build(deps): bump the minor-and-patch group with 7 updates

[dependabot]

Bumps the minor-and-patch group with 7 updates:

Package	From	To
more-itertools	10.5.0	10.6.0
stac-check	1.4.0	1.5.0
numpy	2.2.1	2.2.2
orjson	3.10.14	3.10.15
referencing	0.35.1	0.36.1
virtualenv	20.28.1	20.29.1
websockets	14.1	14.2

Updates more-itertools from 10.5.0 to 10.6.0

Release notes

Sourced from more-itertools's releases.

Version 10.6.0

• New functions:

  • is_prime and nth_prime were added (thanks to JamesParrott and rhettinger)
  • loops was added (thanks to rhettinger)

• Changes to existing functions:

  • factor was optimized to handle larger inputs and use less memory (thanks to rhettinger)
  • spy was optimized to enable nested calls (thanks to rhettinger)
  • polynomial_from_roots was made non-recursive and able to handle larger numbers of roots (thanks to pochmann3 and rhettinger)
  • is_sorted now only relies on less than comparisons (thanks to rhettinger)
  • The docstring for outer_product was improved (thanks to rhettinger)
  • The type annotations for sample were improved (thanks to rhettinger)

• Other changes:

  • Python 3.13 is officially supported. Python 3.8 is no longer officially supported. (thanks to hugovk, JamesParrott, and stankudrow)
  • mypy checks were fixed (thanks to JamesParrott)

Commits

• 1681cea Bump version: 10.5.0 → 10.6.0
• ff31994 Merge pull request #943 from more-itertools/release-2025
• 1a4fba2 Drop extra whitespace
• 9b47c8b Drop mypy pin
• d11b54d Update version docs
• 71e4b1c Merge branch 'stankudrow-pyupgrade-py39' into release-2025
• d58fe3d Merge branch 'pyupgrade-py39' of https://github.com/stankudrow/more-itertools...
• 8acddb5 Merge pull request #945 from rhettinger/mo_cova
• 011403a Test corner cases
• 7b9889c Merge pull request #944 from rhettinger/strict_counts
• Additional commits viewable in compare view

Updates stac-check from 1.4.0 to 1.5.0

Release notes

Sourced from stac-check's releases.

v1.5.0

What's Changed

• Fix syntax warning by @​avalentino in stac-utils/stac-check#113
• Do not use the deprecated pkg-resources package by @​avalentino in stac-utils/stac-check#112
• Update dependecies, stac-validator v3.5.0 by @​jonhealy1 in stac-utils/stac-check#116
• Fix 'validaton' typo by @​vprivat-ads in stac-utils/stac-check#115
• Allow to provide HTTP headers, Configure whether to open URLs when validating assets by @​vprivat-ads in stac-utils/stac-check#114
• Release v1.5.0 by @​jonhealy1 in stac-utils/stac-check#117

New Contributors

• @​avalentino made their first contribution in stac-utils/stac-check#113
• @​vprivat-ads made their first contribution in stac-utils/stac-check#115

Full Changelog: stac-utils/stac-check@v1.4.0...v1.5.0

Changelog

Sourced from stac-check's changelog.

[v1.5.0] - 2025-01-17

Added

• Allow to provide HTTP headers (#114)
• Configure whether to open URLs when validating assets (#114)

Changed

• No longer use the deprecated pkg-resources package. It has been replaced with importlib from the Python standard library (#112)

Updated

• Updated stac-validator to v3.5.0 and other dependecies as well (#116)

Commits

• 0733bf2 Merge pull request #117 from stac-utils/v.1.5.0
• f3a5bdf updates
• e7132e3 1.1.0 updates
• 0129cd1 change log
• 0b99a06 update docs
• 24562d8 Merge branch 'main' into v.1.5.0
• 66e8b5a update version
• 9e35465 Merge pull request #114 from vprivat-ads/http_headers
• a5dea87 Add tests
• 60f86ef Update documentation with latest pdoc
• Additional commits viewable in compare view

Updates numpy from 2.2.1 to 2.2.2

Release notes

Sourced from numpy's releases.

2.2.2 (Jan 18, 2025)

NumPy 2.2.2 Release Notes

NumPy 2.2.2 is a patch release that fixes bugs found after the 2.2.1 release. The number of typing fixes/updates is notable. This release supports Python versions 3.10-3.13.

