Bump the pip-dependencies group with 6 updates

[dependabot[bot]]

Bumps the pip-dependencies group with 6 updates:

Package	From	To
black	24.8.0	24.10.0
flake8-bugbear	24.8.19	24.10.31
mypy	1.11.2	1.13.0
pre-commit-hooks	4.6.0	5.0.0
pre-commit	3.8.0	4.0.1
reorder-python-imports	3.13.0	3.14.0

Updates black from 24.8.0 to 24.10.0

Release notes

Sourced from black's releases.

24.10.0

Highlights

• Black is now officially tested with Python 3.13 and provides Python 3.13 mypyc-compiled wheels. (#4436) (#4449)
• Black will issue an error when used with Python 3.12.5, due to an upstream memory safety issue in Python 3.12.5 that can cause Black's AST safety checks to fail. Please use Python 3.12.6 or Python 3.12.4 instead. (#4447)
• Black no longer supports running with Python 3.8 (#4452)

Stable style

• Fix crashes involving comments in parenthesised return types or X | Y style unions. (#4453)
• Fix skipping Jupyter cells with unknown %% magic (#4462)

Preview style

• Fix type annotation spacing between * and more complex type variable tuple (i.e. def fn(*args: *tuple[*Ts, T]) -> None: pass) (#4440)

Caching

• Fix bug where the cache was shared between runs with and without --unstable (#4466)

Packaging

• Upgrade version of mypyc used to 1.12 beta (#4450) (#4449)
• blackd now requires a newer version of aiohttp. (#4451)

Output

• Added Python target version information on parse error (#4378)
• Add information about Black version to internal error messages (#4457)

Changelog

Sourced from black's changelog.

24.10.0

Highlights

• Black is now officially tested with Python 3.13 and provides Python 3.13 mypyc-compiled wheels. (#4436) (#4449)
• Black will issue an error when used with Python 3.12.5, due to an upstream memory safety issue in Python 3.12.5 that can cause Black's AST safety checks to fail. Please use Python 3.12.6 or Python 3.12.4 instead. (#4447)
• Black no longer supports running with Python 3.8 (#4452)

Stable style

• Fix crashes involving comments in parenthesised return types or X | Y style unions. (#4453)
• Fix skipping Jupyter cells with unknown %% magic (#4462)

Preview style

• Fix type annotation spacing between * and more complex type variable tuple (i.e. def fn(*args: *tuple[*Ts, T]) -> None: pass) (#4440)

Caching

• Fix bug where the cache was shared between runs with and without --unstable (#4466)

Packaging

• Upgrade version of mypyc used to 1.12 beta (#4450) (#4449)
• blackd now requires a newer version of aiohttp. (#4451)

Output

• Added Python target version information on parse error (#4378)
• Add information about Black version to internal error messages (#4457)

Commits

• 1b2427a Prepare release 24.10.0 (#4471)
• a22b1eb Add mypyc 3.13 wheel build (#4449)
• b7d0e72 Bump AndreMiras/coveralls-python-action from 65c1672f0b8a201702d86c81b79187df...
• f1a2f92 Include --unstable in cache key (#4466)
• 8d9d18c Fix skipping Jupyter cells with unknown %% magic (#4462)
• bbfdba3 Fix docs CI: use venv for uv to fix 'failed to create directory' (#4460)
• 8fb2add Use builtin generics (#4458)
• 2a45cec Fix crashes with comments in parentheses (#4453)
• b4d6d86 Drop Python 3.8 support (#4452)
• ac018c1 Require newer aiohttp for blackd (#4451)
• Additional commits viewable in compare view

Updates flake8-bugbear from 24.8.19 to 24.10.31

Release notes

Sourced from flake8-bugbear's releases.

