Removed support for SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION, as it
is deemed prone to errors. (#4746)
v75.4.0
Features
Added support for the environment variable
SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION=true, allowing users to bypass
the validation of pyproject.toml.
This option should be used only as a last resort when resolving dependency
issues, as it may lead to improper functioning.
Users who enable this setting are responsible for ensuring that pyproject.toml
complies with setuptools requirements. (#4611)
.. attention::
This environment variable was removed in a later version of setuptools.
Remove dependency on importlib_resources
and the vendored copy of the library.
Instead, setuptools consistently rely on stdlib's importlib.resources
(available on Python 3.9+). (#4718)
Setuptools' bdist_wheel implementation no longer produces wheels with
the m SOABI flag (pymalloc-related).
This flag was removed on Python 3.8+ (see :obj:sys.abiflags). (#4718)
Updated vendored packaging version to 24.2. (#4740)
Bugfixes
Merge with pypa/distutils@251797602, including fix for dirutil.mkpath handling in pypa/distutils#304.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Updates the requirements on setuptools to permit the latest version.
Changelog
Sourced from setuptools's changelog.
... (truncated)
Commits
5400015
Bump version: 75.4.0 → 75.5.001b9f20
Add note about removed variable in NEWS.rst57ed6f0
Revert "Allow user to skip validation of pyproject.toml via env var" (#4746)36e945e
Add news fragmentf6c9fdb
Revert "Allow user to skip validation of pyproject.toml via env var"8f5559c
Bump version: 75.3.0 → 75.4.06cc5f08
Update mypy requirement from ==1.12.* to >=1.12,<1.14 (#4700)748c851
Update mypy requirement from ==1.12.* to >=1.12,<1.14c9d980f
Refactor/unify/extractshutil.rmtree
callbacks (and avoid repetition) (#4682)db2b206
Extract test for shutil.rmtree callback to its own fileDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show