Contributors

A total of 8 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• Alicia Boya García +
• Charles Harris
• Joren Hammudoglu
• Kai Germaschewski +
• Nathan Goldbaum
• PTUsumit +
• Rohit Goswami
• Sebastian Berg

Pull requests merged

A total of 16 pull requests were merged for this release.

• #28050: MAINT: Prepare 2.2.x for further development
• #28055: TYP: fix void arrays not accepting str keys in __setitem__
• #28066: TYP: fix unnecessarily broad integer binop return types (#28065)
• #28112: TYP: Better ndarray binop return types for float64 &...
• #28113: TYP: Return the correct bool from issubdtype
• #28114: TYP: Always accept date[time] in the datetime64 constructor
• #28120: BUG: Fix auxdata initialization in ufunc slow path
• #28131: BUG: move reduction initialization to ufunc initialization
• #28132: TYP: Fix interp to accept and return scalars
• #28137: BUG: call PyType_Ready in f2py to avoid data races
• #28145: BUG: remove unnecessary call to PyArray_UpdateFlags
• #28160: BUG: Avoid data race in PyArray_CheckFromAny_int
• #28175: BUG: Fix f2py directives and --lower casing
• #28176: TYP: Fix overlapping overloads issue in 2->1 ufuncs
• #28177: TYP: preserve shape-type in ndarray.astype()
• #28178: TYP: Fix missing and spurious top-level exports

Checksums

MD5

749cb2adf8043551aae22bbf0ed3130a  numpy-2.2.2-cp310-cp310-macosx_10_9_x86_64.whl
bc79fa2e44316b7ce9bacb48a993ed91  numpy-2.2.2-cp310-cp310-macosx_11_0_arm64.whl
c6b2caa2bbb645b5950dccb77efb1dbb  numpy-2.2.2-cp310-cp310-macosx_14_0_arm64.whl
8c410efac169af880cacbbac8a731658  numpy-2.2.2-cp310-cp310-macosx_14_0_x86_64.whl

... (truncated)

Commits

• fd8a68e Merge pull request #28184 from charris/prepare-2.2.2
• 0d106a5 REL: Prepare for the NumPy 2.2.2 release [wheel build]
• dfdd35a Merge pull request #28175 from charris/backport-28056
• e4517a8 Merge pull request #28176 from charris/backport-28168
• 2c0432b Merge pull request #28178 from charris/backport-28170
• 2230a08 Merge pull request #28177 from charris/backport-28169
• b04e32c TYP: Fix missing and spurious top-level exports
• 6a5f537 TYP: preserve shape-type in ndarray.astype()
• f782790 TYP: Fix overlapping overloads issue in 2->1 ufuncs
• a19acf1 BUG: Fix casing for f2py directives
• Additional commits viewable in compare view

Updates orjson from 3.10.14 to 3.10.15

Release notes

Sourced from orjson's releases.

3.10.15

Changed

• Publish PyPI manylinux aarch64 wheels built and tested on aarch64.
• Publish PyPI musllinux aarch64 and arm7l wheels built and tested on aarch64.
• Publish PyPI manylinux Python 3.13 wheels for i686, arm7l, ppc64le, and s390x.

Changelog

Sourced from orjson's changelog.

3.10.15

Changed

• Publish PyPI manylinux aarch64 wheels built and tested on aarch64.
• Publish PyPI musllinux aarch64 and arm7l wheels built and tested on aarch64.
• Publish PyPI manylinux Python 3.13 wheels for i686, arm7l, ppc64le, and s390x.

Commits

• 268b660 3.10.15
• 7f93738 manylinux aarch64 native, more 3.13 cross artifact jobs
• See full diff in compare view

Updates referencing from 0.35.1 to 0.36.1

Release notes

Sourced from referencing's releases.

v0.36.1

What's Changed

• Add lower bound pin for typing-extensions by @​lukasmasuch in python-jsonschema/referencing#211

New Contributors

• @​lukasmasuch made their first contribution in python-jsonschema/referencing#211

Full Changelog: python-jsonschema/referencing@v0.36.0...v0.36.1

v0.36.0

Full Changelog: python-jsonschema/referencing@v0.35.1...v0.36.0

Changelog

Sourced from referencing's changelog.

v0.36.1

• Add a lower pin on typing-extensions for the version we depend on.

v0.36.0

• Declare support for Python 3.13.

