PYUP Scheduled weekly dependency update for week 38

Update autoflake from 1.5.3 to 1.6.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

- PyPI: https://pypi.org/project/autoflake

Update certifi from 2022.6.15.1 to 2022.9.14.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

- PyPI: https://pypi.org/project/certifi - Repo: https://github.com/certifi/python-certifi

Update exchange-calendars from 4.2 to 4.2.3.

Changelog

### 4.2.3 ``` What’s Changed Continuous Integration * Disable install check from release workflow (236) maread99 ``` ### 4.2.2 ``` NB github release 4.2.2 was not released to PyPI. The below changes were incorporated into PyPI release 4.2.3. What’s Changed Continuous Integration * Revert (partially) release workflow (235) maread99 ``` ### 4.2.1 ``` NB github release 4.2.1 was not released to PyPI. The below changes were incorporated in PyPI release 4.2.3. What’s Changed Calendar Updates * XLON: add Queen Elizabeth II funeral day 2022-09-12 (230) monkeyusage * XSHG: Added 2022-10-06 and 2022-10-07 as market holidays (228) philiptromans * XASX: Added National Day of Mourning for Her Majesty the Queen (232) philiptromans Continuous Integration * Update release workflow (234) maread99 Maintenance * Update dependencies (227) maread99 * Bump actions/cache from 3.0.7 to 3.0.8 (226) dependabot ```

Links

- PyPI: https://pypi.org/project/exchange-calendars - Changelog: https://pyup.io/changelogs/exchange-calendars/

Update fonttools from 4.37.1 to 4.37.2.

Changelog

### 4.37.2 ``` ---------------------------- - [subset] Keep CPAL table and don't attempt to prune unused color indices if OT-SVG table is present even if COLR table was subsetted away; OT-SVG may be referencing the CPAL table; for now we assume that's the case (2814, 2815). - [varLib.instancer] Downgrade GPOS/GSUB version if there are no more FeatureVariations after instancing (2812). - [subset] Added ``--no-lazy`` to optionally load fonts eagerly (mostly to ease debugging of table lazy loading, no practical effects) (2807). - [varLib] Avoid building empty COLR.DeltaSetIndexMap with only identity mappings (2803). - [feaLib] Allow multiple value record types (by promoting to the most general format) within the same PairPos subtable; e.g. this allows variable and non variable kerning rules to share the same subtable. This also fixes a bug whereby some kerning pairs would become unreachable while shapiong because of premature subtable splitting (2772, 2776). - [feaLib] Speed up ``VarScalar`` by caching models for recurring master locations (2798). - [feaLib] Optionally cythonize ``feaLib.lexer``, speeds up parsing FEA a bit (2799). - [designspaceLib] Avoid crash when handling unbounded rule conditions (2797). - [post] Don't crash if ``post`` legacy format 1 is malformed/improperly used (2786) - [gvar] Don't be "lazy" (load all glyph variations up front) when TTFont.lazy=False (2771). - [TTFont] Added ``normalizeLocation`` method to normalize a location dict from the font's defined axes space (also known as "user space") into the normalized (-1..+1) space. It applies ``avar`` mapping if the font contains an ``avar`` table (2789). - [TTVarGlyphSet] Support drawing glyph instances from CFF2 variable glyph set (2784). - [fontBuilder] Do not error when building cmap if there are zero code points (2785). - [varLib.plot] Added ability to plot a variation model and set of accompaning master values corresponding to the model's master locations into a pyplot figure (2767). - [Snippets] Added ``statShape.py`` script to draw statistical shape of a glyph as an ellips (requires pycairo) (baecd88). - [TTVarGlyphSet] implement drawPoints natively, avoiding going through SegmentToPointPen (2778). - [TTVarGlyphSet] Fixed bug whereby drawing a composite glyph multiple times, its components would shif; needed an extra copy (2774). ```

Links

- PyPI: https://pypi.org/project/fonttools - Changelog: https://pyup.io/changelogs/fonttools/ - Repo: http://github.com/fonttools/fonttools

Update hypothesis from 6.54.5 to 6.54.6.

Changelog

### 6.54.6 ``` ------------------- If multiple explicit examples (from :func:`example() <hypothesis.example>`) raise a Skip exception, for consistency with generated examples we now re-raise the first instead of collecting them into an ExceptionGroup (:issue:`3453`). ```

Links

- PyPI: https://pypi.org/project/hypothesis - Changelog: https://pyup.io/changelogs/hypothesis/ - Homepage: https://hypothesis.works

Update idna from 3.3 to 3.4.

Changelog

### 3.4 ``` ++++++++++++++++ - Update to Unicode 15.0.0 - Migrate to pyproject.toml for build information (PEP 621) - Correct another instance where generic exception was raised instead of IDNAError for malformed input - Source distribution uses zeroized file ownership for improved reproducibility Thanks to Seth Michael Larson for contributions to this release. ```

Links

- PyPI: https://pypi.org/project/idna - Changelog: https://pyup.io/changelogs/idna/

Update joblib from 1.1.0 to 1.2.0.

Changelog

### 1.2.0 ``` ------------- - Fix a security issue where ``eval(pre_dispatch)`` could potentially run arbitrary code. Now only basic numerics are supported. https://github.com/joblib/joblib/pull/1327 - Make sure that joblib works even when multiprocessing is not available, for instance with Pyodide https://github.com/joblib/joblib/pull/1256 - Avoid unnecessary warnings when workers and main process delete the temporary memmap folder contents concurrently. https://github.com/joblib/joblib/pull/1263 - Vendor loky 3.1.0 with several fixes to more robustly forcibly terminate worker processes in case of a crash. https://github.com/joblib/joblib/pull/1269 - Fix memory alignment bug for pickles containing numpy arrays. This is especially important when loading the pickle with ``mmap_mode != None`` as the resulting ``numpy.memmap`` object would not be able to correct the misalignment without performing a memory copy. This bug would cause invalid computation and segmentation faults with native code that would directly access the underlying data buffer of a numpy array, for instance C/C++/Cython code compiled with older GCC versions or some old OpenBLAS written in platform specific assembly. https://github.com/joblib/joblib/pull/1254 - Vendor cloudpickle 2.2.0 which adds support for PyPy 3.8+. - Vendor loky 3.3.0 which fixes a bug with leaking processes in case of nested loky parallel calls and more reliability spawn the correct number of reusable workers. ```

Links

- PyPI: https://pypi.org/project/joblib - Changelog: https://pyup.io/changelogs/joblib/ - Docs: https://joblib.readthedocs.io

Update keyring from 23.9.1 to 23.9.3.

Changelog

### 23.9.3 ``` ------- * 596: Add workaround for devpi_client hook with wrapped implementation. ``` ### 23.9.2 ``` ------- * 597: Fixed wrong name in compatibility logic for ``properties`` (masked by the compatibility fallback). ```

Links

- PyPI: https://pypi.org/project/keyring - Changelog: https://pyup.io/changelogs/keyring/ - Repo: https://github.com/jaraco/keyring

Update korean-lunar-calendar from 0.2.1 to 0.3.1.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

- PyPI: https://pypi.org/project/korean-lunar-calendar - Repo: https://github.com/usingsky/korean_lunar_calendar_py

Update matplotlib from 3.5.3 to 3.6.0.

Changelog

Links

- PyPI: https://pypi.org/project/matplotlib - Changelog: https://pyup.io/changelogs/matplotlib/ - Homepage: https://matplotlib.org

Update nb-clean from 2.2.0 to 2.2.1.

Changelog

### 2.2.1 ``` This releases adds a [pre-commit](https://pre-commit.com/) hook. ```

Links

- PyPI: https://pypi.org/project/nb-clean - Changelog: https://pyup.io/changelogs/nb-clean/ - Repo: https://github.com/srstevenson/nb-clean

Update nbformat from 5.4.0 to 5.5.0.

The bot wasn't able to find a changelog for this release. Got an idea?

Links

- PyPI: https://pypi.org/project/nbformat

Update nbqa from 1.4.0 to 1.5.0.

Changelog

### 1.5.0 ``` ~~~~~~~~~~~ ``nbqa`` now removes empty cells which were not empty to begin with. Markdown files saved via ``Jupytext`` will now be processed as well (thanks basnijholt and rgommers for the suggestion!) If ``nbqa`` is passed an invalid notebook, it will exit 123. If it's passed a non-Python notebook, it'll exit 0. Don't try to process files with the wrong extensions, even if passed explicitly. Added support for subcommands (thanks dnoliver for the issue, s-weigand for the fix) ```

Links

- PyPI: https://pypi.org/project/nbqa - Changelog: https://pyup.io/changelogs/nbqa/ - Repo: https://github.com/nbQA-dev/nbQA