chore(deps-dev): bump setuptools from 71.0.3 to 74.1.2

[dependabot[bot]]

Bumps setuptools from 71.0.3 to 74.1.2.

Changelog

Sourced from setuptools's changelog.

v74.1.2

Bugfixes

• Fixed TypeError in sdist filelist processing by adding support for pathlib Paths for the build_base. (#4615)
• Removed degraded and deprecated test_integration (easy_install) from the test suite. (#4632)

v74.1.1

Bugfixes

• Fixed TypeError in msvc.EnvironmentInfo.return_env when no runtime redistributables are installed. (#1902)

v74.1.0

Features

• Added support for defining ext-modules via pyproject.toml (EXPERIMENTAL, may change in future releases). (#4568)

Bugfixes

• Merge with pypa/distutils@3dcdf8567, removing the duplicate vendored copy of packaging. (#4622)
• Restored setuptools.msvc.Environmentinfo as it is used externally. (#4625)

v74.0.0

Features

• Changed the type of error raised by setuptools.command.easy_install.CommandSpec.from_param on unsupported argument from AttributeError to TypeError -- by :user:Avasam (#4548)
• Added detection of ARM64 variant of MSVC -- by :user:saschanaz (#4553)
• Made setuptools.package_index.Credential a typing.NamedTuple -- by :user:Avasam (#4585)
• Reraise error from setuptools.command.easy_install.auto_chmod instead of nonsensical TypeError: 'Exception' object is not subscriptable -- by :user:Avasam (#4593)
• Fully typed all collection attributes in pkg_resources -- by :user:Avasam (#4598)
• Automatically exclude .tox|.nox|.venv directories from sdist. (#4603)

... (truncated)

Commits

• 3b2ef1e Removed test_integration tests (for easy_install).
• c484f9e Bump version: 74.1.1 → 74.1.2
• d8933c5 Merge pull request #4630 from pypa/bugfix/4615
• a07de2b Skip test on stdlib distutils
• 6bf20d9 Add news fragment.
• 9d4b288 Enable the test
• 40ee221 Merge https://github.com/pypa/distutils into bugfix/4615
• d901698 Add test capturing missed expectation.
• 91bc99a In sdist.prune_file_list, support build.build_base as a pathlib.Path.
• 7ee29bd Bump version: 74.1.0 → 74.1.1
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions[bot]]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
pip/setuptools	74.1.2	:green_circle: 5.2	Details Check Score Reason Code-Review :green_circle: 4 Found 8/17 approved changesets -- score normalized to 4 Maintained :green_circle: 10 30 commit(s) and 9 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices :warning: 0 no effort to earn an OpenSSF best practices badge detected License :green_circle: 10 license file detected Signed-Releases :warning: -1 no releases found Dangerous-Workflow :green_circle: 10 no dangerous workflow patterns detected Packaging :warning: -1 packaging workflow not detected Security-Policy :green_circle: 10 security policy file detected Branch-Protection :warning: 0 branch protection not enabled on development/release branches Token-Permissions :warning: 0 detected GitHub workflow tokens with excessive permissions Binary-Artifacts :warning: 2 binaries present in source code Pinned-Dependencies :warning: 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities :green_circle: 10 0 existing vulnerabilities detected Fuzzing :green_circle: 10 project is fuzzed SAST :warning: 0 SAST tool is not run on all commits -- score normalized to 0

Scanned Manifest Files

poetry.lock

• setuptools@74.1.2
• setuptools@71.0.3

[dependabot[bot]]

Superseded by #251.