chore(deps): Bump the pip-version-updates group across 1 directory with 21 updates

[dependabot]

Bumps the pip-version-updates group with 20 updates in the / directory:

Package	From	To
pre-commit-hooks	4.6.0	5.0.0
pytest	8.3.2	8.3.3
ruff	0.6.3	0.6.9
safety	3.2.7	3.2.8
cffi	1.17.0	1.17.1
cryptography	43.0.0	43.0.1
debugpy	1.8.5	1.8.7
distlib	0.3.8	0.3.9
identify	2.6.0	2.6.1
importlib-metadata	8.4.0	8.5.0
jupyter-client	8.6.2	8.6.3
mdit-py-plugins	0.4.1	0.4.2
platformdirs	4.2.2	4.3.6
prompt-toolkit	3.0.47	3.0.48
pydantic	2.8.2	2.9.2
pytz	2024.1	2024.2
pywin32	306	308
rich	13.8.0	13.9.2
virtualenv	20.26.3	20.26.6
zipp	3.20.1	3.20.2

Updates pre-commit-hooks from 4.6.0 to 5.0.0

Release notes

Sourced from pre-commit-hooks's releases.

pre-commit-hooks v5.0.0

Features

• requirements-txt-fixer: also remove pkg_resources==....
  • #850 PR by @​ericfrederich.
  • #1030 issue by @​ericfrederich.
• check-illegal-windows-names: new hook!
  • #1044 PR by @​ericfrederich.
  • #589 issue by @​ericfrederich.
  • #1049 PR by @​Jeffrey-Lim.
• pretty-format-json: continue processing even if a file has a json error.
  • #1039 PR by @​amarvin.
  • #1038 issue by @​amarvin.

Fixes

• destroyed-symlinks: set stages to [pre-commit, pre-push, manual]
  • PR #1085 by @​AdrianDC.

Migrating

• pre-commit-hooks now requires pre-commit>=3.2.0.
• use non-deprecated names for stages.
  • #1093 PR by @​asottile.

Changelog

Sourced from pre-commit-hooks's changelog.

5.0.0 - 2024-10-05

Features

• requirements-txt-fixer: also remove pkg_resources==....
  • #850 PR by @​ericfrederich.
  • #1030 issue by @​ericfrederich.
• check-illegal-windows-names: new hook!
  • #1044 PR by @​ericfrederich.
  • #589 issue by @​ericfrederich.
  • #1049 PR by @​Jeffrey-Lim.
• pretty-format-json: continue processing even if a file has a json error.
  • #1039 PR by @​amarvin.
  • #1038 issue by @​amarvin.

Fixes

• destroyed-symlinks: set stages to [pre-commit, pre-push, manual]
  • PR #1085 by @​AdrianDC.

Migrating

• pre-commit-hooks now requires pre-commit>=3.2.0.
• use non-deprecated names for stages.
  • #1093 PR by @​asottile.

Commits

• cef0300 v5.0.0
• f47ab2f Merge pull request #1049 from Jeffrey-Lim/main
• fd01124 Extend check for illegal Windows filenames
• 515e8b3 Merge pull request #1085 from AdrianDC/destroyed-symlinks
• c7d1e85 set stages for destroyed-symlinks
• 5b5b46d Merge pull request #1093 from pre-commit/non-deprecated-stages-names
• 003dfa5 update stages names to the non-deprecated names
• ed71474 Merge pull request #1088 from pre-commit/pre-commit-ci-update-config
• 6553d02 remove types-all
• 6952eeb [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates pytest from 8.3.2 to 8.3.3

Release notes

Sourced from pytest's releases.

8.3.3

pytest 8.3.3 (2024-09-09)

Bug fixes

• #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by asottile{.interpreted-text role="user"}

• #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1.

• #12667: Fixed a regression where type change in [ExceptionInfo.errisinstance]{.title-ref} caused [mypy]{.title-ref} to fail.

• #12744: Fixed typing compatibility with Python 3.9 or less -- replaced [typing.Self]{.title-ref} with [typing_extensions.Self]{.title-ref} -- by Avasam{.interpreted-text role="user"}

• #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments.

• #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg).

• #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option.

