dependency: (deps): bump packaging from 23.1 to 24.0

[dependabot[bot]]

Bumps packaging from 23.1 to 24.0.

Release notes

Sourced from packaging's releases.

24.0

What's Changed

• Fix specifier matching when the specifier is long and has an epoch by @​SpecLad in pypa/packaging#712
• Clarify version split/join usage by @​uranusjr in pypa/packaging#725
• Default optional metadata values to None by @​dstufft in pypa/packaging#734
• Stop using deprecated/removed keys by @​dstufft in pypa/packaging#739
• Correctly use the ExceptionGroup shim only when needed by @​dstufft in pypa/packaging#736
• Update CHANGELOG entry about validate kwarg by @​pradyunsg in pypa/packaging#731
• Support --disable-gil builds (PEP 703) in packaging.tags by @​colesbury in pypa/packaging#728
• Skip test_glibc_version_string_ctypes_raise_oserror if ctypes is unavailable by @​kevinchang96 in pypa/packaging#741
• Enable CodeQL by @​joycebrum in pypa/packaging#743
• PEP 703: Rename Py_NOGIL to Py_GIL_DISABLED by @​hugovk in pypa/packaging#747
• Replace PEP references with PUG links by @​jeanas in pypa/packaging#750
• Remove coverage ignore for non-existent file by @​shenanigansd in pypa/packaging#752
• Update URLs by @​DimitriPapadopoulos in pypa/packaging#764
• Configure dependabot by @​joycebrum in pypa/packaging#757
• Hash pin github actions by @​joycebrum in pypa/packaging#758
• Apply some refurb suggestions by @​DimitriPapadopoulos in pypa/packaging#763
• Appply some bugbear suggestions by @​DimitriPapadopoulos in pypa/packaging#761
• Apply some ruff suggestions by @​DimitriPapadopoulos in pypa/packaging#772
• Add riscv64 as a supported manylinux architecture by @​markdryan in pypa/packaging#751

New Contributors

• @​colesbury made their first contribution in pypa/packaging#728
• @​kevinchang96 made their first contribution in pypa/packaging#741
• @​jeanas made their first contribution in pypa/packaging#750
• @​shenanigansd made their first contribution in pypa/packaging#752
• @​markdryan made their first contribution in pypa/packaging#751

Full Changelog: https://github.com/pypa/packaging/compare/23.2...24.0

23.2

What's Changed

• parse_marker should consume the entire source string by @​mwerschy in pypa/packaging#687
• Create a Security Policy file by @​joycebrum in pypa/packaging#695
• Add python 3.12 to CI by @​mayeut in pypa/packaging#689
• Remove URL validation from requirement parsing by @​uranusjr in pypa/packaging#684
• Add types for packaging.version._Version by @​hauntsaninja in pypa/packaging#665
• Add PyPy 3.10 to CI by @​mayeut in pypa/packaging#699
• Remove unused argument in _manylinux._is_compatible by @​mayeut in pypa/packaging#700
• Canonicalize names for requirements comparison by @​astrojuanlu in pypa/packaging#696
• Add platform tag support for LoongArch by @​loongson-zn in pypa/packaging#693
• Ability to install armv7l manylinux/musllinux wheels on armv8l by @​mayeut in pypa/packaging#690
• Include CHANGELOG.rst in sdist by @​astrojuanlu in pypa/packaging#704
• Update pyupgrade to Python 3.7+ by @​fangchenli in pypa/packaging#580
• Fix version pattern pre-releases by @​deathaxe in pypa/packaging#705
• Fix typos found by codespell by @​DimitriPapadopoulos in pypa/packaging#706
• Support enriched metadata by @​brettcannon in pypa/packaging#686
• Correct rST syntax in CHANGELOG.rst by @​atugushev in pypa/packaging#709
• fix: platform tag for GraalPy by @​mayeut in pypa/packaging#711

... (truncated)

Changelog

Sourced from packaging's changelog.

24.0 - 2024-03-10

* Do specifier matching correctly when the specifier contains an epoch number
  and has more components than the version (:issue:`683`)
* Support the experimental ``--disable-gil`` builds in packaging.tags
  (:issue:`727`)
* BREAKING: Make optional ``metadata.Metadata`` attributes default to ``None`` (:issue:`733`)
* Fix errors when trying to access the ``description_content_type``, ``keywords``,
  and ``requires_python`` attributes on ``metadata.Metadata`` when those values
  have not been provided (:issue:`733`)
* Fix a bug preventing the use of the built in ``ExceptionGroup`` on versions of
  Python that support it (:issue:`725`)
23.2 - 2023-10-01

• Document calendar-based versioning scheme (:issue:716)
• Enforce that the entire marker string is parsed (:issue:687)
• Requirement parsing no longer automatically validates the URL (:issue:120)
• Canonicalize names for requirements comparison (:issue:644)
• Introduce metadata.Metadata (along with metadata.ExceptionGroup and metadata.InvalidMetadata; :issue:570)
• Introduce the validate keyword parameter to utils.normalize_name() (:issue:570)
• Introduce utils.is_normalized_name() (:issue:570)
• Make utils.parse_sdist_filename() and utils.parse_wheel_filename() raise InvalidSdistFilename and InvalidWheelFilename, respectively, when the version component of the name is invalid

Commits

• 7a983f7 Bump for release
• 4d85340 Add riscv64 as a supported manylinux architecture (#751)
• 4dce761 Apply some ruff suggestions (#772)
• 57a6a7f Appply some bugbear suggestions (#761)
• 7bcd6d8 Apply some refurb suggestions (#763)
• d0067e9 [StepSecurity] ci: Harden GitHub Actions (#1) (#758)
• eae70dd feat: Create dependabot.yml (#757)
• 241bb35 Update URLs (#764)
• 7698237 Remove coverage ignore for non-existent file (#752)
• b271d2b Replace PEP references with PUG links (#750)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)