24.10.31

• B041: New dictionary same key AND value check (#496)
• B037: Fix typo in error message
• B024: No longer treats assigned class variables as abstract (#471)
• Bump required attrs version to 22.2.0

Commits

• 108bba4 Fix README format
• 72f6116 Update CHANGES + move to version 24.10.31 to release
• 07a5676 Add scentence really explaining B041
• 95f8791 Add B041: Duplicate key-value pairs in dictionary literals (#496)
• ea13615 Fix typo in B037 message (#495)
• cf8749c b024 no longer treats assigned class vars as abstract (#494)
• ba3a9bf [pre-commit.ci] pre-commit autoupdate (#493)
• 43b8c54 Bump required attrs version (#490)
• f5abeaf Add B910 before B950 in README.rst
• See full diff in compare view

Updates mypy from 1.11.2 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Change to enum membership semantics

As per the updated typing specification for enums, enum members must be left unannotated.

class Pet(Enum):
    CAT = 1  # Member attribute
    DOG = 2  # Member attribute
    WOLF: int = 3  # New error: Enum members must be left unannotated
species: str  # Considered a non-member attribute

In particular, the specification change can result in issues in type stubs (.pyi files), since historically it was common to leave the value absent:

# In a type stub (.pyi file)
class Pet(Enum):

# Change in semantics: previously considered members, now non-member attributes

CAT: int

DOG: int
# Mypy will now issue a warning if it detects this situation in type stubs:
# > Detected enum "Pet" in a type stub with zero members.
# > There is a chance this is due to a recent change in the semantics of enum membership.
# > If so, use `member = value` to mark an enum member, instead of `member: type`

class Pet(Enum):

# As per the specification, you should now do one of the following:

DOG = 1  # Member attribute with value 1 and known type

WOLF = cast(int, ...)  # Member attribute with unknown value but known type

LION = ...  # Member attribute with unknown value and unknown type

Contributed by Terence Honles in PR 17207 and Shantanu Jain in PR 18068.

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:

python3 -m pip install -U mypy

... (truncated)

Commits

• eb31034 Bump version to 1.13.0
• 2eeb588 Update changelog for 1.12.1 (#17999)
• bc0386b Changelog for 1.13 (#18000)
• 5c4d2db Add faster-cache extra, test in CI (#17978)
• 854ad18 Make is_sub_path faster (#17962)
• 50aa4ca Speed up stubs suggestions (#17965)
• 7c27808 Use orjson instead of json, when available (#17955)
• 2cd2406 Use fast path in modulefinder more often (#17950)
• e20aaee Let mypyc optimise os.path.join (#17949)
• 159974c Use sha1 for hashing (#17953)
• Additional commits viewable in compare view

Updates pre-commit-hooks from 4.6.0 to 5.0.0

Release notes

Sourced from pre-commit-hooks's releases.

pre-commit-hooks v5.0.0

Features

• requirements-txt-fixer: also remove pkg_resources==....
  • #850 PR by @​ericfrederich.
  • #1030 issue by @​ericfrederich.
• check-illegal-windows-names: new hook!
  • #1044 PR by @​ericfrederich.
  • #589 issue by @​ericfrederich.
  • #1049 PR by @​Jeffrey-Lim.
• pretty-format-json: continue processing even if a file has a json error.
  • #1039 PR by @​amarvin.
  • #1038 issue by @​amarvin.

Fixes

• destroyed-symlinks: set stages to [pre-commit, pre-push, manual]
  • PR #1085 by @​AdrianDC.

Migrating

• pre-commit-hooks now requires pre-commit>=3.2.0.
• use non-deprecated names for stages.
  • #1093 PR by @​asottile.

Changelog

Sourced from pre-commit-hooks's changelog.

5.0.0 - 2024-10-05

Features

• requirements-txt-fixer: also remove pkg_resources==....
  • #850 PR by @​ericfrederich.
  • #1030 issue by @​ericfrederich.
• check-illegal-windows-names: new hook!
  • #1044 PR by @​ericfrederich.
  • #589 issue by @​ericfrederich.
  • #1049 PR by @​Jeffrey-Lim.
• pretty-format-json: continue processing even if a file has a json error.
  • #1039 PR by @​amarvin.
  • #1038 issue by @​amarvin.

Fixes

• destroyed-symlinks: set stages to [pre-commit, pre-push, manual]
  • PR #1085 by @​AdrianDC.

Migrating

• pre-commit-hooks now requires pre-commit>=3.2.0.
• use non-deprecated names for stages.
  • #1093 PR by @​asottile.

Commits

• cef0300 v5.0.0
• f47ab2f Merge pull request #1049 from Jeffrey-Lim/main
• fd01124 Extend check for illegal Windows filenames
• 515e8b3 Merge pull request #1085 from AdrianDC/destroyed-symlinks
• c7d1e85 set stages for destroyed-symlinks
• 5b5b46d Merge pull request #1093 from pre-commit/non-deprecated-stages-names
• 003dfa5 update stages names to the non-deprecated names
• ed71474 Merge pull request #1088 from pre-commit/pre-commit-ci-update-config
• 6553d02 remove types-all
• 6952eeb [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates pre-commit from 3.8.0 to 4.0.1

Release notes

Sourced from pre-commit's releases.

pre-commit v4.0.1

Fixes

• Fix pre-commit migrate-config for unquoted deprecated stages names with purelib pyyaml.
  • #3324 PR by @​asottile.
  • pre-commit-ci/issues#234 issue by @​lorenzwalthert.

pre-commit v4.0.0

Features

• Improve pre-commit migrate-config to handle more yaml formats.
  • #3301 PR by @​asottile.
• Handle stages deprecation in pre-commit migrate-config.
  • #3302 PR by @​asottile.
  • #2732 issue by @​asottile.
• Upgrade ruby-build.
  • #3199 PR by @​ThisGuyCodes.
• Add "sensible regex" warnings to repo: meta.
  • #3311 PR by @​asottile.
• Add warnings for deprecated stages (commit -> pre-commit, push -> pre-push, merge-commit -> pre-merge-commit).
  • #3312 PR by @​asottile.
  • #3313 PR by @​asottile.
  • #3315 PR by @​asottile.
  • #2732 issue by @​asottile.

Migrating

• language: python_venv has been removed -- use language: python instead.
  • #3320 PR by @​asottile.
  • #2734 issue by @​asottile.

Changelog

Sourced from pre-commit's changelog.

4.0.1 - 2024-10-08

Fixes

• Fix pre-commit migrate-config for unquoted deprecated stages names with purelib pyyaml.
  • #3324 PR by @​asottile.
  • pre-commit-ci/issues#234 issue by @​lorenzwalthert.

4.0.0 - 2024-10-05

Features

• Improve pre-commit migrate-config to handle more yaml formats.
  • #3301 PR by @​asottile.
• Handle stages deprecation in pre-commit migrate-config.
  • #3302 PR by @​asottile.
  • #2732 issue by @​asottile.
• Upgrade ruby-build.
  • #3199 PR by @​ThisGuyCodes.
• Add "sensible regex" warnings to repo: meta.
  • #3311 PR by @​asottile.
• Add warnings for deprecated stages (commit -> pre-commit, push -> pre-push, merge-commit -> pre-merge-commit).
  • #3312 PR by @​asottile.
  • #3313 PR by @​asottile.
  • #3315 PR by @​asottile.
  • #2732 issue by @​asottile.

Migrating

• language: python_venv has been removed -- use language: python instead.
  • #3320 PR by @​asottile.
  • #2734 issue by @​asottile.

Commits

• cc4a522 v4.0.1
• 772d7d4 Merge pull request #3324 from pre-commit/migrate-config-purelib
• 222c62b fix migrate-config for purelib yaml
• 3d5548b Merge pull request #3323 from pre-commit/pre-commit-ci-update-config
• 4235a87 [pre-commit.ci] pre-commit autoupdate
• dbccd57 v4.0.0
• d07e529 Merge pull request #3320 from pre-commit/remove-python-venv
• 801b956 remove deprecated python_venv alias
• a2f7b80 Merge pull request #3315 from pre-commit/warn-deprecated-stage-names-on-init
• d317223 add warning for deprecates stages for remote repos on init
• Additional commits viewable in compare view

Updates reorder-python-imports from 3.13.0 to 3.14.0

Commits

• fd0b4e1 v3.14.0
• 02970fd Merge pull request #395 from asottile/regen-typing-symbols
• 7a188aa update symbols for 3.13 release
• 6b7af8f Merge pull request #394 from asottile/pre-commit-ci-update-config
• d846b5f [pre-commit.ci] pre-commit autoupdate
• e19ed44 Merge pull request #392 from asottile/pre-commit-ci-update-config
• 9804574 specify typed dependencies
• cf88159 [pre-commit.ci] pre-commit autoupdate
• 0d01e29 Merge pull request #391 from asottile/pre-commit-ci-update-config
• 4eb3351 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions