search

Neverous / efibooteditor

Boot Editor for (U)EFI based systems
GNU Lesser General Public License v3.0
285 stars 19 forks source link

build(deps): bump the dependencies group in /misc/qt-updater with 8 updates #330

Closed dependabot[bot] closed 1 month ago

dependabot[bot] commented 1 month ago

Bumps the dependencies group in /misc/qt-updater with 8 updates:

Package From To
build 1.2.1 1.2.2.post1
certifi 2024.7.4 2024.8.30
charset-normalizer 3.3.2 3.4.0
idna 3.8 3.10
pyproject-hooks 1.1.0 1.2.0
ruff 0.6.2 0.6.9
types-requests 2.32.0.20240712 2.32.0.20240914
urllib3 2.2.2 2.2.3

Updates build from 1.2.1 to 1.2.2.post1

Release notes

Sourced from build's releases.

1.2.2.post1

This release only makes metadata (Python 3.13 classifier), docs, and test suite changes.

What's Changed

New Contributors

Full Changelog: https://github.com/pypa/build/compare/1.2.2...1.2.2.post1

Version 1.2.2

What's Changed

  • Add editable to builder.get_requries_for_build's static types (PR #764, fixes issue #763)
  • Include artifact attestations in our release (PR #782)
  • Fix typing compatibility with typed pyproject-hooks (PR #788)
  • Mark more tests with network (PR #808)
  • Add more intersphinx links to docs (PR #804)
  • Make uv optional for tests (PR #807 and #813)

New Contributors

Full Changelog: https://github.com/pypa/build/compare/1.2.1...1.2.2

Changelog

Sourced from build's changelog.

+++++++++ Changelog +++++++++

1.2.2 (2024-09-06)

  • Add editable to builder.get_requries_for_build's static types (PR :pr:764, fixes issue :issue:763)
  • Include artifact attestations in our release (PR :pr:782)
  • Fix typing compatibility with typed pyproject-hooks (PR :pr:788)
  • Mark more tests with network (PR :pr:808)
  • Add more intersphinx links to docs (PR :pr:804)
  • Make uv optional for tests (PR :pr:807 and :pr:813)
Commits


Updates certifi from 2024.7.4 to 2024.8.30

Commits


Updates charset-normalizer from 3.3.2 to 3.4.0

Release notes

Sourced from charset-normalizer's releases.

Version 3.4.0

🚀 charset-normalizer is raising awareness around HTTP/2, and HTTP/3!

Did you know that Internet Explorer 11 shipped with an optional HTTP/2 support back in 2013? also libcurl did ship it in 2014[...] All of this while our community is still struggling to make a firm advancement in HTTP clients. Now, many of you use Requests as the defacto http client, now, and for many years now, Requests has been frozen. Being left in a vegetative state and not evolving, this blocked millions of developers from using more advanced features.

We promptly invite Python developers to look at the drop-in replacement for Requests, namely Niquests. It leverage charset-normalizer in a better way! Check it out, you will be positively surprised! Don't wait another decade.

We are thankful to @​microsoft and involved parties for funding our work through the Microsoft FOSS Fund program.

3.4.0 (2024-10-08)

Added

  • Argument --no-preemptive in the CLI to prevent the detector to search for hints.
  • Support for Python 3.13 (#512)

Fixed

  • Relax the TypeError exception thrown when trying to compare a CharsetMatch with anything else than a CharsetMatch.
  • Improved the general reliability of the detector based on user feedbacks. (#520) (#509) (#498) (#407) (#537)
  • Declared charset in content (preemptive detection) not changed when converting to utf-8 bytes. (#381)
Changelog

Sourced from charset-normalizer's changelog.

3.4.0 (2024-10-08)

Added

  • Argument --no-preemptive in the CLI to prevent the detector to search for hints.
  • Support for Python 3.13 (#512)

Fixed

  • Relax the TypeError exception thrown when trying to compare a CharsetMatch with anything else than a CharsetMatch.
  • Improved the general reliability of the detector based on user feedbacks. (#520) (#509) (#498) (#407) (#537)
  • Declared charset in content (preemptive detection) not changed when converting to utf-8 bytes. (#381)
Commits
  • f3118e3 :wrench: change download/upload artifact version to last working version
  • 33e67e8 :wrench: set compile-generator in generator_generic_slsa3 action
  • 73dd24c :wrench: add explicit build deps to setuptools
  • 78f1e9b :wrench: attempt to fix cd.yml *3
  • 56ae702 :wrench: attempt to fix cd.yml *2
  • 9720055 :wrench: attempt to fix cd.yml (macos part)
  • 1e10d06 Update CHANGELOG.md
  • 36c103a :bookmark: Release 3.4.0 (#545)
  • 7658dfc :arrow_up: Bump github/codeql-action from 3.26.11 to 3.26.12 (#544)
  • ca2535d :arrow_up: Bump github/codeql-action from 3.26.9 to 3.26.11 (#542)
  • Additional commits viewable in compare view


Updates idna from 3.8 to 3.10

Changelog

Sourced from idna's changelog.

3.10 (2024-09-15) +++++++++++++++++

  • Reverted to Unicode 15.1.0 data. Unicode 16 has some significant changes to UTS46 processing that will require more work to properly implement.

3.9 (2024-09-13) ++++++++++++++++

  • Update to Unicode 16.0.0
  • Deprecate setup.cfg in favour of pyproject.toml
  • Use ruff for code formatting

Thanks to Waket Zheng for contributions to this release.

Commits


Updates pyproject-hooks from 1.1.0 to 1.2.0

Changelog

Sourced from pyproject-hooks's changelog.

Changelog

v1.2

  • Improve interoperability with importlib.metadata, fixing a regression in setuptools compatibility in 1.1 (#199).
  • Clean up the _in_process directory inside the package from sys.path before imporing the backend (#193).

v1.1

  • Add type annotations to the public API.
  • More careful handling of the backend-path key from pyproject.toml. Previous versions would load the backend and then check that it was loaded from the specified path; the new version only loads it from the specified path. The BackendInvalid exception is now a synonym for :exc:BackendUnavailable, and code should move to using the latter name.

v1.0

  • Rename package to pyproject_hooks (from pep517).
  • Remove deprecated modules (.build, .check and .envbuild). Use the build <https://pypa-build.readthedocs.io/en/stable/>_ project instead for this higher-level functionality of setting up a temporary build environment.
  • Require Python 3.7 or above.
  • Use tomllib from the standard library on Python 3.11. pyproject_hooks now has no external dependencies when installed in Python 3.11.
  • Avoid chaining exceptions when using the fallback implementation for :meth:.prepare_metadata_for_build_wheel.
  • Fix propagating error message for :exc:.BackendInvalid errors.

v0.13

  • Remove support for end-of-life Pythons. Now requires Python3.6+.
  • Remove support for toml package. Now requires tomli.
  • Rely on preferred "files" API on Python 3.9 and later (#140).

v0.12

  • Add method for pip to check if build_editable hook is supported. This is a private API for now.

v0.11.1

... (truncated)

Commits
  • 4b7c6d1 Merge pull request #205 from pypa/prepare-1.2
  • 1027470 Bump version: 1.1.0 → 1.2.0
  • dabe52e Prepare release notes for 1.2
  • 3df9175 Merge pull request #204 from pypa/fix/setuptools-71
  • 9efaa97 Relax test for build requirements from setuptools
  • 6b57973 Merge pull request #199 from abravalheri/issue-192-take2
  • 9988edd Merge pull request #196 from pypa/sdist-includes
  • dba1817 Always use importlib.metadata
  • d68f4d9 Remove unused dev-dependency
  • 455b77f Account for importlib_metadata in Python<3.7
  • Additional commits viewable in compare view


Updates ruff from 0.6.2 to 0.6.9

Release notes

Sourced from ruff's releases.

0.6.9

Release Notes

Preview features

  • Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
  • [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

  • [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
  • [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

  • [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

  • Support ruff discovery in pip build environments (#13591)
  • [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
  • [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
  • [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
  • [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

  • Update GitHub Action link to astral-sh/ruff-action (#13551)

Install ruff 0.6.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.ps1 | iex"

Download ruff 0.6.9

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum
ruff-aarch64-pc-windows-msvc.zip ARM64 Windows checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.9

Preview features

  • Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
  • [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

  • [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
  • [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

  • [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

  • Support ruff discovery in pip build environments (#13591)
  • [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
  • [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
  • [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
  • [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

  • Update GitHub Action link to astral-sh/ruff-action (#13551)

0.6.8

Preview features

  • Remove unnecessary parentheses around match case clauses (#13510)
  • Parenthesize overlong if guards in match..case clauses (#13513)
  • Detect basic wildcard imports in ruff analyze graph (#13486)
  • [pylint] Implement boolean-chained-comparison (R1716) (#13435)

Rule changes

  • [lake8-simplify] Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
  • [pyupgrade] Avoid false negatives with non-reference shadowed bindings of loop variables (UP028) (#13504)

Bug fixes

  • Detect tuples bound to variadic positional arguments i.e. *args (#13512)
  • Exit gracefully on broken pipe errors (#13485)
  • Avoid panic when analyze graph hits broken pipe (#13484)

Performance

... (truncated)

Commits
  • 975be9c Bump version to 0.6.9 (#13624)
  • 99e4566 Mark FURB118 fix as unsafe (#13613)
  • 7ad07c2 Add allow-unused-imports setting for unused-import rule (F401) (#13601)
  • 4aefe52 Support ruff discovery in pip build environments (#13591)
  • cc1f766 Preserve trivia (i.e. comments) in PLR5501 (#13573)
  • fdd0a22 Move to maintained mirror of prettier (#13592)
  • 3728d5b [pyupgrade] Fix UP043 to apply to collections.abc.Generator and `collecti...
  • 7e3894f Avoid short circuiting B017 for multiple context managers (#13609)
  • c3b40da Use backticks for code in red-knot messages (#13599)
  • ef45185 Allow users to provide custom diagnostic messages when unwrapping calls (#13597)
  • Additional commits viewable in compare view


Updates types-requests from 2.32.0.20240712 to 2.32.0.20240914

Commits


Updates urllib3 from 2.2.2 to 2.2.3

Release notes

Sourced from urllib3's releases.

2.2.3

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Features

  • Added support for Python 3.13. (#3473)

Bugfixes

  • Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. (#3053)
  • Fixed ResourceWarning on CONNECT with Python < 3.11.4 by backporting python/cpython#103472. (`#3252)
  • Adjust tolerance for floating-point comparison on Windows to avoid flakiness in CI (#3413)
  • Fixed a crash where certain standard library hash functions were absent in restricted environments. (#3432)
  • Fixed mypy error when adding to HTTPConnection.default_socket_options. (#3448)

HTTP/2 (experimental)

HTTP/2 support is still in early development.

  • Excluded Transfer-Encoding: chunked from HTTP/2 request body (#3425)
  • Added version checking for h2 (https://pypi.org/project/h2/) usage. Now only accepting supported h2 major version 4.x.x. (#3290)
  • Added a probing mechanism for determining whether a given target origin supports HTTP/2 via ALPN. (#3301)
  • Add support for sending a request body with HTTP/2 (#3302)

Full Changelog: https://github.com/urllib3/urllib3/compare/2.2.2...2.2.3

Changelog

Sourced from urllib3's changelog.

2.2.3 (2024-09-12)

Features

  • Added support for Python 3.13. ([#3473](https://github.com/urllib3/urllib3/issues/3473) <https://github.com/urllib3/urllib3/issues/3473>__)

Bugfixes

  • Fixed the default encoding of chunked request bodies to be UTF-8 instead of ISO-8859-1. All other methods of supplying a request body already use UTF-8 starting in urllib3 v2.0. ([#3053](https://github.com/urllib3/urllib3/issues/3053) <https://github.com/urllib3/urllib3/issues/3053>__)
  • Fixed ResourceWarning on CONNECT with Python `__)
  • Adjust tolerance for floating-point comparison on Windows to avoid flakiness in CI ([#3413](https://github.com/urllib3/urllib3/issues/3413) <https://github.com/urllib3/urllib3/issues/3413>__)
  • Fixed a crash where certain standard library hash functions were absent in restricted environments. ([#3432](https://github.com/urllib3/urllib3/issues/3432) <https://github.com/urllib3/urllib3/issues/3432>__)
  • Fixed mypy error when adding to HTTPConnection.default_socket_options. ([#3448](https://github.com/urllib3/urllib3/issues/3448) <https://github.com/urllib3/urllib3/issues/3448>__)

HTTP/2 (experimental)

HTTP/2 support is still in early development.

  • Excluded Transfer-Encoding: chunked from HTTP/2 request body ([#3425](https://github.com/urllib3/urllib3/issues/3425) <https://github.com/urllib3/urllib3/issues/3425>__)

  • Added version checking for h2 (https://pypi.org/project/h2/) usage.

    Now only accepting supported h2 major version 4.x.x. ([#3290](https://github.com/urllib3/urllib3/issues/3290) <https://github.com/urllib3/urllib3/issues/3290>__)

  • Added a probing mechanism for determining whether a given target origin supports HTTP/2 via ALPN. ([#3301](https://github.com/urllib3/urllib3/issues/3301) <https://github.com/urllib3/urllib3/issues/3301>__)

  • Add support for sending a request body with HTTP/2 ([#3302](https://github.com/urllib3/urllib3/issues/3302) <https://github.com/urllib3/urllib3/issues/3302>__)

Deprecations and Removals

  • Note for downstream distributors: the _version.py file has been removed and is now created at build time by hatch-vcs. ([#3412](https://github.com/urllib3/urllib3/issues/3412) <https://github.com/urllib3/urllib3/issues/3412>__)
  • Drop support for end-of-life PyPy3.8 and PyPy3.9. ([#3475](https://github.com/urllib3/urllib3/issues/3475) <https://github.com/urllib3/urllib3/issues/3475>__)
Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
sonarcloud[bot] commented 1 month ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud