From 6a44aeaf1d11f314c8d45700710d0b20e6157c1a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Dec 2025 21:52:12 +0000
Subject: [PATCH 1/4] Bump the pip group across 1 directory with 3 updates

Bumps the pip group with 3 updates in the / directory: [gunicorn](https://github.com/benoitc/gunicorn), [urllib3](https://github.com/urllib3/urllib3) and [werkzeug](https://github.com/pallets/werkzeug).


Updates `gunicorn` from 21.2.0 to 22.0.0
- [Release notes](https://github.com/benoitc/gunicorn/releases)
- [Commits](https://github.com/benoitc/gunicorn/compare/21.2.0...22.0.0)

Updates `urllib3` from 2.3.0 to 2.6.0
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.3.0...2.6.0)

Updates `werkzeug` from 3.1.3 to 3.1.4
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](https://github.com/pallets/werkzeug/compare/3.1.3...3.1.4)

---
updated-dependencies:
- dependency-name: gunicorn
  dependency-version: 22.0.0
  dependency-type: direct:development
  dependency-group: pip
- dependency-name: urllib3
  dependency-version: 2.6.0
  dependency-type: indirect
  dependency-group: pip
- dependency-name: werkzeug
  dependency-version: 3.1.4
  dependency-type: indirect
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 poetry.lock    | 40 +++++++++++++++++++++-------------------
 pyproject.toml |  2 +-
 2 files changed, 22 insertions(+), 20 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index ac68db7..305fb63 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1834,23 +1834,24 @@ protobuf = ["grpcio-tools (>=1.76.0)"]
 
 [[package]]
 name = "gunicorn"
-version = "21.2.0"
+version = "22.0.0"
 description = "WSGI HTTP Server for UNIX"
 optional = false
-python-versions = ">=3.5"
+python-versions = ">=3.7"
 groups = ["server"]
 files = [
-    {file = "gunicorn-21.2.0-py3-none-any.whl", hash = "sha256:3213aa5e8c24949e792bcacfc176fef362e7aac80b76c56f6b5122bf350722f0"},
-    {file = "gunicorn-21.2.0.tar.gz", hash = "sha256:88ec8bff1d634f98e61b9f65bc4bf3cd918a90806c6f5c48bc5603849ec81033"},
+    {file = "gunicorn-22.0.0-py3-none-any.whl", hash = "sha256:350679f91b24062c86e386e198a15438d53a7a8207235a78ba1b53df4c4378d9"},
+    {file = "gunicorn-22.0.0.tar.gz", hash = "sha256:4a0b436239ff76fb33f11c07a16482c521a7e09c1ce3cc293c2330afe01bec63"},
 ]
 
 [package.dependencies]
 packaging = "*"
 
 [package.extras]
-eventlet = ["eventlet (>=0.24.1)"]
+eventlet = ["eventlet (>=0.24.1,!=0.36.0)"]
 gevent = ["gevent (>=1.4.0)"]
 setproctitle = ["setproctitle"]
+testing = ["coverage", "eventlet", "gevent", "pytest", "pytest-cov"]
 tornado = ["tornado (>=0.2)"]
 
 [[package]]
@@ -2364,26 +2365,27 @@ files = [
 
 [[package]]
 name = "kubernetes"
-version = "34.1.0"
+version = "33.1.0"
 description = "Kubernetes python client"
 optional = false
 python-versions = ">=3.6"
 groups = ["memory"]
 files = [
-    {file = "kubernetes-34.1.0-py2.py3-none-any.whl", hash = "sha256:bffba2272534e224e6a7a74d582deb0b545b7c9879d2cd9e4aae9481d1f2cc2a"},
-    {file = "kubernetes-34.1.0.tar.gz", hash = "sha256:8fe8edb0b5d290a2f3ac06596b23f87c658977d46b5f8df9d0f4ea83d0003912"},
+    {file = "kubernetes-33.1.0-py2.py3-none-any.whl", hash = "sha256:544de42b24b64287f7e0aa9513c93cb503f7f40eea39b20f66810011a86eabc5"},
+    {file = "kubernetes-33.1.0.tar.gz", hash = "sha256:f64d829843a54c251061a8e7a14523b521f2dc5c896cf6d65ccf348648a88993"},
 ]
 
