  "stdout": ""
  "stderr": "    Updating aho-corasick v0.5.3 -> v0.7.20 (latest: v1.1.3)\n    Removing kernel32-sys v0.2.2\n    Removing memchr v0.1.11\n    Removing regex v0.1.80\n    Removing regex-syntax v0.3.9\n    Removing thread-id v2.0.0\n    Removing thread_local v0.2.7\n    Removing utf8-ranges v0.1.3\n    Removing winapi v0.2.8\n    Removing winapi-build v0.1.1\nnote: pass `--verbose` to see 134 unchanged dependencies behind latest\n"
}

DEBUG: Executing command (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "command": "cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5"
}

DEBUG: rawExec err (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "err": {
    "cmd": "/bin/sh -c cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5",
    "stderr": "error: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n",
    "stdout": "",
    "options": {
      "cwd": "/tmp/renovate/repos/github/MShekow/sec-test",
      "encoding": "utf-8",
      "env": {
        "GIT_CONFIG_KEY_0": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_0": "ssh:https://**redacted**@github.com/",
        "GIT_CONFIG_KEY_1": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_1": "[email protected]:",
        "GIT_CONFIG_KEY_2": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_2": "https://github.com/",
        "GIT_CONFIG_COUNT": "3",
        "HOME": "/home/ubuntu",
        "PATH": "/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
        "LC_ALL": "C.UTF-8",
        "LANG": "C.UTF-8",
        "CONTAINERBASE_CACHE_DIR": "/tmp/renovate/cache/containerbase"
      },
      "maxBuffer": 10485760,
      "timeout": 900000
    },
    "exitCode": 101,
    "name": "ExecError",
    "message": "Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n",
    "stack": "ExecError: Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n\n    at ChildProcess.<anonymous> (/usr/local/renovate/lib/util/exec/common.ts:99:11)\n    at ChildProcess.emit (node:events:529:35)\n    at ChildProcess.emit (node:domain:489:12)\n    at Process.ChildProcess._handle.onexit (node:internal/child_process:292:12)"
  }
  "durationMs": 78
}

DEBUG: Failed to update Cargo lock file (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "err": {
    "cmd": "/bin/sh -c cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5",
    "stderr": "error: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n",
    "stdout": "",
    "options": {
      "cwd": "/tmp/renovate/repos/github/MShekow/sec-test",
      "encoding": "utf-8",
      "env": {
        "GIT_CONFIG_KEY_0": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_0": "ssh:https://**redacted**@github.com/",
        "GIT_CONFIG_KEY_1": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_1": "[email protected]:",
        "GIT_CONFIG_KEY_2": "url.https://**redacted**@github.com/.insteadOf",
        "GIT_CONFIG_VALUE_2": "https://github.com/",
        "GIT_CONFIG_COUNT": "3",
        "HOME": "/home/ubuntu",
        "PATH": "/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/.cargo/bin:/home/ubuntu/.local/bin:/go/bin:/home/ubuntu/bin:/home/ubuntu/.npm-global/bin:/home/ubuntu/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin",
        "LC_ALL": "C.UTF-8",
        "LANG": "C.UTF-8",
        "CONTAINERBASE_CACHE_DIR": "/tmp/renovate/cache/containerbase"
      },
      "maxBuffer": 10485760,
      "timeout": 900000
    },
    "exitCode": 101,
    "name": "ExecError",
    "message": "Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n",
    "stack": "ExecError: Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n\n    at ChildProcess.<anonymous> (/usr/local/renovate/lib/util/exec/common.ts:99:11)\n    at ChildProcess.emit (node:events:529:35)\n    at ChildProcess.emit (node:domain:489:12)\n    at Process.ChildProcess._handle.onexit (node:internal/child_process:292:12)"
  }
}

DEBUG: Updated 1 package files (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: PR has no releaseTimestamp (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/regex-1.x (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/regex-1.x",
    "commit": "1aaa6fe990359d93b93015449e7f102cc0fe7c00",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-1.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=85) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-1.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=80) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/regex-1.x (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "commitSha": "39afde70734eab1e10867033ee4831b84982c1a2"
}

DEBUG: Updating status check state to failed (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Setting branch status (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "context": "renovate/artifacts"
  "state": "red"
}

DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/commits/renovate/regex-1.x/status (etag=W/"d02ce4fc2e7d85717ce739588c546ff3fa0e45b506969200d9da1fa5f188c0ec", lastModified=undefined) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Ensuring PR (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/regex-1.x) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-1.x, undefined, open) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/regex-1.x, undefined, closed) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Forcing PR because of artifact errors (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/rust-lang/regex (0.1.80 -> 1.10.5) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "prTitle": "Update Rust crate regex to v1"
}

DEBUG: Creating PR (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "title": "Update Rust crate regex to v1"
  "head": "MShekow:renovate/regex-1.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "pr": 12
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #12 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "pr": 12
  "prTitle": "Update Rust crate regex to v1"
}

DEBUG: addParticipants(pr=12) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #12 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

WARN: artifactErrors (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "artifactErrors": [
    {
      "lockFile": "rust_server/Cargo.lock",
      "stderr": "Command failed: cargo update --config net.git-fetch-with-cli=true --manifest-path rust_server/Cargo.toml --package [email protected] --precise 1.10.5\nerror: package ID specification `[email protected]` did not match any packages\nDid you mean one of these?\n\n  [email protected]\n"
    }
  ]
}

DEBUG: Getting comments for #12 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/issues/12/comments?per_page=100 (etag="eabdfe6b48b2e947c58d66802b028948bc5335e642697b1a333d29bc471ce998", lastModified=undefined) (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Found 0 comments (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: Ensuring comment "⚠️ Artifact update problem" in #12 (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

INFO: Comment added (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
  "issueNo": 12
  "topic": "⚠️ Artifact update problem"
}

DEBUG: setBranchCommit() (branch="renovate/regex-1.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-3.x) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-3.x, undefined, open) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-3.x, undefined, closed) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-3.x, Update dependency Flask to v3, !open) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:23:59.933Z) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 18 (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: Found match at index 18 (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: Contents updated (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/flask-3.x (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/flask-3.x",
    "commit": "03a59c4e1094511b1ce77a37241d64eb9425b74e",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 0
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-3.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=99) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-3.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=86) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/flask-3.x (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "commitSha": "fc2dbb49b3d5dd0662cf266b87fbbd3a726862b2"
}

DEBUG: Ensuring PR (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-3.x) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-3.x, undefined, open) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-3.x, undefined, closed) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/pallets/flask (2.2.2 -> 3.0.3) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency Flask to v3"
}

DEBUG: Creating PR (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "title": "Update dependency Flask to v3"
  "head": "MShekow:renovate/flask-3.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "pr": 13
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #13 (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
  "pr": 13
  "prTitle": "Update dependency Flask to v3"
}

DEBUG: addParticipants(pr=13) (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #13 (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/flask-3.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState() (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: syncBranchState(): Branch cache not found, creating minimal branchState (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-cors-4.x) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-cors-4.x, undefined, open) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-cors-4.x, undefined, closed) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: branchExists=false (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: dependencyDashboardCheck=undefined (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Check for closed PR because recreating closed PRs is disabled. (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-cors-4.x, Update dependency Flask-Cors to v4, !open) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: prAlreadyExisted=false (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Checking schedule(schedule=at any time, tz=null, now=2024-06-13T09:24:04.711Z) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: No schedule defined (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Branch needs creating (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Using reuseExistingBranch: false (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

DEBUG: manager.getUpdatedPackageFiles() reuseExistingBranch=false (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Starting search at index 36 (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask-Cors"
}

DEBUG: Found match at index 36 (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask-Cors"
}

DEBUG: Contents updated (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "packageFile": "python_server/requirements.txt"
  "depName": "Flask-Cors"
}

DEBUG: updateArtifacts for updatedPackageFiles (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: pip_requirements.updateArtifacts(python_server/requirements.txt) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: No hashin commands to run - returning (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Updated 1 package files (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: No updated lock files in branch (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: 1 file(s) to commit (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Preparing files for committing to branch renovate/flask-cors-4.x (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: git commit (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "deletedFiles": []
  "ignoredFiles": []
  "result": {
    "author": null,
    "branch": "renovate/flask-cors-4.x",
    "commit": "2ad3f612450f8df13a9838c0d9f200744e2da916",
    "root": false,
    "summary": {
      "changes": 1,
      "insertions": 1,
      "deletions": 1
    }
  }
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-cors-4.x/ = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=87) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: HEAD https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-cors-4.x = (code=ERR_NON_2XX_3XX_RESPONSE, statusCode=404 retryCount=0, duration=85) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: resetToCommit(077afa5d3276c15c85a6d94637ffabcd801e99c3) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching branch renovate/flask-cors-4.x (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Setting current branch to main (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: latest commit (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "branchName": "main"
  "latestCommitDate": "2024-06-13T11:13:56+02:00"
}

