chore(deps-dev): bump the pip-version-updates group across 1 directory with 6 updates

[dependabot]

Bumps the pip-version-updates group with 6 updates in the / directory:

Package	From	To
coverage	7.5.4	7.6.0
pytest	8.2.2	8.3.1
ruff	0.5.1	0.5.4
cryptography	42.0.8	43.0.0
exceptiongroup	1.2.1	1.2.2
setuptools	70.2.0	71.1.0

Updates coverage from 7.5.4 to 7.6.0

Changelog

Sourced from coverage's changelog.

Version 7.6.0 — 2024-07-11

• Exclusion patterns can now be multi-line, thanks to Daniel Diniz <pull 1807_>. This enables many interesting exclusion use-cases, including those requested in issues 118 <issue 118_> (entire files), 996 <issue 996_>_ (multiple lines only when appearing together), 1741 <issue 1741_>_ (remainder of a function), and 1803 <issue 1803_>_ (arbitrary sequence of marked lines). See the :ref:multi_line_exclude section of the docs for more details and examples.

• The JSON report now includes per-function and per-class coverage information. Thanks to Daniel Diniz <pull 1809_>_ for getting the work started. This closes issue 1793_ and issue 1532_.

• Fixed an incorrect calculation of "(no class)" lines in the HTML classes report.

• Python 3.13.0b3 is supported.

.. _issue 118: nedbat/coveragepy#118 .. _issue 996: nedbat/coveragepy#996 .. _issue 1532: nedbat/coveragepy#1532 .. _issue 1741: nedbat/coveragepy#1741 .. _issue 1793: nedbat/coveragepy#1793 .. _issue 1803: nedbat/coveragepy#1803 .. _pull 1807: nedbat/coveragepy#1807 .. _pull 1809: nedbat/coveragepy#1809

.. _changes_7-5-4:

Commits

• 59a3cd7 docs: sample HTML for 7.6.0
• 7f27fa7 docs: prep for 7.6.0
• 6a268b0 docs: issues closed by the json region reporting
• 5bfe9e7 chore: bump actions/setup-python from 5.1.0 to 5.1.1 (#1814)
• ab609ef docs: mention json region reporting in the changes
• 92d96b9 fix: json report needs 'no class' and 'no function' also
• e47e7e7 refactor: move duplicate code into methods
• 3d6be2b fix: json format should bump for regions
• a9992d2 test: add a test of json regions with branches
• 8b89764 test: json expectations should have explicit format number
• Additional commits viewable in compare view

Updates pytest from 8.2.2 to 8.3.1

Release notes

Sourced from pytest's releases.

8.3.1

pytest 8.3.1 (2024-07-20)

The 8.3.0 release failed to include the change notes and docs for the release. This patch release remedies this. There are no other changes.

8.3.0

pytest 8.3.0 (2024-07-20)

New features

• #12231: Added [--xfail-tb]{.title-ref} flag, which turns on traceback output for XFAIL results.

  • If the [--xfail-tb]{.title-ref} flag is not given, tracebacks for XFAIL results are NOT shown.
  • The style of traceback for XFAIL is set with [--tb]{.title-ref}, and can be [auto|long|short|line|native|no]{.title-ref}.
  • Note: Even if you have [--xfail-tb]{.title-ref} set, you won't see them if [--tb=no]{.title-ref}.

  Some history:

  With pytest 8.0, [-rx]{.title-ref} or [-ra]{.title-ref} would not only turn on summary reports for xfail, but also report the tracebacks for xfail results. This caused issues with some projects that utilize xfail, but don't want to see all of the xfail tracebacks.

  This change detaches xfail tracebacks from [-rx]{.title-ref}, and now we turn on xfail tracebacks with [--xfail-tb]{.title-ref}. With this, the default [-rx]{.title-ref}/ [-ra]{.title-ref} behavior is identical to pre-8.0 with respect to xfail tracebacks. While this is a behavior change, it brings default behavior back to pre-8.0.0 behavior, which ultimately was considered the better course of action.

• #12281: Added support for keyword matching in marker expressions.

  Now tests can be selected by marker keyword arguments. Supported values are int{.interpreted-text role="class"}, (unescaped) str{.interpreted-text role="class"}, bool{.interpreted-text role="class"} & None{.interpreted-text role="data"}.

  See marker examples <marker_keyword_expression_example>{.interpreted-text role="ref"} for more information.

  -- by lovetheguitar{.interpreted-text role="user"}

• #12567: Added --no-fold-skipped command line option.

  If this option is set, then skipped tests in short summary are no longer grouped by reason but all tests are printed individually with their nodeid in the same way as other statuses.

  -- by pbrezina{.interpreted-text role="user"}

Improvements in existing functionality

• #12469: The console output now uses the "third-party plugins" terminology, replacing the previously established but confusing and outdated reference to setuptools <setuptools:index>{.interpreted-text role="std:doc"} -- by webknjaz{.interpreted-text role="user"}.

• #12544, #12545: Python virtual environment detection was improved by checking for a pyvenv.cfg{.interpreted-text role="file"} file, ensuring reliable detection on various platforms -- by zachsnickers{.interpreted-text role="user"}.

... (truncated)

Commits

• de98446 Prepare release version 8.3.1
• bd0a042 Merge pull request #12636 from pytest-dev/update-release-notes
• 664325b doc/changelog: update 8.3.0 notes
• 19d225d Merge pull request #12635 from pytest-dev/release-8.3.0
• bc33028 Prepare release version 8.3.0
• a7d5a8e Merge pull request #12557 from x612skm/maintainence/11771-pypy-3.9-bump
• ced7072 Add a change note for PR #11771
• d42b76d Adjust test_errors_in_xfail_skip_expressions for PyPy
• 9eee45a Bump PyPy runtime to v3.9 @ GHA
• d489247 Fix caching of parameterized fixtures (#12600)
• Additional commits viewable in compare view

Updates ruff from 0.5.1 to 0.5.4

Release notes

Sourced from ruff's releases.

0.5.4

Release Notes

Rule changes

• [ruff] Rename RUF007 to zip-instead-of-pairwise (#12399)

Bug fixes

• [flake8-builtins] Avoid shadowing diagnostics for @override methods (#12415)
• [flake8-comprehensions] Insert parentheses for multi-argument generators (#12422)
• [pydocstyle] Handle escaped docstrings within docstring (D301) (#12192)

Documentation

• Fix GitHub link to Neovim setup (#12410)
• Fix output-format default in settings reference (#12409)

Install ruff 0.5.4

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.5.4/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -c "irm https://github.com/astral-sh/ruff/releases/download/0.5.4/ruff-installer.ps1 | iex"

Download ruff 0.5.4

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
ruff-i686-pc-windows-msvc.zip	x86 Windows	checksum
ruff-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
ruff-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
ruff-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
ruff-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
ruff-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
ruff-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum
ruff-x86_64-unknown-linux-gnu.tar.gz	x64 Linux	checksum
ruff-armv7-unknown-linux-gnueabihf.tar.gz	ARMv7 Linux	checksum
ruff-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
ruff-i686-unknown-linux-musl.tar.gz	x86 MUSL Linux	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.5.4

Rule changes

• [ruff] Rename RUF007 to zip-instead-of-pairwise (#12399)

Bug fixes

• [flake8-builtins] Avoid shadowing diagnostics for @override methods (#12415)
• [flake8-comprehensions] Insert parentheses for multi-argument generators (#12422)
• [pydocstyle] Handle escaped docstrings within docstring (D301) (#12192)

Documentation

• Fix GitHub link to Neovim setup (#12410)
• Fix output-format default in settings reference (#12409)

0.5.3

Ruff 0.5.3 marks the stable release of the Ruff language server and introduces revamped documentation, including setup guides for your editor of choice and the language server itself.

Preview features

• Formatter: Insert empty line between suite and alternative branch after function/class definition (#12294)
• [pyupgrade] Implement unnecessary-default-type-args (UP043) (#12371)

Rule changes

• [flake8-bugbear] Detect enumerate iterations in loop-iterator-mutation (B909) (#12366)
• [flake8-bugbear] Remove discard, remove, and pop allowance for loop-iterator-mutation (B909) (#12365)
• [pylint] Allow repeated-equality-comparison for mixed operations (PLR1714) (#12369)
• [pylint] Ignore self and cls when counting arguments (PLR0913) (#12367)
• [pylint] Use UTF-8 as default encoding in unspecified-encoding fix (PLW1514) (#12370)

Server

• Build settings index in parallel for the native server (#12299)
• Use fallback settings when indexing the project (#12362)
• Consider --preview flag for server subcommand for the linter and formatter (#12208)

Bug fixes

• [flake8-comprehensions] Allow additional arguments for sum and max comprehensions (C419) (#12364)
• [pylint] Avoid dropping extra boolean operations in repeated-equality-comparison (PLR1714) (#12368)
• [pylint] Consider expression before statement when determining binding kind (PLR1704) (#12346)

Documentation

... (truncated)

Commits

• 53b84ab Cleanup redundant spaces from changelog (#12424)
• 3664f85 Bump version to v0.5.4 (#12423)
• 2c1926b Insert parentheses for multi-argument generators (#12422)
• 4bcc96a Avoid shadowing diagnostics for @override methods (#12415)
• c0a2b49 Fix the Github link error for Neovim in the setup for editors in the docs. (#...
• ca22248 Update docs Settings output-format default (#12409)
• d8cf8ac [red-knot] Resolve symbols from builtins.pyi in the stdlib if they cannot b...
• 1c7b840 [red-knot] fix incremental benchmark (#12400)
• f82bb67 [red-knot] trace file when inferring types (#12401)
• 5f96f69 [red-knot] Fix bug where module resolution would not be invalidated if an ent...
• Additional commits viewable in compare view

Updates cryptography from 42.0.8 to 43.0.0

Changelog

Sourced from cryptography's changelog.

43.0.0 - 2024-07-20

* **BACKWARDS INCOMPATIBLE:** Support for OpenSSL less than 1.1.1e has been
  removed.  Users on older version of OpenSSL will need to upgrade.
* **BACKWARDS INCOMPATIBLE:** Dropped support for LibreSSL < 3.8.
* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1.
* Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0.
* :func:`~cryptography.hazmat.primitives.asymmetric.rsa.generate_private_key`
  now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still
  considered insecure, users should generally use a key size of 2048-bits.
* :func:`~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificates`
  now emits ASN.1 that more closely follows the recommendations in :rfc:`2315`.
* Added new :doc:`/hazmat/decrepit/index` module which contains outdated and
  insecure cryptographic primitives.
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.CAST5`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.SEED`,
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.IDEA`, and
  :class:`~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish`, which were
  deprecated in 37.0.0, have been added to this module. They will be removed
  from the ``cipher`` module in 45.0.0.
* Moved :class:`~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES`
  and :class:`~cryptography.hazmat.primitives.ciphers.algorithms.ARC4` into
  :doc:`/hazmat/decrepit/index` and deprecated them in the ``cipher`` module.
  They will be removed from the ``cipher`` module in 48.0.0.
* Added support for deterministic
  :class:`~cryptography.hazmat.primitives.asymmetric.ec.ECDSA` (:rfc:`6979`)
* Added support for client certificate verification to the
  :mod:`X.509 path validation <cryptography.x509.verification>` APIs in the
  form of :class:`~cryptography.x509.verification.ClientVerifier`,
  :class:`~cryptography.x509.verification.VerifiedClient`, and
  ``PolicyBuilder``
  :meth:`~cryptography.x509.verification.PolicyBuilder.build_client_verifier`.
* Added Certificate
  :attr:`~cryptography.x509.Certificate.public_key_algorithm_oid`
  and Certificate Signing Request
  :attr:`~cryptography.x509.CertificateSigningRequest.public_key_algorithm_oid`
  to determine the :class:`~cryptography.hazmat._oid.PublicKeyAlgorithmOID`
  Object Identifier of the public key found inside the certificate.
* Added :attr:`~cryptography.x509.InvalidityDate.invalidity_date_utc`, a
  timezone-aware alternative to the naïve ``datetime`` attribute
  :attr:`~cryptography.x509.InvalidityDate.invalidity_date`.
* Added support for parsing empty DN string in
  :meth:`~cryptography.x509.Name.from_rfc4514_string`.
* Added the following properties that return timezone-aware ``datetime`` objects:
  :meth:`~cryptography.x509.ocsp.OCSPResponse.produced_at_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.revocation_time_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.this_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPResponse.next_update_utc`,
  :meth:`~cryptography.x509.ocsp.OCSPSingleResponse.revocation_time_utc`,
</tr></table> 

... (truncated)

Commits

• ebf14f2 bump for 43.0.0 and update changelog (#11311)
• 42788a0 Fix exchange with keys that had Q automatically computed (#11309)
• 2dbdfb8 don't assign unused name (#11310)
• ccc66e6 Bump openssl from 0.10.64 to 0.10.65 in /src/rust (#11308)
• 4310c87 Bump sphinxcontrib-qthelp from 1.0.7 to 1.0.8 (#11307)
• f66a9c4 Bump sphinxcontrib-htmlhelp from 2.0.5 to 2.0.6 (#11306)
• a8fcf18 Bump openssl-sys from 0.9.102 to 0.9.103 in /src/rust (#11305)
• 2fe32b2 Bump mypy from 1.10.1 to 1.11.0 (#11303)
• ee24e82 Bump setuptools from 71.0.3 to 71.0.4 in /.github/requirements (#11304)
• 7249ccd Bump portable-atomic from 1.6.0 to 1.7.0 in /src/rust (#11302)
• Additional commits viewable in compare view

Updates exceptiongroup from 1.2.1 to 1.2.2

Release notes

Sourced from exceptiongroup's releases.

