Bump the dependabot group across 1 directory with 7 updates

[dependabot]

Bumps the dependabot group with 7 updates in the / directory:

Package	From	To
packaging	24.1	24.2
tomli	2.0.1	2.1.0
wheel	0.44.0	0.45.0
zipp	3.20.0	3.21.0
pip	24.2	24.3.1
setuptools	75.2.0	75.5.0
mypy	1.12.1	1.13.0

Updates packaging from 24.1 to 24.2

Release notes

Sourced from packaging's releases.

24.2

What's Changed

• The source is auto-formatted with ruff, not black by @​DimitriPapadopoulos in pypa/packaging#798
• Bump the github-actions group across 1 directory with 3 updates by @​dependabot in pypa/packaging#813
• Apply ruff rules (RUF) by @​DimitriPapadopoulos in pypa/packaging#800
• Fix typo in Version __str__ by @​aryanpingle in pypa/packaging#817
• Bump the github-actions group with 3 updates by @​dependabot in pypa/packaging#819
• Get rid of duplicate test cases by @​DimitriPapadopoulos in pypa/packaging#821
• Fix doc for canonicalize_version and a typo in a docstring by @​Laurent-Dx in pypa/packaging#801
• docs: public/base_version comparison by @​henryiii in pypa/packaging#818
• Apply ruff/bugbear rules (B) by @​DimitriPapadopoulos in pypa/packaging#787
• Apply ruff/pyupgrade rules (UP) by @​DimitriPapadopoulos in pypa/packaging#786
• Add a changelog entry for dropping Python 3.7 support by @​alexwlchan in pypa/packaging#824
• Patch python_full_version unconditionally by @​jaraco in pypa/packaging#825
• Refactor canonicalize_version by @​jaraco in pypa/packaging#793
• Allow creating a SpecifierSet from a list of specifiers by @​pfmoore in pypa/packaging#777
• Fix uninformative error message by @​abravalheri in pypa/packaging#830
• Fix prerelease detection for > and < by @​notatallshaw in pypa/packaging#794
• Bump the github-actions group across 1 directory with 4 updates by @​dependabot in pypa/packaging#839
• Add support for PEP 730 iOS tags. by @​freakboy3742 in pypa/packaging#832
• Update the changelog to reflect 24.1 changes by @​pradyunsg in pypa/packaging#840
• Mention updating changelog in release process by @​pradyunsg in pypa/packaging#841
• Add a comment as to why Metadata.name isn't normalized by @​brettcannon in pypa/packaging#842
• Use !r formatter for error messages with filenames. by @​Carreau in pypa/packaging#844
• PEP 639: Implement License-Expression and License-File by @​ewdurbin in pypa/packaging#828
• Bump the github-actions group with 4 updates by @​dependabot in pypa/packaging#852
• Upgrade to latest mypy by @​hauntsaninja in pypa/packaging#853
• Extraneous quotes by @​ewdurbin in pypa/packaging#848

New Contributors

• @​aryanpingle made their first contribution in pypa/packaging#817
• @​Laurent-Dx made their first contribution in pypa/packaging#801
• @​alexwlchan made their first contribution in pypa/packaging#824
• @​jaraco made their first contribution in pypa/packaging#825
• @​notatallshaw made their first contribution in pypa/packaging#794
• @​freakboy3742 made their first contribution in pypa/packaging#832
• @​Carreau made their first contribution in pypa/packaging#844
• @​ewdurbin made their first contribution in pypa/packaging#828

Full Changelog: pypa/packaging@24.1...24.2

Changelog

Sourced from packaging's changelog.

24.2 - 2024-11-08

* PEP 639: Implement License-Expression and License-File (:issue:`828`)
* Use ``!r`` formatter for error messages with filenames (:issue:`844`)
* Add support for PEP 730 iOS tags (:issue:`832`)
* Fix prerelease detection for ``>`` and ``<`` (:issue:`794`)
* Fix uninformative error message (:issue:`830`)
* Refactor ``canonicalize_version`` (:issue:`793`)
* Patch python_full_version unconditionally (:issue:`825`)
* Fix doc for ``canonicalize_version`` to mention ``strip_trailing_zero`` and a typo in a docstring (:issue:`801`)
* Fix typo in Version ``__str__`` (:issue:`817`)
* Support creating a ``SpecifierSet`` from an iterable of ``Specifier`` objects (:issue:`775`)

Commits

• d8e3b31 Bump for release
• 2de393d Update changelog for release
• 9c66f5c Remove extraneous quotes in f-strings by using !r (#848)
• 4dc334c Upgrade to latest mypy (#853)
• d1a9f93 Bump the github-actions group with 4 updates (#852)
• 029f415 PEP 639: Implement License-Expression and License-File (#828)
• 6c338a8 Use !r formatter for error messages with filenames. (#844)
• 28e7da7 Add a comment as to why Metadata.name isn't normalized (#842)
• ce0d79c Mention updating changelog in release process (#841)
• ac5bdf3 Update the changelog to reflect 24.1 changes (#840)
• Additional commits viewable in compare view

Updates tomli from 2.0.1 to 2.1.0

Changelog

Sourced from tomli's changelog.

2.1.0

• Deprecated
  • Instantiating TOMLDecodeError with free-form arguments. msg, doc and pos arguments should be given.
• Added
  • msg, doc, pos, lineno and colno attributes to TOMLDecodeError

2.0.2

• Removed
  • Python 3.7 support
• Improved
  • Make loads raise TypeError not AttributeError on bad input types that do not have the replace attribute. Improve error message when bytes is received.
• Type annotations
  • Type annotate load input as typing.IO[bytes] (previously typing.BinaryIO).

Commits

• d6e045b Bump version: 2.0.2 → 2.1.0
• d1d6a85 Add attributes to TOMLDecodeError. Deprecate free-form __init__ args (#238)
• 59ed9ef Add a comment about implicit lru_cache bound
• 9d25b3f Test against Python 3.13 final (#237)
• f57fb66 Add test coverage for text mode error (#231)
• 4be816b Convert tox config to native TOML
• e2f8d2d Merge pull request #233 from hukkin/version-2.0.2
• 3ec6775 Bump version: 2.0.1 → 2.0.2
• 1dcd317 Add v2.0.2 changelog
• c94ee69 Fix GitHub Actions badge
• Additional commits viewable in compare view

Updates wheel from 0.44.0 to 0.45.0

Release notes

Sourced from wheel's releases.

0.45.0

• Refactored the convert command to not need setuptools to be installed

• Don't configure setuptools logging unless running bdist_wheel

• Added a redirection from wheel.bdist_wheel.bdist_wheel to setuptools.command.bdist_wheel.bdist_wheel to improve compatibility with setuptools' latest fixes.

  Projects are still advised to migrate away from the deprecated module and import the setuptools' implementation explicitly. (PR by @​abravalheri)

Changelog

Sourced from wheel's changelog.

Release Notes

0.45.0 (2024-11-08)

• Refactored the convert command to not need setuptools to be installed

• Don't configure setuptools logging unless running bdist_wheel

• Added a redirection from wheel.bdist_wheel.bdist_wheel to setuptools.command.bdist_wheel.bdist_wheel to improve compatibility with setuptools' latest fixes.

  Projects are still advised to migrate away from the deprecated module and import the setuptools' implementation explicitly. (PR by @​abravalheri)

0.44.0 (2024-08-04)

• Canonicalized requirements in METADATA file (PR by Wim Jeantine-Glenn)
• Deprecated the bdist_wheel module, as the code was migrated to setuptools itself

0.43.0 (2024-03-11)

• Dropped support for Python 3.7
• Updated vendored packaging to 24.0

0.42.0 (2023-11-26)

• Allowed removing build tag with wheel tags --build ""
• Fixed wheel pack and wheel tags writing updated WHEEL fields after a blank line, causing other tools to ignore them
• Fixed wheel pack and wheel tags writing WHEEL with CRLF line endings or a mix of CRLF and LF
• Fixed wheel pack --build-number "" not removing build tag from WHEEL (above changes by Benjamin Gilbert)

0.41.3 (2023-10-30)

• Updated vendored packaging to 23.2
• Fixed ABI tag generation for CPython 3.13a1 on Windows (PR by Sam Gross)

0.41.2 (2023-08-22)

• Fixed platform tag detection for GraalPy and 32-bit python running on an aarch64 kernel (PR by Matthieu Darbois)
• Fixed wheel tags to not list directories in RECORD files (PR by Mike Taves)
• Fixed ABI tag generation for GraalPy (PR by Michael Simacek)

