chore(deps-dev): bump streamlit from 1.57.0 to 1.58.0

[dependabot]

Bumps streamlit from 1.57.0 to 1.58.0.

Release notes

Sourced from streamlit's releases.

1.58.0

What's Changed

Breaking Changes 🛠

• [chore] Remove deprecated add_rows feature by @​lukasmasuch in streamlit/streamlit#15034
• [chore] Remove langchain callback handler integration by @​lukasmasuch in streamlit/streamlit#15051

New Features 🎉

• [feature] Add custom script error handling via st.App by @​lukasmasuch in streamlit/streamlit#14972
• [feature] Add st.pagination widget by @​lukasmasuch in streamlit/streamlit#14975
• [feat] Add type parameter to st.expander and st.status for compact style by @​lukasmasuch in streamlit/streamlit#14054
• [feature][ParallelFragments] Add parallel=True dispatch to @​st.fragment by @​sfc-gh-lwilby-1 in streamlit/streamlit#15214
• [feature] Add API restrictions for parallel fragments by @​sfc-gh-lwilby-1 in streamlit/streamlit#15251
• [feature] Add streamlit skills CLI command by @​lukasmasuch in streamlit/streamlit#15116

Bug Fixes 🐛

• [fix] Selectbox first item hidden when 7 options selected by @​kmcgrady in streamlit/streamlit#14997
• [fix] Defer sys.modules eviction to script-run boundary (#14593) by @​sfc-gh-lwilby in streamlit/streamlit#14826
• [fix] OAuth MismatchingStateError regression in 1.57.0 by @​lukasmasuch in streamlit/streamlit#15048
• [fix] Programmatically closed popovers/expanders reopening on interaction with another by @​kmcgrady in streamlit/streamlit#14945
• [fix] Support symlinks in Starlette static file serving by @​lukasmasuch in streamlit/streamlit#15112
• [feature] Sync URL when session_state updates query-param-bound widgets by @​sfc-gh-lwilby in streamlit/streamlit#14744
• fix: add usedforsecurity=False to blake2b for FIPS compatibility by @​andriykislitsyn in streamlit/streamlit#15149
• fix(fragment): prevent stale auto-reruns from crashing apps by @​sfc-gh-bnisco in streamlit/streamlit#15130
• [fix] Block javascript: and vbscript: URLs in markdown links by @​lukasmasuch in streamlit/streamlit#15161
• Set Max-Age on st.login() cookies to restore 30-day persistence by @​GiovanniPaoloGibilisco in streamlit/streamlit#15194
• [fix] Fix Vega-Lite chart tooltips in dialogs by @​marawanokasha in streamlit/streamlit#15191
• [fix] Help icon for unsafe_allow_html=True in st.markdown by @​sfc-gh-bnisco in streamlit/streamlit#15232
• [fix] Discover script-level .streamlit/config.toml when st.App runs under uvicorn by @​sfc-gh-bnisco in streamlit/streamlit#15218
• [fix] Warn when st.button shortcut is browser-reserved by @​sfc-gh-bnisco in streamlit/streamlit#15217
• fix(auth): migrate provider tokens to joserfc by @​sfc-gh-bnisco in streamlit/streamlit#15178
• Fix browser Back/Forward navigation for pages with Unicode URL paths by @​lukasmasuch in streamlit/streamlit#15281
• [fix] Restore Starlette OAuth PKCE behavior by @​lukasmasuch in streamlit/streamlit#15282
• [fix] Disable Select all in multiselect for >=1000 options by @​lukasmasuch in streamlit/streamlit#15301
• Fix accidental overscrolling in table, dataframe, and data_editor by @​kantuni in streamlit/streamlit#15309

Other Changes

• [chore] Update emojis/material icons by @​github-actions[bot] in streamlit/streamlit#14948
• [chore] Release v1.57.0 by @​github-actions[bot] in streamlit/streamlit#14962
• [fix] Reduce external IP fetch timeout to avoid startup freeze by @​lukasmasuch in streamlit/streamlit#14984
• Adjust widget/icon sizing - Part 1 by @​mayagbarnes in streamlit/streamlit#15056
• [chore] Update emojis/material icons by @​github-actions[bot] in streamlit/streamlit#15134
• Adjust widget/icon sizing - Part 2 by @​mayagbarnes in streamlit/streamlit#15098
• [chore] Update emojis/material icons by @​github-actions[bot] in streamlit/streamlit#15236

