Bump the dependencies group in /.config with 11 updates

[dependabot]

Bumps the dependencies group in /.config with 11 updates:

Package	From	To
pipdeptree	2.22.0	2.23.0
cairocffi	1.7.0	1.7.1
coverage	7.5.3	7.5.4
filelock	3.15.1	3.15.4
importlib-metadata	7.1.0	7.2.0
markdown-exec	1.9.1	1.9.2
pip	24.0	24.1
pyproject-api	1.6.1	1.7.1
setuptools	70.0.0	70.1.0
subprocess-tee	0.4.1	0.4.2
virtualenv	20.26.2	20.26.3

Updates pipdeptree from 2.22.0 to 2.23.0

Release notes

Sourced from pipdeptree's releases.

2.23.0

What's Changed

• Use non-deprecated pytest-console-scripts API by @​kemzeb in tox-dev/pipdeptree#377
• Print resolved interpreter when using env detection by @​stasfilin in tox-dev/pipdeptree#379

New Contributors

• @​stasfilin made their first contribution in tox-dev/pipdeptree#379

Full Changelog: tox-dev/pipdeptree@2.22.0...2.23.0

Commits

• c2245d6 Print resolved interpreter when using env detection (#379)
• 07503eb [pre-commit.ci] pre-commit autoupdate (#382)
• 46575ba Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#381)
• ea9cc95 [pre-commit.ci] pre-commit autoupdate (#378)
• 9bda77e Use non-deprecated pytest-console-scripts API (#377)
• 7cd5561 [pre-commit.ci] pre-commit autoupdate (#375)
• See full diff in compare view

Updates cairocffi from 1.7.0 to 1.7.1

Changelog

Sourced from cairocffi's changelog.

cairocffi changelog

Version 1.7.1 .............

Released on 2024-06-18

• [#227](https://github.com/Kozea/cairocffi/issues/227) <https://github.com/Kozea/cairocffi/pull/227>_: Add get_hairline() and set_hairline() functions

Version 1.7.0 .............

Released on 2024-04-27

• Drop Python 3.7 support, add Python 3.12 support
• [#221](https://github.com/Kozea/cairocffi/issues/221) <https://github.com/Kozea/cairocffi/pull/225>_: Add environment variable to set folder where DLLs are installed on Windows
• [#225](https://github.com/Kozea/cairocffi/issues/225) <https://github.com/Kozea/cairocffi/pull/225>_: Use Ruff instead of Flake8 and isort

Version 1.6.1 .............

Released on 2023-07-24

• [#217](https://github.com/Kozea/cairocffi/issues/217) <https://github.com/Kozea/cairocffi/issues/217>_: Repair installation with PyInstaller

Version 1.6.0 .............

Released on 2023-06-12

This version uses a new CFFI mode that may break your program.

CairoCFFI now uses Flit for packaging and is also distributed as a Python wheel.

Please test carefully and don’t hesitate to report issues before using it in production.

• [#216](https://github.com/Kozea/cairocffi/issues/216) <https://github.com/Kozea/cairocffi/pull/216>_: Use ABI-level in-line CFFI mode

... (truncated)

Commits

• 0f45d6a Version 1.7.1
• 996a754 Merge pull request #227 from dtromb/2.5.0 doesn't seem to see Taskfile anymore. #226-hairline
• caf8bcf Fixed long comment lines to pass ruff check.
• cd9689e Made test case for new 1.18 functionality condition on the correct version of...
• b7a5023 Added Context.{get,set}_hairline(), according changes to ffi header, and test...
• See full diff in compare view

Updates coverage from 7.5.3 to 7.5.4

Changelog

Sourced from coverage's changelog.

Version 7.5.4 — 2024-06-22

• If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."

• Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.

• Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799_.

.. _issue 1799: nedbat/coveragepy#1799

.. _changes_7-5-3:

Commits

• 22c09c6 docs: sample HTML for 7.5.4
• 9e16381 docs: prep for 7.5.4
• fba9b9e docs: link issue 1799 from the changelog
• f124de8 build: no longer download kits to upload them
• 9516cf6 build: hash-pin all actions
• c6e0985 build: finish up the publish action
• 4a49458 build: get the latest dist run id for publishing
• fb15efa build: pin hashes for publishing actions
• c20af95 build: use the correct item: github.event.action
• ccbab15 build: dump all the github actions data
• Additional commits viewable in compare view

Updates filelock from 3.15.1 to 3.15.4

Release notes

Sourced from filelock's releases.

