OWASP / cornucopia

The source files and tools needed to build the OWASP Cornucopia decks in various languages
https://cornucopia.owasp.org
Other
47 stars 22 forks source link

Bump setuptools from 75.3.0 to 75.4.0 #889

Closed dependabot[bot] closed 3 weeks ago

dependabot[bot] commented 3 weeks ago

Bumps setuptools from 75.3.0 to 75.4.0.

Changelog

Sourced from setuptools's changelog.

v75.4.0

Features

  • Added support for the environment variable SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION=true, allowing users to bypass the validation of pyproject.toml. This option should be used only as a last resort when resolving dependency issues, as it may lead to improper functioning. Users who enable this setting are responsible for ensuring that pyproject.toml complies with setuptools requirements. (#4611)
  • Require Python 3.9 or later. (#4718)
  • Remove dependency on importlib_resources and the vendored copy of the library. Instead, setuptools consistently rely on stdlib's importlib.resources (available on Python 3.9+). (#4718)
  • Setuptools' bdist_wheel implementation no longer produces wheels with the m SOABI flag (pymalloc-related). This flag was removed on Python 3.8+ (see :obj:sys.abiflags). (#4718)
  • Updated vendored packaging version to 24.2. (#4740)

Bugfixes

  • Merge with pypa/distutils@251797602, including fix for dirutil.mkpath handling in pypa/distutils#304.
Commits
  • 8f5559c Bump version: 75.3.0 → 75.4.0
  • 6cc5f08 Update mypy requirement from ==1.12.* to >=1.12,<1.14 (#4700)
  • 748c851 Update mypy requirement from ==1.12.* to >=1.12,<1.14
  • c9d980f Refactor/unify/extract shutil.rmtree callbacks (and avoid repetition) (#4682)
  • db2b206 Extract test for shutil.rmtree callback to its own file
  • bb93502 Add docstring
  • 8272bc3 Refactor usage of shutil.rmtree in other parts of setuptools
  • 6ddac39 Ignore some lines for coverage
  • b9be144 Attempt to solve typechecking problems
  • 1678730 Extract common pattern to remove dir if exists to setuptools._shutil
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)