v1.0.11

This is a maintenance release where we focused on updating dependencies and the Docker base image to improve the overall performance and stability of our software.

What's Changed

• Bump version to 1.0.11-dev by @jkreileder in #249
• Bump docker/scout-action from 1.6.4 to 1.7.0 by @dependabot in #250
• Bump github/codeql-action from 3.24.10 to 3.25.0 by @dependabot in #251
• Update sbom generator from 1.6.4 to 1.7.0 by @jkreileder in #252
• Bump github/codeql-action from 3.25.0 to 3.25.1 by @dependabot in #254
• Bump pyright from 1.1.358 to 1.1.359 by @dependabot in #253
• Bump docker/scout-action from 1.7.0 to 1.7.1 by @dependabot in #255
• Bump docker/dockerfile from 1.6.0 to 1.7.0 by @jkreileder in #256
• Bump docker/scout-sbom-indexer from 1.7.0 to 1.7.1 by @jkreileder in #257
• Bump actions/upload-artifact from 4.3.1 to 4.3.2 by @dependabot in #259
• Bump actions/download-artifact from 4.1.4 to 4.1.5 by @dependabot in #260
• Bump ruff from 0.3.7 to 0.4.0 by @jkreileder in #261
• Bump ruff from 0.3.7 to 0.4.0 by @dependabot in #258
• Bump ruff from 0.4.0 to 0.4.1 by @jkreileder in #262
• Bump actions/checkout from 4.1.2 to 4.1.3 by @dependabot in #263
• Bump slsa-framework/slsa-github-generator from 1.10.0 to 2.0.0 by @dependabot in #264
• Bump actions/download-artifact from 4.1.5 to 4.1.6 by @dependabot in #265
• Bump actions/upload-artifact from 4.3.2 to 4.3.3 by @dependabot in #267
• Bump github/codeql-action from 3.25.1 to 3.25.2 by @dependabot in #266
• Bump pydantic from 2.7.0 to 2.7.1 by @dependabot in #268
• Bump actions/checkout from 4.1.3 to 4.1.4 by @dependabot in #272
• Bump actions/download-artifact from 4.1.6 to 4.1.7 by @dependabot in #271
• Bump pyright from 1.1.359 to 1.1.360 by @dependabot in #269
• Bump python from 541d45d to 2be8dad by @dependabot in #270
• Bump ruff from 0.4.1 to 0.4.2 by @jkreileder in #273
• Bump github/codeql-action from 3.25.2 to 3.25.3 by @dependabot in #274
• Bump docker/scout-action from 1.7.1 to 1.8.0 by @dependabot in #275
• Bump pytest from 8.1.1 to 8.2.0 by @dependabot in #276
• Bump cloudflare from 2.19.2 to 2.19.4 by @jkreileder in #277
• Bump pyproject-hooks from 1.0.0 to 1.1.0 by @jkreileder in #278
• Bump step-security/harden-runner from 2.7.0 to 2.7.1 by @dependabot in #280
• Bump actions/dependency-review-action from 4.2.5 to 4.3.1 by @dependabot in #279
• Bump actions/dependency-review-action from 4.3.1 to 4.3.2 by @dependabot in #281
• Bump pyright from 1.1.360 to 1.1.361 by @dependabot in #282
• Bump codecov/codecov-action from 4.3.0 to 4.3.1 by @dependabot in #283
• Add GitHub artifact attestation across registries by @jkreileder in #284
• Revert "Remove CODECOV_TOKEN (#235)" by @jkreileder in #285
• Bump ruff from 0.4.2 to 0.4.3 by @dependabot in #286
• Bump ruff from 0.4.2 to 0.4.3 by @jkreileder in #287
• Bump docker/dockerfile from 1.7.0 to 1.7.1 by @jkreileder in #288
• Bump actions/attest-build-provenance from 1.0.0 to 1.1.0 by @dependabot in #290
• Bump actions/checkout from 4.1.4 to 4.1.5 by @dependabot in #289
• Update pyright to version 1.1.362 by @jkreileder in #291
• Refactor image names to use dynamic usernames by @jkreileder in #292
• Bump github/codeql-action from 3.25.3 to 3.25.4 by @dependabot in #293
• Generate attestations for python artifacts and sbom by @jkreileder in #294
• Move SBOM generation after build by @jkreileder in #295
• Enhance Docker workflow security settings by @jkreileder in #296
• Generate SBOM and GitHub attestations for DockerHub, Quay, and GitHub Container Registry by @jkreileder in #297
• Rename SBOM output files for clarity by @jkreileder in #298
• Tighten egress policies for PyPi releases by @jkreileder in #299
• Update Docker and Python package workflows to allow uploads of SBOMs to GitHub releases by @jkreileder in #300
• Update workflow action versions and naming by @jkreileder in #301
• Prepare v1.0.11 by @jkreileder in #302

Full Changelog: v1.0.10...v1.0.11