build(deps): Bump gitpython from 3.1.37 to 3.1.41

[dependabot[bot]]

Bumps gitpython from 3.1.37 to 3.1.41.

Release notes

Sourced from gitpython's releases.

3.1.41 - fix Windows security issue

The details about the Windows security issue can be found in this advisory.

Special thanks go to @​EliahKagan who reported the issue and fixed it in a single stroke, while being responsible for an incredible amount of improvements that he contributed over the last couple of months ❤️.

What's Changed

• Add __all__ in git.exc by @​EliahKagan in gitpython-developers/GitPython#1719
• Set submodule update cadence to weekly by @​EliahKagan in gitpython-developers/GitPython#1721
• Never modify sys.path by @​EliahKagan in gitpython-developers/GitPython#1720
• Bump git/ext/gitdb from 8ec2390 to ec58b7e by @​dependabot in gitpython-developers/GitPython#1722
• Revise comments, docstrings, some messages, and a bit of code by @​EliahKagan in gitpython-developers/GitPython#1725
• Use zero-argument super() by @​EliahKagan in gitpython-developers/GitPython#1726
• Remove obsolete note in _iter_packed_refs by @​EliahKagan in gitpython-developers/GitPython#1727
• Reorganize test_util and make xfail marks precise by @​EliahKagan in gitpython-developers/GitPython#1729
• Clarify license and make module top comments more consistent by @​EliahKagan in gitpython-developers/GitPython#1730
• Deprecate compat.is_, rewriting all uses by @​EliahKagan in gitpython-developers/GitPython#1732
• Revise and restore some module docstrings by @​EliahKagan in gitpython-developers/GitPython#1735
• Make the rmtree callback Windows-only by @​EliahKagan in gitpython-developers/GitPython#1739
• List all non-passing tests in test summaries by @​EliahKagan in gitpython-developers/GitPython#1740
• Document some minor subtleties in test_util.py by @​EliahKagan in gitpython-developers/GitPython#1749
• Always read metadata files as UTF-8 in setup.py by @​EliahKagan in gitpython-developers/GitPython#1748
• Test native Windows on CI by @​EliahKagan in gitpython-developers/GitPython#1745
• Test macOS on CI by @​EliahKagan in gitpython-developers/GitPython#1752
• Let close_fds be True on all platforms by @​EliahKagan in gitpython-developers/GitPython#1753
• Fix IndexFile.from_tree on Windows by @​EliahKagan in gitpython-developers/GitPython#1751
• Remove unused TASKKILL fallback in AutoInterrupt by @​EliahKagan in gitpython-developers/GitPython#1754
• Don't return with operand when conceptually void by @​EliahKagan in gitpython-developers/GitPython#1755
• Group .gitignore entries by purpose by @​EliahKagan in gitpython-developers/GitPython#1758
• Adding dubious ownership handling by @​marioaag in gitpython-developers/GitPython#1746
• Avoid brittle assumptions about preexisting temporary files in tests by @​EliahKagan in gitpython-developers/GitPython#1759
• Overhaul noqa directives by @​EliahKagan in gitpython-developers/GitPython#1760
• Clarify some Git.execute kill_after_timeout limitations by @​EliahKagan in gitpython-developers/GitPython#1761
• Bump actions/setup-python from 4 to 5 by @​dependabot in gitpython-developers/GitPython#1763
• Don't install black on Cygwin by @​EliahKagan in gitpython-developers/GitPython#1766
• Extract all "import gc" to module level by @​EliahKagan in gitpython-developers/GitPython#1765
• Extract remaining local "import gc" to module level by @​EliahKagan in gitpython-developers/GitPython#1768
• Replace xfail with gc.collect in TestSubmodule.test_rename by @​EliahKagan in gitpython-developers/GitPython#1767
• Enable CodeQL by @​EliahKagan in gitpython-developers/GitPython#1769
• Replace some uses of the deprecated mktemp function by @​EliahKagan in gitpython-developers/GitPython#1770
• Bump github/codeql-action from 2 to 3 by @​dependabot in gitpython-developers/GitPython#1773
• Run some Windows environment variable tests only on Windows by @​EliahKagan in gitpython-developers/GitPython#1774
• Fix TemporaryFileSwap regression where file_path could not be Path by @​EliahKagan in gitpython-developers/GitPython#1776
• Improve hooks tests by @​EliahKagan in gitpython-developers/GitPython#1777
• Fix if items of Index is of type PathLike by @​stegm in gitpython-developers/GitPython#1778
• Better document IterableObj.iter_items and improve some subclasses by @​EliahKagan in gitpython-developers/GitPython#1780
• Revert "Don't install black on Cygwin" by @​EliahKagan in gitpython-developers/GitPython#1783
• Add missing pip in $PATH on Cygwin CI by @​EliahKagan in gitpython-developers/GitPython#1784
• Shorten Iterable docstrings and put IterableObj first by @​EliahKagan in gitpython-developers/GitPython#1785
• Fix incompletely revised Iterable/IterableObj docstrings by @​EliahKagan in gitpython-developers/GitPython#1786
• Pre-deprecate setting Git.USE_SHELL by @​EliahKagan in gitpython-developers/GitPython#1782

... (truncated)

Commits

• f288738 bump patch level
• ef3192c Merge pull request #1792 from EliahKagan/popen
• 1f3caa3 Further clarify comment in test_hook_uses_shell_not_from_cwd
• 3eb7c2a Move safer_popen from git.util to git.cmd
• c551e91 Extract shared logic for using Popen safely on Windows
• 15ebb25 Clarify comment in test_hook_uses_shell_not_from_cwd
• f44524a Avoid spurious "location may have moved" on Windows
• a42ea0a Cover absent/no-distro bash.exe in hooks "not from cwd" test
• 7751436 Extract venv management from test_installation
• 66ff4c1 Omit CWD in search for bash.exe to run hooks on Windows
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/noseglasses/elf_diff/network/alerts).

[codecov[bot]]

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (ce2820b) 90.82% compared to head (579f5fe) 90.90%.

Additional details and impacted files

[](https://app.codecov.io/gh/noseglasses/elf_diff/pull/109?src=pr&el=tree&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None) ```diff @@ Coverage Diff @@ ## master #109 +/- ## ========================================== + Coverage 90.82% 90.90% +0.07% ========================================== Files 39 39 Lines 2671 2671 Branches 352 352 ========================================== + Hits 2426 2428 +2 + Misses 155 153 -2 Partials 90 90 ``` [see 1 file with indirect coverage changes](https://app.codecov.io/gh/noseglasses/elf_diff/pull/109/indirect-changes?src=pr&el=tree-more&utm_medium=referral&utm_source=github&utm_content=comment&utm_campaign=pr+comments&utm_term=None)