1.2.2

• Removed an assert in exceptiongroup._formatting that caused compatibility issues with Sentry (#123)

Changelog

Sourced from exceptiongroup's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <http://semver.org/>_.

1.2.2

• Removed an assert in exceptiongroup._formatting that caused compatibility issues with Sentry ([#123](https://github.com/agronholm/exceptiongroup/issues/123) <https://github.com/agronholm/exceptiongroup/issues/123>_)

1.2.1

• Updated the copying of __notes__ to match CPython behavior (PR by CF Bolz-Tereick)
• Corrected the type annotation of the exception handler callback to accept a BaseExceptionGroup instead of BaseException
• Fixed type errors on Python < 3.10 and the type annotation of suppress() (PR by John Litborn)

1.2.0

• Added special monkeypatching if Apport <https://github.com/canonical/apport>_ has overridden sys.excepthook so it will format exception groups correctly (PR by John Litborn)
• Added a backport of contextlib.suppress() from Python 3.12.1 which also handles suppressing exceptions inside exception groups
• Fixed bare raise in a handler reraising the original naked exception rather than an exception group which is what is raised when you do a raise in an except* handler

1.1.3

• catch() now raises a TypeError if passed an async exception handler instead of just giving a RuntimeWarning about the coroutine never being awaited. (#66, PR by John Litborn)
• Fixed plain raise statement in an exception handler callback to work like a raise in an except* block
• Fixed new exception group not being chained to the original exception when raising an exception group from exceptions raised in handler callbacks
• Fixed type annotations of the derive(), subgroup() and split() methods to match the ones in typeshed

1.1.2

• Changed handling of exceptions in exception group handler callbacks to not wrap a single exception in an exception group, as per CPython issue 103590 <https://github.com/python/cpython/issues/103590>_

1.1.1

• Worked around

... (truncated)

Commits

• 2399d54 Added the release version
• bec9651 Removed problematic assert that caused compatibility issues
• f3f0ff6 Updated Ruff configuration
• bb43ee0 Fixed formatting tests failing on Python 3.13
• eb8fbbc [pre-commit.ci] pre-commit autoupdate (#129)
• 6ff8300 [pre-commit.ci] pre-commit autoupdate (#128)
• 761933f [pre-commit.ci] pre-commit autoupdate (#127)
• 1b43294 [pre-commit.ci] pre-commit autoupdate (#125)
• dd87018 [pre-commit.ci] pre-commit autoupdate (#124)
• 54d8b8d [pre-commit.ci] pre-commit autoupdate (#121)
• Additional commits viewable in compare view

Updates setuptools from 70.2.0 to 71.1.0

Changelog

Sourced from setuptools's changelog.

v71.1.0

Features

• Added return types to typed public functions -- by :user:Avasam

  Marked pkg_resources as py.typed -- by :user:Avasam (#4409)

Misc

• #4492

v71.0.4

Bugfixes

• Removed lingering unused code around Distribution._patched_dist. (#4489)

v71.0.3

Bugfixes

• Reset the backports module when enabling vendored packages. (#4476)

v71.0.2

Bugfixes

• Include all vendored files in the sdist. (#4480)

v71.0.1

Bugfixes

... (truncated)

Commits

• 08bd311 Bump version: 71.0.4 → 71.1.0
• e3fd44a Merge pull request #4492 from mgorny/core-deps-spec
• 022cedb Switch to uv for vendoring.
• 3fca249 Merge pull request #4500 from Avasam/Update-mypy-to-1.11
• e7575ae Update pyproject.toml
• b078d6e Merge pull request #4409 from Avasam/pkg_resources-explicit-public-return-ann...
• 3aba4d4 Update mypy to 1.11
• deb0aa8 Merge branch 'main' of https://github.com/pypa/setuptools into pkg_resources-...
• 48f95c0 Bump version: 71.0.3 → 71.0.4
• 7d0178e Merge pull request #4493 from pypa/debt/4489-patched-dist
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.