Bump the python-requirements group in /requirements with 7 updates

[dependabot]

Bumps the python-requirements group in /requirements with 7 updates:

Package	From	To
coverage[toml]	7.3.1	7.4.3
pytest	7.4.4	8.0.2
sqlalchemy	2.0.25	2.0.27
sphinx-issues	3.0.1	4.0.0
pip-tools	7.3.0	7.4.0
pre-commit	3.6.0	3.6.2
tox	4.12.0	4.13.0

Updates coverage[toml] from 7.3.1 to 7.4.3

Release notes

Sourced from coverage[toml]'s releases.

7.4.3

• Fix: in some cases, coverage could fail with a RuntimeError: "Set changed size during iteration." This is now fixed, closing issue 1733.

➡️  PyPI page: coverage 7.4.3. :arrow_right:  To install: python3 -m pip install coverage==7.4.3

7.4.2

• Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower, thanks Hugo van Kemenade. It now issues a warning that sys.monitoring is not available and falls back to the default core instead.

➡️  PyPI page: coverage 7.4.2. :arrow_right:  To install: python3 -m pip install coverage==7.4.2

7.4.1

• Python 3.13.0a3 is supported.
• Fix: the JSON report now includes an explicit format version number, closing issue 1732.

➡️  PyPI page: coverage 7.4.1. :arrow_right:  To install: python3 -m pip install coverage==7.4.1

7.4.0

• In Python 3.12 and above, you can try an experimental core based on the new sys.monitoring <python:sys.monitoring> module by defining a COVERAGE_CORE=sysmon environment variable. This should be faster for line coverage, but not for branch coverage, and plugins and dynamic contexts are not yet supported with it. I am very interested to hear how it works (or doesn't!) for you.

➡️  PyPI page: coverage 7.4.0. :arrow_right:  To install: python3 -m pip install coverage==7.4.0

7.3.4

• Fix: the change for multi-line signature exclusions in 7.3.3 broke other forms of nested clauses being excluded properly. This is now fixed, closing issue 1713.
• Fix: in the HTML report, selecting code for copying won't select the line numbers also. Thanks, Robert Harris.

➡️  PyPI page: coverage 7.3.4. :arrow_right:  To install: python3 -m pip install coverage==7.3.4

7.3.3

• Fix: function definitions with multi-line signatures can now be excluded by matching any of the lines, closing issue 684. Thanks, Jan Rusak, Maciej Kowalczyk and Joanna Ejzel.
• Fix: XML reports could fail with a TypeError if files had numeric components that were duplicates except for leading zeroes, like file1.py and file001.py. Fixes issue 1709.
• The coverage annotate command used to announce that it would be removed in a future version. Enough people got in touch to say that they use it, so it will stay. Don't expect it to keep up with other new features though.
• Added new debug options <cmd_run_debug>:
  • pytest writes the pytest test name into the debug output.
  • dataop2 writes the full data being added to CoverageData objects.

➡️  PyPI page: coverage 7.3.3. :arrow_right:  To install: python3 -m pip install coverage==7.3.3

7.3.2

... (truncated)

Changelog

Sourced from coverage[toml]'s changelog.

Version 7.4.3 — 2024-02-23

• Fix: in some cases, coverage could fail with a RuntimeError: "Set changed size during iteration." This is now fixed, closing issue 1733_.

.. _issue 1733: nedbat/coveragepy#1733

.. _changes_7-4-2:

Version 7.4.2 — 2024-02-20

• Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower, thanks Hugo van Kemenade <pull 1747_>_. It now issues a warning that sys.monitoring is not available and falls back to the default core instead.

.. _pull 1747: nedbat/coveragepy#1747

.. _changes_7-4-1:

Version 7.4.1 — 2024-01-26

• Python 3.13.0a3 is supported.

• Fix: the JSON report now includes an explicit format version number, closing issue 1732_.

.. _issue 1732: nedbat/coveragepy#1732

.. _changes_7-4-0:

Version 7.4.0 — 2023-12-27

• In Python 3.12 and above, you can try an experimental core based on the new :mod:sys.monitoring <python:sys.monitoring> module by defining a COVERAGE_CORE=sysmon environment variable. This should be faster for line coverage, but not for branch coverage, and plugins and dynamic contexts are not yet supported with it. I am very interested to hear how it works (or doesn't!) for you.

.. _changes_7-3-4:

Version 7.3.4 — 2023-12-20

... (truncated)

Commits

• 1af3624 docs: sample HTML for 7.4.3
• f06c5e4 docs: prep for 7.4.3
• 08fc997 fix: get atomic copies of iterables when flushing data. #1733
• 4e34571 build: put a time limit on the Python nightly tests
• a1d8d29 build: make targets should use underscores not dashes
• f7d40a0 build: tweak the release instructions
• 0f19b82 build: bump version
• 5d69334 test: if a test fails randomly, let it retry with @​flaky
• 65d686c docs: sample HTML for 7.4.2
• 026dca7 docs: prep for 7.4.2
• Additional commits viewable in compare view

Updates pytest from 7.4.4 to 8.0.2

Release notes

Sourced from pytest's releases.

8.0.2

pytest 8.0.2 (2024-02-24)

Bug Fixes

• #11895: Fix collection on Windows where initial paths contain the short version of a path (for example c:\PROGRA~1\tests).
• #11953: Fix an IndexError crash raising from getstatementrange_ast.
• #12021: Reverted a fix to [--maxfail]{.title-ref} handling in pytest 8.0.0 because it caused a regression in pytest-xdist whereby session fixture teardowns may get executed multiple times when the max-fails is reached.

8.0.1

pytest 8.0.1 (2024-02-16)

Bug Fixes

• #11875: Correctly handle errors from getpass.getuser{.interpreted-text role="func"} in Python 3.13.
• #11879: Fix an edge case where ExceptionInfo._stringify_exception could crash pytest.raises{.interpreted-text role="func"}.
• #11906: Fix regression with pytest.warns{.interpreted-text role="func"} using custom warning subclasses which have more than one parameter in their [__init__]{.title-ref}.
• #11907: Fix a regression in pytest 8.0.0 whereby calling pytest.skip{.interpreted-text role="func"} and similar control-flow exceptions within a pytest.warns(){.interpreted-text role="func"} block would get suppressed instead of propagating.
• #11929: Fix a regression in pytest 8.0.0 whereby autouse fixtures defined in a module get ignored by the doctests in the module.
• #11937: Fix a regression in pytest 8.0.0 whereby items would be collected in reverse order in some circumstances.

pytest 8.0.0 (2024-01-27)

See 8.0.0rc1 and 8.0.0rc2 for the full changes since pytest 7.4!

Bug Fixes

• #11842: Properly escape the reason of a skip <pytest.mark.skip ref>{.interpreted-text role="ref"} mark when writing JUnit XML files.
• #11861: Avoid microsecond exceeds 1_000_000 when using log-date-format with %f specifier, which might cause the test suite to crash.

8.0.0rc2

pytest 8.0.0rc2 (2024-01-17)

Improvements

• #11233: Improvements to -r for xfailures and xpasses:
  • Report tracebacks for xfailures when -rx is set.
  • Report captured output for xpasses when -rX is set.
  • For xpasses, add - in summary between test name and reason, to match how xfail is displayed.
• #11825: The pytest_plugin_registered{.interpreted-text role="hook"} hook has a new plugin_name parameter containing the name by which plugin is registered.

Bug Fixes

• #11706: Fix reporting of teardown errors in higher-scoped fixtures when using [--maxfail]{.title-ref} or [--stepwise]{.title-ref}.

... (truncated)

Commits

• 31afeeb Prepare release version 8.0.2
• 1b00a2f Merge pull request #12025 from pytest-dev/backport-12022-to-8.0.x
• ff2f66d [8.0.x] Revert "Fix teardown error reporting when --maxfail=1 (#11721)"
• 8a8eed6 [8.0.x] Fix collection of short paths on Windows (#12024)
• 74346f0 [8.0.x] Allow Sphinx 7.x (#12005)
• b7657b4 [8.0.x] Disallow Sphinx 6 and 7 (#12001)
• feb7c5e Merge pull request #11999 from pytest-dev/backport-11996-to-8.0.x
• 0909655 [8.0.x] code: fix IndexError crash in getstatementrange_ast
• 68524d4 Merge pull request #11993 from pytest-dev/release-8.0.1
• d7d320a Prepare release version 8.0.1
• Additional commits viewable in compare view

Updates sqlalchemy from 2.0.25 to 2.0.27

Release notes

Sourced from sqlalchemy's releases.

2.0.27

Released: February 13, 2024

postgresql

• [postgresql] [bug] [regression] Fixed regression caused by just-released fix for #10863 where an invalid exception class were added to the "except" block, which does not get exercised unless such a catch actually happens. A mock-style test has been added to ensure this catch is exercised in unit tests.

  References: #11005

2.0.26

Released: February 11, 2024

orm

• [orm] [bug] Replaced the "loader depth is excessively deep" warning with a shorter message added to the caching badge within SQL logging, for those statements where the ORM disabled the cache due to a too-deep chain of loader options. The condition which this warning highlights is difficult to resolve and is generally just a limitation in the ORM's application of SQL caching. A future feature may include the ability to tune the threshold where caching is disabled, but for now the warning will no longer be a nuisance.

  References: #10896

• [orm] [bug] Fixed issue where it was not possible to use a type (such as an enum) within a _orm.Mapped container type if that type were declared locally within the class body. The scope of locals used for the eval now includes that of the class body itself. In addition, the expression within _orm.Mapped may also refer to the class name itself, if used as a string or with future annotations mode.

  References: #10899

• [orm] [bug] Fixed issue where using _orm.Session.delete() along with the _orm.Mapper.version_id_col feature would fail to use the correct version identifier in the case that an additional UPDATE were emitted against the target object as a result of the use of _orm.relationship.post_update on the object. The issue is similar to #10800 just fixed in version 2.0.25 for the case of updates alone.

  References: #10967

... (truncated)

Commits

• See full diff in compare view

Updates sphinx-issues from 3.0.1 to 4.0.0

Commits

• 50128ce Bump version and update changelog
• 0239bda Default to linking to GH sponsors URL for the :user: role (#131)
• 9d176de Dev Chores (#130)
• 08c376f Run pre-commit autoupdate
• See full diff in compare view

Updates pip-tools from 7.3.0 to 7.4.0

Release notes

Sourced from pip-tools's releases.

7.4.0

Features:

• Allow force-enabling or force-disabling colorized output (#2041). Thanks @​aneeshusa
• Add support for command-specific configuration sections (#1966). Thanks @​chrysle
• Add options for including build dependencies in compiled output (#1681). Thanks @​apljungquist

Bug Fixes:

• Fix for src-files not being used when specified in a config file (#2015). Thanks @​csalerno-asml
• Fix ignorance of inverted CLI options in config for pip-sync (#1989). Thanks @​chrysle
• Filter out origin ireqs for extra requirements before writing output annotations (#2011). Thanks @​chrysle
• Make BacktrackingResolver ignore extras when dropping existing constraints (#1984). Thanks @​chludwig-haufe
• Display pyproject.toml's metatada parsing errors in verbose mode (#1979). Thanks @​szobov

Other Changes:

• Add mention of pip-compile-multi in Other useful tools README section (#1986). Thanks @​peterdemin

Changelog

Sourced from pip-tools's changelog.

v7.4.0

Features:

• Allow force-enabling or force-disabling colorized output (#2041). Thanks @​aneeshusa
• Add support for command-specific configuration sections (#1966). Thanks @​chrysle
• Add options for including build dependencies in compiled output (#1681). Thanks @​apljungquist

Bug Fixes:

• Fix for src-files not being used when specified in a config file (#2015). Thanks @​csalerno-asml
• Fix ignorance of inverted CLI options in config for pip-sync (#1989). Thanks @​chrysle
• Filter out origin ireqs for extra requirements before writing output annotations (#2011). Thanks @​chrysle
• Make BacktrackingResolver ignore extras when dropping existing constraints (#1984). Thanks @​chludwig-haufe
• Display pyproject.toml's metatada parsing errors in verbose mode (#1979). Thanks @​szobov

Other Changes:

• Add mention of pip-compile-multi in Other useful tools README section (#1986). Thanks @​peterdemin

Commits

• 1397bfa Merge pull request #2043 from jazzband/dependabot/pip/docs/jinja2-3.1.3
• 355a04e Bump jinja2 from 3.1.2 to 3.1.3 in /docs
• c8f2988 Merge pull request #2055 from atugushev/fix-failing-test-on-pip-24
• 598845a Fix failing test on pip-24.0
• a8688d7 Merge pull request #2029 from jazzband/pre-commit-ci-update-config
• 39cbff8 [pre-commit.ci] auto fixes from pre-commit.com hooks
• 644ac8a [pre-commit.ci] pre-commit autoupdate
• d673c8e Merge pull request #2015 from csalerno-asml/fix-2006
• e216ad5 rm submodule
• 64d1de3 comments addressed
• Additional commits viewable in compare view

Updates pre-commit from 3.6.0 to 3.6.2

Release notes

Sourced from pre-commit's releases.

pre-commit v3.6.2

Fixes

• Fix building golang hooks during git commit --all.
  • #3130 PR by @​asottile.
  • #2722 issue by @​pestanko and @​matthewhughes934.

pre-commit v3.6.1

Fixes

• Remove PYTHONEXECUTABLE from environment when running.
  • #3110 PR by @​untitaker.
• Handle staged-files-only with only a crlf diff.
  • #3126 PR by @​asottile.
  • issue by @​tyyrok.

Changelog

Sourced from pre-commit's changelog.

3.6.2 - 2024-02-18

Fixes

• Fix building golang hooks during git commit --all.
  • #3130 PR by @​asottile.
  • #2722 issue by @​pestanko and @​matthewhughes934.

3.6.1 - 2024-02-10

Fixes

• Remove PYTHONEXECUTABLE from environment when running.
  • #3110 PR by @​untitaker.
• Handle staged-files-only with only a crlf diff.
  • #3126 PR by @​asottile.
  • issue by @​tyyrok.

Commits

• e525726 v3.6.2
• 3187538 Merge pull request #3130 from pre-commit/golang-build-during-commit-a
• 61d9c95 fix building golang hooks during commit --all
• 15bd0c7 v3.6.1
• 92678c3 Merge pull request #3126 from pre-commit/crlf-only-diff
• 032d8e2 staged_files_only can handle a crlf-only diff
• 7384838 Merge pull request #3110 from untitaker/pythonexecutable
• 96e0712 [pre-commit.ci] auto fixes from pre-commit.com hooks
• 3388e2d Pop PYTHONEXECUTABLE
• 10f8853 Merge pull request #3107 from pre-commit/pre-commit-ci-update-config
• Additional commits viewable in compare view

Updates tox from 4.12.0 to 4.13.0

Release notes

Sourced from tox's releases.

4.13.0

What's Changed

• Document usage of Pytest with Tox as a FAQ entry by @​faph in tox-dev/tox#3192
• docs/config.rst: State in config directive sections their ini file sections by @​0cjs in tox-dev/tox#3194
• .gitignore: Add /tests/demo_pkg_inline/.tox/ by @​0cjs in tox-dev/tox#3198
• docs/development: Summarise important points experienced devs need to know by @​0cjs in tox-dev/tox#3197
• Add tests for CliEnv by @​0cjs in tox-dev/tox#3204
• Document how CliEnv works by @​0cjs in tox-dev/tox#3206
• docs/development "Key points": Two updates and general improvement by @​0cjs in tox-dev/tox#3205
• session.env_select.CliEnv: Document and test spaces behaviour by @​0cjs in tox-dev/tox#3208
• config.cli.test_cli_ini: Re-order for clarity (textual moves only) by @​0cjs in tox-dev/tox#3209
• Revert previous "precommit autoupdate (#3214)" commit; it's broken by @​0cjs in tox-dev/tox#3215
• Extract packaging virtualenv code to its own class by @​gaborbernat in tox-dev/tox#3221

New Contributors

• @​faph made their first contribution in tox-dev/tox#3192
• @​0cjs made their first contribution in tox-dev/tox#3194

Full Changelog: tox-dev/tox@4.12.1...4.13.0

4.12.1

What's Changed

• Fix tox version requirement in docs by @​Viicos in tox-dev/tox#3184
• #3165 fixed Tox failing with --installpkg and multi testenvs by @​Stefanhg in tox-dev/tox#3186

New Contributors

• @​Viicos made their first contribution in tox-dev/tox#3184

Full Changelog: tox-dev/tox@4.12.0...4.12.1

Changelog

Sourced from tox's changelog.

v4.13.0 (2024-02-16)

Features - 4.13.0

- Extract virtual environment packaging code to its own base class not tied to ``virtualenv`` - by :user:`gaborbernat`. (:issue:`3221`)
Improved Documentation - 4.13.0

• Documented usage of pytest with tox run-parallel - by :user:faph. (:issue:3187)
• Configuration: state in config directive sections their ini file sections - by :user:0cjs. (:issue:3194)
• Development: summarize important points experienced developers need to know - by :user:0cjs. (:issue:3197)

v4.12.1 (2024-01-16)

Bugfixes - 4.12.1

- Fixed bug where running with --installpkg and multiple envs could not clean up between tests (:issue:`3165`)

Commits

• ae156e2 release 4.13.0
• fa923ec Extract packaging virtualenv code to its own class (#3221)
• 47bcea6 [pre-commit.ci] pre-commit autoupdate (#3217)
• fb83a3a Revert previous "precommit autoupdate (#3214)" commit; it's broken (#3215)
• 3347933 [pre-commit.ci] pre-commit autoupdate (#3214)
• 2bcc3ec config.cli.test_cli_ini: Re-order for clarity (textual moves only) (#3209)
• 387834a session.env_select.CliEnv: Document and test spaces behaviour (#3208)
• 47fa093 docs/development "Key points": Two updates and general improvement (#3205)
• 1b5b187 Document how CliEnv works (#3206)
• b3eb86a Add tests for CliEnv (#3204)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.