Deps: Bump the python-packages group with 9 updates

[dependabot]

Bumps the python-packages group with 9 updates:

Package	From	To
pontos	23.12.3	24.1.0
coverage	7.3.3	7.4.0
alabaster	0.7.13	0.7.15
black	23.12.0	23.12.1
colorful	0.5.5	0.5.6
httpx	0.25.2	0.26.0
importlib-metadata	7.0.0	7.0.1
lxml	4.9.3	5.0.1
ruff	0.1.8	0.1.11

Updates pontos from 23.12.3 to 24.1.0

Release notes

Sourced from pontos's releases.

pontos 24.1.0

24.1.0 - 2024-01-03

Added

• New "CVE CISA KEV Update" event (#953) d6db54e

Bug Fixes

• Find Copyright headers with old company (#927) 5634916

Dependencies

• Bump the actions group with 2 updates 21e2212
• Bump the python-packages group with 7 updates 24c3542

pontos 23.12.4

23.12.4 - 2023-12-19

Added

• Make CPE hashable 74d6ee1
• Add repository topics script (#947) f280e08

Dependencies

• Bump the actions group with 1 update cab9d1f
• Bump the python-packages group with 5 updates 4717b61

Commits

• 0c62932 Automatic release to 24.1.0
• d6db54e Add: New "CVE CISA KEV Update" event (#953)
• 21e2212 Deps: Bump the actions group with 2 updates
• 24c3542 Deps: Bump the python-packages group with 7 updates
• 64d761e Update Copyright header for all files
• 5634916 Fix: Find Copyright headers with old company (#927)
• 34b451c Automatic adjustments after release
• 6277504 Automatic release to 23.12.4
• 74d6ee1 Add: Make CPE hashable
• f280e08 Add: Add repository topics script (#947)
• Additional commits viewable in compare view

Updates coverage from 7.3.3 to 7.4.0

Changelog

Sourced from coverage's changelog.

Version 7.4.0 — 2023-12-27

• In Python 3.12 and above, you can try an experimental core based on the new :mod:sys.monitoring <python:sys.monitoring> module by defining a COVERAGE_CORE=sysmon environment variable. This should be faster for line coverage, but not for branch coverage, and plugins and dynamic contexts are not yet supported with it. I am very interested to hear how it works (or doesn't!) for you.

.. _changes_7-3-4:

Version 7.3.4 — 2023-12-20

• Fix: the change for multi-line signature exclusions in 7.3.3 broke other forms of nested clauses being excluded properly. This is now fixed, closing issue 1713_.

• Fix: in the HTML report, selecting code for copying won't select the line numbers also. Thanks, Robert Harris <pull 1717_>_.

.. _issue 1713: nedbat/coveragepy#1713 .. _pull 1717: nedbat/coveragepy#1717

.. _changes_7-3-3:

Commits

• 23a015c docs: sample HTML for 7.4.0
• 4f020d4 docs: prep for 7.4.0
• 5bb88c3 build: temporarily disable metacov, it's flaky now with sysmon support
• 3879b97 docs: mention sys.monitoring support
• 9a84eeb style: environment variable names should be monospace
• 7882b8c refactor: clean lint and mypy for sysmon et al
• 5dad1a1 test: test which core we get
• b7e0c34 fix: don't default to sysmon yet
• e5babcf docs: explain the COVERAGE_*_CORE testing variables
• ebdc277 fix: use core more consistently than tracer
• Additional commits viewable in compare view

Updates alabaster from 0.7.13 to 0.7.15

Release notes

Sourced from alabaster's releases.

Alabaster 0.7.15

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Alabaster 0.7.14

Changelog: https://alabaster.readthedocs.io/en/latest/changelog.html

Changelog

Sourced from alabaster's changelog.

:git_tag:0.7.15 -- 2024-01-08

• :feature:213 Allow an arbitrary string in the logo_name option.
• :feature:114 Improved sidebar CSS styles.
• :issue:178 Deprecated canonical_url in favor of html_baseurl.
• 🐛200 Removed duplicate <meta name="viewport" ... /> tag.
• 🐛188 Removed underline from whitespace.
• 🐛164 Removed type="text/javascript" from elements.
• 🐛161 Replaced © with unicode decimal code entity [#169](https://github.com/sphinx-doc/alabaster/issues/169);.

:git_tag:0.7.14 -- 2024-01-08

• Dropped support for Python 3.8 and earlier.
• Dropped support for Sphinx 3.3 and earlier.
• :issue:198 Fix horizontal scrolling on mobile.
• :issue:206 Properly support the html_support_sphinx config value.
• :issue:211 Fix the GitHub 'forkme' banner.
• Added alabaster_version_info to the HTML template context.
• Declare support for Python 3.13.
• Adopt the Ruff linter and formatter.
• Migrate from CircleCI to GitHub Actions.

Commits

• d24c4cb Bump to 0.7.15
• 56f12de Include documentation in the sdist
• 2d8d038 Adorn the LICENSE file with a suffix
• a31816c Remove obscenities (#173)
• 166d6e7 Replace © with unicode decimal code entity (#161)
• b9e8d79 Deprecate canonical_url in favor of html_baseurl (#178)
• 848e718 Allow an arbitrary string in the logo_name option (#213)
• 6922a16 Improve sidebar styles
• ac3b43f Remove redundant type="text/javascript" from <script> elements
• 880804d Run linkcheck and resolve issues with links
• Additional commits viewable in compare view

Updates black from 23.12.0 to 23.12.1

Release notes

Sourced from black's releases.

23.12.1

Fixed a bug that included dependencies from the d extra by default (#4108)

Changelog

Sourced from black's changelog.

23.12.1

Packaging

• Fixed a bug that included dependencies from the d extra by default (#4108)

Commits

• ec91a2b Prepare release 23.12.1 (#4124)
• 8fec1c3 Adds paren to deps for hidden extra constraint (#4108)
• 35ce37d Add new changelog template
• See full diff in compare view

Updates colorful from 0.5.5 to 0.5.6

Release notes

Sourced from colorful's releases.

0.5.6

What's Changed

• Fixing setup.py for PEP420 Implicit name space by @​MocioF in timofurrer/colorful#53
• Update Python 3.12 by @​fliiiix in timofurrer/colorful#54

New Contributors

• @​MocioF made their first contribution in timofurrer/colorful#53

Full Changelog: timofurrer/colorful@v0.5.5...v0.5.6

Changelog

Sourced from colorful's changelog.

[v0.5.6]

• Fix PEP420 Implicit name space thanks @​MocioF
• Test Python 3.12 support

Commits

• 0adf25e release: 0.5.6
• 4a1a71d Merge pull request #54 from timofurrer/chore/update-py312
• 03162ce Update outdated Ubuntu 18.04 runners
• 89ea885 Test for Python 3.12 support
• e4fc008 Merge pull request #53 from MocioF/master
• 8987a61 Fixing setup.py for PEP420 Implicit name space
• See full diff in compare view

Updates httpx from 0.25.2 to 0.26.0

Release notes

Sourced from httpx's releases.

Version 0.26.0

0.26.0 (20th December, 2023)

Added

• The proxy argument was added. You should use the proxy argument instead of the deprecated proxies, or use mounts= for more complex configurations. (#2879)

Deprecated

• The proxies argument is now deprecated. It will still continue to work, but it will be removed in the future. (#2879)

Fixed

• Fix cases of double escaping of URL path components. Allow / as a safe character in the query portion. (#2990)
• Handle NO_PROXY envvar cases when a fully qualified URL is supplied as the value. (#2741)
• Allow URLs where username or password contains unescaped '@'. (#2986)
• Ensure ASGI raw_path does not include URL query component. (#2999)
• Ensure Response.iter_text() cannot yield empty strings. (#2998)

Changelog

Sourced from httpx's changelog.

0.26.0 (20th December, 2023)

Added

• The proxy argument was added. You should use the proxy argument instead of the deprecated proxies, or use mounts= for more complex configurations. (#2879)

Deprecated

• The proxies argument is now deprecated. It will still continue to work, but it will be removed in the future. (#2879)

Fixed

• Fix cases of double escaping of URL path components. Allow / as a safe character in the query portion. (#2990)
• Handle NO_PROXY envvar cases when a fully qualified URL is supplied as the value. (#2741)
• Allow URLs where username or password contains unescaped '@'. (#2986)
• Ensure ASGI raw_path does not include URL query component. (#2999)
• Ensure Response.iter_text() cannot yield empty strings. (#2998)

Commits

• 08eff92 Version 0.26.0 (#3009)
• b4b27ff Remove unused curio check (#3010)
• a11fc38 Cleanup URL percent-encoding behavior. (#2990)
• 3b9060e Fix environment proxies (#2741)
• 2318fd8 Enabling ruff C416 (#3001)
• 2c51edd Update CHANGELOG.md (#3000)
• 1e11096 Fixed iter_text adding an empty string (#2998)
• 90538a3 Ensure that ASGI 'raw_path' does not include query component of URL. (#2999)
• f8981f3 Add the 'proxy' parameter and deprecate 'proxies'. (#2879)
• b471f01 Allow URLs where username or password contains unescaped '@'. (#2986)
• Additional commits viewable in compare view

Updates importlib-metadata from 7.0.0 to 7.0.1

Changelog

Sourced from importlib-metadata's changelog.

v7.0.1

Bugfixes

• Corrected the interface for SimplePath to encompass the expectations of locate_file and PackagePath.
• Fixed type annotations to allow strings.

Commits

• f2e84e3 Finalize
• e9e9f77 Merge commit '98196a'
• 98196a7 Fixed type annotations to allow strings.
• f38e051 Add Python 3.13 to compatibility matrix. Ref python/cpython#113174.
• 0c1d32e Inline os.PathLike using future annotations.
• b99c9d6 Refine SimplePath to allow for os.PathLike on input and SimplePath on output.
• 200cf45 Merge pull request #480 from python/bugfix/distribution-simplepath
• ac243d3 Include _meta in docs to fix doc build failures.
• 1b3f272 Corrected the interface for SimplePath to encompass the expectations of locat...
• fc4df51 Rely on read_text and read_bytes from located paths.
• Additional commits viewable in compare view

Updates lxml from 4.9.3 to 5.0.1

Changelog

Sourced from lxml's changelog.

5.0.1 (2024-01-05)

Bugs fixed

• LP#2046208: Parsing non-BMP Python Unicode strings could fail on macOS.

• LP#2044225: When incrementally parsing broken HTML, reporting start events on missing structural tags failed and could lead to subsequent exceptions.

• LP#2045435: Some (not all) issues with stricter C compilers were resolved.

• The binary wheels in the 5.0.0 release did not validate cleanly (but installed ok).

.. _latest_release:

5.0.0 (2023-12-29)

Features added

• Character escaping in C14N2 serialisation now uses a single pass over the text instead of searching for each unescaped character separately.

• Early support for Python 3.13a2 was added.

Bugs fixed

• LP#1976304: The Element.addnext() method previously inserted the new element before existing tail text. The tail text of both sibling elements now stays on the respective elements.

• LP#1980767, GH#379: TreeBuilder.close() could fail with a TypeError after parsing incorrect input. Original patch by Enrico Minack.

• Element.itertext(with_tail=False) returned the tail text of comments and processing instructions, despite the explicit option.

• GH#370: A crash with recent libxml2 2.11.x versions was resolved. Patch by Michael Schlenker.

• A compile problem with recent libxml2 2.12.x versions was resolved.

• The internal exception handling in C callbacks was improved for Cython 3.0.

• The exception declarations of xmlInputReadCallback, xmlInputCloseCallback,

... (truncated)

Commits

• eb5cd98 Prepare release of 5.0.1.
• c1e9e6f Fix test in narrow Py2 unicode builds.
• be24db7 Py2 fixes.
• 22eff9f Update changelog.
• d83c37d Make Python UCS-4 string parsing work more reliably on macOS.
• 7f07559 Update changelog.
• 663041a Add casts to silence C compiler warnings with older libxml2 versions that don...
• 0d30cec Update changelog.
• 28b416f Intern the HTML tag names in reported SAX start events since they may not alw...
• 576b8e9 Remove dead code and avoid reading an uninitialised variable.
• Additional commits viewable in compare view

Updates ruff from 0.1.8 to 0.1.11

Release notes

Sourced from ruff's releases.

v0.1.11

Changes

Preview features

• [pylint] Implement super-without-brackets (W0245) (#9257)

Bug fixes

• Check path string properly in python -m ruff invocations (#9367)

Documentation

• Tweak relative-imports message (#9365)
• Add fix safety note for yield-in-for-loop (#9364)

Contributors

• @​charliermarsh
• @​diceroll123
• @​nickdrozd
• @​tjkuson
• @​zanieb

v0.1.10

Changes

Preview features

• Improve dummy_implementations preview style formatting (#9240)
• Normalise Hex and unicode escape sequences in strings (#9280)
• Parenthesize long type annotations in annotated assignments (#9210)
• Parenthesize multi-context managers in with statements (#9222)
• [flake8-pyi] Implement generator-return-from-iter-method (PYI058) (#9313)
• [pylint] Implement empty-comment (PLR2044) (#9174)
• [refurb] Implement bit-count (FURB161) (#9265)
• [ruff] Add never-union rule to detect redundant typing.NoReturn and typing.Never (#9217)

CLI

• Add paths to TOML parse errors (#9358)
• Add row and column numbers to formatter parse errors (#9321)
• Improve responsiveness when invoked via Python (#9315)
• Short rule messages should not end with a period (#9345)

Configuration

• Respect runtime-required decorators on functions (#9317)

Bug fixes

... (truncated)

Changelog

Sourced from ruff's changelog.

0.1.11

Preview features

• [pylint] Implement super-without-brackets (W0245) (#9257)

Bug fixes

• Check path string properly in python -m ruff invocations (#9367)

Documentation

• Tweak relative-imports message (#9365)
• Add fix safety note for yield-in-for-loop (#9364)

0.1.10

Preview features

• Improve dummy_implementations preview style formatting (#9240)
• Normalise Hex and unicode escape sequences in strings (#9280)
• Parenthesize long type annotations in annotated assignments (#9210)
• Parenthesize multi-context managers in with statements (#9222)
• [flake8-pyi] Implement generator-return-from-iter-method (PYI058) (#9313)
• [pylint] Implement empty-comment (PLR2044) (#9174)
• [refurb] Implement bit-count (FURB161) (#9265)
• [ruff] Add never-union rule to detect redundant typing.NoReturn and typing.Never (#9217)

CLI

• Add paths to TOML parse errors (#9358)
• Add row and column numbers to formatter parse errors (#9321)
• Improve responsiveness when invoked via Python (#9315)
• Short rule messages should not end with a period (#9345)

Configuration

• Respect runtime-required decorators on functions (#9317)

Bug fixes

• Avoid asyncio-dangling-task for nonlocal and global bindings (#9263)
• Escape trailing placeholders in rule documentation (#9301)
• Fix continuation detection following multi-line strings (#9332)
• Fix scoping for generators in named expressions in classes (#9248)
• Port from obsolete wsl crate to is-wsl (#9356)
• Remove special pre-visit for module docstrings (#9261)
• Respect __str__ definitions from super classes (#9338)
• Respect unused-noqa via per-file-ignores (#9300)
• Respect attribute chains when resolving builtin call paths (#9309)

... (truncated)

Commits

• fefc7e8 Bump version to 0.1.11 (#9370)
• 973ae7e Disable the fuzzer CI job (#9369)
• 3fcc140 [pylint] - implement super-without-brackets/W0245 (#9257)
• 08c60f5 Check path string properly (#9367)
• 38f4d9e Tweak relative-imports message (#9365)
• f07d350 Add fix safety note for yield-in-for-loop (#9364)
• 2743387 Bump version to 0.1.10 (#9360)
• a268648 Add paths to toml parse errors (#9358)
• 9073220 Make all dependencies workspace dependencies (#9333)
• 0157cdb Drop unused "ureq" dev-dependency from ruff_cli (#9357)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Conventional Commits Report

Type	Number
Dependencies	1

🚀 Conventional commits found.