Bump pdm from 2.8.2 to 2.9.0

[dependabot]

Bumps pdm from 2.8.2 to 2.9.0.

Release notes

Sourced from pdm's releases.

v2.9.0

Features & Improvements

• Add an --overwrite option to pdm init to overwrite existing files(default False). #2163
• Support passing filter patterns as positional arguments to pdm list command. Add --tree as an alias and preferred name of --graph option. #2165
• Switch to truststore by default. #2195
• Consider packages as installed if the venv includes them from the system-site-packages. #2216
• Allow pdm run to run a script with the relative or absolute path. #2217

Bug Fixes

• Fix a bug that removing dev dependency uninstalls the project as well. #2150
• Fix a bug that @ file:// dependencies can not be updated. #2169
• Fix a bug that dependencies requested out of the range of requires-python cause PDM to crash. #2175
• Fix the compatibility issue with copier 8.0+. #2177
• Makes comarable_version("1.2.3+local1") == Version("1.2.3"). #2182
• Default behavior for pdm venv activate when shell detection fails. #2187
• Handle parsing errors when converting from poetry-style metadata. #2203
• Don't copy .pyc files from the template directory. #2213

Removals and Deprecations

• Remove the legacy build backend pdm-pep517. #2167

Changelog

Sourced from pdm's changelog.

Release v2.9.0 (2023-08-31)

Features & Improvements

• Add an --overwrite option to pdm init to overwrite existing files(default False). #2163
• Support passing filter patterns as positional arguments to pdm list command. Add --tree as an alias and preferred name of --graph option. #2165
• Switch to truststore by default. #2195
• Consider packages as installed if the venv includes them from the system-site-packages. #2216
• Allow pdm run to run a script with the relative or absolute path. #2217

Bug Fixes

• Fix a bug that removing dev dependency uninstalls the project as well. #2150
• Fix a bug that @ file:// dependencies can not be updated. #2169
• Fix a bug that dependencies requested out of the range of requires-python cause PDM to crash. #2175
• Fix the compatibility issue with copier 8.0+. #2177
• Makes comarable_version("1.2.3+local1") == Version("1.2.3"). #2182
• Default behavior for pdm venv activate when shell detection fails. #2187
• Handle parsing errors when converting from poetry-style metadata. #2203
• Don't copy .pyc files from the template directory. #2213

Removals and Deprecations

• Remove the legacy build backend pdm-pep517. #2167

Commits

• 7a740a6 chore: Release 2.9.0
• 63423b2 feat: Consider packages installed if the venv includes them from the system-s...
• 3f439ef feat: Allow using pdm run to run a command not on PATH (#2218)
• cd8a368 doc: Correct a typo in project.md (#2212)
• 53b9c38 fix: Don't copy .pyc files from the template directory
• 19b6a1f fix: Handle parsing errors when converting from poetry-style metadata (#2215)
• 7fd3f43 doc: Update comparison with hatch in README (#2210)
• f66438a fix: merge directory based on the types of source
• 06c7497 fix: Switch to Truststore by default (#2200)
• 777940f Merge branch 'main' of https://github.com/pdm-project/pdm
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Patch and project coverage have no change.

Comparison is base (787f167) 99.69% compared to head (7377692) 99.69%.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #1695   +/-   ##
=======================================
  Coverage   99.69%   99.69%           
=======================================
  Files          71       71           
  Lines        4937     4937           
  Branches      646      646           
=======================================
  Hits         4922     4922           
  Misses         13       13           
  Partials        2        2           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.