Bump dateparser from 1.2.2 to 1.4.0

[dependabot]

Bumps dateparser from 1.2.2 to 1.4.0.

Release notes

Sourced from dateparser's releases.

1.4.0

Security fixes:

• Remove import-time loading of timezone offset data from pickle to prevent unsafe deserialization from packaged data
• Replace eval() use when parsing no_word_spacing with strict boolean parsing to prevent code execution from locale metadata (#1056)

New features:

• Add support for expressions like "N {interval} from now" in English (#1271)
• Add support for the en-US locale (#1222)

Fixes:

• Honor REQUIRE_PARTS for ambiguous month-number inputs by retrying with a year-biased DATE_ORDER (#1298)
• Fix parsing word-number relative phrases such as "two days later" (#1316)
• Allow md5hash to work in FIPS environments (#1267)

Improvements:

• Add Bosnian Cyrillic (ijekavica) date translations (#1293)
• Add a new browser-based demo to the project documentation (#1306)
• Update installation documentation to replace setup.py install guidance (#1310)
• Add a project security policy (#1318)

1.3.0

Dropped Python 3.9 support. (#1296)

New features:

• search_dates() can now detect time spans from expressions like “past month”, “last week”, etc. For details, see the “Time Span Detection” section and the RETURN_TIME_SPAN, DEFAULT_START_OF_WEEK and DEFAULT_DAYS_IN_MONTH settings in the documentation. (#1284)

Fixes:

• Assume the current year if not specified (#1288)
• Support expressions like “yesterday +1h” (#1303)
• English: Support most 2-letter day-of-the-week names (#1214)
• English: Support “in N weeks' time” (#1283)
• Finnish: Support dates with “klo” (#1301)
• Russian: Support compound ordinals (#1280)

Cleanups and internal improvements:

• Fixed year expectation issues in tests. (#1294)

Changelog

Sourced from dateparser's changelog.

1.4.0 (2026-03-26)

Security fixes:

• Remove import-time loading of timezone offset data from pickle to prevent unsafe deserialization from packaged data
• Replace eval() use when parsing no_word_spacing with strict boolean parsing to prevent code execution from locale metadata (#1056)

New features:

• Add support for expressions like "N {interval} from now" in English (#1271)
• Add support for the en-US locale (#1222)

Fixes:

• Honor REQUIRE_PARTS for ambiguous month-number inputs by retrying with a year-biased DATE_ORDER (#1298)
• Fix parsing word-number relative phrases such as "two days later" (#1316)
• Allow md5hash to work in FIPS environments (#1267)

Improvements:

• Add Bosnian Cyrillic (ijekavica) date translations (#1293)
• Add a new browser-based demo to the project documentation (#1306)
• Update installation documentation to replace setup.py install guidance (#1310)
• Add a project security policy (#1318)

1.3.0 (2026-02-04)

Dropped Python 3.9 support. (#1296)

New features:

• search_dates() can now detect time spans from expressions like “past month”, “last week”, etc. For details, see the “Time Span Detection” section and the RETURN_TIME_SPAN, DEFAULT_START_OF_WEEK and DEFAULT_DAYS_IN_MONTH settings in the documentation. (#1284)

Fixes:

• Assume the current year if not specified (#1288)
• Support expressions like “yesterday +1h” (#1303)
• English: Support most 2-letter day-of-the-week names (#1214)
• English: Support “in N weeks' time” (#1283)
• Finnish: Support dates with “klo” (#1301)
• Russian: Support compound ordinals (#1280)

... (truncated)

Commits

• 60b8a75 Bump version: 1.3.0 → 1.4.0
• d405657 1.4.0 release notes and fixes (#1319)
• 7a3113e Add the en-US locale (#1222)
• 62710c0 Add a security policy (#1318)
• 341d308 Fix deployment
• 5add61c Use official publish GitHub action in CI (#1309)
• e22e62e Fix word-number phrases parsing (e.g., 'two days later') (#1316)
• 8cdcf80 Make logo more translucent (#1312)
• e0939ec Replace 'setup.py install' (#1310)
• cd5f226 Honor REQUIRE_PARTS for ambiguous month-number inputs by retrying year-bias...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)