3.15.4

What's Changed

• Pass file_lock as positional argument by @​kwist-sgr in tox-dev/filelock#347

Full Changelog: tox-dev/filelock@3.15.3...3.15.4

3.15.3

What's Changed

• Add test for virtualenv stability by @​gaborbernat in tox-dev/filelock#344
• Fix TypeError: _CountedFileLock.__init__() got an unexpected keyword argument 'timeout' by @​kwist-sgr in tox-dev/filelock#345

Full Changelog: tox-dev/filelock@3.15.2...3.15.3

3.15.2

What's Changed

• Use a metaclass to implement the singleton pattern by @​kwist-sgr in tox-dev/filelock#340

New Contributors

• @​kwist-sgr made their first contribution in tox-dev/filelock#340

Full Changelog: tox-dev/filelock@3.15.1...3.15.2

Commits

• 9a979df Pass file_lock as positional argument (#347)
• 3a79343 Fix `TypeError: _CountedFileLock.init() got an unexpected keyword argumen...
• 81d4cf9 Add test for virtualenv stability (#344)
• 192f1ef Use a metaclass to implement the singleton pattern (#340)
• 48788c5 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#341)
• 7bd3b7b [pre-commit.ci] pre-commit autoupdate (#342)
• See full diff in compare view

Updates importlib-metadata from 7.1.0 to 7.2.0

Changelog

Sourced from importlib-metadata's changelog.

v7.2.0

Features

• python/cpython#109829
• Updated fixtures for python/cpython#120801.

Commits

• 311cef4 Finalize
• 963f643 gh-120801: Update fixtures.
• 5eee2ff Merge https://github.com/jaraco/skeleton
• a595a0f Rename extras to align with core metadata spec.
• e8f6869 Merge https://github.com/jaraco/skeleton
• 67aab15 Revert "Allow macos on Python 3.8 to fail as GitHub CI has dropped support."
• 42b4610 Merge https://github.com/jaraco/skeleton
• bcf8f07 Move project.urls to appear in the order that ini2toml generates it. Remove p...
• 744cf2a Allow macos on Python 3.8 to fail as GitHub CI has dropped support.
• d34801b Migrated config to pyproject.toml using jaraco.develop.migrate-config and ini...
• Additional commits viewable in compare view

Updates markdown-exec from 1.9.1 to 1.9.2

Release notes

Sourced from markdown-exec's releases.

1.9.2

1.9.2 - 2024-06-20

Compare with 1.9.1

Bug Fixes

• Render source even if output is empty (d3f1e6b by Timothée Mazzucotelli). Issue-57

Changelog

Sourced from markdown-exec's changelog.

1.9.2 - 2024-06-20

Compare with 1.9.1

Bug Fixes

• Render source even if output is empty (d3f1e6b by Timothée Mazzucotelli). Issue-57

Commits

• ed18c5f chore: Prepare release 1.9.2
• d3f1e6b fix: Render source even if output is empty
• cc36267 Merge branch 'main' of github.com:pawamoy/markdown-exec
• 6167c03 docs: Add Chalk example gallery
• See full diff in compare view

Updates pip from 24.0 to 24.1

Changelog

Sourced from pip's changelog.

24.1 (2024-06-20)

Vendored Libraries

• Upgrade truststore to 0.9.1.

24.1b2 (2024-06-12)

Features

• Report informative messages about invalid requirements. ([#12713](https://github.com/pypa/pip/issues/12713) <https://github.com/pypa/pip/issues/12713>_)

Bug Fixes

• Eagerly import the self version check logic to avoid crashes while upgrading or downgrading pip at the same time. ([#12675](https://github.com/pypa/pip/issues/12675) <https://github.com/pypa/pip/issues/12675>_)
• Accommodate for mismatches between different sources of truth for extra names, for packages generated by setuptools. ([#12688](https://github.com/pypa/pip/issues/12688) <https://github.com/pypa/pip/issues/12688>_)
• Accommodate for development versions of CPython ending in + in the version string. ([#12691](https://github.com/pypa/pip/issues/12691) <https://github.com/pypa/pip/issues/12691>_)

Vendored Libraries

• Upgrade packaging to 24.1

• Upgrade requests to 2.32.0

• Remove vendored colorama

• Remove vendored six

• Remove vendored webencodings

• Remove vendored charset_normalizer

  requests provides optional character detection support on some APIs when processing ambiguous bytes. This isn't relevant for pip to function and we're able to remove it due to recent upstream changes.

24.1b1 (2024-05-06)

Deprecations and Removals

• Drop support for EOL Python 3.7. ([#11934](https://github.com/pypa/pip/issues/11934) <https://github.com/pypa/pip/issues/11934>_)

• Remove support for legacy versions and dependency specifiers.

  Packages with non standard-compliant versions or dependency specifiers are now ignored by the resolver. Already installed packages with non standard-compliant versions or dependency specifiers must be uninstalled before upgrading them. ([#12063](https://github.com/pypa/pip/issues/12063) <https://github.com/pypa/pip/issues/12063>_)

Features

... (truncated)

Commits

• bc877e6 Bump for release
• 075a3dd Merge pull request #12774 from uranusjr/disable-313-uri-test
• 205af8e Upgrade truststore to 0.9.1 (#12707)
• 87f874f Skip until 3.13.0b3 instead
• 596be04 Mark failing tests on Windows + Py3.13 as xfail
• d94806f Merge pull request #12764 from pradyunsg/pause-prepare-release-for-news-edits
• 71b1688 Merge pull request #12763 from pradyunsg/release/24.1.beta2
• b2fdf3b Pause in prepare-release for updating the NEWS file
• 17c938a Bump for development
• ece2255 Bump for release
• Additional commits viewable in compare view

Updates pyproject-api from 1.6.1 to 1.7.1

Release notes

Sourced from pyproject-api's releases.