INFO: Branch created (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "commitSha": "0ffe994673b2f7d604eac2c81bddbf222cde33e8"
}

DEBUG: Ensuring PR (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: There are 0 errors and 0 warnings (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/flask-cors-4.x) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-cors-4.x, undefined, open) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: findPr(renovate/flask-cors-4.x, undefined, closed) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: getPrCache() (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Fetching changelog: https://github.com/corydolphin/flask-cors (3.0.10 -> 4.0.1) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Creating PR (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "prTitle": "Update dependency Flask-Cors to v4"
}

DEBUG: Creating PR (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "title": "Update dependency Flask-Cors to v4"
  "head": "MShekow:renovate/flask-cors-4.x"
  "base": "main"
  "draft": false
}

DEBUG: PR created (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "pr": 14
  "draft": false
}

DEBUG: Adding labels 'dependencies' to #14 (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

INFO: PR created (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
  "pr": 14
  "prTitle": "Update dependency Flask-Cors to v4"
}

DEBUG: addParticipants(pr=14) (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: setPrCache() (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: Created Pull Request #14 (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: PR is not configured for automerge (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: setBranchCommit() (branch="renovate/flask-cors-4.x")
{
  "baseBranch": "main"
}

DEBUG: getBranchPr(renovate/pypi-Jinja2-vulnerability)
DEBUG: findPr(renovate/pypi-Jinja2-vulnerability, undefined, open)
DEBUG: Found PR #2
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/pypi-Werkzeug-vulnerability)
DEBUG: findPr(renovate/pypi-Werkzeug-vulnerability, undefined, open)
DEBUG: Found PR #3
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/pypi-gunicorn-vulnerability)
DEBUG: findPr(renovate/pypi-gunicorn-vulnerability, undefined, open)
DEBUG: Found PR #4
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/rocket-0.x-lockfile)
DEBUG: findPr(renovate/rocket-0.x-lockfile, undefined, open)
DEBUG: Found PR #5
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/markupsafe-2.x)
DEBUG: findPr(renovate/markupsafe-2.x, undefined, open)
DEBUG: Found PR #6
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/click-8.x)
DEBUG: findPr(renovate/click-8.x, undefined, open)
DEBUG: Found PR #7
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/regex-0.x)
DEBUG: findPr(renovate/regex-0.x, undefined, open)
DEBUG: Found PR #8
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/flask-2.x)
DEBUG: findPr(renovate/flask-2.x, undefined, open)
DEBUG: Found PR #9
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/itsdangerous-2.x)
DEBUG: findPr(renovate/itsdangerous-2.x, undefined, open)
DEBUG: Found PR #10
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/rust-1.x)
DEBUG: findPr(renovate/rust-1.x, undefined, open)
DEBUG: Found PR #11
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/regex-1.x)
DEBUG: findPr(renovate/regex-1.x, undefined, open)
DEBUG: Found PR #12
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/flask-3.x)
DEBUG: findPr(renovate/flask-3.x, undefined, open)
DEBUG: Found PR #13
DEBUG: getPrCache()
DEBUG: getBranchPr(renovate/flask-cors-4.x)
DEBUG: findPr(renovate/flask-cors-4.x, undefined, open)
DEBUG: Found PR #14
DEBUG: getPrCache()
DEBUG: ensureDependencyDashboard()
DEBUG: Ensuring Dependency Dashboard
DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/issues/1 (etag=W/"401402148c9cf8648d007df136597c431b1378a875299beca6544d614621771e", lastModified=Thu, 13 Jun 2024 09:21:21 GMT)
DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/issues/1 (etag=W/"401402148c9cf8648d007df136597c431b1378a875299beca6544d614621771e", lastModified=Thu, 13 Jun 2024 09:21:21 GMT)
DEBUG: ensureIssue(Dependency Dashboard)
DEBUG: http cache: saving https://api.github.com/repos/MShekow/sec-test/issues/1 (etag=W/"401402148c9cf8648d007df136597c431b1378a875299beca6544d614621771e", lastModified=Thu, 13 Jun 2024 09:21:21 GMT)
DEBUG: Patching issue
DEBUG: Issue updated
DEBUG: validateReconfigureBranch()
DEBUG: No reconfigure branch found
DEBUG: Removing any stale branches
DEBUG: config.repoIsOnboarded=true
DEBUG: Branch lists
{
  "branchList": [
    "renovate/click-8.x",
    "renovate/flask-2.x",
    "renovate/flask-3.x",
    "renovate/flask-cors-4.x",
    "renovate/itsdangerous-2.x",
    "renovate/markupsafe-2.x",
    "renovate/pypi-Jinja2-vulnerability",
    "renovate/pypi-Werkzeug-vulnerability",
    "renovate/pypi-gunicorn-vulnerability",
    "renovate/regex-0.x",
    "renovate/regex-1.x",
    "renovate/rocket-0.x-lockfile",
    "renovate/rust-1.x"
  ]
  "renovateBranches": [
    "renovate/click-8.x",
    "renovate/flask-2.x",
    "renovate/flask-3.x",
    "renovate/flask-cors-4.x",
    "renovate/itsdangerous-2.x",
    "renovate/markupsafe-2.x",
    "renovate/pypi-Jinja2-vulnerability",
    "renovate/pypi-Werkzeug-vulnerability",
    "renovate/pypi-gunicorn-vulnerability",
    "renovate/regex-0.x",
    "renovate/regex-1.x",
    "renovate/rocket-0.x-lockfile",
    "renovate/rust-1.x"
  ]
}

DEBUG: remainingBranches=
DEBUG: No branches to clean up
DEBUG: Cleaning up Renovate refs: refs/renovate/*
DEBUG: PackageFiles.clear() - Package files deleted
DEBUG: Branch summary
{
  "baseBranches": [
    {
      "branchName": "main",
      "sha": "077afa5d3276c15c85a6d94637ffabcd801e99c3"
    }
  ]
  "branches": [
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/pypi-Jinja2-vulnerability",
      "branchSha": "474e360b54bd09d52994777077e9876c50bc95de",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/pypi-Werkzeug-vulnerability",
      "branchSha": "a8ca0840f622b6fa0fcdec4277eb9d4a717ce6df",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/pypi-gunicorn-vulnerability",
      "branchSha": "37692bc44261bb65a32b2437bccdcfe157c16f7c",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/rocket-0.x-lockfile",
      "branchSha": "aaaf2a73129ddb62af0a54b82e3fabc09a533a51",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/markupsafe-2.x",
      "branchSha": "c96800b50dee6863fd73483325a409861edca795",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/click-8.x",
      "branchSha": "6bfdffd55952d265eb0f83bcd23bc4c8dd067c63",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/regex-0.x",
      "branchSha": "1d90909e2f4e833d0e92e3c752f72d9264e04065",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/flask-2.x",
      "branchSha": "a35c9eabe7588f066f168dd4f47024fe5ff83414",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/itsdangerous-2.x",
      "branchSha": "e562c0033936016f9d8f4db650c7b1c742d3fd54",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/rust-1.x",
      "branchSha": "4f3004a22005ae2a7541673b740adbc39576f0f7",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/regex-1.x",
      "branchSha": "39afde70734eab1e10867033ee4831b84982c1a2",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/flask-3.x",
      "branchSha": "fc2dbb49b3d5dd0662cf266b87fbbd3a726862b2",
      "isModified": false,
      "isPristine": true
    },
    {
      "automerge": false,
      "baseBranch": "main",
      "baseBranchSha": "077afa5d3276c15c85a6d94637ffabcd801e99c3",
      "branchName": "renovate/flask-cors-4.x",
      "branchSha": "0ffe994673b2f7d604eac2c81bddbf222cde33e8",
      "isModified": false,
      "isPristine": true
    }
  ]
  "defaultBranch": "main"
  "inactiveBranches": []
}

