Bump pipenv from 2018.10.13 to 2018.11.14

Bumps pipenv from 2018.10.13 to 2018.11.14.

Release notes

*Sourced from [pipenv's releases](https://github.com/pypa/pipenv/releases).* > 2018.11.14 (2018-11-14) > ======================= > > Features & Improvements > ----------------------- > > - Improved exceptions and error handling on > failures. [#1977](https://github-redirect.dependabot.com/pypa/pipenv/issues/1977) > - Added persistent settings for all CLI flags via `PIPENV_{FLAG_NAME}` > environment variables by enabling `auto_envvar_prefix=PIPENV` in > click (implements PEEP-0002). [#2200](https://github-redirect.dependabot.com/pypa/pipenv/issues/2200) > - Added improved messaging about available but skipped updates due to > dependency conflicts when running > `pipenv update --outdated`. [#2411](https://github-redirect.dependabot.com/pypa/pipenv/issues/2411) > - Added environment variable `PIPENV_PYUP_API_KEY` to add ability to > override the bundled pyup.io API key. [#2825](https://github-redirect.dependabot.com/pypa/pipenv/issues/2825) > - Added additional output to `pipenv update --outdated` to indicate > that the operation succeded and all packages were already up to > date. [#2828](https://github-redirect.dependabot.com/pypa/pipenv/issues/2828) > - Updated `crayons` patch to enable colors on native powershell but > swap native blue for magenta. [#3020](https://github-redirect.dependabot.com/pypa/pipenv/issues/3020) > - Added support for `--bare` to `pipenv clean`, and fixed > `pipenv sync --bare` to actually reduce output. [#3041](https://github-redirect.dependabot.com/pypa/pipenv/issues/3041) > - Added windows-compatible spinner via upgraded `vistir` dependency. [#3089](https://github-redirect.dependabot.com/pypa/pipenv/issues/3089) > - Added support for python installations managed by > `asdf`. [#3096](https://github-redirect.dependabot.com/pypa/pipenv/issues/3096) > - Improved runtime performance of no-op commands such as > `pipenv --venv` by around 2/3. [#3158](https://github-redirect.dependabot.com/pypa/pipenv/issues/3158) > - Do not show error but success for running `pipenv uninstall --all` > in a fresh virtual environment. [#3170](https://github-redirect.dependabot.com/pypa/pipenv/issues/3170) > - Improved asynchronous installation and error handling via queued > subprocess paralleization. [#3217](https://github-redirect.dependabot.com/pypa/pipenv/issues/3217) > > Bug Fixes > --------- > > - Remote non-PyPI artifacts and local wheels and artifacts will now > include their own hashes rather than including hashes from > `PyPI`. [#2394](https://github-redirect.dependabot.com/pypa/pipenv/issues/2394) > - Non-ascii characters will now be handled correctly when parsed by > pipenv's `ToML` > parsers. [#2737](https://github-redirect.dependabot.com/pypa/pipenv/issues/2737) > - Updated `pipenv uninstall` to respect the `--skip-lock` > argument. [#2848](https://github-redirect.dependabot.com/pypa/pipenv/issues/2848) > - Fixed a bug which caused uninstallation to sometimes fail to > successfullly remove packages from `Pipfiles` with comments on > preceding or following > lines. [#2885](https://github-redirect.dependabot.com/pypa/pipenv/issues/2885), [#3099](https://github-redirect.dependabot.com/pypa/pipenv/issues/3099) > - Pipenv will no longer fail when encountering python versions on > Windows that have been > ... (truncated)

Changelog

*Sourced from [pipenv's changelog](https://github.com/pypa/pipenv/blob/master/CHANGELOG.rst).* > 2018.11.14 (2018-11-14) > ======================= > > Features & Improvements > ----------------------- > > - Improved exceptions and error handling on failures. `#1977 `_ > - Added persistent settings for all CLI flags via ``PIPENV_{FLAG_NAME}`` environment variables by enabling ``auto_envvar_prefix=PIPENV`` in click (implements PEEP-0002). `#2200 `_ > - Added improved messaging about available but skipped updates due to dependency conflicts when running ``pipenv update --outdated``. `#2411 `_ > - Added environment variable `PIPENV_PYUP_API_KEY` to add ability > to override the bundled pyup.io API key. `#2825 `_ > - Added additional output to ``pipenv update --outdated`` to indicate that the operation succeded and all packages were already up to date. `#2828 `_ > - Updated ``crayons`` patch to enable colors on native powershell but swap native blue for magenta. `#3020 `_ > - Added support for ``--bare`` to ``pipenv clean``, and fixed ``pipenv sync --bare`` to actually reduce output. `#3041 `_ > - Added windows-compatible spinner via upgraded ``vistir`` dependency. `#3089 `_ > - - Added support for python installations managed by ``asdf``. `#3096 `_ > - Improved runtime performance of no-op commands such as ``pipenv --venv`` by around 2/3. `#3158 `_ > - Do not show error but success for running ``pipenv uninstall --all`` in a fresh virtual environment. `#3170 `_ > - Improved asynchronous installation and error handling via queued subprocess paralleization. `#3217 `_ > > Bug Fixes > --------- > > - Remote non-PyPI artifacts and local wheels and artifacts will now include their own hashes rather than including hashes from ``PyPI``. `#2394 `_ > - Non-ascii characters will now be handled correctly when parsed by pipenv's ``ToML`` parsers. `#2737 `_ > - Updated ``pipenv uninstall`` to respect the ``--skip-lock`` argument. `#2848 `_ > - Fixed a bug which caused uninstallation to sometimes fail to successfullly remove packages from ``Pipfiles`` with comments on preceding or following lines. `#2885 `_, > `#3099 `_ > - Pipenv will no longer fail when encountering python versions on Windows that have been uninstalled. `#2983 `_ > - Fixed unnecessary extras are added when translating markers `#3026 `_ > - Fixed a virtualenv creation issue which could cause new virtualenvs to inadvertently attempt to read and write to global site packages. `#3047 `_ > - Fixed an issue with virtualenv path derivation which could cause errors, particularly for users on WSL bash. `#3055 `_ > - Fixed a bug which caused ``Unexpected EOF`` errors to be thrown when ``pip`` was waiting for input from users who had put login credentials in environment variables. `#3088 `_ > - Fixed a bug in ``requirementslib`` which prevented successful installation from mercurial repositories. `#3090 `_ > - Fixed random resource warnings when using pyenv or any other subprocess calls. `#3094 `_ > - - Fixed a bug which sometimes prevented cloning and parsing ``mercurial`` requirements. `#3096 `_ > - Fixed an issue in ``delegator.py`` related to subprocess calls when using ``PopenSpawn`` to stream output, which sometimes threw unexpected ``EOF`` errors. `#3102 `_, > `#3114 `_, > `#3117 `_ > - Fix the path casing issue that makes `pipenv clean` fail on Windows `#3104 `_ > - Pipenv will avoid leaving build artifacts in the current working directory. `#3106 `_ > - Fixed issues with broken subprocess calls leaking resource handles and causing random and sporadic failures. `#3109 `_ > - Fixed an issue which caused ``pipenv clean`` to sometimes clean packages from the base ``site-packages`` folder or fail entirely. `#3113 `_ > - Updated ``pythonfinder`` to correct an issue with unnesting of nested paths when searching for python versions. `#3121 `_ > - Added additional logic for ignoring and replacing non-ascii characters when formatting console output on non-UTF-8 systems. `#3131 `_ > - Fix virtual environment discovery when `PIPENV_VENV_IN_PROJECT` is set, but the in-project `.venv` is a file. `#3134 `_ > - Hashes for remote and local non-PyPI artifacts will now be included in ``Pipfile.lock`` during resolution. `#3145 `_ > - Fix project path hashing logic in purpose to prevent collisions of virtual environments. `#3151 `_ > - Fix package installation when the virtual environment path contains parentheses. `#3158 `_ > - Azure Pipelines YAML files are updated to use the latest syntax and product name. `#3164 `_ > ... (truncated)

Commits

- [`6f07e72`](https://github.com/pypa/pipenv/commit/6f07e72e5aeaa642f09b3517f8816b82675dd141) Release 2018.11.14 - [`b51afde`](https://github.com/pypa/pipenv/commit/b51afde84abe4f3bdfaff580c5a506092061527f) Update towncrier template - [`d9ebad3`](https://github.com/pypa/pipenv/commit/d9ebad335dc4cfff9cb223f7cc3141066044b65b) Merge pull request [#3217](https://github-redirect.dependabot.com/pypa/pipenv/issues/3217) from pypa/maintenance/merge-3191-3196-3209 - [`41cbe4d`](https://github.com/pypa/pipenv/commit/41cbe4dbdd927206cca6d07150b73f5eb434baff) Pin postreleases to pass packaging ci - [`a8f4c7e`](https://github.com/pypa/pipenv/commit/a8f4c7e2a3839667a8ff0e0626768e635b44004a) accidental commit - [`08d94d4`](https://github.com/pypa/pipenv/commit/08d94d4ebc7f21e49ac1781c73d2c03433ac730d) Update core and rebuild ci - [`5e5e1ed`](https://github.com/pypa/pipenv/commit/5e5e1ed4bc0e09c3a45394c2369502e0ead217c2) Stray print - [`bfa0b29`](https://github.com/pypa/pipenv/commit/bfa0b290cca65f3ed8b95350aaf37eb1ed794d7b) Update vendored deps - [`ada66d3`](https://github.com/pypa/pipenv/commit/ada66d3e72d53ce0d2051b626a85dc0a593eacc5) Remove old patch - [`86c894d`](https://github.com/pypa/pipenv/commit/86c894d81b2378ca8d962b1af3b904f81265d4d8) Woops, delegator isn't updated, neither packaging - Additional commits viewable in [compare view](https://github.com/pypa/pipenv/compare/v2018.10.13...v2018.11.14)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired) Finally, you can contact us by mentioning @dependabot.

mozilla / servicebook

Bump pipenv from 2018.10.13 to 2018.11.14 #167