1.7.1

What's Changed

• Move changelog to GH releases by @​gaborbernat in tox-dev/pyproject-api#141

Full Changelog: tox-dev/pyproject-api@1.7.0...1.7.1

1.7.0

What's Changed

• docs: correct Homepage URL by @​bernardcooke53 in tox-dev/pyproject-api#116
• Bump and fix CI for new setuptools by @​gaborbernat in tox-dev/pyproject-api#140

New Contributors

• @​bernardcooke53 made their first contribution in tox-dev/pyproject-api#116

Full Changelog: tox-dev/pyproject-api@1.6.1...1.7.0

Commits

• e384fce Move changelog to GH releases (#141)
• 0a41076 Bump and fix CI for new setuptools (#140)
• d7add0e Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#139)
• 4ddd11c [pre-commit.ci] pre-commit autoupdate (#138)
• 010a4fe [pre-commit.ci] pre-commit autoupdate (#137)
• 1cb7a4b [pre-commit.ci] pre-commit autoupdate (#136)
• c101877 [pre-commit.ci] pre-commit autoupdate (#135)
• 4b66582 [pre-commit.ci] pre-commit autoupdate (#134)
• 443355e [pre-commit.ci] pre-commit autoupdate (#133)
• ba3d734 [pre-commit.ci] pre-commit autoupdate (#132)
• Additional commits viewable in compare view

Updates setuptools from 70.0.0 to 70.1.0

Changelog

Sourced from setuptools's changelog.

v70.1.0

Features

• Adopted the bdist_wheel command from the wheel project -- by :user:agronholm (#1386)

• Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg -- by :user:Avasam

  Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* -- by :user:Avasam * Excluding TypeVar and overload. Return types are currently inferred. (#4246)

• Migrated Setuptools' own config to pyproject.toml (#4310)

Bugfixes

• Prevent a TypeError: 'NoneType' object is not callable when shutil_rmtree is called without an onexc parameter on Python<=3.11 -- by :user:Avasam (#4382)
• Replace use of mktemp with can_symlink from the stdlib test suite. (#4403)
• Improvement for attr: directives in configuration to handle more edge cases related to complex package_dir. (#4405)
• Fix accidental implicit string concatenation. (#4411)

Misc

• #4365, #4422

Commits

• 3466f9f Bump version: 70.0.0 → 70.1.0
• 8cc50d4 Attempt to avoid error with _read_utf8_with_fallback by moving code in `pkg...
• a4b15f3 Add comments on test
• 051e70d Simplify integration test for zop interface
• 06fd687 Move integration test to pkg_resources
• 03edaaa Add newsfragment
• b95d168 Move piece of code inside pkg_resources/init.py
• be847e0 Add interop tests for pkg_resources and zope-interface
• 0f8c58d Fix undefined log.warning function in bdist_wheel (#4427)
• 63a2eb3 Fix undefined log function in bdist_wheel
• Additional commits viewable in compare view

Updates subprocess-tee from 0.4.1 to 0.4.2

Release notes

Sourced from subprocess-tee's releases.

v0.4.2

Bugfixes

• Use exec mode when passed a list of strings (#101) @​KotlinIsland

Commits

• ae1ccb7 [pre-commit.ci] pre-commit autoupdate (#126)
• 2d3b1ad Use exec mode when passed a list of strings (#101)
• c6337b4 gha: rename reusable repo (#124)
• 8929893 [pre-commit.ci] pre-commit autoupdate (#123)
• 6289101 Bump actions/cache from 3 to 4 (#121)
• dc7e38d Bump actions/setup-python from 4 to 5 (#122)
• d82470d Add test for #110 (#119)
• 1dd55a0 Bump actions/checkout from 3 to 4 (#115)
• 2b9aba5 Fix tests (#120)
• b5755c7 [pre-commit.ci] pre-commit autoupdate (#109)
• Additional commits viewable in compare view

Updates virtualenv from 20.26.2 to 20.26.3

Release notes

Sourced from virtualenv's releases.

20.26.3

What's Changed

• release 20.26.2 by @​gaborbernat in pypa/virtualenv#2724
• Bump embeded wheels by @​gaborbernat in pypa/virtualenv#2741

Full Changelog: pypa/virtualenv@20.26.2...20.26.3

Changelog

Sourced from virtualenv's changelog.

v20.26.3 (2024-06-21)

Bugfixes - 20.26.3

- Upgrade embedded wheels:

setuptools to 70.1.0 from 69.5.1
pip to 24.1from 24.0 (:issue:2741)

Commits

• 3185e1f release 20.26.3
• 2a149ec Bump embeded wheels (#2741)
• bd91d48 [pre-commit.ci] pre-commit autoupdate (#2739)
• 8220288 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#2738)
• 429d6a2 [pre-commit.ci] pre-commit autoupdate (#2734)
• c723579 [pre-commit.ci] pre-commit autoupdate (#2730)
• e35ece8 [pre-commit.ci] pre-commit autoupdate (#2727)
• 0646a05 Merge pull request #2724 from pypa/release-20.26.2
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependabot-deps-updates.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.