build(deps): bump the all group across 2 directories with 5 updates

[dependabot]

Bumps the all group with 3 updates in the /bookmarkmgr directory: aiohttp, mypy and jinxed.
Bumps the all group with 2 updates in the /ytm directory: yt-dlp and ytmusicapi.

Updates aiohttp from 3.9.5 to 3.10.0

Release notes

Sourced from aiohttp's releases.

3.10.0

Bug fixes

• Fixed server response headers for Content-Type and Content-Encoding for static compressed files -- by :user:steverep.

  Server will now respond with a Content-Type appropriate for the compressed file (e.g. "application/gzip"), and omit the Content-Encoding header. Users should expect that most clients will no longer decompress such responses by default.

  Related issues and pull requests on GitHub: #4462.

• Fixed duplicate cookie expiration calls in the CookieJar implementation

  Related issues and pull requests on GitHub: #7784.

• Adjusted FileResponse to check file existence and access when preparing the response -- by :user:steverep.

  The :py:class:~aiohttp.web.FileResponse class was modified to respond with 403 Forbidden or 404 Not Found as appropriate. Previously, it would cause a server error if the path did not exist or could not be accessed. Checks for existence, non-regular files, and permissions were expected to be done in the route handler. For static routes, this now permits a compressed file to exist without its uncompressed variant and still be served. In addition, this changes the response status for files without read permission to 403, and for non-regular files from 404 to 403 for consistency.

  Related issues and pull requests on GitHub: #8182.

• Fixed AsyncResolver to match ThreadedResolver behavior -- by :user:bdraco.

  On system with IPv6 support, the :py:class:~aiohttp.resolver.AsyncResolver would not fallback to providing A records when AAAA records were not available. Additionally, unlike the :py:class:~aiohttp.resolver.ThreadedResolver, the :py:class:~aiohttp.resolver.AsyncResolver did not handle link-local addresses correctly.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.10.0 (2024-07-30)

Bug fixes

• Fixed server response headers for Content-Type and Content-Encoding for static compressed files -- by :user:steverep.

  Server will now respond with a Content-Type appropriate for the compressed file (e.g. "application/gzip"), and omit the Content-Encoding header. Users should expect that most clients will no longer decompress such responses by default.

  Related issues and pull requests on GitHub: :issue:4462.

• Fixed duplicate cookie expiration calls in the CookieJar implementation

  Related issues and pull requests on GitHub: :issue:7784.

• Adjusted FileResponse to check file existence and access when preparing the response -- by :user:steverep.

  The :py:class:~aiohttp.web.FileResponse class was modified to respond with 403 Forbidden or 404 Not Found as appropriate. Previously, it would cause a server error if the path did not exist or could not be accessed. Checks for existence, non-regular files, and permissions were expected to be done in the route handler. For static routes, this now permits a compressed file to exist without its uncompressed variant and still be served. In addition, this changes the response status for files without read permission to 403, and for non-regular files from 404 to 403 for consistency.

  Related issues and pull requests on GitHub: :issue:8182.

• Fixed AsyncResolver to match ThreadedResolver behavior -- by :user:bdraco.

  On system with IPv6 support, the :py:class:~aiohttp.resolver.AsyncResolver would not fallback to providing A records when AAAA records were not available.

... (truncated)

Commits

• 7f29851 Release 3.10.0 (attempt 2) (#8552)
• fc201e8 Release 3.10.0 (#8550)
• 305f67a Release 3.10.0rc0 (#8545)
• ed8de3a [PR #8541/a561fa99 backport][3.10] Cleanup for #8495 (#8544)
• df57b9f [3.10] Handle 403 and 404 issues in FileResponse class (#8538) (#8539)
• 3baa6de [PR #8535/7108d646 backport][3.10] Small speed up to cookiejar filter_cookies...
• 5621ecf Bump pytest from 8.3.1 to 8.3.2 (#8536)
• 9b9cec2 Release 3.10.0b1 (#8533)
• 088f734 [3.10] Downgrade upload/download artifact to v3 to fix CI (#8532)
• 948a4c5 Release 3.10.0b0 (#8531)
• Additional commits viewable in compare view

Updates mypy from 1.10.1 to 1.11.1

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.11

We’ve just uploaded mypy 1.11 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support Python 3.12 Syntax for Generics (PEP 695)

Mypy now supports the new type parameter syntax introduced in Python 3.12 (PEP 695). This feature is still experimental and must be enabled with the --enable-incomplete-feature=NewGenericSyntax flag, or with enable_incomplete_feature = NewGenericSyntax in the mypy configuration file. We plan to enable this by default in the next mypy feature release.

This example demonstrates the new syntax:

# Generic function
def f[T](https://github.com/python/mypy/blob/master/x: T) -> T: ...
reveal_type(f(1))  # Revealed type is 'int'
Generic class
class C[T]:
def init(self, x: T) -> None:
self.x = x
c = C('a')
reveal_type(c.x)  # Revealed type is 'str'
Type alias
type A[T] = C[list[T]]

This feature was contributed by Jukka Lehtosalo.

Support for functools.partial

Mypy now type checks uses of functools.partial. Previously mypy would accept arbitrary arguments.

This example will now produce an error:

from functools import partial
</tr></table> 

... (truncated)

Commits

• 570b90a Bump version to 1.11
• b3a102e Fix RawExpressionType.accept crash with --cache-fine-grained (#17588)
• aec04c7 Fix PEP 604 isinstance caching (#17563)
• cb44e4d Fix typing.TypeAliasType being undefined on python < 3.12 (#17558)
• 6cf9180 Fix types.GenericAlias lookup crash (#17543)
• 64c1ebf Bump version to 1.11.1+dev
• dbd5f5c Remove +dev from version for 1.11 release
• f0a8c69 Update CHANGELOG for mypy 1.11 (#17540)
• 371f780 CHANGELOG.md update for 1.11 (#17539)
• 2563da0 Fix daemon crash on invalid type in TypedDict (#17495)
• Additional commits viewable in compare view

Updates jinxed from 1.2.1 to 1.3.0

Release notes

Sourced from jinxed's releases.

1.3.0

• jinxed.win32.get_term() now checks if ENABLE_VIRTUAL_TERMINAL_INPUT is set for the console and doesn't set it if already enabled
  • Previously it was set without checking
  • Previous versions of Windows did not enable this feature by default, but newer versions do

Commits

• 33bffce Bump version to 1.3.0
• ce5d027 Only set VT mode when not already set
• d044bdf Update copyright check
• fad7d1b Minor fixes for flake8
• 2b1ab79 Update options for codecov-action
• 8c112f1 GH Actions workaround for Python 3.5
• 1a2c308 Minor updates to tested Python versions
• See full diff in compare view

Updates yt-dlp from 2024.7.7 to 2024.7.25

Release notes

Sourced from yt-dlp's releases.

yt-dlp 2024.07.25

A description of the various files are in the README

---

Extractor changes

• abematv: Adapt key retrieval to request handler framework (#10491) by bashonly
• facebook: Fix extraction (#10531) by bashonly
• mlbtv: Fix extractor (#10515) by bashonly
• tiktok: Fix and deprioritize JSON subtitles (#10516) by bashonly
• vimeo: Fix chapters extraction (#10544) by bashonly
• youtube: Fix n function name extraction for player 3400486c (#10542) by bashonly

Misc. changes

• build: Pin setuptools version (#10493) by bashonly

yt-dlp 2024.07.16

A description of the various files are in the README

---

Core changes

• Fix noprogress if test=True with --quiet and --verbose (#10454) by Grub4K
• Support auto-tty and no_color-tty for --color (#10453) by Grub4K
• update: Fix network error handling (#10486) by bashonly
• utils: parse_codecs: Fix parsing of mixed case codec strings by bashonly

Extractor changes

• adn: Adjust for .com domain change (#10399) by infanf
• afreecatv: Fix login and use legacy_ssl (#10440) by bashonly
• box: Support enterprise URLs (#10419) by seproDev
• digitalconcerthall: Extract HEVC and FLAC formats (#10470) by bashonly
• dplay: Fix extractors (#10471) by bashonly
• epidemicsound: Support sound effects URLs (#10436) by iancmy
• generic: Fix direct video link extensions (#10468) by bashonly
• picarto: Fix extractors (#10414) by Frankgoji
• soundcloud: permalink, user: Extract tracks only (#10463) by DunnesH
• tiktok: live: Fix room ID extraction (#10408) by mokrueger
• tv5monde: Support browser impersonation (#10417) by bashonly (With fixes in cc1a309)
• youtube

... (truncated)

Changelog

Sourced from yt-dlp's changelog.

Changelog

2024.07.25

Extractor changes

• abematv: Adapt key retrieval to request handler framework (#10491) by bashonly
• facebook: Fix extraction (#10531) by bashonly
• mlbtv: Fix extractor (#10515) by bashonly
• tiktok: Fix and deprioritize JSON subtitles (#10516) by bashonly
• vimeo: Fix chapters extraction (#10544) by bashonly
• youtube: Fix n function name extraction for player 3400486c (#10542) by bashonly

Misc. changes

• build: Pin setuptools version (#10493) by bashonly

2024.07.16

Core changes

• Fix noprogress if test=True with --quiet and --verbose (#10454) by Grub4K
• Support auto-tty and no_color-tty for --color (#10453) by Grub4K
• update: Fix network error handling (#10486) by bashonly
• utils: parse_codecs: Fix parsing of mixed case codec strings by bashonly