0.41.1 (2023-08-05)

... (truncated)

Commits

• d78f0e3 Created a new release
• f064c69 Added license files for vendored packaging
• 68387af Only configure setuptools logging if bdist_wheel is imported (#641)
• c81f5c9 Refactored the wheel convert command to not require setuptools (#640)
• e43464d Adjusted target Python versions in GitHub CI
• e9894e7 Tweaked pytest settings to make the tracebacks easier to read
• baf6bf8 Removed Cirrus CI configuration
• 28c1ba1 Improved compatibility with future versions of setuptools (#638)
• 9254a4f Exclude @overload and if TYPE_CHECKING: from coverage checks
• d841597 [pre-commit.ci] pre-commit autoupdate (#635)
• Additional commits viewable in compare view

Updates zipp from 3.20.0 to 3.21.0

Changelog

Sourced from zipp's changelog.

v3.21.0

Features

• Improve performances of :meth:zipfile.Path.open for non-reading modes. (1a1928d)
• Rely on cached_property to cache values on the instance.
• Rely on save_method_args to save method args.

v3.20.2

Bugfixes

• Make zipp.compat.overlay.zipfile hashable. (#126)

v3.20.1

Bugfixes

• python/cpython#123270

Commits

• 45b7f67 Finalize
• 71ddd8d Skip zipfile.Path.existspython/cpython#126576
• 9a2705e Merge https://github.com/jaraco/skeleton
• 5c34e69 Use extend for proper workaround.
• ee027f6 Merge https://github.com/jaraco/skeleton
• 750a189 Require Python 3.9 or later now that Python 3.8 is EOL.
• e61a9df Include pyproject.toml in ruff.toml.
• db4dfc4jaraco/skeleton#151
• 62b6678 Bump pre-commit hook for ruff to avoid clashes with pytest-ruff (jaraco/skele...
• 466f535 Merge pull request #109 from jaraco/feature/functools
• Additional commits viewable in compare view

Updates pip from 24.2 to 24.3.1

Changelog

Sourced from pip's changelog.

24.3.1 (2024-10-27)

Bug Fixes

• Allow multiple nested inclusions of the same requirements file again. ([#13046](https://github.com/pypa/pip/issues/13046) <https://github.com/pypa/pip/issues/13046>_)

24.3 (2024-10-27)

Deprecations and Removals

• Deprecate wheel filenames that are not compliant with :pep:440. ([#12918](https://github.com/pypa/pip/issues/12918) <https://github.com/pypa/pip/issues/12918>_)

Features

• Detect recursively referencing requirements files and help users identify the source. ([#12653](https://github.com/pypa/pip/issues/12653) <https://github.com/pypa/pip/issues/12653>_)
• Support for :pep:730 iOS wheels. ([#12961](https://github.com/pypa/pip/issues/12961) <https://github.com/pypa/pip/issues/12961>_)

Bug Fixes

• Display a better error message when an already installed package has an invalid requirement. ([#12953](https://github.com/pypa/pip/issues/12953) <https://github.com/pypa/pip/issues/12953>_)
• Ignore PIP_TARGET and pip.conf global.target when preparing a build environment. ([#8438](https://github.com/pypa/pip/issues/8438) <https://github.com/pypa/pip/issues/8438>_)
• Restore support for macOS 10.12 and older (via truststore). ([#12901](https://github.com/pypa/pip/issues/12901) <https://github.com/pypa/pip/issues/12901>_)
• Allow installing pip in editable mode in a virtual environment on Windows. ([#12666](https://github.com/pypa/pip/issues/12666) <https://github.com/pypa/pip/issues/12666>_)

Vendored Libraries

• Upgrade certifi to 2024.8.30
• Upgrade distlib to 0.3.9
• Upgrade truststore to 0.10.0
• Upgrade urllib3 to 1.26.20

Commits

• 05293b6 Bump for release
• 6a5db8b Merge pull request #13047 from sbidoul/fix-13046
• 7be54ce Don't fail when the same req file is included more than once
• 4f6aeb1 Merge pull request #13044 from sbidoul/release/24.3
• e1b1d51 Bump for development
• cdba22f Bump for release
• 27f8374 Update AUTHORS.txt
• c79d019 Merge pull request #13033 from sbidoul/vendoring-24.3-sbi
• 3ca8921 Merge pull request #13041 from sethmlarson/truststore-0.10.0
• 0cc7375 Upgrade vendored truststore to 0.10.0
• Additional commits viewable in compare view

