deps: Bump the development-dependencies group with 5 updates

[dependabot]

Bumps the development-dependencies group with 5 updates:

Package	From	To
coverage	7.6.12	7.8.0
flake8	7.1.2	7.2.0
tox	4.24.2	4.25.0
types-lxml	2025.3.4	2025.3.30
types-pytz	2025.1.0.20250204	2025.2.0.20250326

Updates coverage from 7.6.12 to 7.8.0

Changelog

Sourced from coverage's changelog.

Version 7.8.0 — 2025-03-30

• Added a new source_dirs setting for symmetry with the existing source_pkgs setting. It's preferable to the existing source setting, because you'll get a clear error when directories don't exist. Fixes issue 1942. Thanks, Jeremy Fleischman <pull 1943_>.

• Fix: the PYTHONSAFEPATH environment variable new in Python 3.11 is properly supported, closing issue 1696. Thanks, Philipp A. <pull 1700_>. This works properly except for a detail when using the coverage command on Windows. There you can use python -m coverage instead if you need exact emulation.

.. _issue 1696: nedbat/coveragepy#1696 .. _pull 1700: nedbat/coveragepy#1700 .. _issue 1942: nedbat/coveragepy#1942 .. _pull 1943: nedbat/coveragepy#1943

.. _changes_7-7-1:

Version 7.7.1 — 2025-03-21

• A few small tweaks to the sys.monitoring support for Python 3.14. Please test!

.. _changes_7-7-0:

Version 7.7.0 — 2025-03-16

• The Coverage object has a new method, :meth:.Coverage.branch_stats for getting simple branch information for a module. Closes issue 1888_.

• The :class:Coverage constructor<.Coverage> now has a plugins parameter for passing in plugin objects directly, thanks to Alex Gaynor <pull 1919_>_.

• Many constant tests in if statements are now recognized as being optimized away. For example, previously if 13: would have been considered a branch with one path not taken. Now it is understood as always true and no coverage is missing.

• The experimental sys.monitoring support now works for branch coverage if you are using Python 3.14.0 alpha 6 or newer. This should reduce the overhead coverage.py imposes on your test suite. Set the environment variable COVERAGE_CORE=sysmon to try it out.

... (truncated)

Commits

• 6d5ced9 docs: sample HTML for 7.8.0
• 49c194f docs: prep for 7.8.0
• 38782cb docs: finish up source_dirs. bump to 7.8.0
• 7aea2f3 feat: add new source_dirs option (#1943)
• f464155 test: some simple bytecode tests
• cf1dec0 refactor: these pypy modules are available in all our versions
• a876052 test: a general helper for iterating over our own source files
• 82cff3e perf: sets are better than lists
• a66bd61 refactor: move bytecode code into bytecode.py
• d64ce5f chore: bump the action-dependencies group with 3 updates (#1940)
• Additional commits viewable in compare view

Updates flake8 from 7.1.2 to 7.2.0

Commits

• 16f5f28 Release 7.2.0
• ebad305 Merge pull request #1974 from PyCQA/update-plugins
• d56d569 update versions of pycodestyle / pyflakes
• a7e8f62 Merge pull request #1973 from PyCQA/py39-plus
• 9d55ccd py39+
• e492aeb Merge pull request #1967 from PyCQA/unnecessary-mocks
• fa2ed71 remove a few unnecessary mocks in test_checker_manager
• See full diff in compare view

Updates tox from 4.24.2 to 4.25.0

Release notes

Sourced from tox's releases.

4.25.0

What's Changed

• Tests: Adjust expected exception message for Python 3.14.0a6 by @​hroncok in tox-dev/tox#3500
• feat(config): Allow ranges in envlist by @​mimre25 in tox-dev/tox#3503

Full Changelog: tox-dev/tox@4.24.2...4.25.0

Changelog

Sourced from tox's changelog.

v4.25.0 (2025-03-27)

Features - 4.25.0

- Add support for number ranges in generative environments, more details :ref:`here<generative-environment-list>`. - by :user:`mimre25` (:issue:`3502`)
Bugfixes - 4.25.0

• Make tox tests pass with Python 3.14.0a6
  • by :user:hroncok (:issue:3500)

Commits

• 3d35559 release 4.25.0
• 0e6b4ad feat(config): Allow ranges in envlist (#3503)
• 5a67ae1 [pre-commit.ci] pre-commit autoupdate (#3505)
• f5f5cb1 [pre-commit.ci] pre-commit autoupdate (#3499)
• beba4be Tests: Adjust expected exception message for Python 3.14.0a6 (#3500)
• 794e6be [pre-commit.ci] pre-commit autoupdate (#3496)
• See full diff in compare view

Updates types-lxml from 2025.3.4 to 2025.3.30

Release notes

Sourced from types-lxml's releases.

2025.03.30

Features

• (#82) Add buffer type support for upcoming lxml 6.0.
• HtmlElement.text_content() result will become plain str since lxml 6.0. This change shouldn't break much compatibility for users of previous lxml versions.
• Warn user about str input and guess_charset combo bug in html.html5parser functions
• Warn user about incorrect usage of specifying single element as .extend() argument
• lxml 6.0 exports LIBXML_COMPILED_FEATURES constant

Bug fixes

• (#84) Tag selector supports iterator but not bytearray
• A few combinations of QName construction argument were actually disallowed; second argument can't be QName or _Element if first argument is non-empty
• Multiple issues for Resolver class
  • Don't annotate opaque internal context object
  • Drop _ResolverRegistry.resolve() which can't possibly appear in user land code
  • Missing default value for Resolver.resolve_file() keyword arguments
  • Resolver.resolve() arguments can be None
• Drop unused keyword arguments from iterparse() html mode overload
• namespaces arg of .xpath() method accepts tuple form. Change for XPath classes already done earlier.
• Confine the type of public element (subclass of ElementBase) class attributes
• _Element.findtext() didn't allow default argument in certain overload form
• RelaxNG.from_rnc_string() base_url argument accepts bytes
• html.html5parser guess_charset bug revisited
  • parse() is not affected as it always open files/URL in binary mode
  • For other functions, even guess_charset=False triggers the bug
• Some html5parser.HTMLParser initialisation arguments should be keyword only
• Corrected import of typing.Never in html module and html.html5parser submodule
• .extend() and __setitem__() of _Element and HtmlElement support iterator as value
• _Element.index() had wrong parameter name
• Continued verification of properties and arguments supporting bytearray:
  • _Element .text and .tail properties
  • Content-only elements
  • XPath input expression
  • _IDDict mixin arguments
  • xmlfile.write*() methods and encoding argument

Minor changes

• Drop _ElemClsLookupArg alias, which is almost unused
• Rename _StrictNSMap to more aptly named _StrOnlyNSMap
• Don't include superclass attributes in ParseError definition
• Continue getting rid of _AnyStr in most places
• Mark constants as Final

Tests related

• Migrate following tests to property based runtime testing:
  • All basic validators: DTD, RelaxNG, ISO Schematron (XMLSchema done in earlier release)
  • All existing _Element method / property tests and content-only elements

... (truncated)

Commits

• defc7e5 test: Remove negative QName single arg test altogether
• 87e6697 test: Skip more false types in QName instantiation test
• da4e350 fix(stub): Remove empty string guard on QName construction
• f44309e chore: Refresh multi subclass patch
• fe48d5d fix(stub): Sort out QName construct arg combinations
• 10624a5 test: Migrate QName tests to runtime
• 98b6f42 fix: Multiple issues around Resolver class
• b084698 docs: Docstring for all _Element properties and methods
• 548c13e chore: Change a few actionable comment
• 4f909a4 test: Fix XMLSchema StringIO input, actually works but needs modified data
• Additional commits viewable in compare view

Updates types-pytz from 2025.1.0.20250204 to 2025.2.0.20250326

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 87.39%. Comparing base (54609f9) to head (c18c644).
Report is 2 commits behind head on develop.

Additional details and impacted files

@@           Coverage Diff            @@
##           develop     #792   +/-   ##
========================================
  Coverage    87.39%   87.39%           
========================================
  Files           38       38           
  Lines         3166     3166           
  Branches       318      318           
========================================
  Hits          2767     2767           
  Misses         257      257           
  Partials       142      142           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud