Bump pipenv from 2021.5.29 to 2022.1.8

[dependabot[bot]]

Bumps pipenv from 2021.5.29 to 2022.1.8.

Release notes

Sourced from pipenv's releases.

Release v2022.1.8

What's Changed

• Add a clickable link to PEP 508 in index.rst by @​belkka in pypa/pipenv#4878
• duplicate parentheses removed by @​ReazNahid in pypa/pipenv#4877
• Fix the index parsing to reject illegal requirements by @​frostming in pypa/pipenv#4899 Fix CVE-2022-21668
• disallow abbreviated forms of full option names by @​milo-minderbinder in pypa/pipenv#4907
• Use a PackageFinder with ignore_compatibility when collecting hashes by @​jfly in pypa/pipenv#4908
• Misc doc updates (mostly around running tests) by @​jfly in pypa/pipenv#4910

New Contributors

• @​belkka made their first contribution in pypa/pipenv#4878
• @​ReazNahid made their first contribution in pypa/pipenv#4877
• @​milo-minderbinder made their first contribution in pypa/pipenv#4907

Full Changelog: https://github.com/pypa/pipenv/compare/v2021.11.23...v2022.1.8

Release v2021.11.23

No release notes provided.

Release v2021.11.15

No release notes provided.

Release v2021.11.9

Features & Improvements

• Replace click-completion with click's own completion implementation. #4786

Bug Fixes

• Fix a bug that pipenv run doesn't set environment variables correctly. #4831
• Fix a bug that certifi can't be loaded within notpip's vendor library. This makes several objects of pip fail to be imported. #4833
• Fix a bug that 3.10.0 can be found be python finder. #4837

Vendored Libraries

• Update pythonfinder from 1.2.8 to 1.2.9. #4837

Release v2021.11.5.post0

No release notes provided.

Release v2021.11.5

No release notes provided.

Changelog

Sourced from pipenv's changelog.

2022.1.8 (2022-01-08)

Bug Fixes

• Remove the extra parentheses around the venv prompt. [#4877](https://github.com/pypa/pipenv/issues/4877) <https://github.com/pypa/pipenv/issues/4877>_
• Fix a bug of installation fails when extra index url is given. [#4881](https://github.com/pypa/pipenv/issues/4881) <https://github.com/pypa/pipenv/issues/4881>_
• Fix regression where lockfiles would only include the hashes for releases for the platform generating the lockfile [#4885](https://github.com/pypa/pipenv/issues/4885) <https://github.com/pypa/pipenv/issues/4885>_
• Fix the index parsing to reject illegal requirements.txt. [#4899](https://github.com/pypa/pipenv/issues/4899) <https://github.com/pypa/pipenv/issues/4899>_

2021.11.23 (2021-11-23)

Bug Fixes

• Update charset-normalizer from 2.0.3 to 2.0.7, this fixes an import error on Python 3.6. [#4865](https://github.com/pypa/pipenv/issues/4865) <https://github.com/pypa/pipenv/issues/4865>_
• Fix a bug of deleting a virtualenv that is not managed by Pipenv. [#4867](https://github.com/pypa/pipenv/issues/4867) <https://github.com/pypa/pipenv/issues/4867>_
• Fix a bug that source is not added to Pipfile when index url is given with pipenv install. [#4873](https://github.com/pypa/pipenv/issues/4873) <https://github.com/pypa/pipenv/issues/4873>_

2021.11.15 (2021-11-15)

Bug Fixes

• Return an empty dict when PIPENV_DONT_LOAD_ENV is set. [#4851](https://github.com/pypa/pipenv/issues/4851) <https://github.com/pypa/pipenv/issues/4851>_
• Don't use sys.executable when inside an activated venv. [#4852](https://github.com/pypa/pipenv/issues/4852) <https://github.com/pypa/pipenv/issues/4852>_

Vendored Libraries

• Drop the vendored jinja2 dependency as it is not needed any more. [#4858](https://github.com/pypa/pipenv/issues/4858) <https://github.com/pypa/pipenv/issues/4858>_
• Update click from 8.0.1 to 8.0.3, to fix a problem with bash completion. [#4860](https://github.com/pypa/pipenv/issues/4860) <https://github.com/pypa/pipenv/issues/4860>_
• Drop unused vendor chardet. [#4862](https://github.com/pypa/pipenv/issues/4862) <https://github.com/pypa/pipenv/issues/4862>_

Improved Documentation

• Fix the documentation to reflect the fact that special characters must be percent-encoded in the URL. [#4856](https://github.com/pypa/pipenv/issues/4856) <https://github.com/pypa/pipenv/issues/4856>_

2021.11.9 (2021-11-09)

... (truncated)

Commits

• d378b9f Release v2022.1.8
• 439782a Merge pull request from GHSA-qc9x-gjcv-465w
• 1679098 fix TLS validation for requirements.txt
• 9cb42e1 Merge pull request #4910 from jfly/update-run-tests-instructions
• 08a7fcf Oops, set the CI environment variable even earlier.
• f42fcaa Misc doc updates (mostly around running tests)
• c8f34dd Merge pull request #4908 from jfly/issue-4885-custom-indices-lacking-hashes
• 34652df Use a PackageFinder with ignore_compatibility when collecting hashes
• b0ebaf0 Merge pull request #4907 from milo-minderbinder/bugfix/requirements-file-options
• d535301 disallow abbreviated forms of full option names
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dbca-wa/sdis/network/alerts).

---

This change is 

[dependabot[bot]]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.