Updates setuptools from 75.2.0 to 75.5.0

Changelog

Sourced from setuptools's changelog.

v75.5.0

Features

• Removed support for SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION, as it is deemed prone to errors. (#4746)

v75.4.0

Features

• Added support for the environment variable SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION=true, allowing users to bypass the validation of pyproject.toml. This option should be used only as a last resort when resolving dependency issues, as it may lead to improper functioning. Users who enable this setting are responsible for ensuring that pyproject.toml complies with setuptools requirements. (#4611)

  .. attention:: This environment variable was removed in a later version of setuptools.

• Require Python 3.9 or later. (#4718)

• Remove dependency on importlib_resources and the vendored copy of the library. Instead, setuptools consistently rely on stdlib's importlib.resources (available on Python 3.9+). (#4718)

• Setuptools' bdist_wheel implementation no longer produces wheels with the m SOABI flag (pymalloc-related). This flag was removed on Python 3.8+ (see :obj:sys.abiflags). (#4718)

• Updated vendored packaging version to 24.2. (#4740)

Bugfixes

• Merge with pypa/distutils@251797602, including fix for dirutil.mkpath handling in pypa/distutils#304.

v75.3.0

Features

... (truncated)

Commits

• 5400015 Bump version: 75.4.0 → 75.5.0
• 01b9f20 Add note about removed variable in NEWS.rst
• 57ed6f0 Revert "Allow user to skip validation of pyproject.toml via env var" (#4746)
• 36e945e Add news fragment
• f6c9fdb Revert "Allow user to skip validation of pyproject.toml via env var"
• 8f5559c Bump version: 75.3.0 → 75.4.0
• 6cc5f08 Update mypy requirement from ==1.12.* to >=1.12,<1.14 (#4700)
• 748c851 Update mypy requirement from ==1.12.* to >=1.12,<1.14
• c9d980f Refactor/unify/extract shutil.rmtree callbacks (and avoid repetition) (#4682)
• db2b206 Extract test for shutil.rmtree callback to its own file
• Additional commits viewable in compare view

Updates mypy from 1.12.1 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Change to enum membership semantics

As per the updated typing specification for enums, enum members must be left unannotated.

class Pet(Enum):
    CAT = 1  # Member attribute
    DOG = 2  # Member attribute
    WOLF: int = 3  # New error: Enum members must be left unannotated
species: str  # Considered a non-member attribute

In particular, the specification change can result in issues in type stubs (.pyi files), since historically it was common to leave the value absent:

# In a type stub (.pyi file)
class Pet(Enum):
# Change in semantics: previously considered members, now non-member attributes
CAT: int
DOG: int
# Mypy will now issue a warning if it detects this situation in type stubs:
# > Detected enum "Pet" in a type stub with zero members.
# > There is a chance this is due to a recent change in the semantics of enum membership.
# > If so, use `member = value` to mark an enum member, instead of `member: type`

class Pet(Enum):
# As per the specification, you should now do one of the following:
DOG = 1  # Member attribute with value 1 and known type
WOLF = cast(int, ...)  # Member attribute with unknown value but known type
LION = ...  # Member attribute with unknown value and unknown type

Contributed by Terence Honles in PR 17207 and Shantanu Jain in PR 18068.

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:

python3 -m pip install -U mypy

... (truncated)

Commits

• eb31034 Bump version to 1.13.0
• 2eeb588 Update changelog for 1.12.1 (#17999)
• bc0386b Changelog for 1.13 (#18000)
• 5c4d2db Add faster-cache extra, test in CI (#17978)
• 854ad18 Make is_sub_path faster (#17962)
• 50aa4ca Speed up stubs suggestions (#17965)
• 7c27808 Use orjson instead of json, when available (#17955)
• 2cd2406 Use fast path in modulefinder more often (#17950)
• e20aaee Let mypyc optimise os.path.join (#17949)
• 159974c Use sha1 for hashing (#17953)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 11895007289

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 86.706%

---

Totals
Change from base Build 11894925173:	0.0%
Covered Lines:	2374
Relevant Lines:	2738

---

💛 - Coveralls