New Contributors

• @​simjega made their first contribution in streamlit/streamlit#14927
• @​andriykislitsyn made their first contribution in streamlit/streamlit#15149
• @​GiovanniPaoloGibilisco made their first contribution in streamlit/streamlit#15194
• @​marawanokasha made their first contribution in streamlit/streamlit#15191

Full Changelog: streamlit/streamlit@1.57.0...1.58.0

Commits

• 209ad55 Up version to 1.58.0
• f60c315 [feature] Add streamlit skills CLI command (#15116)
• 8f1a3b5 Fix accidental overscrolling in table, dataframe, and data_editor (#15309)
• 1d00f55 [fix] Disable Select all in multiselect for >=1000 options (#15301)
• 5459f5f [feature] Add API restrictions for parallel fragments (#15251)
• 8f36596 fix(build): fix make all-dev and make protobuf on non-Debian Linux (#15298)
• 163001d [feature][ParallelFragments] Add parallel=True dispatch to @​st.fragment (#15214)
• 08868a8 [fix] Restore Starlette OAuth PKCE behavior (#15282)
• 7165804 Fix browser Back/Forward navigation for pages with Unicode URL paths (#15281)
• 40c3400 [chore] Remove obsolete @​protobufjs/inquire patch (#15296)
• Additional commits viewable in compare view

[dependabot]

Labels

The following labels could not be found: automated, cognitive-agent:scan-required. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

Repository Audit Result

Score: %

Full Report

# Repository Audit Report

**Date**: 2026-06-12 21:46:14 UTC
**Repository**: `/home/runner/work/portfolio-system-architect/portfolio-system-architect`

## Summary

**Overall Score**: 74.0/89.0 (83.15%)

### Category Scores

| Category | Score | Total | Percentage |
|----------|-------|-------|------------|
| documentation | 14.0 | 19.0 | 73.68% |
| security | 16.0 | 25.0 | 64.00% |
| structure | 19.0 | 19.0 | 100.00% |
| cicd | 13.0 | 13.0 | 100.00% |
| code_quality | 12.0 | 13.0 | 92.31% |

## Checks

| Status | Category | Check | Path | Details |
|--------|----------|-------|------|---------|
| ✅ PASS | documentation | Essential documentation files exist | `README.md` | File exists: README.md |
| ⚠️ WARNING | documentation | Essential documentation files exist | `README.ru.md` | Russian README missing (optional) |
| ❌ FAIL | documentation | Essential documentation files exist | `CONTRIBUTING.md` | File missing: CONTRIBUTING.md |
| ❌ FAIL | documentation | Essential documentation files exist | `CODE_OF_CONDUCT.md` | File missing: CODE_OF_CONDUCT.md |
| ❌ FAIL | documentation | Essential documentation files exist | `CHANGELOG.md` | File missing: CHANGELOG.md |
| ❌ FAIL | documentation | Essential documentation files exist | `ARCHITECTURE.md` | File missing: ARCHITECTURE.md |
| ✅ PASS | documentation | Essential documentation files exist | `LICENSE` | File exists: LICENSE |
| ❌ FAIL | documentation | Essential documentation files exist | `SECURITY.md` | File missing: SECURITY.md |
| ✅ PASS | documentation | Essential documentation files exist | `docs` | Directory exists: docs |
| ✅ PASS | documentation | Essential documentation files exist | `docs/architecture/decisions` | ADR directory exists |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains '# ' |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains '## ' |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains '```' |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains 'https://' |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains '![' |
| ⚠️ WARNING | documentation | README contains key sections | `README.md` | README missing 'Has installation section' |
| ⚠️ WARNING | documentation | README contains key sections | `README.md` | README missing 'Has usage section' |
| ⚠️ WARNING | documentation | README contains key sections | `README.md` | README missing 'Has contributing section' |
| ✅ PASS | documentation | README contains key sections | `README.md` | README contains 'License' |
| ❌ FAIL | security | Essential security files and configurations | `SECURITY.md` | File missing: SECURITY.md |
| ✅ PASS | security | Essential security files and configurations | `.gitignore` | File exists: .gitignore |
| ✅ PASS | security | Essential security files and configurations | `.secrets.baseline` | File exists: .secrets.baseline |
| ❌ FAIL | security | Essential security files and configurations | `.bandit.yml` | File missing: .bandit.yml |
| ❌ FAIL | security | Essential security files and configurations | `config/tools/.bandit.yml` | File missing: config/tools/.bandit.yml |
| ❌ FAIL | security | Essential security files and configurations | `.trivyignore` | File missing: .trivyignore |
| ❌ FAIL | security | Essential security files and configurations | `config/tools/.trivyignore` | File missing: config/tools/.trivyignore |
| ✅ PASS | security | Essential security files and configurations | `.pre-commit-config.yaml` | File exists: .pre-commit-config.yaml |
| ✅ PASS | security | Essential security files and configurations | `.pre-commit-config.yaml` | File exists: .pre-commit-config.yaml |
| ✅ PASS | security | Essential security files and configurations | `.pre-commit-config.yaml` | Keyword 'detect-secrets' found in .pre-commit-config.yaml |
| ✅ PASS | security | Essential security files and configurations | `deployment/secrets` | Directory exists: deployment/secrets |
| ✅ PASS | security | Essential security files and configurations | `deployment/secrets/sealed-secrets` | Sealed‑secrets directory exists |
| ⚠️ WARNING | security | Essential security files and configurations | `.env.example` | .env.example missing |
| ✅ PASS | security | Essential security files and configurations | `.gitignore` | Keyword '.env' found in .gitignore |
| ✅ PASS | security | Essential security files and configurations | `.gitignore` | .gitignore excludes .env |
| ✅ PASS | security | Dependency security scanning configured | `requirements-dev.txt` | File exists: requirements-dev.txt |
| ✅ PASS | security | Dependency security scanning configured | `requirements-dev.txt` | Keyword 'pip-audit' found in requirements-dev.txt |
| ✅ PASS | security | Dependency security scanning configured | `requirements-dev.txt` | pip‑audit in dev requirements |
| ❌ FAIL | security | Dependency security scanning configured | `.bandit.yml` | File missing: .bandit.yml |
| ❌ FAIL | security | Dependency security scanning configured | `config/tools/.bandit.yml` | File missing: config/tools/.bandit.yml |
| ⚠️ WARNING | security | Dependency security scanning configured | `.bandit.yml` | Bandit config missing |
| ❌ FAIL | security | Dependency security scanning configured | `.trivyignore` | File missing: .trivyignore |
| ❌ FAIL | security | Dependency security scanning configured | `config/tools/.trivyignore` | File missing: config/tools/.trivyignore |
| ⚠️ WARNING | security | Dependency security scanning configured | `.trivyignore` | Trivy ignore file missing |
| ✅ PASS | security | Dependency security scanning configured | `.github/workflows` | Security workflows found: ['security-audit.yml', 'security-scan.yml'] |
| ✅ PASS | structure | Repository follows standard structure | `apps` | Applications directory exists |
| ✅ PASS | structure | Repository follows standard structure | `src` | Source code directory exists |
| ✅ PASS | structure | Repository follows standard structure | `tests` | Tests directory exists |
| ✅ PASS | structure | Repository follows standard structure | `docs` | Documentation directory exists |
| ✅ PASS | structure | Repository follows standard structure | `deployment` | Deployment configurations exists |
| ✅ PASS | structure | Repository follows standard structure | `docker` | Docker configurations exists |
| ✅ PASS | structure | Repository follows standard structure | `monitoring` | Monitoring configurations exists |
| ✅ PASS | structure | Repository follows standard structure | `scripts` | Utility scripts exists |
| ✅ PASS | structure | Repository follows standard structure | `tools` | Development tools exists |
| ✅ PASS | structure | Repository follows standard structure | `config` | Configuration files exists |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/tools/pytest.ini` | Pytest configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/tools/.bandit.yml` | Bandit security configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/tools/.pre-commit-config.yaml` | Pre-commit hooks configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/ci-cd/mkdocs.yml` | MkDocs configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/ci-cd/azure.yaml` | Azure deployment configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `config/docker/docker-compose.yml` | Docker Compose configuration missing from config/ |
| ⚠️ WARNING | structure | Repository follows standard structure | `.` | Potential clutter in root: .yamllint, .dockerignore |
| ⚠️ WARNING | structure | Files and directories follow naming conventions | `scripts/dev/$logPath` | File name contains special characters: scripts/dev/$logPath |
| ✅ PASS | structure | Files and directories follow naming conventions | `.` | Naming conventions generally followed |
| ✅ PASS | cicd | CI/CD pipelines configured | `.github/workflows` | GitHub Actions workflows found: 25 |
| ✅ PASS | cicd | CI/CD pipelines configured | `.github/workflows` | Workflow 'ci' present |
| ⚠️ WARNING | cicd | CI/CD pipelines configured | `.github/workflows` | Workflow 'test' missing |
| ✅ PASS | cicd | CI/CD pipelines configured | `.github/workflows` | Workflow 'security' present |
| ✅ PASS | cicd | CI/CD pipelines configured | `.github/workflows` | Workflow 'deploy' present |
| ✅ PASS | cicd | CI/CD pipelines configured | `docker-compose.yml` | File exists: docker-compose.yml |
| ✅ PASS | cicd | CI/CD pipelines configured | `docker-compose.yml` | Docker Compose file exists |
| ✅ PASS | cicd | CI/CD pipelines configured | `deployment/k8s` | Directory exists: deployment/k8s |
| ✅ PASS | cicd | CI/CD pipelines configured | `deployment/k8s` | Kubernetes manifests exist |
| ✅ PASS | cicd | CI/CD pipelines configured | `Makefile` | File exists: Makefile |
| ✅ PASS | cicd | CI/CD pipelines configured | `Makefile` | Makefile exists |
| ✅ PASS | cicd | CI/CD pipelines configured | `.pre-commit-config.yaml` | File exists: .pre-commit-config.yaml |
| ✅ PASS | cicd | CI/CD pipelines configured | `.pre-commit-config.yaml` | Pre‑commit config exists |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | File exists: pyproject.toml |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | Keyword 'ruff' found in pyproject.toml |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | Ruff configured in pyproject.toml |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | Keyword 'black' found in pyproject.toml |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | Black configured |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | Keyword 'isort' found in pyproject.toml |
| ✅ PASS | code_quality | Code quality tools configured | `pyproject.toml` | isort configured |
| ✅ PASS | code_quality | Code quality tools configured | `pyrightconfig.json` | File exists: pyrightconfig.json |
| ✅ PASS | code_quality | Code quality tools configured | `pyrightconfig.json or config/tools/pyrightconfig.json` | Pyright config exists |
| ❌ FAIL | code_quality | Code quality tools configured | `.editorconfig` | File missing: .editorconfig |
| ⚠️ WARNING | code_quality | Code quality tools configured | `.editorconfig` | .editorconfig missing |
| ✅ PASS | code_quality | Code quality tools configured | `.pre-commit-config.yaml` | File exists: .pre-commit-config.yaml |
| ✅ PASS | code_quality | Code quality tools configured | `.pre-commit-config.yaml` | Pre‑commit includes quality hooks |