 [package.dependencies]
 certifi = ">=14.05.14"
 durationpy = ">=0.7"
 google-auth = ">=1.0.1"
+oauthlib = ">=3.2.2"
 python-dateutil = ">=2.5.3"
 pyyaml = ">=5.4.1"
 requests = "*"
 requests-oauthlib = "*"
 six = ">=1.9.0"
-urllib3 = ">=1.24.2,<2.4.0"
+urllib3 = ">=1.24.2"
 websocket-client = ">=0.32.0,<0.40.0 || >0.40.0,<0.41.dev0 || >=0.43.dev0"
 
 [package.extras]
@@ -5502,21 +5504,21 @@ typing-extensions = ">=4.12.0"
 
 [[package]]
 name = "urllib3"
-version = "2.3.0"
+version = "2.6.0"
 description = "HTTP library with thread-safe connection pooling, file post, and more."
 optional = false
 python-versions = ">=3.9"
 groups = ["main", "dev", "memory", "monitoring"]
 files = [
-    {file = "urllib3-2.3.0-py3-none-any.whl", hash = "sha256:1cee9ad369867bfdbbb48b7dd50374c0967a0bb7710050facf0dd6911440e3df"},
-    {file = "urllib3-2.3.0.tar.gz", hash = "sha256:f8c5449b3cf0861679ce7e0503c7b44b5ec981bec0d1d3795a07f1ba96f0204d"},
+    {file = "urllib3-2.6.0-py3-none-any.whl", hash = "sha256:c90f7a39f716c572c4e3e58509581ebd83f9b59cced005b7db7ad2d22b0db99f"},
+    {file = "urllib3-2.6.0.tar.gz", hash = "sha256:cb9bcef5a4b345d5da5d145dc3e30834f58e8018828cbc724d30b4cb7d4d49f1"},
 ]
 
 [package.extras]
-brotli = ["brotli (>=1.0.9) ; platform_python_implementation == \"CPython\"", "brotlicffi (>=0.8.0) ; platform_python_implementation != \"CPython\""]
+brotli = ["brotli (>=1.2.0) ; platform_python_implementation == \"CPython\"", "brotlicffi (>=1.2.0.0) ; platform_python_implementation != \"CPython\""]
 h2 = ["h2 (>=4,<5)"]
 socks = ["pysocks (>=1.5.6,!=1.5.7,<2.0)"]
-zstd = ["zstandard (>=0.18.0)"]
+zstd = ["backports-zstd (>=1.0.0) ; python_version < \"3.14\""]
 
 [[package]]
 name = "uvicorn"
@@ -5867,18 +5869,18 @@ files = [
 
 [[package]]
 name = "werkzeug"
-version = "3.1.3"
+version = "3.1.4"
 description = "The comprehensive WSGI web application library."
 optional = false
 python-versions = ">=3.9"
 groups = ["main"]
 files = [
-    {file = "werkzeug-3.1.3-py3-none-any.whl", hash = "sha256:54b78bf3716d19a65be4fceccc0d1d7b89e608834989dfae50ea87564639213e"},
-    {file = "werkzeug-3.1.3.tar.gz", hash = "sha256:60723ce945c19328679790e3282cc758aa4a6040e4bb330f53d30fa546d44746"},
+    {file = "werkzeug-3.1.4-py3-none-any.whl", hash = "sha256:2ad50fb9ed09cc3af22c54698351027ace879a0b60a3b5edf5730b2f7d876905"},
+    {file = "werkzeug-3.1.4.tar.gz", hash = "sha256:cd3cd98b1b92dc3b7b3995038826c68097dcb16f9baa63abe35f20eafeb9fe5e"},
 ]
 
