Bump the dependencies group across 1 directory with 4 updates

[dependabot[bot]]

Bumps the dependencies group with 4 updates in the / directory: sentry-sdk, importlib-metadata, flask-cors and pytest.

Updates sentry-sdk from 2.13.0 to 2.14.0

Release notes

Sourced from sentry-sdk's releases.

2.14.0

Various fixes & improvements

• New SysExitIntegration (#3401) by @​szokeasaurusrex

  For more information, see the documentation for the SysExitIntegration.

• Add SENTRY_SPOTLIGHT env variable support (#3443) by @​BYK

• Support Strawberry 0.239.2 (#3491) by @​szokeasaurusrex

• Add separate pii_denylist to EventScrubber and run it always (#3463) by @​sl0thentr0py

• Celery: Add wrapper for Celery().send_task to support behavior as Task.apply_async (#2377) by @​divaltor

• Django: SentryWrappingMiddleware.init fails if super() is object (#2466) by @​cameron-simpson

• Fix data_category for sessions envelope items (#3473) by @​sl0thentr0py

• Fix non-UTC timestamps (#3461) by @​szokeasaurusrex

• Remove obsolete object as superclass (#3480) by @​sentrivana

• Replace custom TYPE_CHECKING with stdlib typing.TYPE_CHECKING (#3447) by @​dev-satoshi

• Refactor tracing_utils.py (#3452) by @​rominf

• Explicitly export symbol in subpackages instead of ignoring (#3400) by @​hartungstenio

• Better test coverage reports (#3498) by @​antonpirker

• Fixed config for old coverage versions (#3504) by @​antonpirker

• Fix AWS Lambda tests (#3495) by @​antonpirker

• Remove broken Bottle tests (#3505) by @​sentrivana

Changelog

Sourced from sentry-sdk's changelog.

2.14.0

Various fixes & improvements

• New SysExitIntegration (#3401) by @​szokeasaurusrex

  For more information, see the documentation for the SysExitIntegration.

• Add SENTRY_SPOTLIGHT env variable support (#3443) by @​BYK

• Support Strawberry 0.239.2 (#3491) by @​szokeasaurusrex

• Add separate pii_denylist to EventScrubber and run it always (#3463) by @​sl0thentr0py

• Celery: Add wrapper for Celery().send_task to support behavior as Task.apply_async (#2377) by @​divaltor

• Django: SentryWrappingMiddleware.init fails if super() is object (#2466) by @​cameron-simpson

• Fix data_category for sessions envelope items (#3473) by @​sl0thentr0py

• Fix non-UTC timestamps (#3461) by @​szokeasaurusrex

• Remove obsolete object as superclass (#3480) by @​sentrivana

• Replace custom TYPE_CHECKING with stdlib typing.TYPE_CHECKING (#3447) by @​dev-satoshi

• Refactor tracing_utils.py (#3452) by @​rominf

• Explicitly export symbol in subpackages instead of ignoring (#3400) by @​hartungstenio

• Better test coverage reports (#3498) by @​antonpirker

• Fixed config for old coverage versions (#3504) by @​antonpirker

• Fix AWS Lambda tests (#3495) by @​antonpirker

• Remove broken Bottle tests (#3505) by @​sentrivana

Commits

• 1e73ce9 Updated changelog
• 3d0edfd release: 2.14.0
• 6814df9 tests: Remove broken bottle tests (#3505)
• 0934e04 Fixed config for old coverage versions (#3504)
• 9fc3bd2 Fix AWS Lambda tests (#3495)
• e99873d Better test coverage reports (#3498)
• 0fb9606 feat(celery): Add wrapper for Celery().send_task to support behavior as `Ta...
• 16d05f4 fix(django): SentryWrappingMiddleware.init fails if super() is object
• 9df2b21 feat(strawberry): Support Strawberry 0.239.2 (#3491)
• cd15bff ref: Remove obsolete object as superclass (#3480)
• Additional commits viewable in compare view

Updates importlib-metadata from 7.2.1 to 8.5.0

Changelog

Sourced from importlib-metadata's changelog.

v8.5.0

Features

• Deferred import of zipfile.Path (#502)
• Deferred import of json (#503)
• Rely on zipp overlay for zipfile.Path.

v8.4.0

Features

• Deferred import of inspect for import performance. (#499)

v8.3.0

Features

• Disallow passing of 'dist' to EntryPoints.select.

v8.2.0

Features

• Add SimplePath to importlib_metadata.all. (#494)

v8.1.0

Features

• Prioritize valid dists to invalid dists when retrieving by name. (#489)

v8.0.0

... (truncated)

Commits

• b34810b Finalize
• 8c1d1fa Merge pull request #501 from Avasam/Pass-mypy-and-link-issues
• afa39e8 Back out changes to tests._path
• 8b909f9 Merge pull request #503 from danielhollas/defer-json
• 2a3f50d Add news fragment.
• 3f78dc1 Add comment to protect the deferred import.
• 18eb2da Revert "Defer platform import"
• 58832f2 Merge pull request #502 from danielhollas/defer-zipp
• e3ce33b Add news fragment.
• d11b67f Add comment to protect the deferred import.
• Additional commits viewable in compare view

Updates flask-cors from 4.0.1 to 5.0.0

Release notes

Sourced from flask-cors's releases.

5.0.0

What's Changed

• Breaking: Change default to disable private network access by @​corydolphin in corydolphin/flask-cors#368 This effectively resolves https://github.com/advisories/GHSA-hxwh-jpp2-84pm https://osv.dev/vulnerability/PYSEC-2024-71

Full Changelog: https://github.com/corydolphin/flask-cors/compare/4.0.2...5.0.0

4.0.2

What's Changed

• Bump requests from 2.31.0 to 2.32.0 in /docs by @​dependabot in corydolphin/flask-cors#358
• Backwards Compatible Fix for CVE-2024-6221 by @​adrianosela in corydolphin/flask-cors#363
• Add unit tests for Private-Network by @​corydolphin in corydolphin/flask-cors#367

New Contributors

• @​dependabot made their first contribution in corydolphin/flask-cors#358
• @​adrianosela made their first contribution in corydolphin/flask-cors#363

Full Changelog: https://github.com/corydolphin/flask-cors/compare/4.0.1...4.0.2

Changelog

Sourced from flask-cors's changelog.

Change Log

Commits

• c851476 V5: Breaking: Change default to disable private network access (#368)
• 561ed26 Add unit tests for Private-Network (#367)
• 7ae310c Backwards Compatible Fix for CVE-2024-6221 (#363)
• f25c6b2 --- (#358)
• See full diff in compare view

Updates pytest from 8.3.2 to 8.3.3

Release notes

Sourced from pytest's releases.

8.3.3

pytest 8.3.3 (2024-09-09)

Bug fixes

• #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by asottile{.interpreted-text role="user"}

• #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1.

• #12667: Fixed a regression where type change in [ExceptionInfo.errisinstance]{.title-ref} caused [mypy]{.title-ref} to fail.

• #12744: Fixed typing compatibility with Python 3.9 or less -- replaced [typing.Self]{.title-ref} with [typing_extensions.Self]{.title-ref} -- by Avasam{.interpreted-text role="user"}

• #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments.

• #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg).

• #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option.

  -- by GTowers1{.interpreted-text role="user"}

Improved documentation

• #12663: Clarify that the [pytest_deselected]{.title-ref} hook should be called from [pytest_collection_modifyitems]{.title-ref} hook implementations when items are deselected.
• #12678: Remove erroneous quotes from [tmp_path_retention_policy]{.title-ref} example in docs.

Miscellaneous internal changes

• #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks.

Commits

• d0f136f build(deps): Bump pypa/gh-action-pypi-publish from 1.10.0 to 1.10.1 (#12790)
• 972f307 Prepare release version 8.3.3
• 0dabdcf Include co-authors in release announcement (#12795) (#12797)
• a9910a4 Do not discover properties when iterating fixtures (#12781) (#12788)
• 0f10b6b Fix issue with slashes being turned into backslashes on Windows (#12760) (#12...
• 300d13d Merge pull request #12785 from pytest-dev/patchback/backports/8.3.x/57cccf7f4...
• e5d32c7 Merge pull request #12784 from svenevs/fix/docs-example-parametrize-minor-typo
• bc913d1 Streamline checks for verbose option (#12706) (#12778)
• 01cfcc9 Fix typos and introduce codespell pre-commit hook (#12769) (#12774)
• 4873394 doc: Remove past training (#12772) (#12773)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.