Commits

• 35d571d Merge pull request #211 from lukasmasuch/add-typing-extensions-min-version-pin
• 710f893 Add lower bound pin for typing-extensions
• 4db2000 Merge pull request #210 from python-jsonschema/dependabot/submodules/suite-d0...
• 1fd94c2 Bump suite from e8a1874 to d01bb7a
• e8f5bd8 Add the uv lockfile.
• 7159c97 And uv in the build noxenv.
• 4158241 More uv in CI.
• d47a5e1 Merge pull request #207 from python-jsonschema/pre-commit-ci-update-config
• 148a943 Merge pull request #208 from python-jsonschema/dependabot/submodules/suite-e8...
• 7708e25 Bump suite from b319a5d to e8a1874
• Additional commits viewable in compare view

Updates virtualenv from 20.28.1 to 20.29.1

Release notes

Sourced from virtualenv's releases.

20.29.1

What's Changed

• release 20.29.0 by @​gaborbernat in pypa/virtualenv#2824
• Simplify Solution to --python command-line flag precedence by @​DK96-OS in pypa/virtualenv#2826
• Change PyInfo cache versioning mechanism by @​robsdedude in pypa/virtualenv#2827

New Contributors

• @​DK96-OS made their first contribution in pypa/virtualenv#2826

Full Changelog: pypa/virtualenv@20.29.0...20.29.1

20.29.0

What's Changed

• release 20.28.1 by @​gaborbernat in pypa/virtualenv#2818
• Makes --python command-line flag take precedence over env var by @​filiplajszczak in pypa/virtualenv#2821
• Add free-threaded Python support by @​robsdedude in pypa/virtualenv#2809
• Upgrade embeded setuptools by @​gaborbernat in pypa/virtualenv#2823

New Contributors

• @​filiplajszczak made their first contribution in pypa/virtualenv#2821
• @​robsdedude made their first contribution in pypa/virtualenv#2809

Full Changelog: pypa/virtualenv@20.28.1...20.29.0

Changelog

Sourced from virtualenv's changelog.

v20.29.1 (2025-01-17)

Bugfixes - 20.29.1

- Fix PyInfo cache incompatbility warnings - by :user:`robsdedude`. (:issue:`2827`)
v20.29.0 (2025-01-15)
Features - 20.29.0

• Add support for selecting free-threaded Python interpreters, e.g., python3.13t. (:issue:2809)

Bugfixes - 20.29.0

- Upgrade embedded wheels:

setuptools to 75.8.0 from 75.6.0 (:issue:2823)

Commits

• e07c0c3 release 20.29.1
• 61bee9f Add changelog for PyInfo fix
• fd0dc85 Change PyInfo cache versioning mechanism (#2827)
• 56ef466 Merge pull request #2826 from DK96-OS/cli-precedence-2285
• caf03a2 Merge pull request #2824 from pypa/release-20.29.0
• 0f6dc41 release 20.29.0
• ea5e5cb Upgrade embeded setuptools (#2823)
• b00d59c Add free-threaded Python support (#2809)
• bc7a91a Merge pull request #2821 from filiplajszczak/cli-precedence-2285
• 11995e7 Merge pull request #2819 from pypa/pre-commit-ci-update-config
• Additional commits viewable in compare view

Updates websockets from 14.1 to 14.2

Release notes

Sourced from websockets's releases.

14.2

See https://websockets.readthedocs.io/en/stable/project/changelog.html for details.

Commits

• 624a36c Release version 14.2.
• c8242bb Add changelog for #1566.
• 17e309a Mention another symptom in the changelog.
• 7de24bd Improve previous commit.
• 7e617b2 Add regex support in ServerProtocol(origins=...).
• 613f3f0 Prevent close() from blocking when reading is paused.
• e7a098e Prevent AssertionError in the recv_events thread.
• 031ec31 Prevent close() from blocking when reading is paused.
• 6317c00 Clarify behavior of recv(timeout=0) behavior.
• b1e88fc Bump pypa/cibuildwheel from 2.21.3 to 2.22.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions