Bump the pip-dependencies group across 1 directory with 9 updates

[dependabot[bot]]

Bumps the pip-dependencies group with 9 updates in the / directory:

Package	From	To
grpcio	1.62.2	1.64.0
grpcio-tools	1.62.2	1.64.0
keyring	25.2.0	25.2.1
pyfakefs	5.4.1	5.5.0
pygments	2.17.2	2.18.0
requests	2.32.0	2.32.2
setuptools	69.5.1	70.0.0
twine	5.0.0	5.1.0
zipp	3.18.1	3.19.0

Updates grpcio from 1.62.2 to 1.64.0

Release notes

Sourced from grpcio's releases.

Release v1.64.0

This is release 1.64.0 (grateful) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [BoringSSL] Update third_party/boringssl-with-bazel. (#36435)
• [build] Restrict visibility of grpc_public_hdrs and grpc++_public_hdrs. (#36289)
• [Deps] Rollfoward Protobuf upgrade to v26.1. (#36323)

C++

• [CSM] Fix CSM Observability for trailers-only response. (#36413)
• [CSM] Remove requirement that servers have to be xDS enabled. (#36410)

Python

• [Asyncio] Semantic task names for RPC tasks. (#36422)
• [python/systemd] allow compiling systemd support into python builds. (#36037)
• [Python Otel] Remove opentelemetry version pin. (#36448)
• [Python Otel] Use registered method at server side. (#36371)
• [Python grpcio_tools] Update version requirement of protobuf in grpcio_tools. (#36230)

Release v1.64.0-pre2

This is a prerelease of gRPC Core 1.64.0 (grateful).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Release v1.64.0-pre1

This is a prerelease of gRPC Core 1.64.0 (grateful).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Release v1.63.0

This is release 1.63.0 (giggle) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

... (truncated)

Commits

• b8a04ac [Release] Bump version to 1.64.0 (on v1.64.x branch) (#36633)
• acd8b33 [Release] Bump version to 1.64.0-pre2 (on v1.64.x branch) (#36573)
• 9cd019a Revert "[transport] Centralize ref-counting between transports (#36460)" (#36...
• 03e6617 [Gpr_To_Absl_Logging] Disable absl logging (#36546)
• 7062f29 [Release] Bump version to 1.64.0-pre1 (on v1.64.x branch) (#36545)
• 32e0317 [reorg] move xds code to src/core/xds (#36521)
• 09a29d3 [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• 7cc547d [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging - gpr_log (#36...
• a20f020 [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• fb72f1d [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• Additional commits viewable in compare view

Updates grpcio-tools from 1.62.2 to 1.64.0

Release notes

Sourced from grpcio-tools's releases.

Release v1.64.0

This is release 1.64.0 (grateful) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [BoringSSL] Update third_party/boringssl-with-bazel. (#36435)
• [build] Restrict visibility of grpc_public_hdrs and grpc++_public_hdrs. (#36289)
• [Deps] Rollfoward Protobuf upgrade to v26.1. (#36323)

C++

• [CSM] Fix CSM Observability for trailers-only response. (#36413)
• [CSM] Remove requirement that servers have to be xDS enabled. (#36410)

Python

• [Asyncio] Semantic task names for RPC tasks. (#36422)
• [python/systemd] allow compiling systemd support into python builds. (#36037)
• [Python Otel] Remove opentelemetry version pin. (#36448)
• [Python Otel] Use registered method at server side. (#36371)
• [Python grpcio_tools] Update version requirement of protobuf in grpcio_tools. (#36230)

Release v1.64.0-pre2

This is a prerelease of gRPC Core 1.64.0 (grateful).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Release v1.64.0-pre1

This is a prerelease of gRPC Core 1.64.0 (grateful).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Release v1.63.0

This is release 1.63.0 (giggle) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

... (truncated)

Commits

• b8a04ac [Release] Bump version to 1.64.0 (on v1.64.x branch) (#36633)
• acd8b33 [Release] Bump version to 1.64.0-pre2 (on v1.64.x branch) (#36573)
• 9cd019a Revert "[transport] Centralize ref-counting between transports (#36460)" (#36...
• 03e6617 [Gpr_To_Absl_Logging] Disable absl logging (#36546)
• 7062f29 [Release] Bump version to 1.64.0-pre1 (on v1.64.x branch) (#36545)
• 32e0317 [reorg] move xds code to src/core/xds (#36521)
• 09a29d3 [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• 7cc547d [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging - gpr_log (#36...
• a20f020 [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• fb72f1d [grpc][Gpr_To_Absl_Logging] Migrating from gpr to absl logging GPR_ASSERT (#3...
• Additional commits viewable in compare view

Updates keyring from 25.2.0 to 25.2.1

Changelog

Sourced from keyring's changelog.

v25.2.1

Bugfixes

• Fix typo in CLI creds mode. (#681)

Commits

• c09855e Finalize
• 788c67c Merge https://github.com/jaraco/skeleton
• 1ec750d Fix typo in CLI creds mode.
• 67aab15 Revert "Allow macos on Python 3.8 to fail as GitHub CI has dropped support."
• See full diff in compare view

Updates pyfakefs from 5.4.1 to 5.5.0

Release notes

Sourced from pyfakefs's releases.

pyfakefs release version 5.5.0

Deprecates the usage of the pathlib2 and scandir packages, minor bug fixes.

Changelog

Sourced from pyfakefs's changelog.

Version 5.5.0 (2024-05-12)

Deprecates the usage of pathlib2 and scandir.

Changes

• The usage of the pathlib2 and scandir modules in pyfakefs is now deprecated. They will now cause deprecation warnings if still used. Support for patching these modules will be removed in pyfakefs 6.0.
• PureWindowsPath and PurePosixPath now use filesystem-independent path separators, and their path-parsing behaviors are now consistent regardless of runtime platform and/or faked filesystem customization (see #1006).

Fixes

• fixed handling of Windows pathlib paths under POSIX and vice verse (see #1006)
• correctly use real open calls in pathlib for skipped modules (see #1012)

Commits

• 353ad03 Release 5.5.0
• 68ed3b9 Handle skipped pathlib.Path.open calls
• 71044c9 Update pre-commit from 3.7.0 to 3.7.1
• 4c9eae2 [pre-commit.ci] pre-commit autoupdate
• d875151 Fix pure windows path behavior (#1011)
• d11b848 Improve isolation of test suite executions
• f9c8d25 Guarantee symlinks are cleaned up
• b396e0f Align Python version testing in tox with CI
• 719ba1f [pre-commit.ci] pre-commit autoupdate
• 0479960 Exclude Python 3.7 from macOS tests
• Additional commits viewable in compare view

Updates pygments from 2.17.2 to 2.18.0

Release notes

Sourced from pygments's releases.

2.18.0

• New lexers:

  • Janet (#2557)
  • Lean 4 (#2618, #2626)
  • Luau (#2605)
  • Mojo (#2691, #2515)
  • org-mode (#2628, #2636)
  • Promela (#2620)
  • Soong / Android.bp (#2659)
  • Tact (#2571)
  • Typst (#2596)

• Updated lexers:

  • Awk: recognize ternary operator (#2687)
  • Bash: add openrc alias (#2599, #2371)
  • Coq: add keywords, lex more vernacular command arguments, produce fewer tokens on heading comments (#2678)
  • DNS zone files: Fix comment parsing (#2595)
  • Hy: Support unicode literals (#1126)
  • Inform6: Update to Inform 6.42 (#2644)
  • lean: Fix name handling (#2614)
  • Logtalk: add uninstantiation keyword and recognize escape sequences (#2619)
  • Macaulay2: Update to 1.23 (#2655)
  • Python: fix highlighting of soft keywords before None/True/False
  • reStructuredText: use Token.Comment for comments instead of Comment.Preproc (#2598)
  • Rust: highlight :, :: and -> as Punctuation and whitespace as Whitespace, instead of Text in both cases (#2631)
  • Spice: Add keywords (#2621)
  • SQL Explain: allow negative numbers (#2610)
  • Swift: Support multiline strings (#2681)
  • ThingsDB: add constants and new functions; support template strings (#2624)
  • UL4: support nested <?doc?> and <?note?> tags (#2597)
  • VHDL: support multi-line comments of VHDL-2008 (#2622)
  • Wikitext: Remove kk-* in variant_langs (#2647)
  • Xtend: Add val and var (#2602)

• New styles:

  • Coffee (#2609)

• Make background colors in the image formatter work with Pillow 10.0 (#2623)

• Require Python 3.8. As a result, the importlib-metadata package is no longer needed for fast plugin discovery on Python 3.7. The plugins extra (used as, e.g., pip install pygments[plugins])

... (truncated)

Changelog

Sourced from pygments's changelog.

Version 2.18.0

(released May 4th, 2024)

• New lexers:

  • Janet (#2557)
  • Lean 4 (#2618, #2626)
  • Luau (#2605)
  • Mojo (#2691, #2515)
  • org-mode (#2628, #2636)
  • Promela (#2620)
  • Soong / Android.bp (#2659)
  • Tact (#2571)
  • Typst (#2596)

• Updated lexers:

  • Awk: recognize ternary operator (#2687)
  • Bash: add openrc alias (#2599, #2371)
  • Coq: add keywords, lex more vernacular command arguments, produce fewer tokens on heading comments (#2678)
  • DNS zone files: Fix comment parsing (#2595)
  • Hy: Support unicode literals (#1126)
  • Inform6: Update to Inform 6.42 (#2644)
  • lean: Fix name handling (#2614)
  • Logtalk: add uninstantiation keyword and recognize escape sequences (#2619)
  • Macaulay2: Update to 1.23 (#2655)
  • Python: fix highlighting of soft keywords before None/True/False
  • reStructuredText: use Token.Comment for comments instead of Comment.Preproc (#2598)
  • Rust: highlight :, :: and -> as Punctuation and whitespace as Whitespace, instead of Text in both cases (#2631)
  • Spice: Add keywords (#2621)
  • SQL Explain: allow negative numbers (#2610)
  • Swift: Support multiline strings (#2681)
  • ThingsDB: add constants and new functions; support template strings (#2624)
  • UL4: support nested <?doc?> and <?note?> tags (#2597)
  • VHDL: support multi-line comments of VHDL-2008 (#2622)
  • Wikitext: Remove kk-* in variant_langs (#2647)
  • Xtend: Add val and var (#2602)

• New styles:

  • Coffee (#2609)

• Make background colors in the image formatter work with Pillow 10.0 (#2623)

... (truncated)

Commits

• d7d11f6 Last steps for 2.18 release.
• ec7bfd2 Fix Janet version_added.
• ea9c823 Update CHANGES.
• 338d366 Merge pull request #2670 from Kodiologist/hylex
• 4d1371b Lock down the pytest version.
• 8dd97e0 Improve docs.
• 26179d6 Fix deprecated variable usage in tests.
• ad125ca Prepare 2.18 release.
• 24deeb9 Lock the ruff version in tox.ini.
• c9165cf Fix format string usage.
• Additional commits viewable in compare view

Updates requests from 2.32.0 to 2.32.2

Release notes

Sourced from requests's releases.

v2.32.2

2.32.2 (2024-05-21)

Deprecations

• To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

  A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

• Add missing test certs to the sdist distributed on PyPI.

Changelog

Sourced from requests's changelog.

2.32.2 (2024-05-21)

Deprecations

• To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

  A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

• Add missing test certs to the sdist distributed on PyPI.

Commits

• 88dce9d v2.32.2
• c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
• 92075b3 Add deprecation warning
• aa1461b Move _get_connection to get_connection_with_tls_context
• 970e8ce v2.32.1
• See full diff in compare view

Updates setuptools from 69.5.1 to 70.0.0

Changelog

Sourced from setuptools's changelog.

v70.0.0

Features

• Emit a warning when [tools.setuptools] is present in pyproject.toml and will be ignored. -- by :user:SnoopJ (#4150)
• Improved AttributeError error message if pkg_resources.EntryPoint.require is called without extras or distribution Gracefully "do nothing" when trying to activate a pkg_resources.Distribution with a None location, rather than raising a TypeError -- by :user:Avasam (#4262)
• Typed the dynamically defined variables from pkg_resources -- by :user:Avasam (#4267)
• Modernized and refactored VCS handling in package_index. (#4332)

Bugfixes

• In install command, use super to call the superclass methods. Avoids race conditions when monkeypatching from _distutils_system_mod occurs late. (#4136)
• Fix finder template for lenient editable installs of implicit nested namespaces constructed by using package_dir to reorganise directory structure. (#4278)
• Fix an error with UnicodeDecodeError handling in pkg_resources when trying to read files in UTF-8 with a fallback -- by :user:Avasam (#4348)

Improved Documentation

• Uses RST substitution to put badges in 1 line. (#4312)

Deprecations and Removals

• Further adoption of UTF-8 in setuptools. This change regards mostly files produced and consumed during the build process (e.g. metadata files, script wrappers, automatically updated config files, etc..) Although precautions were taken to minimize disruptions, some edge cases might be subject to backwards incompatibility.

  Support for "locale" encoding is now deprecated. (#4309)

• Remove setuptools.convert_path after long deprecation period. This function was never defined by setuptools itself, but rather a side-effect of an import for internal usage. (#4322)

• Remove fallback for customisations of distutils' build.sub_command after long deprecated period. Users are advised to import build directly from setuptools.command.build. (#4322)

• Removed typing_extensions from vendored dependencies -- by :user:Avasam (#4324)

• Remove deprecated setuptools.dep_util. The provided alternative is setuptools.modified. (#4360)

... (truncated)

Commits

• 5cbf12a Workaround for release error in v70
• 9c1bcc3 Bump version: 69.5.1 → 70.0.0
• 4dc0c31 Remove deprecated setuptools.dep_util (#4360)
• 6c1ef57 Remove xfail now that test passes. Ref #4371.
• d14fa01 Add all site-packages dirs when creating simulated environment for test_edita...
• 6b7f7a1 Prevent bin folders to be taken as extern packages when vendoring (#4370)
• 69141f6 Add doctest for vendorised bin folder
• 2a53cc1 Prevent 'bin' folders to be taken as extern packages
• 7208628 Replace call to deprecated validate_pyproject command (#4363)
• 96d681a Remove call to deprecated validate_pyproject command
• Additional commits viewable in compare view

Updates twine from 5.0.0 to 5.1.0

Changelog

Sourced from twine's changelog.

Twine 5.1.0 (2024-05-15)

Features ^^^^^^^^

• Add the experimental --attestations flag. ([#1095](https://github.com/pypa/twine/issues/1095) <https://github.com/pypa/twine/issues/1095>_)

Twine 5.1.0 (2024-05-15)

Misc ^^^^

• [#1104](https://github.com/pypa/twine/issues/1104) <https://github.com/pypa/twine/issues/1104>_

Commits

• e9f70cf Merge pull request #1108 from pypa/fix-release-workflow
• 1908be7 Fix release workflow
• 6d7ffea Merge pull request #1107 from woodruffw-forks/release-5.1.0
• bc91e57 Update changelog for 5.1.0
• de39ade Merge pull request #1085 from pypa/feature/pep-621
• 75de094 Merge pull request #1104 from ascheel/main
• c512bbf Properly handle repository URLs with auth in them
• e0ed808 Changelog entry
• 72ee030 Change regex string to a raw string.
• 04d7e27 Sanitize URLs for logging/display purposes.
• Additional commits viewable in compare view

Updates zipp from 3.18.1 to 3.19.0

Changelog

Sourced from zipp's changelog.

v3.19.0

Features

• Implement is_symlink. (#117)

v3.18.2

No significant changes.

Commits

• 608f90a Finalize
• 3a22d72 Merge pull request #118 from jaraco/feature/is-symlink
• dc5fe8f Implement is_symlink.
• 387dcea Revise test to capture new expectation.
• 8f09d15 Expand the alpharep fixture to include a symlink.
• 051250e Finalize
• 9f0a0c8 Use an overlay object to make tests appear to use zipfile.Path to reduce diff...
• b754ab7 Utilize temp_dir from os_helper.
• cdbd58b gh-119064: Use os_helper.FakePath instead of pathlib.Path in tests (python/cp...
• 18030dc Merge https://github.com/jaraco/skeleton
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.