Bump the pip-dependencies group across 1 directory with 3 updates

[dependabot[bot]]

Bumps the pip-dependencies group with 3 updates in the / directory: distlib, filelock and virtualenv.

Updates distlib from 0.3.8 to 0.3.9

Changelog

Sourced from distlib's changelog.

0.3.9

Released: 2024-10-09


scripts


Merge #215: preload script wrappers on Windows to assist with a pip issue (thanks,
Paul Moore).


Fix #220: Remove duplicated newline in shebang of windows launcher (thanks. A2uria).


Fix #230: Add handling for cross-compilation environments (thanks, Russell Keith-Magee).




util

Fix #224: Do not use the absolute path to cache wheel extensions (thanks, Stewart Miles).



wheel


Fix #222: Support mounting wheels that use extensions without an EXTENSIONS file (thanks,
Stewart Miles).


Fix #225: Add support for wheel compatibility with the limited API (thanks, Stewart Miles).

Commits

• fab584e Changes for 0.3.9.
• 148fa95 Remove duplicated newline in shebang of windows launcher (#221)
• d1f40d6 Fix whitespace at end of file.
• 2c4d2fa Add support for wheel compatibility with the limited API. (#228)
• fac84c7 Do not use the absolute path to cache wheel extensions. (#226)
• 6fbadf1 Add wheel with a C extension to test mounting (#229)
• a16423f Add handling for cross-compilation environments. (#231)
• cbd4ae1 Upgrade codecov workflow to v4 (#232)
• 5235013 Ignore .vscode project files. (#223)
• 888c48b Preload script wrappers at import time (#215)
• Additional commits viewable in compare view

Updates filelock from 3.14.0 to 3.16.1

Release notes

Sourced from filelock's releases.

3.16.1

What's Changed

• CI improvements by @​gaborbernat in tox-dev/filelock#362

Full Changelog: https://github.com/tox-dev/filelock/compare/3.16.0...3.16.1

3.16.0

What's Changed

• Test Python 3.13 by @​hugovk in tox-dev/filelock#352
• Add 3.13 to CI by @​gaborbernat in tox-dev/filelock#359

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.4...3.16.0

3.15.4

What's Changed

• Pass file_lock as positional argument by @​kwist-sgr in tox-dev/filelock#347

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.3...3.15.4

3.15.3

What's Changed

• Add test for virtualenv stability by @​gaborbernat in tox-dev/filelock#344
• Fix TypeError: _CountedFileLock.__init__() got an unexpected keyword argument 'timeout' by @​kwist-sgr in tox-dev/filelock#345

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.2...3.15.3

3.15.2

What's Changed

• Use a metaclass to implement the singleton pattern by @​kwist-sgr in tox-dev/filelock#340

New Contributors

• @​kwist-sgr made their first contribution in tox-dev/filelock#340

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.1...3.15.2

3.15.1

... (truncated)

Commits

• c2c43e4 CI improvements (#362)
• 4e98731 [pre-commit.ci] pre-commit autoupdate (#361)
• e6865be [pre-commit.ci] pre-commit autoupdate (#360)
• 0acea4f Add 3.13 to CI (#359)
• 4dc2a8f Bump pypa/gh-action-pypi-publish from 1.9.0 to 1.10.1 (#356)
• 7397dd7 [pre-commit.ci] pre-commit autoupdate (#354)
• 067b651 Bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows (#357)
• 85760d7 Test Python 3.13 (#352)
• 4104f3e [pre-commit.ci] pre-commit autoupdate (#348)
• 9a979df Pass file_lock as positional argument (#347)
• Additional commits viewable in compare view

Updates virtualenv from 20.26.2 to 20.26.6

Release notes

Sourced from virtualenv's releases.

20.26.5

What's Changed

• release 20.26.4 by @​gaborbernat in pypa/virtualenv#2761
• Use uv over pip by @​gaborbernat in pypa/virtualenv#2765

Full Changelog: https://github.com/pypa/virtualenv/compare/20.26.4...20.26.5

20.26.4

What's Changed

• release 20.26.3 by @​gaborbernat in pypa/virtualenv#2742
• Fix whitespace around backticks in changelog by @​edmorley in pypa/virtualenv#2751
• Test latest Python 3.13 by @​hugovk in pypa/virtualenv#2752
• Fix typo in Nushell activation script by @​edmorley in pypa/virtualenv#2754
• GitHub Actions: Replace deprecated macos-12 with macos-13 by @​hugovk in pypa/virtualenv#2756
• Fix #2728: Activating venv create unwanted console output by @​ShootGan in pypa/virtualenv#2748
• Upgrade bundled wheels by @​gaborbernat in pypa/virtualenv#2760

New Contributors

• @​ShootGan made their first contribution in pypa/virtualenv#2748

Full Changelog: https://github.com/pypa/virtualenv/compare/20.26.3...20.26.4

20.26.3

What's Changed

• release 20.26.2 by @​gaborbernat in pypa/virtualenv#2724
• Bump embeded wheels by @​gaborbernat in pypa/virtualenv#2741

Full Changelog: https://github.com/pypa/virtualenv/compare/20.26.2...20.26.3

Changelog

Sourced from virtualenv's changelog.

v20.26.6 (2024-09-27)

Bugfixes - 20.26.6

- Properly quote string placeholders in activation script templates to mitigate
  potential command injection - by :user:`y5c4l3`. (:issue:`2768`)
v20.26.5 (2024-09-17)
Bugfixes - 20.26.5

• Upgrade embedded wheels: setuptools to 75.1.0 from 74.1.2 - by :user:gaborbernat. (:issue:2765)

v20.26.4 (2024-09-07)

Bugfixes - 20.26.4

- no longer create `()` output in console during activation of a virtualenv by .bat file. (:issue:`2728`)
- Upgrade embedded wheels:

wheel to 0.44.0 from 0.43.0
pip to 24.2 from 24.1
setuptools to 74.1.2 from 70.1.0 (:issue:2760)

v20.26.3 (2024-06-21)
Bugfixes - 20.26.3

• Upgrade embedded wheels:

  • setuptools to 70.1.0 from 69.5.1
  • pip to 24.1 from 24.0 (:issue:2741)

Commits

• ec04726 release 20.26.6
• 86ddded Fix #2768: Quote template strings in activation scripts (#2771)
• 6bb3f62 [pre-commit.ci] pre-commit autoupdate (#2769)
• 220d49c Bump pypa/gh-action-pypi-publish from 1.10.1 to 1.10.2 (#2767)
• cf340c8 Merge pull request #2766 from pypa/release-20.26.5
• f3172b4 release 20.26.5
• 22b9795 Use uv over pip (#2765)
• 35d8269 [pre-commit.ci] pre-commit autoupdate (#2764)
• ee77feb [pre-commit.ci] pre-commit autoupdate (#2763)
• c516056 Update README.md
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Superseded by #380.