  -- by GTowers1{.interpreted-text role="user"}

Improved documentation

• #12663: Clarify that the [pytest_deselected]{.title-ref} hook should be called from [pytest_collection_modifyitems]{.title-ref} hook implementations when items are deselected.
• #12678: Remove erroneous quotes from [tmp_path_retention_policy]{.title-ref} example in docs.

Miscellaneous internal changes

• #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks.

Commits

• d0f136f build(deps): Bump pypa/gh-action-pypi-publish from 1.10.0 to 1.10.1 (#12790)
• 972f307 Prepare release version 8.3.3
• 0dabdcf Include co-authors in release announcement (#12795) (#12797)
• a9910a4 Do not discover properties when iterating fixtures (#12781) (#12788)
• 0f10b6b Fix issue with slashes being turned into backslashes on Windows (#12760) (#12...
• 300d13d Merge pull request #12785 from pytest-dev/patchback/backports/8.3.x/57cccf7f4...
• e5d32c7 Merge pull request #12784 from svenevs/fix/docs-example-parametrize-minor-typo
• bc913d1 Streamline checks for verbose option (#12706) (#12778)
• 01cfcc9 Fix typos and introduce codespell pre-commit hook (#12769) (#12774)
• 4873394 doc: Remove past training (#12772) (#12773)
• Additional commits viewable in compare view

Updates ruff from 0.6.3 to 0.6.9

Release notes

Sourced from ruff's releases.

0.6.9

Release Notes

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

Install ruff 0.6.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.ps1 | iex"

Download ruff 0.6.9

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.9

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

0.6.8

Preview features

• Remove unnecessary parentheses around match case clauses (#13510)
• Parenthesize overlong if guards in match..case clauses (#13513)
• Detect basic wildcard imports in ruff analyze graph (#13486)
• [pylint] Implement boolean-chained-comparison (R1716) (#13435)

Rule changes

• [lake8-simplify] Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
• [pyupgrade] Avoid false negatives with non-reference shadowed bindings of loop variables (UP028) (#13504)

Bug fixes

• Detect tuples bound to variadic positional arguments i.e. *args (#13512)
• Exit gracefully on broken pipe errors (#13485)
• Avoid panic when analyze graph hits broken pipe (#13484)

Performance

... (truncated)

Commits

• 975be9c Bump version to 0.6.9 (#13624)
• 99e4566 Mark FURB118 fix as unsafe (#13613)
• 7ad07c2 Add allow-unused-imports setting for unused-import rule (F401) (#13601)
• 4aefe52 Support ruff discovery in pip build environments (#13591)
• cc1f766 Preserve trivia (i.e. comments) in PLR5501 (#13573)
• fdd0a22 Move to maintained mirror of prettier (#13592)
• 3728d5b [pyupgrade] Fix UP043 to apply to collections.abc.Generator and `collecti...
• 7e3894f Avoid short circuiting B017 for multiple context managers (#13609)
• c3b40da Use backticks for code in red-knot messages (#13599)
• ef45185 Allow users to provide custom diagnostic messages when unwrapping calls (#13597)
• Additional commits viewable in compare view

Updates safety from 3.2.7 to 3.2.8

Changelog

Sourced from safety's changelog.

[3.2.8] - 2024-09-27

• feat: enhance version comparison logic for check-updates command (#605)
• docs: add demo Jupyter Notebook (#601)
• feat: add script to generate CONTRIBUTORS.md with Shields.io badges based on merged PRs (#600)
• chore: fix CLI help text by removing rich formatting for cleaner output (#599)
• chore: hide system scan from help text (#598)
• chore: add LICENSES.md file to document dependency licenses (#597)
• docs: add SECURITY.md file with security policy and bug bounty details (#593)

Commits

• 31b1821 chore/release-3.2.8 (#606)
• dec98e0 fix/check-updates-fixes (#605)
• 15e757c Demo Jupyter Notebook (#601)
• af7fa27 Add Script to Generate CONTRIBUTORS.md with Shields.io Badges Based on Merged...
• 01c2c28 chore/fix-cli-help-text: remove rich formatting for cleaner help text (#599)
• 84b981d chore/hide-system-scan-from-help-text (#598)
• 96ddcb5 chore: add LICENSES.md file with dependency licenses (#597)
• See full diff in compare view

Updates cffi from 1.17.0 to 1.17.1

Release notes

Sourced from cffi's releases.

v1.17.1

• Fix failing distutils.msvc9compiler imports under Windows (#118).
• ffibuilder.emit_python_code() and ffibuiler.emit_c_code() accept file-like objects (#115).
• ffiplatform calls are bypassed by ffibuilder.emit_python_code() and ffibuilder.emit_c_code() (#81).

Full Changelog: python-cffi/cffi@v1.17.0...v1.17.1

Commits

• 38bd6be release 1.17.1
• ba10180 update whatsnew.rst for 1.17.1 (#121)
• 61deb5f add yet another flag to recompile() to avoid calling ffiplatform (#81)
• 1c292c1 Handle distutils without distutils.msvc9compiler.MSVCCompiler class (#118)
• 182ffc4 Allow writing generated code to a file-like object. (#115)
• See full diff in compare view

Updates cryptography from 43.0.0 to 43.0.1

Changelog

Sourced from cryptography's changelog.

43.0.1 - 2024-09-03

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.2.
.. _v43-0-0:

Commits

• a773387 bump for 43.0.1 (#11533)
• 0393fef Backport setuptools version ban (#11526)
• 6687bab Bump openssl from 0.10.65 to 0.10.66 in /src/rust (#11320) (#11324)
• See full diff in compare view

Updates debugpy from 1.8.5 to 1.8.7

Release notes

Sourced from debugpy's releases.

debugpy v1.8.7

Support for 3.13

Fixes microsoft/debugpy#1689

debugpy v1.8.6

Consuming PyDev.Debugger's sys.monitoring support to improve performance of debugging 3.12

Fixes microsoft/debugpy#1496

Making attach work for 3.12

Fixes microsoft/debugpy#1476

Commits

• f7d5df0 Get Python 3.13 to work (#1692)
• 25955a0 Get debug attach to work for 3.12 (#1683)
• ae6812b Pull in pydevd sys.monitoring support (#1680)
• a2f8081 Detect whether debugger is already running and skip connecting/listening in t...
• fb6158a Update round-robin.yml (#1653)
• ddcb193 Add round-robin issue assigner (#1650)
• See full diff in compare view

Updates distlib from 0.3.8 to 0.3.9

Changelog

Sourced from distlib's changelog.

0.3.9

Released: 2024-10-09


scripts


Merge #215: preload script wrappers on Windows to assist with a pip issue (thanks,
Paul Moore).


Fix #220: Remove duplicated newline in shebang of windows launcher (thanks. A2uria).


Fix #230: Add handling for cross-compilation environments (thanks, Russell Keith-Magee).




util

Fix #224: Do not use the absolute path to cache wheel extensions (thanks, Stewart Miles).



wheel


Fix #222: Support mounting wheels that use extensions without an EXTENSIONS file (thanks,
Stewart Miles).


Fix #225: Add support for wheel compatibility with the limited API (thanks, Stewart Miles).

Commits

• fab584e Changes for 0.3.9.
• 148fa95 Remove duplicated newline in shebang of windows launcher (#221)
• d1f40d6 Fix whitespace at end of file.
• 2c4d2fa Add support for wheel compatibility with the limited API. (#228)
• fac84c7 Do not use the absolute path to cache wheel extensions. (#226)
• 6fbadf1 Add wheel with a C extension to test mounting (#229)
• a16423f Add handling for cross-compilation environments. (#231)
• cbd4ae1 Upgrade codecov workflow to v4 (#232)
• 5235013 Ignore .vscode project files. (#223)
• 888c48b Preload script wrappers at import time (#215)
• Additional commits viewable in compare view

Updates identify from 2.6.0 to 2.6.1

Commits

• d1032c9 v2.6.1
• b980f11 Merge pull request #476 from AleksaC/astro
• 52ba50e Merge pull request #477 from pre-commit/pre-commit-ci-update-config
• f4ca44e [pre-commit.ci] pre-commit autoupdate
• 2573941 add astro extension
• eca58eb Merge pull request #475 from pre-commit/pre-commit-ci-update-config
• 4cbbd37 [pre-commit.ci] pre-commit autoupdate
• bcde20e Merge pull request #472 from pre-commit/pre-commit-ci-update-config
• 53d2329 [pre-commit.ci] pre-commit autoupdate
• 1d48177 Merge pull request #471 from pre-commit/pre-commit-ci-update-config
• Additional commits viewable in compare view

Updates importlib-metadata from 8.4.0 to 8.5.0

Changelog

Sourced from importlib-metadata's changelog.

v8.5.0

Features

• Deferred import of zipfile.Path (#502)
• Deferred import of json (#503)
• Rely on zipp overlay for zipfile.Path.

Commits

• b34810b Finalize
• 8c1d1fa Merge pull request #501 from Avasam/Pass-mypy-and-link-issues
• afa39e8 Back out changes to tests._path
• 8b909f9 Merge pull request #503 from danielhollas/defer-json
• 2a3f50d Add news fragment.
• 3f78dc1 Add comment to protect the deferred import.
• 18eb2da Revert "Defer platform import"
• 58832f2 Merge pull request #502 from danielhollas/defer-zipp
• e3ce33b Add news fragment.
• d11b67f Add comment to protect the deferred import.
• Additional commits viewable in compare view

Updates jupyter-client from 8.6.2 to 8.6.3

Release notes

Sourced from jupyter-client's releases.

v8.6.3

8.6.3

(Full Changelog)

Enhancements made

• Support psutil for finding network addresses #1033 (@​juliangilbey)

Bugs fixed

• use simpler isoparse from dateutil to parse ISO-8601 timestamps #1032 (@​minrk)
• Avoid a DeprecationWarning on Python 3.13+ #1027 (@​hroncok)

Maintenance and upkeep improvements

• Fix docs check #1038 (@​minrk)
• fix invocation of pip for nbconvert downstream #1037 (@​minrk)
• test on python 3.13-dev #1036 (@​andife)
• Support ipykernel's use of anyio in test_signal_kernel_subprocesses #1034 (@​ianthomas23)

Contributors to this release

(GitHub contributors page for this release)

@​andife | @​hroncok | @​ianthomas23 | @​juliangilbey | @​minrk

Changelog

Sourced from jupyter-client's changelog.

8.6.3

(Full Changelog)

Enhancements made

• Support psutil for finding network addresses #1033 (@​juliangilbey)

Bugs fixed

• use simpler isoparse from dateutil to parse ISO-8601 timestamps #1032 (@​minrk)
• Avoid a DeprecationWarning on Python 3.13+ #1027 (@​hroncok)

Maintenance and upkeep improvements

• Fix docs check #1038 (@​minrk)
• fix invocation of pip for nbconvert downstream #1037 (@​minrk)
• test on python 3.13-dev #1036 (@​andife)
• Support ipykernel's use of anyio in test_signal_kernel_subprocesses #1034 (@​ianthomas23)

Contributors to this release

(GitHub contributors page for this release)

@​andife | @​hroncok | @​ianthomas23 | @​juliangilbey | @​minrk

Commits

• 3b1a9fe Publish 8.6.3
• 7d7251f test on python 3.13-dev (#1036)
• b5cb375 Support ipykernel's use of anyio in test_signal_kernel_subprocesses (#1034)
• 5d48881 Support psutil for finding network addresses (#1033)
• 7716291 use simpler isoparse from dateutil to parse ISO8601 timestamps (#1032)
• 0ad3405 fix docs api check (#1038)
• 2ba2902 fix invocation of pip for nbconvert downstream (#1037)
• 4a15e5d Avoid a DeprecationWarning on Python 3.13+ (#1027)
• See full diff in compare view

Updates mdit-py-plugins from 0.4.1 to 0.4.2

Release notes

Sourced from mdit-py-plugins's releases.

v0.4.2

What's Changed

• 👌 Improve parsing of nested amsmath by @​chrisjsewell in executablebooks/mdit-py-plugins#119
• ✨ Add allowed option for inline/block attributes by @​joker21663 in executablebooks/mdit-py-plugins#115

New Contributors

• @​joker21663 made their first contribution in executablebooks/mdit-py-plugins#115

Full Changelog: executablebooks/mdit-py-plugins@v0.4.1...v0.4.2

Changelog

Sourced from mdit-py-plugins's changelog.

0.4.2 - 2024-09-09

• 👌 Improve parsing of nested amsmath

  The previous logic was problematic for amsmath blocks nested in other blocs (such as blockquotes)

  The new parsing code now principally follows the logic in markdown_it/rules_block/fence.py (see also https://spec.commonmark.org/0.30/#fenced-code-blocks), except that:

  1. it allows for a closing tag on the same line as the opening tag, and
  2. it does not allow for an opening tag without closing tag (i.e. no auto-closing)

• ✨ Add allowed option for inline/block attributes

  The allowed option accepts a list of allowed attribute names. If not None, any attributes not in this list will be removed and placed in the token's meta under the key "insecure_attrs".

Commits

• 2236898 🚀 Release v0.4.2 (#121)
• 10d5b4d ✨ Add allowed option for inline/block attributes (#115)
• 3f7fcc6 👌 Improve parsing of nested amsmath (#119)
• 637f7e7 🔧 codecov no longer works on forks (#116)
• See full diff in compare view

Updates platformdirs from 4.2.2 to 4.3.6

Release notes

Sourced from platformdirs's releases.

4.3.6

What's Changed

• Fix readme download target by @​gaborbernat in tox-dev/platformdirs#307

Full Changelog: tox-dev/platformdirs@4.3.5...4.3.6

4.3.5

What's Changed

• Split build and publish for release by @​gaborbernat in tox-dev/platformdirs#306

Full Changelog: tox-dev/platformdirs@4.3.4...4.3.5

4.3.4

What's Changed

• Use upstream setup-uv with uv python by @​gaborbernat in tox-dev/platformdirs#305

Full Changelog: tox-dev/platformdirs@4.3.3...4.3.4

4.3.3

What's Changed

• Update check.yml by @​gaborbernat in tox-dev/platformdirs#302
• don't include outdated changelog in docs by @​cbm755 in tox-dev/platformdirs#301

New Contributors

• @​cbm755 made their first contribution in tox-dev/platformdirs#301

Full Changelog: tox-dev/platformdirs@4.3.2...4.3.3

4.3.2

What's Changed

• Use uv as installer by @​gaborbernat in tox-dev/platformdirs#300
• Fix multi-path returned from _path methods on MacOS by @​matthewhughes934 in tox-dev/platformdirs#299

New Contributors

• @​matthewhughes934 made their first contribution in tox-dev/platformdirs#299

Full Changelog: tox-dev/platformdirs@4.3.1...4.3.2

... (truncated)

Commits

• bc0405c Fix readme download target (#307)
• c076da9 Split build and publish for release (#306)
• 30199ec Use upstream setup-uv with uv python (#305)
• 3ce64d0 Bump astral-sh/setup-uv from 2 to 3 (#304)
• 67691e2 [pre-commit.ci] pre-commit autoupdate (#303)
• 85feea9 don't include outdated changelog in docs (#301)
• 580dffd Update check.yml (#302)
• c596271 Fix multi-path returned from _path methods on MacOS (#299)
• a420284 Use uv as installer (#300)
• 49a89ef Update README.rst
• Additional commits viewable in compare view

Updates prompt-toolkit from 3.0.47 to 3.0.48

Release notes

Sourced from prompt-toolkit's releases.

3.0.48

Fixes:

• Typing improvements:
  • Add @overload to contrib.regular_languages.compiler.Variables.get.
  • Use Sequence instead of list for words argument in completers.
• Improve ModalCursorShapeConfig:
  • Display an "underscore" cursor in Vi's "replace single" mode, like "replace" mode.
  • Display an "beam" cursor in Emacs (insert) mode.

Changelog

Sourced from prompt-toolkit's changelog.

3.0.48: 2024-09-25

Fixes:

• Typing improvements:
  • Add @overload to contrib.regular_languages.compiler.Variables.get.
  • Use Sequence instead of list for words argument in completers.
• Improve ModalCursorShapeConfig:
  • Display an "underscore" cursor in Vi's "replace single" mode, like "replace" mode.
  • Display an "beam" cursor in Emacs (insert) mode.

Commits

• 435bd99 Release 3.0.48
• ae1d635 Fixup for previous cursorshapes commit (#1900). (#1920)
• df4e244 Update type definition for words argument in completers (#1889)
• 728983b Improve ModalCursorShapeConfig for various input modes (#1900)
• 75615b1 Add @​overload to contrib.regular_languages.compiler.Variables.get
• See full diff in compare view

Updates pydantic from 2.8.2 to 2.9.2

Release ...

Description has been truncated

[dependabot]

Superseded by #229.