chore(deps): Bump the pipenv group in /services/datalad with 11 updates

[dependabot]

Bumps the pipenv group in /services/datalad with 11 updates:

Package	From	To
dnspython	2.5.0	2.6.1
falcon	2.0.0	3.1.3
redis	5.0.1	5.0.2
gevent	23.9.1	24.2.1
boto3	1.34.23	1.34.53
elasticsearch	8.12.0	8.12.1
pygit2	1.13.3	1.14.1
pygithub	1.54.1	2.2.0
datalad	0.18.1	0.19.6
pytest	7.4.4	8.0.2
coverage	7.4.0	7.4.3

Updates dnspython from 2.5.0 to 2.6.1

Release notes

Sourced from dnspython's releases.

dnspython 2.6.1

See What's New for details.

This is a bug fix release for 2.6.0 where the "TuDoor" fix erroneously suppressed legitimate Truncated exceptions. This caused the stub resolver to timeout instead of failing over to TCP when a legitimate truncated response was received over UDP.

This release addresses the potential DoS issue discussed in the "TuDoor" paper (CVE-2023-29483). The dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query. In this situation, dnspython might switch to querying another resolver or give up entirely, possibly denying service for that resolution. This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

Thank you to all the contributors to this release, and, as usual, thanks to my co-maintainers: Tomáš Křížek, Petr Špaček, and Brian Wellington.

dnspython 2.6.0

See What's New for details.

This release addresses the potential DoS issue discussed in the "TuDoor" paper (CVE-2023-29483). The dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query. In this situation, dnspython might switch to querying another resolver or give up entirely, possibly denying service for that resolution. This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

Thank you to all the contributors to this release, and, as usual, thanks to my co-maintainers: Tomáš Křížek, Petr Špaček, and Brian Wellington.

Changelog

Sourced from dnspython's changelog.

2.6.1

• The Tudoor fix ate legitimate Truncated exceptions, preventing the resolver from failing over to TCP and causing the query to timeout #1053.

2.6.0

• As mentioned in the "TuDoor" paper and the associated CVE-2023-29483, the dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query.

  This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

• Added support for the NSID EDNS option.

• Dnspython now looks for version metadata for optional packages and will not use them if they are too old. This prevents possible exceptions when a feature like DoH is not desired in dnspython, but an old httpx is installed along with dnspython for some other purpose.

• The DoHNameserver class now allows GET to be used instead of the default POST, and also passes source and source_port correctly to the underlying query methods.

Commits

• 0a742b9 update CI
• 0ea5ad0 The Tudoor fix should not eat valid Truncated exceptions #1053 (#1054)
• f12d398 2.6.1 version prep
• cecb853 Further improve CVE fix coverage to 100% for sync and async.
• 7952e31 test IgnoreErrors
• e093299 For the Tudoor fix, we also need the UDP nameserver to ignore_unexpected.
• 3af9f78 2.6.0 versioning
• ca63d95 Require cryptography >=41 instead of 42.
• 902cbf3 Create CODE_OF_CONDUCT.md
• ed9795f github contributing and pull request template
• Additional commits viewable in compare view

Updates falcon from 2.0.0 to 3.1.3

Release notes

Sourced from falcon's releases.

3.1.3

Falcon 3.1.3 is a minor bugfix release that only pins the pytest-asyncio test dependency in order to prevent an incompatible version from interfering with the build workflow.

This release is otherwise identical to Falcon 3.1.2.

3.1.3rc1

Falcon 3.1.3 is a minor bugfix release that only pins the pytest-asyncio test dependency in order to prevent an incompatible version from interfering with the build workflow.

This release is otherwise identical to Falcon 3.1.2.

3.1.2

Falcon 3.1.2 is a minor point release fixing a couple of high impact bugs, as well as publishing binary wheels for the recently released CPython 3.12.

3.1.2rc1

Falcon 3.1.2 is a minor point release fixing a couple of high impact bugs, as well as publishing binary wheels for the recently released CPython 3.12.

This is the first release candidate of Falcon 3.1.2.

3.1.2b2

Falcon 3.1.2 is a minor point release fixing a couple of high impact bugs, as well as publishing binary wheels for the recently released CPython 3.12.

This is the second beta release of Falcon 3.1.2.

3.1.2b1

Falcon 3.1.2 is a minor point release fixing a couple of high impact bugs, as well as publishing binary wheels for the recently released CPython 3.12.

This is the first beta release of Falcon 3.1.2.

3.1.1

Falcon 3.1.1 is a minor point release addressing a couple of high impact bugs, and enabling the framework on the recently released CPython 3.11.

3.1.1rc1

Falcon 3.1.1 is a minor point release addressing a couple of high impact bugs, and enabling the framework on the recently released CPython 3.11.

This is the first release candidate of Falcon 3.1.1.

3.1.1b3

https://falcon.readthedocs.io/en/3.1.1b3/changes/3.1.1.html

b3 attempts to fix a yet another wheel build issue discovered in b2. 😅

3.1.1b2

... (truncated)

Changelog

Sourced from falcon's changelog.

Release Manager's Guide

Release Process:

1. Bump version and update tag.
2. Update changelog and render towncrier fragments.
3. Release beta or rc.
4. Run benchmark and check for regressions.
5. Review and edit doc changes since the last release for clarity and consistency.
6. Publish final version and add a release note.
7. Run benchmark and update falconframework.org with latest numbers.
8. Announce the new version in Gitter channels and on the socials.
9. Improve this document.

Bump version and update tag

Modify falcon/version.py if it has not been updated since the previous release. Examine the rendered changelog to determine the appropriate SEMVER field to modify.

Update changelog filename in pyproject.toml to suit.

Update the build tag in setup.cfg under [egg_info] for pre-release builds, or remove it (leaving it blank as in tag_build =) for a final release.

Update changelog and render towncrier fragments

If a changelog RST has not yet been created, add one under docs/changes using the following template, and update the summary and changes to supported platforms to suit:

Changelog for Falcon 3.0.1
==========================
Summary
This is a minor point release to take care of a couple of bugs that we did
not catch for 3.0.0.
Changes to Supported Platforms

CPython 3.10 is now fully supported. ([#1966](https://github.com/falconry/falcon/issues/1966) <https://github.com/falconry/falcon/issues/1966>__)
Support for Python 3.6 is now deprecated and will be removed in Falcon 4.0.
As with the previous release, Python 3.5 support remains deprecated and will
no longer be supported in Falcon 4.0.

</tr></table>

... (truncated)

Commits

• 1f12439 chore: release 3.1.3 final
• 8e568a0 chore: prepare 3.1.3rc1 (#2193)
• 958ec70 chore: release 3.1.2 final
• 955e99a chore: bump tag to rc1
• c5a7b1b chore(alabaster): disable GitHub banner (#2191)
• c8a0d2d chore: bump tag to b2
• be30627 chore(s390x): use older urllib3 on 3.7
• 7e9698b docs(changes): fix a copypaste mistake
• 167e8fb chore(sphinx): incorporate conf.py improvements from master
• db22cb8 chore(3.1.2): render newsfragments
• Additional commits viewable in compare view

Updates redis from 5.0.1 to 5.0.2

Release notes

Sourced from redis's releases.

5.0.2

Changes

🚀 New Features

• Allow to control the minimum SSL version (#3127)
• Add modules support to async RedisCluster (#3115)
• Adding lock_name to LockError (#3023)
• Add GEOSHAPE field type for index creation of RediSearch (#2957)

🐛 Bug Fixes

• Fix retry logic for pubsub and pipeline (#3134)
• Ignore TypeError on disconnect (within multiprocess) (#3149)
• Release already acquired connections on ClusterPipeline, when get_connection raises an exception (#3133)
• Fix possible pipeline connections leak (#3104)
• Return a copy of the response from cache (#3106)
• Fix: HSET unexpectedly mutates the list passed to items (#3103)
• Fix acl_genpass with bits (#3062)
• Allow the parsing of the asking command to forward original options (#3012)
• Fix parsing of FT.PROFILE result (#3063)
• Use disable_decoding in async read_response with hiredis parser. (#3042)
• Fix return types in json commands (#3071)
• Fix Specifying Target Nodes broken hyperlink (#3072)