## Recommendations

### Critical Issues
- **Essential documentation files exist** (`CONTRIBUTING.md`): File missing: CONTRIBUTING.md
- **Essential documentation files exist** (`CODE_OF_CONDUCT.md`): File missing: CODE_OF_CONDUCT.md
- **Essential documentation files exist** (`CHANGELOG.md`): File missing: CHANGELOG.md
- **Essential documentation files exist** (`ARCHITECTURE.md`): File missing: ARCHITECTURE.md
- **Essential documentation files exist** (`SECURITY.md`): File missing: SECURITY.md
- **Essential security files and configurations** (`SECURITY.md`): File missing: SECURITY.md
- **Essential security files and configurations** (`.bandit.yml`): File missing: .bandit.yml
- **Essential security files and configurations** (`config/tools/.bandit.yml`): File missing: config/tools/.bandit.yml
- **Essential security files and configurations** (`.trivyignore`): File missing: .trivyignore
- **Essential security files and configurations** (`config/tools/.trivyignore`): File missing: config/tools/.trivyignore

### Suggested Improvements
- **Essential documentation files exist** (`README.ru.md`): Russian README missing (optional)
- **README contains key sections** (`README.md`): README missing 'Has installation section'
- **README contains key sections** (`README.md`): README missing 'Has usage section'
- **README contains key sections** (`README.md`): README missing 'Has contributing section'
- **Essential security files and configurations** (`.env.example`): .env.example missing
- **Dependency security scanning configured** (`.bandit.yml`): Bandit config missing
- **Dependency security scanning configured** (`.trivyignore`): Trivy ignore file missing
- **Repository follows standard structure** (`config/tools/pytest.ini`): Pytest configuration missing from config/
- **Repository follows standard structure** (`config/tools/.bandit.yml`): Bandit security configuration missing from config/
- **Repository follows standard structure** (`config/tools/.pre-commit-config.yaml`): Pre-commit hooks configuration missing from config/

---
*Generated by Repository Audit Tool*