build(deps): bump rojopolis/spellcheck-github-actions from 0.38.0 to 0.39.0

[dependabot]

Bumps rojopolis/spellcheck-github-actions from 0.38.0 to 0.39.0.

Release notes

Sourced from rojopolis/spellcheck-github-actions's releases.

0.39.0

What's Changed

• [Snyk] Security upgrade zipp from 3.15.0 to 3.19.1 by @​jonasbn in rojopolis/spellcheck-github-actions#204

Full Changelog: rojopolis/spellcheck-github-actions@0.38.0...0.39.0

Changelog

Sourced from rojopolis/spellcheck-github-actions's changelog.

0.39.0, 2024-07-17, maintenance release, update recommended

• PR from @​snyk-bot #204 this updates the indirect Python dependency zipp from version 3.15.0 to 3.19.1 The dependency has a security flaw, please see below references.

  Do note zipp is not a direct dependency, but it is a dependency of importlib-metadata, which is a dependency of pyspelling, which is the core component of this action.

  By indicating is as a direct dependency of version 3.19.1, we can ensure that the action is not vulnerable, even though the vulnerability might not directly exploitable in the context of this action.

  References:

  • Snyk description of issue
  • GitHub Security Advisory
  • CVE-2024-5569
  • Release notes for zipp 3.19.1

Commits

• 5922d6e Added another word to the dictionary
• d865bc5 Preparing release 0.39.0
• f6767d0 Merge pull request #204 from rojopolis/snyk-fix-93589d319b150c2775175cd948c8100c
• 5401ddd fix: requirements.txt to reduce vulnerabilities
• 47dfed7 Added autodie
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

This pull request was validated by pint.

✔️ No problems found

Stats

Stat	Value
Version	v0.62.1-9-g174f960
Number of rules parsed	4
Number of rules checked	0
Number of problems found	0
Number of offline checks	0
Number of online checks	0
Checks duration	0

Problems

No problems reported

[github-actions]

Benchmark diff:

goos: linux
goarch: amd64
pkg: github.com/cloudflare/pint/cmd/pint
cpu: AMD EPYC 7763 64-Core Processor                
              │   old.txt   │              new.txt               │
              │   sec/op    │   sec/op     vs base               │
FindEntries-4   38.16m ± 2%   38.37m ± 5%       ~ (p=0.529 n=10)
CheckRules-4     8.514 ± 2%    8.489 ± 2%       ~ (p=0.853 n=10)
geomean         570.0m        570.7m       +0.13%

              │   old.txt    │               new.txt               │
              │     B/op     │     B/op      vs base               │
FindEntries-4   27.39Mi ± 0%   27.39Mi ± 0%       ~ (p=0.247 n=10)
CheckRules-4    941.0Mi ± 0%   940.2Mi ± 0%       ~ (p=0.190 n=10)
geomean         160.5Mi        160.5Mi       -0.05%

              │   old.txt   │              new.txt               │
              │  allocs/op  │  allocs/op   vs base               │
FindEntries-4   131.6k ± 0%   131.6k ± 0%       ~ (p=0.338 n=10)
CheckRules-4    13.95M ± 0%   13.94M ± 0%       ~ (p=0.123 n=10)
geomean         1.355M        1.354M       -0.02%

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 94.58%. Comparing base (ab538fd) to head (174f960).

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1034   +/-   ##
=======================================
  Coverage   94.58%   94.58%           
=======================================
  Files          96       96           
  Lines        9816     9816           
=======================================
  Hits         9284     9284           
  Misses        376      376           
  Partials      156      156           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.