chore(deps): bump the pipenv group in /services/datalad with 4 updates

[dependabot]

Bumps the pipenv group in /services/datalad with 4 updates: boto3, uvicorn, sentry-sdk and pytest.

Updates boto3 from 1.35.10 to 1.35.30

Commits

• 243c39d Merge branch 'release-1.35.30'
• bcd964e Bumping version to 1.35.30
• 307d390 Add changelog entries from botocore
• 2883025 Merge pull request #4285 from boto/dependabot/github_actions/actions/checkout...
• 2a57a5d Bump actions/checkout from 4.1.0 to 4.2.0
• f1cff14 Merge branch 'release-1.35.29'
• 2879c42 Merge branch 'release-1.35.29' into develop
• b84190a Bumping version to 1.35.29
• 03ce91f Add changelog entries from botocore
• 8307fac Merge branch 'release-1.35.28'
• Additional commits viewable in compare view

Updates uvicorn from 0.30.6 to 0.31.0

Release notes

Sourced from uvicorn's releases.

Version 0.31.0

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow specifying IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/Kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

---

Full Changelog: encode/uvicorn@0.30.6...0.31.0

Changelog

Sourced from uvicorn's changelog.

0.31.0 (2024-09-27)

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow to specify IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

Commits

• a507532 Version 0.31.0 (#2469)
• 84dd2c4 Improve ProxyHeadersMiddleware (#2468)
• 3d26ab4 Bump cryptography from 42.0.8 to 43.0.1 (#2453)
• 47304d9 Add tests and requirements.txt to sdist (#2438)
• 1cb0c32 Add missing init files in the test suite (#2432)
• See full diff in compare view

Updates sentry-sdk from 2.13.0 to 2.14.0

Release notes

Sourced from sentry-sdk's releases.

2.14.0

Various fixes & improvements

• New SysExitIntegration (#3401) by @​szokeasaurusrex

  For more information, see the documentation for the SysExitIntegration.

• Add SENTRY_SPOTLIGHT env variable support (#3443) by @​BYK

• Support Strawberry 0.239.2 (#3491) by @​szokeasaurusrex

• Add separate pii_denylist to EventScrubber and run it always (#3463) by @​sl0thentr0py

• Celery: Add wrapper for Celery().send_task to support behavior as Task.apply_async (#2377) by @​divaltor

• Django: SentryWrappingMiddleware.init fails if super() is object (#2466) by @​cameron-simpson

• Fix data_category for sessions envelope items (#3473) by @​sl0thentr0py

• Fix non-UTC timestamps (#3461) by @​szokeasaurusrex

• Remove obsolete object as superclass (#3480) by @​sentrivana

• Replace custom TYPE_CHECKING with stdlib typing.TYPE_CHECKING (#3447) by @​dev-satoshi

• Refactor tracing_utils.py (#3452) by @​rominf

• Explicitly export symbol in subpackages instead of ignoring (#3400) by @​hartungstenio

• Better test coverage reports (#3498) by @​antonpirker

• Fixed config for old coverage versions (#3504) by @​antonpirker

• Fix AWS Lambda tests (#3495) by @​antonpirker

• Remove broken Bottle tests (#3505) by @​sentrivana

Changelog

Sourced from sentry-sdk's changelog.

2.14.0

Various fixes & improvements

• New SysExitIntegration (#3401) by @​szokeasaurusrex

  For more information, see the documentation for the SysExitIntegration.

• Add SENTRY_SPOTLIGHT env variable support (#3443) by @​BYK

• Support Strawberry 0.239.2 (#3491) by @​szokeasaurusrex

• Add separate pii_denylist to EventScrubber and run it always (#3463) by @​sl0thentr0py

• Celery: Add wrapper for Celery().send_task to support behavior as Task.apply_async (#2377) by @​divaltor

• Django: SentryWrappingMiddleware.init fails if super() is object (#2466) by @​cameron-simpson

• Fix data_category for sessions envelope items (#3473) by @​sl0thentr0py

• Fix non-UTC timestamps (#3461) by @​szokeasaurusrex

• Remove obsolete object as superclass (#3480) by @​sentrivana

• Replace custom TYPE_CHECKING with stdlib typing.TYPE_CHECKING (#3447) by @​dev-satoshi

• Refactor tracing_utils.py (#3452) by @​rominf

• Explicitly export symbol in subpackages instead of ignoring (#3400) by @​hartungstenio

• Better test coverage reports (#3498) by @​antonpirker

• Fixed config for old coverage versions (#3504) by @​antonpirker

• Fix AWS Lambda tests (#3495) by @​antonpirker

• Remove broken Bottle tests (#3505) by @​sentrivana

Commits

• 1e73ce9 Updated changelog
• 3d0edfd release: 2.14.0
• 6814df9 tests: Remove broken bottle tests (#3505)
• 0934e04 Fixed config for old coverage versions (#3504)
• 9fc3bd2 Fix AWS Lambda tests (#3495)
• e99873d Better test coverage reports (#3498)
• 0fb9606 feat(celery): Add wrapper for Celery().send_task to support behavior as `Ta...
• 16d05f4 fix(django): SentryWrappingMiddleware.init fails if super() is object
• 9df2b21 feat(strawberry): Support Strawberry 0.239.2 (#3491)
• cd15bff ref: Remove obsolete object as superclass (#3480)
• Additional commits viewable in compare view

Updates pytest from 8.3.2 to 8.3.3

Release notes

Sourced from pytest's releases.

8.3.3

pytest 8.3.3 (2024-09-09)

Bug fixes

• #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by asottile{.interpreted-text role="user"}

• #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1.

• #12667: Fixed a regression where type change in [ExceptionInfo.errisinstance]{.title-ref} caused [mypy]{.title-ref} to fail.

• #12744: Fixed typing compatibility with Python 3.9 or less -- replaced [typing.Self]{.title-ref} with [typing_extensions.Self]{.title-ref} -- by Avasam{.interpreted-text role="user"}

• #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments.

• #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg).

• #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option.

  -- by GTowers1{.interpreted-text role="user"}

Improved documentation

• #12663: Clarify that the [pytest_deselected]{.title-ref} hook should be called from [pytest_collection_modifyitems]{.title-ref} hook implementations when items are deselected.
• #12678: Remove erroneous quotes from [tmp_path_retention_policy]{.title-ref} example in docs.

Miscellaneous internal changes

• #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks.

Commits

• d0f136f build(deps): Bump pypa/gh-action-pypi-publish from 1.10.0 to 1.10.1 (#12790)
• 972f307 Prepare release version 8.3.3
• 0dabdcf Include co-authors in release announcement (#12795) (#12797)
• a9910a4 Do not discover properties when iterating fixtures (#12781) (#12788)
• 0f10b6b Fix issue with slashes being turned into backslashes on Windows (#12760) (#12...
• 300d13d Merge pull request #12785 from pytest-dev/patchback/backports/8.3.x/57cccf7f4...
• e5d32c7 Merge pull request #12784 from svenevs/fix/docs-example-parametrize-minor-typo
• bc913d1 Streamline checks for verbose option (#12706) (#12778)
• 01cfcc9 Fix typos and introduce codespell pre-commit hook (#12769) (#12774)
• 4873394 doc: Remove past training (#12772) (#12773)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 44.03%. Comparing base (e6c532f) to head (f056ffe).
Report is 2 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #3166   +/-   ##
=======================================
  Coverage   44.03%   44.03%           
=======================================
  Files         593      593           
  Lines       37807    37807           
  Branches     1125     1125           
=======================================
  Hits        16647    16647           
  Misses      20958    20958           
  Partials      202      202           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.