Avoid using caching attributes in Distribution.metadata for requirements.
This is done for backwards compatibility with customizations that attempt to
modify install_requires or extras_require at a late point (still not
recommended). (#4043)
Rework how setuptools internally handles dependencies/install_requires
and optional-dependencies/extras_require. (#3903)
Improve the generated PKG-INFO files, by adding Requires-Dist fields.
Previously, these fields would be omitted in favour of a non-standard
*.egg-info/requires.txt file (which is still generated for the time being). (#3904)
Improve atomicity when writing PKG-INFO files to avoid race
conditions with importlib.metadata. (#3904)
Bugfixes
Fix the name given to the *-nspkg.pth files in editable installs,
ensuring they are unique per distribution. (#4041)
Workaround some limitations on pkg_resources-style legacy namespaces in
the meta path finder for editable installations. (#4041)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
👇 Click on the image for a new way to code review
####
[![Review these changes using an interactive CodeSee Map](https://s3.us-east-2.amazonaws.com/maps.codesee.io/images/github/AIStream-Peelout/flow-forecast/701/7dd48df0/8895ac1bbcb2fad390c9d0cb5f36517068cd0c78.svg)](https://app.codesee.io/r/reviews?pr=701&src=https%3A%2F%2Fgithub.com%2FAIStream-Peelout%2Fflow-forecast)
#### Legend
Updates the requirements on setuptools to permit the latest version.
Changelog
Sourced from setuptools's changelog.
... (truncated)
Commits
0120605
Bump version: 68.2.0 → 68.2.16e1bd6b
Fix bumpversion stated30aaa5
Update test deps (#4045)f4dd704
Improve core metadata generation for compatibility with plugins (#4043)6981c04
Add news fragmentdca98f8
Add fallback for old packagingc2608c5
Update test dependency on builddc69ce3
Add news fragmentc16a547
Prevent install_requires and extras_require to not be set in distd25d03c
Avoid relying on pre-parsed requirementsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show