DEBUG: branches info extended
{
  "branchesInformation": [
    {
      "branchName": "renovate/pypi-Jinja2-vulnerability",
      "prNo": 2,
      "prTitle": "Update dependency Jinja2 to v3.1.4 [SECURITY]",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "Jinja2",
          "displayPending": "",
          "fixedVersion": "3.1.2",
          "currentVersion": "3.1.2",
          "currentValue": "==3.1.2",
          "newValue": "==3.1.4",
          "newVersion": "3.1.4",
          "packageFile": "python_server/requirements.txt",
          "updateType": "patch",
          "packageName": "Jinja2"
        }
      ]
    },
    {
      "branchName": "renovate/pypi-Werkzeug-vulnerability",
      "prNo": 3,
      "prTitle": "Update dependency Werkzeug to v3 [SECURITY]",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "Werkzeug",
          "displayPending": "",
          "fixedVersion": "2.2.3",
          "currentVersion": "2.2.3",
          "currentValue": "==2.2.3",
          "newValue": "==3.0.3",
          "newVersion": "3.0.3",
          "packageFile": "python_server/requirements.txt",
          "updateType": "major",
          "packageName": "Werkzeug"
        }
      ]
    },
    {
      "branchName": "renovate/pypi-gunicorn-vulnerability",
      "prNo": 4,
      "prTitle": "Update dependency gunicorn to v22 [SECURITY]",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "gunicorn",
          "displayPending": "",
          "fixedVersion": "20.1.0",
          "currentVersion": "20.1.0",
          "currentValue": "==20.1.0",
          "newValue": "==22.0.0",
          "newVersion": "22.0.0",
          "packageFile": "python_server/requirements.txt",
          "updateType": "major",
          "packageName": "gunicorn"
        }
      ]
    },
    {
      "branchName": "renovate/rocket-0.x-lockfile",
      "prNo": 5,
      "prTitle": "Update Rust crate rocket to v0.5.1",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "crate",
          "depName": "rocket",
          "displayPending": "",
          "fixedVersion": "0.5.0-rc.2",
          "currentVersion": "0.5.0-rc.2",
          "currentValue": "0.5.0-rc.2",
          "newValue": "0.5.0-rc.2",
          "newVersion": "0.5.1",
          "packageFile": "rust_server/Cargo.toml",
          "updateType": "patch",
          "packageName": "rocket"
        }
      ]
    },
    {
      "branchName": "renovate/markupsafe-2.x",
      "prNo": 6,
      "prTitle": "Update dependency MarkupSafe to v2.1.5",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "MarkupSafe",
          "displayPending": "",
          "fixedVersion": "2.1.2",
          "currentVersion": "2.1.2",
          "currentValue": "==2.1.2",
          "newValue": "==2.1.5",
          "newVersion": "2.1.5",
          "packageFile": "python_server/requirements.txt",
          "updateType": "patch",
          "packageName": "MarkupSafe"
        }
      ]
    },
    {
      "branchName": "renovate/click-8.x",
      "prNo": 7,
      "prTitle": "Update dependency click to v8.1.7",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "click",
          "displayPending": "",
          "fixedVersion": "8.1.3",
          "currentVersion": "8.1.3",
          "currentValue": "==8.1.3",
          "newValue": "==8.1.7",
          "newVersion": "8.1.7",
          "packageFile": "python_server/requirements.txt",
          "updateType": "patch",
          "packageName": "click"
        }
      ]
    },
    {
      "branchName": "renovate/regex-0.x",
      "prNo": 8,
      "prTitle": "Update Rust crate regex to 0.2.0",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "crate",
          "depName": "regex",
          "displayPending": "",
          "fixedVersion": "0.1.80",
          "currentVersion": "0.1.80",
          "currentValue": "0.1.41",
          "newValue": "0.2.0",
          "newVersion": "0.2.11",
          "packageFile": "rust_server/Cargo.toml",
          "updateType": "minor",
          "packageName": "regex"
        }
      ]
    },
    {
      "branchName": "renovate/flask-2.x",
      "prNo": 9,
      "prTitle": "Update dependency Flask to v2.3.3",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "Flask",
          "displayPending": "",
          "fixedVersion": "2.2.2",
          "currentVersion": "2.2.2",
          "currentValue": "==2.2.2",
          "newValue": "==2.3.3",
          "newVersion": "2.3.3",
          "packageFile": "python_server/requirements.txt",
          "updateType": "minor",
          "packageName": "Flask"
        }
      ]
    },
    {
      "branchName": "renovate/itsdangerous-2.x",
      "prNo": 10,
      "prTitle": "Update dependency itsdangerous to v2.2.0",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "itsdangerous",
          "displayPending": "",
          "fixedVersion": "2.1.2",
          "currentVersion": "2.1.2",
          "currentValue": "==2.1.2",
          "newValue": "==2.2.0",
          "newVersion": "2.2.0",
          "packageFile": "python_server/requirements.txt",
          "updateType": "minor",
          "packageName": "itsdangerous"
        }
      ]
    },
    {
      "branchName": "renovate/rust-1.x",
      "prNo": 11,
      "prTitle": "Update rust Docker tag to v1.78",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "docker",
          "depName": "rust",
          "displayPending": "",
          "fixedVersion": "1.71",
          "currentVersion": "1.71",
          "currentValue": "1.71",
          "newValue": "1.78",
          "newVersion": "1.78",
          "packageFile": "rust_server/Dockerfile",
          "updateType": "minor",
          "packageName": "rust"
        }
      ]
    },
    {
      "branchName": "renovate/regex-1.x",
      "prNo": 12,
      "prTitle": "Update Rust crate regex to v1",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "crate",
          "depName": "regex",
          "displayPending": "",
          "fixedVersion": "0.1.80",
          "currentVersion": "0.1.80",
          "currentValue": "0.1.41",
          "newValue": "1.0.0",
          "newVersion": "1.10.5",
          "packageFile": "rust_server/Cargo.toml",
          "updateType": "major",
          "packageName": "regex"
        }
      ]
    },
    {
      "branchName": "renovate/flask-3.x",
      "prNo": 13,
      "prTitle": "Update dependency Flask to v3",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "Flask",
          "displayPending": "",
          "fixedVersion": "2.2.2",
          "currentVersion": "2.2.2",
          "currentValue": "==2.2.2",
          "newValue": "==3.0.3",
          "newVersion": "3.0.3",
          "packageFile": "python_server/requirements.txt",
          "updateType": "major",
          "packageName": "Flask"
        }
      ]
    },
    {
      "branchName": "renovate/flask-cors-4.x",
      "prNo": 14,
      "prTitle": "Update dependency Flask-Cors to v4",
      "result": "pr-created",
      "upgrades": [
        {
          "datasource": "pypi",
          "depName": "Flask-Cors",
          "displayPending": "",
          "fixedVersion": "3.0.10",
          "currentVersion": "3.0.10",
          "currentValue": "==3.0.10",
          "newValue": "==4.0.1",
          "newVersion": "4.0.1",
          "packageFile": "python_server/requirements.txt",
          "updateType": "major",
          "packageName": "Flask-Cors"
        }
      ]
    }
  ]
}

DEBUG: Renovate repository PR statistics
{
  "stats": {
    "total": 13,
    "open": 13,
    "closed": 0,
    "merged": 0
  }
}

DEBUG: Repository result: done, status: onboarded, enabled: true, onboarded: true
DEBUG: Repository timing splits (milliseconds)
{
  "splits": {
    "init": 6243,
    "extract": 1282,
    "lookup": 5002,
    "onboarding": 2,
    "update": 107134
  }
  "total": 121494
}

DEBUG: Package cache statistics
{
  "get": {
    "count": 232,
    "avgMs": 37,
    "medianMs": 1,
    "maxMs": 1533,
    "totalMs": 8583
  }
  "set": {
    "count": 130,
    "avgMs": 3,
    "medianMs": 2,
    "maxMs": 23,
    "totalMs": 350
  }
}

DEBUG: HTTP statistics
{
  "urls": {
    "https://api.github.com/graphql": {
      "POST": {
        "200": 5
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/commits/39afde70734eab1e10867033ee4831b84982c1a2/statuses": {
      "GET": {
        "200": 2
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/commits/renovate/regex-1.x/status": {
      "GET": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits": {
      "POST": {
        "201": 13
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/0ffe994673b2f7d604eac2c81bddbf222cde33e8": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/1d90909e2f4e833d0e92e3c752f72d9264e04065": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/37692bc44261bb65a32b2437bccdcfe157c16f7c": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/39afde70734eab1e10867033ee4831b84982c1a2": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/474e360b54bd09d52994777077e9876c50bc95de": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/4f3004a22005ae2a7541673b740adbc39576f0f7": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/6bfdffd55952d265eb0f83bcd23bc4c8dd067c63": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/a35c9eabe7588f066f168dd4f47024fe5ff83414": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/a8ca0840f622b6fa0fcdec4277eb9d4a717ce6df": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/aaaf2a73129ddb62af0a54b82e3fabc09a533a51": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/c96800b50dee6863fd73483325a409861edca795": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/e562c0033936016f9d8f4db650c7b1c742d3fd54": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/commits/fc2dbb49b3d5dd0662cf266b87fbbd3a726862b2": {
      "HEAD": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs": {
      "POST": {
        "201": 13
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/click-8.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/click-8.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-2.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-2.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-3.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-3.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-cors-4.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/flask-cors-4.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/itsdangerous-2.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/itsdangerous-2.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/markupsafe-2.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/markupsafe-2.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Jinja2-vulnerability": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Jinja2-vulnerability/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Werkzeug-vulnerability": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-Werkzeug-vulnerability/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-gunicorn-vulnerability": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/pypi-gunicorn-vulnerability/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-0.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-0.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-1.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/regex-1.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rocket-0.x-lockfile": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rocket-0.x-lockfile/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rust-1.x": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/refs/heads/renovate/rust-1.x/": {
      "HEAD": {
        "404": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/git/trees": {
      "POST": {
        "201": 13
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/1": {
      "GET": {
        "200": 1
      },
      "PATCH": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/10/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/11/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/12/comments": {
      "POST": {
        "201": 1
      },
      "GET": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/12/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/13/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/14/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/2/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/3/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/4/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/5/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/6/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/7/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/8/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/issues/9/labels": {
      "POST": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/pulls": {
      "POST": {
        "201": 13
      },
      "GET": {
        "200": 1
      }
    },
    "https://api.github.com/repos/MShekow/sec-test/statuses/39afde70734eab1e10867033ee4831b84982c1a2": {
      "POST": {
        "201": 1
      }
    }
  }
  "hosts": {
    "api.github.com": {
      "count": 118,
      "reqAvgMs": 303,
      "reqMedianMs": 203,
      "reqMaxMs": 1446,
      "queueAvgMs": 0,
      "queueMedianMs": 0,
      "queueMaxMs": 1
    }
  }
  "requests": 118
}

DEBUG: HTTP cache statistics
{
  "https://api.github.com": {
    "/repos/MShekow/sec-test/commits/renovate/regex-1.x/status": {
      "hit": 0,
      "miss": 1
    },
    "/repos/MShekow/sec-test/issues/1": {
      "hit": 0,
      "miss": 4
    },
    "/repos/MShekow/sec-test/issues/12/comments": {
      "hit": 0,
      "miss": 1
    },
    "/repos/MShekow/sec-test/pulls": {
      "hit": 0,
      "miss": 1
    }
  }
}

DEBUG: Lookup statistics
{
  "crate": {
    "count": 3,
    "avgMs": 191,
    "medianMs": 195,
    "maxMs": 207,
    "totalMs": 573
  }
  "pypi": {
    "count": 9,
    "avgMs": 689,
    "medianMs": 493,
    "maxMs": 1150,
    "totalMs": 6203
  }
  "docker": {
    "count": 2,
    "avgMs": 2239,
    "medianMs": 3130,
    "maxMs": 3130,
    "totalMs": 4478
  }
}

DEBUG: dns cache
{
  "hosts": []
}

INFO: Repository finished
{
  "cloned": true
  "durationMs": 121494
}

Answered by viceice

Jun 13, 2024

not a bug, renovate doesn't support transitive dependency upgrades.

View full answer

viceice · 2024-06-13T10:18:43Z

viceice
Jun 13, 2024
Maintainer

not a bug, renovate doesn't support transitive dependency upgrades.

1 reply

MShekow Jun 13, 2024
Author

Okay, thank you for the clarification

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Renovate creates only a fraction of PRs for Dependabot security alert #29650

{{title}}

Replies: 1 comment 1 reply

{{title}}

{{title}}

Select a reply

Renovate creates only a fraction of PRs for Dependabot security alert #29650

MShekow Jun 13, 2024

What would you like help with?

How are you running Renovate?

If you're self-hosting Renovate, tell us which platform (GitHub, GitLab, etc) and which version of Renovate.

Please tell us more about your question or problem

Logs (if relevant)

Replies: 1 comment · 1 reply

viceice Jun 13, 2024 Maintainer

MShekow Jun 13, 2024 Author

MShekow
Jun 13, 2024

Replies: 1 comment 1 reply

viceice
Jun 13, 2024
Maintainer

MShekow Jun 13, 2024
Author