chore(deps): update dependency ops to v2.17.0

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
ops (changelog)	==2.14.0 -> ==2.17.0

---

Release Notes

canonical/operator (ops)

v2.17.0

Compare Source

Features

• Optionally install Scenario with ops[testing] and expose the names in ops.testing (#​1381)
• Change ops.main() so that you don't need to type: ignore it (#​1345)
• Expand the secret ID out to the full URI when only given the ID (#​1358)
• Add a JujuVersion property for Pebble log forwarding to Loki (#​1370)
• Pre-emptively raise InvalidStatusError instead of waiting for Juju:
  • Make it an error to call CollectStatusEvent.add_status with error or unknown (#​1386)
  • Document and validate settable status values in _ModelBackend.set_status (#​1354)

Fixes

• Fix type of StatusBase subclasses by calling StatusBase.register in __init_subclass__ (#​1383)
• Secret.set_info and Secret.set_content can be called in the same hook (#​1373)

Documentation

• Add top-level intro and module-level intros (#​1320)
• Update the links to the Pebble docs (#​1362)
• Note about repeatedly setting secret value in Juju 3.6 (#​1366)
• config-changed is triggered by Juju trust (#​1357)
• Typo on CharmBase inheritance example by @​theofpa (#​1349)
• Docs: move Pebble to a separate page (#​1392)

Continuous Integration

• Periodically run the unit tests of all GitHub-hosted published charms (#​1365)
• Update the TIOBE reporting for the changes in coverage calculation (#​1367)
• Spell-check the code as part of linting (#​1388)
• Run the smoke tests on a schedule (#​1387)

Testing

• Fix tests that leaked environment variables (#​1385)

Refactoring

• Move the content of ops.testing to ops._private.harness (#​1369)
• Keep the unittest.mock names in the 'mock' namespace (#​1379)
• Deprecate StatusBase.register decorator (#​1384)

Chores

• Note Juju version on legacy workaround (#​1355)
• Re-enable test now that Pebble directory permissions are fixed (#​1363)
• Generate warnings for events that will be removed in Juju 4.0 (#​1374)

v2.16.1

Compare Source

Fix

• Don't alter os.environ when creating a Harness (#​1359)

v2.16.0

Compare Source

Features

• Add the description field to SecretInfo in (#​1338)

Refactor

• Parse JUJU_* environment variables in one place in (#​1313)

Fixes

• Fix reading Juju secret expiry dates in (#​1317)
• Correct the signature of .events() in (#​1342)

Documentation

• Security policy change to only support each active major release in (#​1297)
• Add Juju version markers in (#​1311)
• Use Sphinx 8 in (#​1303)
• Live reload documentation with sphinx-autobuild in (#​1323)

Tests

• Update the smoke test series/bases in (#​1318)
• Run pytest in parallel with pytest xdist in (#​1319)
• Bump Pyright to 1.1.377 in (#​1332)
• Run tests on Python 3.12 and the install test on Python 3.13 in (#​1315)

CI

• Add a workflow that runs the TIOBE quality checks in (#​1301)
• Allow executing the TIOBE workflow manually in (#​1321)
• Make Pyright report unnecessary type ignore comments in (#​1333)
• Enable linting of docs/custom_conf.py in (#​1330)

v2.15.0

Compare Source

Features

• Add support for Pebble check-failed and check-recovered events (#​1281)

Fixes

• Pass secret data to Juju via files, rather than as command-line values (#​1290) fixing CVE-2024-41129
• Include checks and log targets when merging layers in ops.testing (#​1268)

Documentation

• Clarify distinction between maintenance and waiting status (#​1148)

CI

• Bump the Go version to match Pebble (#​1285)
• Run ruff format over charm pin update code (#​1278)
• Bump certifi from 2024.2.2 to 2024.7.4 in /docs (#​1282)
• Update charm pins (#​1269)

v2.14.1

Compare Source

Fixes

• Add connect timeout for exec websockets to avoid hanging (#​1247)
• Adjust Harness secret behaviour to align with Juju (#​1248)

Tests

• Fix TypeError when running test.pebble_cli (#​1245)
• Properly clean up after running setup_root_logging in test_log (#​1259)
• Verify that defer() is not usable on stop,remove,secret-expired,secret-rotate (#​1233)

Documentation

• Fix HACKING.md link on PyPI, and internal links (#​1261, #​1236)
• Add a section to HACKING.md on PR titles (commit messages to main) (#​1252)
• Add release step to update pinned charm tests (#​1213)
• Add a security policy (#​1266)

CI

• Only run tests once on push to PR (#​1242)
• Validate PR title against conventional commit rules in (#​1262)
• Only update ops, not all dependencies, in charm tests in (#​1275)
• Add artefact attestation (#​1267)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[merkata]

LGTM

[nrobinaubertin]

Blocked by canonical/charm-logdump-action#9

[cbartz]

@yanksyoon Can you take over here please (it seems there have been some security vulnerabilities detected by trivy)?

[yanksyoon]

Will take a look, thank you!

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

[amandahla]

@yanksyoon friendly ping

[yanksyoon]

@jdkandersson @varshigupta12 Would you be able to assign someone else here please as discussed?

[github-actions]

Test coverage for 42de2f6

Name                Stmts   Miss Branch BrPart  Cover   Missing
---------------------------------------------------------------
src/charm.py          557     35    174     34    91%   162, 204-207, 299->302, 414, 473->477, 627, 658, 664, 681-685, 715, 750-751, 811, 820, 924->937, 936, 938, 943-944, 1004, 1024, 1031, 1121, 1130, 1142, 1163, 1172, 1191, 1195, 1224, 1265, 1397, 1419, 1426->1428, 1471->exit, 1483, 1493, 1531
src/cos.py             20      0      0      0   100%
src/exceptions.py      16      1      2      1    89%   41
src/state.py           33      0      2      0   100%
src/types_.py          15      0      0      0   100%
---------------------------------------------------------------
TOTAL                 641     36    178     35    91%

Static code analysis report

Run started:2024-12-03 11:34:53.526110

Test results:
  No issues identified.

Code scanned:
  Total lines of code: 4647
  Total lines skipped (#nosec): 1
  Total potential issues skipped due to specifically being disabled (e.g., #nosec BXXX): 0

Run metrics:
  Total issues (by severity):
  	Undefined: 0
  	Low: 0
  	Medium: 0
  	High: 0
  Total issues (by confidence):
  	Undefined: 0
  	Low: 0
  	Medium: 0
  	High: 0
Files skipped (0):