Bump pipenv from 2018.11.26 to 2020.11.15

[dependabot-preview[bot]]

Bumps pipenv from 2018.11.26 to 2020.11.15.

Release notes

Sourced from pipenv's releases.

Release v2020.11.15

No release notes provided.

Release v2020.11.4

No release notes provided.

Release v2020.8.13

Bug Fixes

• Fixed behaviour of pipenv uninstall --all-dev. From now on it does not uninstall regular packages. [#3722](https://github.com/pypa/pipenv/issues/3722) <https://github.com/pypa/pipenv/issues/3722>_
• Fix a bug that incorrect Python path will be used when --system flag is on. [#4315](https://github.com/pypa/pipenv/issues/4315) <https://github.com/pypa/pipenv/issues/4315>_
• Fix falsely flagging a Homebrew installed Python as a virtual environment [#4316](https://github.com/pypa/pipenv/issues/4316) <https://github.com/pypa/pipenv/issues/4316>_
• Fix a bug that pipenv uninstall throws an exception that does not exist. [#4321](https://github.com/pypa/pipenv/issues/4321) <https://github.com/pypa/pipenv/issues/4321>_
• Fix a bug that Pipenv can't locate the correct file of special directives in setup.cfg of an editable package. [#4335](https://github.com/pypa/pipenv/issues/4335) <https://github.com/pypa/pipenv/issues/4335>_
• Fix a bug that setup.py can't be parsed correctly when the assignment is type-annotated. [#4342](https://github.com/pypa/pipenv/issues/4342) <https://github.com/pypa/pipenv/issues/4342>_
• Fix a bug that pipenv graph throws an exception that PipenvCmdError(cmd_string, c.out, c.err, return_code). [#4388](https://github.com/pypa/pipenv/issues/4388) <https://github.com/pypa/pipenv/issues/4388>_
• Do not copy the whole directory tree of local file package. [#4403](https://github.com/pypa/pipenv/issues/4403) <https://github.com/pypa/pipenv/issues/4403>_
• Correctly detect whether Pipenv in run under an activated virtualenv. [#4412](https://github.com/pypa/pipenv/issues/4412) <https://github.com/pypa/pipenv/issues/4412>_

Vendored Libraries

• Update requirementslib to 1.5.12. [#4385](https://github.com/pypa/pipenv/issues/4385) <https://github.com/pypa/pipenv/issues/4385>_
• • Update requirements to 1.5.13.
  • Update pip-shims to 0.5.3. [#4421](https://github.com/pypa/pipenv/issues/4421) <https://github.com/pypa/pipenv/issues/4421>_

Release v2020.6.2

2020.6.2 (2020-06-02)

Features & Improvements

• Pipenv will now detect existing venv and virtualenv based virtual environments more robustly. #4276

Bug Fixes

• + signs in URL authentication fragments will no longer be incorrectly replaced with space ( ) characters. #4271
• Fixed a regression which caused Pipenv to fail when running under /. #4273
• setup.py files with version variables read from os.environ are now able to be parsed successfully. #4274
• Fixed a bug which caused Pipenv to fail to install packages in a virtual environment if those packages were already present in the system global environment. #4276
• Fix a bug that caused non-specific versions to be pinned in Pipfile.lock. #4278
• Corrected a missing exception import and invalid function call invocations in pipenv.cli.command. #4286
• Fixed an issue with resolving packages with names defined by function calls in setup.py. #4292
• Fixed a regression with installing the current directory, or ., inside a venv based virtual environment. #4295
• Fixed a bug with the discovery of python paths on Windows which could prevent installation of environments during pipenv install. #4296
• Fixed an issue in the requirementslib AST parser which prevented parsing of setup.py files for dependency metadata. #4298

Changelog

Sourced from pipenv's changelog.

2020.11.15 (2020-11-15)

Features & Improvements

• Support expanding environment variables in requirement URLs. #3516
• Show warning message when a dependency is skipped in locking due to the mismatch of its markers. #4346

Bug Fixes

• Fix a bug that executable scripts with leading backslash can't be executed via pipenv run. #4368
• Fix a bug that VCS dependencies always satisfy even if the ref has changed. #4387
• Restrict the acceptable hash type to SHA256 only. #4517
• Fix the output of pipenv scripts under Windows platform. #4523
• Fix a bug that the resolver takes wrong section to validate constraints. #4527

Vendored Libraries

Update vendored dependencies:
:   -   colorama from 0.4.3 to 0.4.4
-   python-dotenv from 0.10.3 to 0.15.0
-   first from 2.0.1 to 2.0.2
-   iso8601 from 0.1.12 to 0.1.13
-   parse from 1.15.0 to 1.18.0
-   pipdeptree from 0.13.2 to 1.0.0
-   requests from 2.23.0 to 2.25.0
-   idna from 2.9 to 2.10
-   urllib3 from 1.25.9 to 1.26.1
-   certifi from 2020.4.5.1 to 2020.11.8
-   requirementslib from 1.5.15 to 1.5.16
-   attrs from 19.3.0 to 20.3.0
-   distlib from 0.3.0 to 0.3.1
-   packaging from 20.3 to 20.4
-   six from 1.14.0 to 1.15.0
-   semver from 2.9.0 to 2.13.0
-   toml from 0.10.1 to 0.10.2
-   cached-property from 1.5.1 to 1.5.2
-   yaspin from 0.14.3 to 1.2.0
-   resolvelib from 0.3.0 to 0.5.2
-   pep517 from 0.8.2 to 0.9.1
-   zipp from 0.6.0 to 1.2.0
-   importlib-metadata from 1.6.0 to 2.0.0
-   importlib-resources from 1.5.0 to 3.3.0 #4533

Commits

• dc377ef Release v2020.11.15
• ef60e1e Merge pull request #4535 from stevecshanks/update-docs-for-pyenv
• d38e666 Update pyenv docs to avoid using shim
• 35a8028 Fix the release script
• d9db346 Merge pull request #4533 from pypa/vendor/update
• a95ed52 Update the section in document
• e583f75 Change the pipfile format
• cd6fc80 Inject vendor library root
• 7b73153 update patch file
• 0a7235b Add test case
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)

[dependabot-preview[bot]]

Superseded by #304.