Bump pypa/gh-action-pypi-publish from 1.8.6 to 1.8.7

[dependabot[bot]]

Bumps pypa/gh-action-pypi-publish from 1.8.6 to 1.8.7.

Release notes

Sourced from pypa/gh-action-pypi-publish's releases.

v1.8.7

:nail_care: Cosmetic output impovements

• @​woodruffw fixed OIDC the multiline annotations by escaping LF through urlencoding it in pypa/gh-action-pypi-publish#156.
• @​jaap3 noticed and promptly removed extraneous } from a non-OIDC log annotation in pypa/gh-action-pypi-publish#161.
• @​hugovk made pip ignore that it runs under the root user and suppress its warning output in pypa/gh-action-pypi-publish#159.

:hammer_and_wrench: Internal dependencies

• Cryptography was bumped from 39.0.1 to 41.0.0 @ pypa/gh-action-pypi-publish#160
• Requests was bumped from 2.28.1 to 2.31.0 @ pypa/gh-action-pypi-publish#157

:muscle: New Contributors

• @​jaap3 made their first contribution in pypa/gh-action-pypi-publish#161

:mirror: Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.6...v1.8.7

Commits

• f5622bd Merge PRs #159 and #160 into unstable/v1
• 3be882c Merge pull request #161 from jaap3/jaap3-patch-1
• 775be49 Remove extraneous }
• 5684530 Bump cryptography from 39.0.1 to 41.0.0 in /requirements
• 135d0d5 Ignore pip's root user warning
• 110f54a Merge pull request #157 from pypa/dependabot/pip/requirements/requests-2.31.0
• c803c91 Bump requests from 2.28.1 to 2.31.0 in /requirements
• f9ed8ba Merge pull request #156 from trail-of-forks/tob-fix-annotation
• 3063966 oidc-exchange: "fix" multiline annotations
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov-commenter]

Codecov Report

Merging #141 (d159cc4) into master (be0e76e) will decrease coverage by 0.90%. The diff coverage is n/a.

:exclamation: Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more.

@@            Coverage Diff             @@
##           master     #141      +/-   ##
==========================================
- Coverage   91.75%   90.86%   -0.90%     
==========================================
  Files           9        9              
  Lines         449      449              
==========================================
- Hits          412      408       -4     
- Misses         37       41       +4     

see 2 files with indirect coverage changes

:mega: We’re building smart automated test selection to slash your CI/CD build times. Learn more