 [package.dependencies]
-MarkupSafe = ">=2.1.1"
+markupsafe = ">=2.1.1"
 
 [package.extras]
 watchdog = ["watchdog (>=2.3)"]
@@ -6157,4 +6159,4 @@ type = ["pytest-mypy"]
 [metadata]
 lock-version = "2.1"
 python-versions = "^3.12.0"
-content-hash = "2111cf4a31afc08412319e3d493d13449c76a08a24e02c7e874de03efcc1b1fe"
+content-hash = "4b5a20c231a6b595d52d6eb1ee130698338f91bb996b796b9a4f6e7357edf959"
diff --git a/pyproject.toml b/pyproject.toml
index 561ff79..dd8d844 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -135,7 +135,7 @@ aioredis = "^2.0.0"
 [tool.poetry.group.server.dependencies]
 fastapi = "^0.103.0"
 uvicorn = {extras = ["standard"], version = "^0.23.0"}
-gunicorn = "^21.2.0"
+gunicorn = "^22.0.0"
 
 [tool.poetry.group.resilience.dependencies]
 pybreaker = "^1.0.0"

From d3e5053091d02905587938dd990dd6780c16dbd6 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Tue, 23 Dec 2025 19:52:35 +0000
Subject: [PATCH 2/4] Initial plan


From b59dec4635ef3343f6ddd1eb653587b1f7285d17 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Tue, 23 Dec 2025 19:57:19 +0000
Subject: [PATCH 3/4] Add missing .github/app-manifest.yml file

Co-authored-by: JustAGhosT <5531814+JustAGhosT@users.noreply.github.com>
---
 .github/app-manifest.yml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 .github/app-manifest.yml

diff --git a/.github/app-manifest.yml b/.github/app-manifest.yml
new file mode 100644
index 0000000..9ccb649
--- /dev/null
+++ b/.github/app-manifest.yml
@@ -0,0 +1,27 @@
+# GitHub App Manifest for CodeFlow Engine
+# This manifest defines the GitHub App configuration for automatic setup
+# See: https://docs.github.com/en/apps/sharing-github-apps/registering-a-github-app-from-a-manifest
+
+name: CodeFlow Engine Setup
+url: https://github.com/JustAGhosT/codeflow-engine
+hook_attributes:
+  url: https://your-app.azurewebsites.net/api/github-app/webhook
+  active: true
+redirect_url: https://your-app.azurewebsites.net/api/github-app/callback
+description: Automated setup for CodeFlow Engine - GitHub Workflow Automation
+public: false
+
+default_permissions:
+  # Repository permissions
+  actions: write
+  contents: read
+  metadata: read
+  secrets: write
+  workflows: write
+
+default_events:
+  - installation
+  - installation_repositories
+  - workflow_run
+  - push
+  - pull_request

From 4d32228188f7208643238e240d59c605e8cbab43 Mon Sep 17 00:00:00 2001
From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com>
Date: Tue, 23 Dec 2025 20:00:27 +0000
Subject: [PATCH 4/4] Add clarifying comment about placeholder URLs in
 app-manifest.yml

Co-authored-by: JustAGhosT <5531814+JustAGhosT@users.noreply.github.com>
---
 .github/app-manifest.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/app-manifest.yml b/.github/app-manifest.yml
index 9ccb649..a040314 100644
--- a/.github/app-manifest.yml
+++ b/.github/app-manifest.yml
@@ -1,6 +1,9 @@
 # GitHub App Manifest for CodeFlow Engine
 # This manifest defines the GitHub App configuration for automatic setup
 # See: https://docs.github.com/en/apps/sharing-github-apps/registering-a-github-app-from-a-manifest
+#
+# NOTE: Before creating your GitHub App, replace 'your-app.azurewebsites.net' 
+# with your actual deployment URL in the webhook and callback URLs below.
 
 name: CodeFlow Engine Setup
 url: https://github.com/JustAGhosT/codeflow-engine