🧰 Maintenance

• Fix incorrect asserts in test and ensure connections are closed (#3004)
• Revert stale issue version update (#3142)
• Docs: Add timeout parameter for get_message example (#3129)
• Bump codecov/codecov-action from 3 to 4 (#3131)
• Bump actions/stale from 3 to 9 (#3132)
• Fix grammer in BlockingConnectionPool class documentation (#3120)
• Updating async-timeout to 4.0.3 (#3109)
• Fix type hint of arbitrary argument lists (#2908)
• Fix JSON.OBJLEN type hint (#2966)
• Fix HDEL type hint (#3029)
• Docs: organize cluster mode part of lua scripting (#3073)
• Update reported version deprecation in asyncio.client (#2968)
• Make the connection callback methods public again, add documentation (#2980)
• Update repr of important classes with module name and recommended "< … (#3001)
• Typo in advanced features documentation (#3019)
• Fix typos in documentation (#3016
• Add "sum" to DUPLICATE_POLICY documentation of TS.CREATE, TS.ADD and TS.ALTER (#3027)
• Fixed typo in ocsp.py (#3022)
• Creating CODEOWNERS for documentation (#2993)

Contributors

We'd like to thank all the contributors who worked on this release!

... (truncated)

Commits

• 535f90e Version 5.0.2 (#3164)
• 911aa37 Cherry pick for v5.0.2 (#3159)
• See full diff in compare view

Updates gevent from 23.9.1 to 24.2.1

Commits

• 2db2fa1 Preparing release 24.2.1
• 60b55d0 typo.
• e0d9705 Make cross-thread locks use native blocking and timeouts instead of spinning.
• 31ebe75 typo
• 989c2c0 Now that I enabled c-ares tests on all Linux builds, there is one getaddrinfo...
• a0b3caf Update c-ares from 1.19.1 to 1.26.0
• b00b4fb Debugging why ccache isn't being saved.
• 90be38c Debugging why ccache isn't being saved.
• 6764687 Debugging why ccache isn't being saved.
• 50fc24d Updating GHA action versions; another skipped test for Appveyor.
• Additional commits viewable in compare view

Updates boto3 from 1.34.23 to 1.34.53

Changelog

Sourced from boto3's changelog.

1.34.53

• api-change:docdb-elastic: [botocore] Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying
• api-change:eks: [botocore] Added support for new AL2023 AMIs to the supported AMITypes.
• api-change:lexv2-models: [botocore] This release makes AMAZON.QnAIntent generally available in Amazon Lex. This generative AI feature leverages large language models available through Amazon Bedrock to automate frequently asked questions (FAQ) experience for end-users.
• api-change:migrationhuborchestrator: [botocore] Adds new CreateTemplate, UpdateTemplate and DeleteTemplate APIs.
• api-change:quicksight: [botocore] TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update
• api-change:sagemaker: [botocore] Adds support for ModelDataSource in Model Packages to support unzipped models. Adds support to specify SourceUri for models which allows registration of models without mandating a container for hosting. Using SourceUri, customers can decouple the model from hosting information during registration.
• api-change:securitylake: [botocore] Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason.

1.34.52

• api-change:batch: [botocore] This release adds Batch support for configuration of multicontainer jobs in ECS, Fargate, and EKS. This support is available for all types of jobs, including both array jobs and multi-node parallel jobs.
• api-change:bedrock-agent-runtime: [botocore] This release adds support to override search strategy performed by the Retrieve and RetrieveAndGenerate APIs for Amazon Bedrock Agents
• api-change:ce: [botocore] This release introduces the new API 'GetApproximateUsageRecords', which retrieves estimated usage records for hourly granularity or resource-level data at daily granularity.
• api-change:ec2: [botocore] This release increases the range of MaxResults for GetNetworkInsightsAccessScopeAnalysisFindings to 1,000.
• api-change:iot: [botocore] This release reduces the maximum results returned per query invocation from 500 to 100 for the SearchIndex API. This change has no implications as long as the API is invoked until the nextToken is NULL.
• api-change:wafv2: [botocore] AWS WAF now supports configurable time windows for request aggregation with rate-based rules. Customers can now select time windows of 1 minute, 2 minutes or 10 minutes, in addition to the previously supported 5 minutes.

1.34.51

• api-change:amplifyuibuilder: [botocore] We have added the ability to tag resources after they are created

1.34.50

• api-change:apigateway: [botocore] Documentation updates for Amazon API Gateway.
• api-change:drs: [botocore] Added volume status to DescribeSourceServer replicated volumes.
• api-change:kafkaconnect: [botocore] Adds support for tagging, with new TagResource, UntagResource and ListTagsForResource APIs to manage tags and updates to existing APIs to allow tag on create. This release also adds support for the new DeleteWorkerConfiguration API.
• api-change:rds: [botocore] This release adds support for gp3 data volumes for Multi-AZ DB Clusters.

1.34.49

• api-change:appsync: [botocore] Documentation only updates for AppSync
• api-change:qldb: [botocore] Clarify possible values for KmsKeyArn and EncryptionDescription.
• api-change:rds: [botocore] Add pattern and length based validations for DBShardGroupIdentifier
• api-change:rum: [botocore] Doc-only update for new RUM metrics that were added

1.34.48

... (truncated)

Commits

• 914c71b Merge branch 'release-1.34.53'
• 0fdef8b Bumping version to 1.34.53
• f39ede7 Add changelog entries from botocore
• 7d55662 Merge branch 'release-1.34.52' into develop
• 78d211e Merge branch 'release-1.34.52'
• f93792b Bumping version to 1.34.52
• aae855b Add changelog entries from botocore
• f707245 Merge branch 'release-1.34.51' into develop
• 97c442a Merge branch 'release-1.34.51'
• cc367ab Bumping version to 1.34.51
• Additional commits viewable in compare view

Updates elasticsearch from 8.12.0 to 8.12.1

Release notes

Sourced from elasticsearch's releases.

8.12.1

• Fixed but deprecated parameter aliases in body parameter (#2427)
• Added mappings and bulk to quickstart page (#2417)

Commits

• 970ce1c Release 8.12.1
• 5ca24e3 Fix example generation (#2449) (#2452)
• 2b86966 Fix but deprecate parameter aliases in body parameter (#2427) (#2447)
• 6575d62 Use unquote() directly instead of wrapper (#2415) (#2431)
• 914021f Restore .ci/make.sh file (#2437) (#2441)
• ac52679 Add mappings and bulk to quickstart page (#2417) (#2434)
• 5dbb87b Switch to 2024 black style (#2430) (#2432)
• 2f9e42d Release 8.12.0
• See full diff in compare view

Updates pygit2 from 1.13.3 to 1.14.1

Changelog

Sourced from pygit2's changelog.

1.14.1 (2024-02-10)

• Update wheels to libgit2 v1.7.2

• Now Object.filemode returns enums.FileMode and Reference.type returns enums.ReferenceType #1273

• Fix tests on Fedora 40 #1275

Deprecations:

• Deprecate ReferenceType.OID, use ReferenceType.DIRECT
• Deprecate ReferenceType.LISTALL, use ReferenceType.ALL

1.14.0 (2024-01-26)

• Drop support for Python 3.8
• Add Linux wheels for musl on x86_64 #1266
• New Repository.submodules namespace #1250
• New Repository.listall_mergeheads(), Repository.message, Repository.raw_message and Repository.remove_message() #1261
• New pygit2.enums supersedes the GIT_ constants #1251
• Now Repository.status(), Repository.status_file(), Repository.merge_analysis(), DiffFile.flags, DiffFile.mode, DiffDelta.flags and DiffDelta.status return enums #1263
• Now repository's merge(), merge_commits() and merge_trees() take enums/flags for their favor, flags and file_flags arguments. #1271 #1272
• Fix crash in filter cleanup #1259
• Documentation fixes #1255 #1258 #1268 #1270

Breaking changes:

• Remove deprecated Repository.create_remote(...) function, use instead Repository.remotes.create(...)

Deprecations:

... (truncated)

Commits

• c174e35 Release 1.14.1
• 888d195 Update wheels to libgit2 v1.7.2
• e0baecf Relax transfer bytes check in test_remote.test_fetch
• c03d90c Docs: pygit2.remote was renamed to pygit2.remotes
• f1dba75 Return enums.ReferenceType from Reference.type
• bdca78a Return enums.FileMode from Object.filemode
• 988eb95 Release 1.14.0
• 6c098b4 Fix default value for file_flag in Repository.merge_commits
• dde14c8 Reformat .rst files to markdown
• a7905c7 Update copyright years
• Additional commits viewable in compare view

Updates pygithub from 1.54.1 to 2.2.0

Release notes

Sourced from pygithub's releases.

v2.2.0

Breaking Changes

The github.Comparison.Comparison instance returned by Repository.compare provides a commits property that used to return a list[github.Commit.Commit], which has now been changed to PaginatedList[github.Commit.Commit]. This breaks user code that assumes a list:

commits = repo.compare("v0.6", "v0.7").commits
no_of_commits = len(commits)  # will raise a TypeError

This will raise a TypeError: object of type 'PaginatedList' has no len(), as the returned PaginatedList does not support the len() method. Use the totalCount property instead:

commits = repo.compare("v0.6", "v0.7").commits
no_of_commits = commits.totalCount

New features

• Add support to call GraphQL API

Improvements

• Add parent_team_id, maintainers and notification_setting for creating and updating teams. by @​Cheshirez in PyGithub/PyGithub#2863
• Add support for issue reactions summary by @​smuzaffar in PyGithub/PyGithub#2866
• Support for DependabotAlert APIs by @​coopernetes in PyGithub/PyGithub#2879
• Derive GraphQL URL from base_url by @​EnricoMi in PyGithub/PyGithub#2880
• Make Repository.compare().commits return paginated list by @​EnricoMi in PyGithub/PyGithub#2882
• Add missing branch protection fields by @​treee111 in PyGithub/PyGithub#2873
• Add include_all_branches to create_repo_from_template of AuthenticatedUser and Organization by @​janssonoskar in PyGithub/PyGithub#2871
• Add and update organisation dependabot secrets by @​mohy01 in PyGithub/PyGithub#2316
• Add missing params to Organization.create_repo by @​tekumara in PyGithub/PyGithub#2700
• Update allowed values for Repository collaborator permissions by @​flying-sheep in PyGithub/PyGithub#1996
• Support editing PullRequestReview by @​ColasGael in PyGithub/PyGithub#2851
• Update attributes after calling PullRequestReview.dismiss by @​ColasGael in PyGithub/PyGithub#2854
• Add request_cve on RepositoryAdvisories by @​JLLeitschuh in PyGithub/PyGithub#2855
• Filter collaborators of a repository by permissions by @​notmicaelfilipe in PyGithub/PyGithub#2792
• Set pull request to auto merge via GraphQL API by @​heitorpolidoro in PyGithub/PyGithub#2816
• Support Environment Variables and Secrets by @​AndrewJDawes in PyGithub/PyGithub#2848
• Update workflow.get_runs & pullrequest.add_to_assignees function signature by @​sd-kialo in PyGithub/PyGithub#2799
• Add GithubObject.last_modified_datetime to have last_modified as a datetime by @​chouetz in PyGithub/PyGithub#2772
• Add support for global advisories and unify some shared logic with repository advisories by @​crimsonknave in PyGithub/PyGithub#2702
• Add internal as valid Repository visibility value by @​AndrewJDawes in PyGithub/PyGithub#2806
• Add support for issue comments reactions summary by @​smuzaffar in PyGithub/PyGithub#2813

Bug Fixes

• Add a bunch of missing urllib.parse.quote calls by @​ExplodingCabbage in PyGithub/PyGithub#1976
• Fix Variable and Secret url bugs by @​AndrewJDawes in PyGithub/PyGithub#2835

... (truncated)

Changelog

Sourced from pygithub's changelog.

Version 2.2.0 (January 28, 2024)

Breaking Changes ^^^^^^^^^^^^^^^^

• The github.Comparison.Comparison instance returned by Repository.compare provides a commits property that used to return a list[github.Commit.Commit], which has now been changed to PaginatedList[github.Commit.Commit]. This breaks user code that assumes a list:

.. code-block:: python

commits = repo.compare("v0.6", "v0.7").commits
no_of_commits = len(commits)

This will raise a TypeError: object of type 'PaginatedList' has no len(), as the returned PaginatedList does not support the len() method. Use the totalCount property instead:

.. code-block:: python

commits = repo.compare("v0.6", "v0.7").commits
no_of_commits = commits.totalCount

New features ^^^^^^^^^^^^

• Add support to call GraphQL API

Improvements ^^^^^^^^^^^^

• Add parent_team_id, maintainers and notification_setting for creating and updating teams. (#2863) (49d07d16)
• Add support for issue reactions summary (#2866) (cc4c5269)
• Support for DependabotAlert APIs (#2879) (14af7051)
• Derive GraphQL URL from base_url (#2880) (d0caa3c3)
• Make Repository.compare().commits return paginated list (#2882) (2d284d1e)
• Add missing branch protection fields (#2873) (e47c153b)
• Add include_all_branches to create_repo_from_template of AuthenticatedUser and Organization (#2871) (34c4642e)
• Add and update organisation dependabot secrets (#2316) (603896f4)
• Add missing params to Organization.create_repo (#2700) (9c61a2a4)
• Update allowed values for Repository collaborator permissions (#1996) (b5b66da8)
• Support editing PullRequestReview (#2851) (b1c4c561)
• Update attributes after calling PullRequestReview.dismiss (#2854) (6f3d714c)
• Add request_cve on RepositoryAdvisories (#2855) (41b617b7)
• Filter collaborators of a repository by permissions (#2792) (702c127a)
• Set pull request to auto merge via GraphQL API (#2816) (232df79a)
• Support Environment Variables and Secrets (#2848) (7df97398)
• Update workflow.get_runs & pullrequest.add_to_assignees function signature (#2799) (26eedbb0)
• Add GithubObject.last_modified_datetime to have last_modified as a datetime (#2772) (e7ce8189)

... (truncated)

Commits

• 7e7653f Release v2.2.0 (#2886)
• 49d07d1 Add parent_team_id, maintainers and notification_setting for creating and upd...
• cc4c526 Add support for issue reactions summary (#2866)
• 2d284d1 Make Repository.compare().commits return paginated list (#2882)
• 14af705 Support for DependabotAlert APIs (#2879)
• d0caa3c Derive GraphQL URL from base_url (#2880)
• e47c153 Add missing branch protection fields (#2873)
• 34c4642 Add include_all_branches to create_repo_from_template of `AuthenticatedUs...
• 603896f Add and update organisation dependabot secrets (#2316)
• 2f44b2e Update the class name for NetrcAuth in the examples (#2860)
• Additional commits viewable in compare view

Updates datalad from 0.18.1 to 0.19.6

Release notes

Sourced from datalad's releases.

0.19.6

🚀 Enhancements and New Features

• Add the "http_token" authentication mechanism which provides 'Authentication: Token {TOKEN}' header. [PR #7551](datalad/datalad#7551) (by @​yarikoptic)

🏠 Internal

• Update pytest_ignore_collect() for pytest 8.0. [PR #7546](datalad/datalad#7546) (by @​jwodder)

• Add manual triggering support/documentation for release workflow. [PR #7553](datalad/datalad#7553) (by @​yarikoptic)

0.19.5

🧪 Tests

• Fix text to account for a recent change in git-annex dropping sub-second clock precision. As a result we might not report push of git-annex branch since there would be none. [PR #7544](datalad/datalad#7544) (by @​yarikoptic)

0.19.4

🐛 Bug Fixes

• Update target detection for adjusted mode datasets has been improved. Fixes #7507 via [PR #7522](datalad/datalad#7522) (by @​mih)

• Fix typos found by new codespell 2.2.6 and also add checking/fixing "hidden files". [PR #7530](datalad/datalad#7530) (by @​yarikoptic)

📝 Documentation

• Improve threaded-runner documentation. Fixes #7498 via [PR #7500](datalad/datalad#7500) (by @​christian-monch)

🏠 Internal

• add RRID to package metadata. [PR #7495](datalad/datalad#7495) (by @​adswa)

• Fix time_diff* and time_remove benchmarks to account for long RFed interfaces. [PR #7502](datalad/datalad#7502) (by @​yarikoptic)

🧪 Tests

• Cache value of the has_symlink_capability to spare some cycles. [PR #7471](datalad/datalad#7471) (by @​yarikoptic)

• RF(TST): use setup_method and teardown_method in TestAddArchiveOptions. [PR #7488](datalad/datalad#7488) (by @​yarikoptic)

• Announce test_clone_datasets_root xfail on github osx. [PR #7489](datalad/datalad#7489) (by @​yarikoptic)

• Inform asv that there should be no warmup runs for time_remove benchmark. [PR #7505](datalad/datalad#7505) (by @​yarikoptic)

• BF(TST): Relax matching of git-annex error message about unsafe drop, which was changed in 10.20231129-18-gfd0b510573. [PR #7541](datalad/datalad#7541) (by @​yarikoptic)

... (truncated)

Changelog

Sourced from datalad's changelog.

0.19.6 (2024-02-02)

🚀 Enhancements and New Features

• Add the "http_token" authentication mechanism which provides 'Authentication: Token {TOKEN}' header. [PR #7551](datalad/datalad#7551) (by @​yarikoptic)

🏠 Internal

• Update pytest_ignore_collect() for pytest 8.0. [PR #7546](datalad/datalad#7546) (by @​jwodder)

• Add manual triggering support/documentation for release workflow. [PR #7553](datalad/datalad#7553) (by @​yarikoptic)

0.19.5 (2023-12-28)

🧪 Tests

• Fix text to account for a recent change in git-annex dropping sub-second clock precision. As a result we might not report push of git-annex branch since there would be none. [PR #7544](datalad/datalad#7544) (by @​yarikoptic)

0.19.4 (2023-12-13)

🐛 Bug Fixes

• Update target detection for adjusted mode datasets has been improved. Fixes #7507 via [PR #7522](datalad/datalad#7522) (by @​mih)

• Fix typos found by new codespell 2.2.6 and also add checking/fixing "hidden files". [PR #7530](datalad/datalad#7530) (by @​yarikoptic)

📝 Documentation

• Improve threaded-runner documentation. Fixes #7498 via [PR #7500](datalad/datalad#7500) (by @​christian-monch)

🏠 Internal

• add RRID to package metadata. [PR #7495](datalad/datalad#7495) (by @​adswa)

• Fix time_diff* and time_remove benchmarks to account for long RFed interfaces. [PR #7502](datalad/datalad#7502) (by @​yarikoptic)

🧪 Tests

• Cache value of the has_symlink_capability to spare some cycles. [PR #7471](datalad/datalad#7471) (by @​yarikoptic)

• RF(TST): use setup_method and teardown_method in TestAddArchiveOptions. [PR #7488](datalad/datalad#7488) (by @​yarikoptic)

• Announce test_clone_datasets_root xfail on github osx. [PR #7489](datalad/datalad#7489) (by @​yarikoptic)

... (truncated)

Commits

• 3a7ce17 [skip ci] Update docs/source/changelog.rst and CITATION.cff
• 968709f [skip ci] Update CHANGELOG
• 88dd9f0 Merge pull request #7551 from yarikoptic/enh-token
• 2ff2ffe Merge pull request #7552 from yarikoptic/bf-doc-minor
• 5e41c7b Merge pull request #7554 from yarikoptic/enh-update-citationcff
• 8306d77 Update also version: field in CITATION.cff upon release
• b254e0f Merge pull request #7553 from yarikoptic/enh-dispatch-release
• ed8da62 [release-action] Autogenerate changelog snippet for PR 7553
• ac778d5 Add manual triggering support/documentation for release workflow
• 29870db Escape the \ in a docstring
• Additional commits viewable in compare view

Updates pytest from 7.4.4 to 8.0.2

Release notes

Sourced from pytest's releases.

8.0.2

pytest 8.0.2 (2024-02-24)

Bug Fixes

• #11895: Fix collection on Windows where initial paths contain the short version of a path (for example c:\PROGRA~1\tests).
• #11953: Fix an IndexError crash raising from getstatementrange_ast.
• #12021: Reverted a fix to [--maxfail]{.title-ref} handling in pytest 8.0.0 because it caused a regression in pytest-xdist whereby session fixture teardowns may get executed multiple times when the max-fails is reached.

8.0.1

pytest 8.0.1 (2024-02-16)

Bug Fixes

• #11875: Correctly handle errors from getpass.getuser{.interpreted-text role="func"} in Python 3.13.
• #11879: Fix an edge case where ExceptionInfo._stringify_exception could crash pytest.raises{.interpreted-text role="func"}.
• #11906: Fix regression with pytest.warns{.interpreted-text role="func"} using custom warning subclasses which have more than one parameter in their [__init__]{.title-ref}.
• #11907: Fix a regression in pytest 8.0.0 whereby calling pytest.skip{.interpreted-text role="func"} and similar control-flow exceptions within a pytest.warns(){.interpreted-text role="func"} block would get suppressed instead of propagating.
• #11929: Fix a regression in pytest 8.0.0 whereby autouse fixtures defined in a module get ignored by the doctests in the module.
• #11937: Fix a regression in pytest 8.0.0 whereby items would be collected in reverse order in some circumstances.

pytest 8.0.0 (2024-01-27)

See

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 65.23%. Comparing base (1f3ba55) to head (353e3f6).

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #3010      +/-   ##
==========================================
- Coverage   65.23%   65.23%   -0.01%     
==========================================
  Files         382      382              
  Lines       24608    24606       -2     
  Branches      883      883              
==========================================
- Hits        16053    16051       -2     
  Misses       8555     8555              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

[effigies]

I addressed the failing tests, but a second set of eyes would be useful.

[nellh]

Thanks Chris, I'm surprised this is all that's needed to update to Falcon 3 but testing this I ran into no issues.