Extractor changes

• adn: Adjust for .com domain change (#10399) by infanf
• afreecatv: Fix login and use legacy_ssl (#10440) by bashonly
• box: Support enterprise URLs (#10419) by seproDev
• digitalconcerthall: Extract HEVC and FLAC formats (#10470) by bashonly
• dplay: Fix extractors (#10471) by bashonly
• epidemicsound: Support sound effects URLs (#10436) by iancmy
• generic: Fix direct video link extensions (#10468) by bashonly
• picarto: Fix extractors (#10414) by Frankgoji
• soundcloud: permalink, user: Extract tracks only (#10463) by DunnesH
• tiktok: live: Fix room ID extraction (#10408) by mokrueger
• tv5monde: Support browser impersonation (#10417) by bashonly (With fixes in cc1a309)
• youtube
  • Avoid poToken experiment player responses (#10456) by seproDev (With fixes in 16da8ef)
  • Invalidate nsig cache from < 2024.07.09 (#10401) by bashonly
  • Reduce android client priority (#10467) by seproDev

Networking changes

• Add legacy_ssl request extension (#10448) by coletdjnz
• Request Handler: curl_cffi: Support curl_cffi 0.7.X by coletdjnz

Misc. changes

• build

... (truncated)

Commits

• 6b1e430 Release 2024.07.25
• f099339 [ie/mlbtv] Fix extractor (#10515)
• 1a34a80 [ie/facebook] Fix extraction (#10531)
• a0a1bc3 [ie/vimeo] Fix chapters extraction (#10544)
• 2f97779 [ie/tiktok] Fix and deprioritize JSON subtitles (#10516)
• 713b4cd [ie/youtube] Fix n function name extraction for player 3400486c (#10542)
• a3bab47 [ie/abematv] Adapt key retrieval to request handler framework (#10491)
• e046db8 [build] Pin setuptools version (#10493)
• 37c2335 Release 2024.07.16
• 89a161e [cleanup] Misc (#10487)
• Additional commits viewable in compare view

Updates ytmusicapi from 1.7.3 to 1.8.0

Release notes

Sourced from ytmusicapi's releases.

v1.8.0

⚡ Breaking Changes

• dropped support for Python 3.8 as announced 3 months ago: Python 3.8 support will be dropped in v1.8.0 sigma67/ytmusicapi#593

✨ Features

• introduce exception classes by @​sigma67 in sigma67/ytmusicapi#620
• get_user_videos to get full list of user videos based on result of get_user by @​sigma67 in sigma67/ytmusicapi#632

🐞 Fixes

• get_playlist: fix title for podcast episodes (#622) by @​czifumasa in sigma67/ytmusicapi#623, fix artists for unnoficial videos (#627) by @​czifumasa in sigma67/ytmusicapi#630
• get_playlist: re-add thumbnails by @​sigma67 in sigma67/ytmusicapi#626
• get_podcast: fix edge case when first subtitle is missing
• *library uploads: fix broken index after downloads rollout

Misc

• coverage: remove code for old playlist format by @​sigma67 in sigma67/ytmusicapi#619
• chore: Update pdm.lock by @​github-actions in sigma67/ytmusicapi#614

Full Changelog: sigma67/ytmusicapi@1.7.5...1.8.0

v1.7.5

What's Changed

• podcasts: fixed a crash by returning blank album author ID when it doesn't exist. by @​corrmaan in sigma67/ytmusicapi#615
• get_album: fix invalid track list artists (#617) by @​czifumasa in sigma67/ytmusicapi#618
• get_playlist: fix korean language by extracting song count from text using regex by @​JohnHKoh in sigma67/ytmusicapi#609

Full Changelog: sigma67/ytmusicapi@1.7.4...1.7.5

v1.7.4

What's Changed

• fixed get_album other_versions
• fixed get_episodes_playlist
• edit_playlist: Allow moving title to bottom of playlist by @​AltoRetrato in sigma67/ytmusicapi#602
• get_playlist: title, artists and album are correctly resolved in collaborative playlists (#603) by @​czifumasa in sigma67/ytmusicapi#612
• fix sum_total_duration failing if duration_seconds is not an int by @​adwait-thattey in sigma67/ytmusicapi#598

New Contributors

• @​AltoRetrato made their first contribution in sigma67/ytmusicapi#602
• @​adwait-thattey made their first contribution in sigma67/ytmusicapi#598

Full Changelog: sigma67/ytmusicapi@1.7.3...1.7.4

Commits

• a15d90c add get_user_videos (#632)
• 858995e fix search filters test
• 0f00260 fix search queries test
• 6e0fd5e get_podcast: fix edge case when first subtitle is missing
• 8d6dd11 fix test broken by added podcasts on oasis page
• a606b70 library uploads: fix broken index after downloads rollout
• 895ebb0 tests for tracks in collaborative playlists
• 40ff2b4 get_playlist: fix artists for unnoficial videos (#627)
• 14417db chore: Update pdm.lock (#614)
• 2a0a45a re-add thumbnails to get_playlist (#626)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[lubo]

Closing in favor of #35 and #36.

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml