Bump the dependencies group across 1 directory with 11 updates

[dependabot[bot]]

Bumps the dependencies group with 11 updates in the /.config directory:

Package	From	To
pipdeptree	2.22.0	2.23.0
cairocffi	1.7.0	1.7.1
coverage	7.5.3	7.5.4
filelock	3.15.1	3.15.4
importlib-metadata	7.1.0	8.0.0
markdown-exec	1.9.1	1.9.3
pip	24.0	24.1.1
pyproject-api	1.6.1	1.7.1
setuptools	70.0.0	70.1.1
subprocess-tee	0.4.1	0.4.2
virtualenv	20.26.2	20.26.3

Updates pipdeptree from 2.22.0 to 2.23.0

Release notes

Sourced from pipdeptree's releases.

2.23.0

What's Changed

• Use non-deprecated pytest-console-scripts API by @​kemzeb in tox-dev/pipdeptree#377
• Print resolved interpreter when using env detection by @​stasfilin in tox-dev/pipdeptree#379

New Contributors

• @​stasfilin made their first contribution in tox-dev/pipdeptree#379

Full Changelog: https://github.com/tox-dev/pipdeptree/compare/2.22.0...2.23.0

Commits

• c2245d6 Print resolved interpreter when using env detection (#379)
• 07503eb [pre-commit.ci] pre-commit autoupdate (#382)
• 46575ba Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#381)
• ea9cc95 [pre-commit.ci] pre-commit autoupdate (#378)
• 9bda77e Use non-deprecated pytest-console-scripts API (#377)
• 7cd5561 [pre-commit.ci] pre-commit autoupdate (#375)
• See full diff in compare view

Updates cairocffi from 1.7.0 to 1.7.1

Changelog

Sourced from cairocffi's changelog.

cairocffi changelog

Version 1.7.1 .............

Released on 2024-06-18

• [#227](https://github.com/Kozea/cairocffi/issues/227) <https://github.com/Kozea/cairocffi/pull/227>_: Add get_hairline() and set_hairline() functions

Version 1.7.0 .............

Released on 2024-04-27

• Drop Python 3.7 support, add Python 3.12 support
• [#221](https://github.com/Kozea/cairocffi/issues/221) <https://github.com/Kozea/cairocffi/pull/225>_: Add environment variable to set folder where DLLs are installed on Windows
• [#225](https://github.com/Kozea/cairocffi/issues/225) <https://github.com/Kozea/cairocffi/pull/225>_: Use Ruff instead of Flake8 and isort

Version 1.6.1 .............

Released on 2023-07-24

• [#217](https://github.com/Kozea/cairocffi/issues/217) <https://github.com/Kozea/cairocffi/issues/217>_: Repair installation with PyInstaller

Version 1.6.0 .............

Released on 2023-06-12

This version uses a new CFFI mode that may break your program.

CairoCFFI now uses Flit for packaging and is also distributed as a Python wheel.

Please test carefully and don’t hesitate to report issues before using it in production.

• [#216](https://github.com/Kozea/cairocffi/issues/216) <https://github.com/Kozea/cairocffi/pull/216>_: Use ABI-level in-line CFFI mode

... (truncated)

Commits

• 0f45d6a Version 1.7.1
• 996a754 Merge pull request #227 from dtromb/#226-hairline
• caf8bcf Fixed long comment lines to pass ruff check.
• cd9689e Made test case for new 1.18 functionality condition on the correct version of...
• b7a5023 Added Context.{get,set}_hairline(), according changes to ffi header, and test...
• See full diff in compare view

Updates coverage from 7.5.3 to 7.5.4

Changelog

Sourced from coverage's changelog.

Version 7.5.4 — 2024-06-22

• If you attempt to combine statement coverage data with branch coverage data, coverage.py used to fail with the message "Can't combine arc data with line data" or its reverse, "Can't combine line data with arc data." These messages used internal terminology, making it hard for people to understand the problem. They are now changed to mention "branch coverage data" and "statement coverage data."

• Fixed a minor branch coverage problem with wildcard match/case cases using names or guard clauses.

• Started testing on 3.13 free-threading (nogil) builds of Python. I'm not claiming full support yet. Closes issue 1799_.

.. _issue 1799: nedbat/coveragepy#1799

.. _changes_7-5-3:

Commits

• 22c09c6 docs: sample HTML for 7.5.4
• 9e16381 docs: prep for 7.5.4
• fba9b9e docs: link issue 1799 from the changelog
• f124de8 build: no longer download kits to upload them
• 9516cf6 build: hash-pin all actions
• c6e0985 build: finish up the publish action
• 4a49458 build: get the latest dist run id for publishing
• fb15efa build: pin hashes for publishing actions
• c20af95 build: use the correct item: github.event.action
• ccbab15 build: dump all the github actions data
• Additional commits viewable in compare view

Updates filelock from 3.15.1 to 3.15.4

Release notes

Sourced from filelock's releases.

3.15.4

What's Changed

• Pass file_lock as positional argument by @​kwist-sgr in tox-dev/filelock#347

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.3...3.15.4

3.15.3

What's Changed

• Add test for virtualenv stability by @​gaborbernat in tox-dev/filelock#344
• Fix TypeError: _CountedFileLock.__init__() got an unexpected keyword argument 'timeout' by @​kwist-sgr in tox-dev/filelock#345

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.2...3.15.3

3.15.2

What's Changed

• Use a metaclass to implement the singleton pattern by @​kwist-sgr in tox-dev/filelock#340

New Contributors

• @​kwist-sgr made their first contribution in tox-dev/filelock#340

Full Changelog: https://github.com/tox-dev/filelock/compare/3.15.1...3.15.2

Commits

• 9a979df Pass file_lock as positional argument (#347)
• 3a79343 Fix `TypeError: _CountedFileLock.init() got an unexpected keyword argumen...
• 81d4cf9 Add test for virtualenv stability (#344)
• 192f1ef Use a metaclass to implement the singleton pattern (#340)
• 48788c5 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#341)
• 7bd3b7b [pre-commit.ci] pre-commit autoupdate (#342)
• See full diff in compare view

Updates importlib-metadata from 7.1.0 to 8.0.0

Changelog

Sourced from importlib-metadata's changelog.

v8.0.0

Deprecations and Removals

• Message.getitem now raises a KeyError on missing keys. (#371)
• Removed deprecated support for Distribution subclasses not implementing abstract methods.

v7.2.1

Bugfixes

• When reading installed files from an egg, use relative_to(walk_up=True) to honor files installed outside of the installation root. (#455)

v7.2.0

Features

• python/cpython#109829
• Updated fixtures for python/cpython#120801.

Commits

• f390168 Finalize
• c3bae1e Merge pull request #491 from python/debt/remove-legacy
• a970a49 Message.getitem now raises a KeyError on missing keys.
• 32c14aa Removed deprecated support for Distribution subclasses not implementing abstr...
• b76931d Finalize
• 48d2a85 Merge pull request #482 from dan-blanchard/fix-relative-to
• b94b42e Add news fragment
• e4d1dcc Remove additional method in SimplePath.
• 07a2a44 Revert "Fix mypy failure that has nothing to do with this PR"
• b815aee Mark compat code as uncovered.
• Additional commits viewable in compare view

Updates markdown-exec from 1.9.1 to 1.9.3

Release notes

Sourced from markdown-exec's releases.

1.9.3

1.9.3 - 2024-06-24

Compare with 1.9.2

Bug Fixes

• Fix patching lines in tracebacks on Python 3.13 (917af4c by Timothée Mazzucotelli). Issue-58

1.9.2

1.9.2 - 2024-06-20

Compare with 1.9.1

Bug Fixes

• Render source even if output is empty (d3f1e6b by Timothée Mazzucotelli). Issue-57

Changelog

Sourced from markdown-exec's changelog.

1.9.3 - 2024-06-24

Compare with 1.9.2

Bug Fixes

• Fix patching lines in tracebacks on Python 3.13 (917af4c by Timothée Mazzucotelli). Issue-58

1.9.2 - 2024-06-20

Compare with 1.9.1

Bug Fixes

• Render source even if output is empty (d3f1e6b by Timothée Mazzucotelli). Issue-57

Commits

• 5227fe2 chore: Prepare release 1.9.3
• a6e5053 chore: Template upgrade
• 917af4c fix: Fix patching lines in tracebacks on Python 3.13
• ecc341e tests: Don't install docs dependencies on Python 3.8 or 3.13
• 6c3fe25 docs: Remove Griffe gallery example
• 0349ed2 docs: Update Hyperbolic gallery example
• ed18c5f chore: Prepare release 1.9.2
• d3f1e6b fix: Render source even if output is empty
• cc36267 Merge branch 'main' of github.com:pawamoy/markdown-exec
• 6167c03 docs: Add Chalk example gallery
• See full diff in compare view

Updates pip from 24.0 to 24.1.1

Changelog

Sourced from pip's changelog.

24.1.1 (2024-06-26)

Bug Fixes

• Actually use system trust stores when the truststore feature is enabled.

Vendored Libraries

• Upgrade requests to 2.32.3

24.1 (2024-06-20)

Vendored Libraries

• Upgrade truststore to 0.9.1.

24.1b2 (2024-06-12)

Features

• Report informative messages about invalid requirements. ([#12713](https://github.com/pypa/pip/issues/12713) <https://github.com/pypa/pip/issues/12713>_)

Bug Fixes

• Eagerly import the self version check logic to avoid crashes while upgrading or downgrading pip at the same time. ([#12675](https://github.com/pypa/pip/issues/12675) <https://github.com/pypa/pip/issues/12675>_)
• Accommodate for mismatches between different sources of truth for extra names, for packages generated by setuptools. ([#12688](https://github.com/pypa/pip/issues/12688) <https://github.com/pypa/pip/issues/12688>_)
• Accommodate for development versions of CPython ending in + in the version string. ([#12691](https://github.com/pypa/pip/issues/12691) <https://github.com/pypa/pip/issues/12691>_)

Vendored Libraries

• Upgrade packaging to 24.1

• Upgrade requests to 2.32.0

• Remove vendored colorama

• Remove vendored six

• Remove vendored webencodings

• Remove vendored charset_normalizer

  requests provides optional character detection support on some APIs when processing ambiguous bytes. This isn't relevant for pip to function and we're able to remove it due to recent upstream changes.

... (truncated)

Commits

• a432c7f Bump for release
• a1ae982 Update AUTHORS.txt
• 300ed75 Upgrade requests to 2.32.3 (#12784)
• 5c389ec Split up Windows tests relying on urlunparse behaviour (#12788)
• 00c75c4 Merge pull request #12773 from matthewhughes934/fix-tests-unable-to-cleanup
• 67e2a56 Merge pull request #12783 from pfmoore/rel_doc2
• a58c20a Minor release is the quarter number
• 2753c77 Merge pull request #12780 from pfmoore/rel_doc
• 4dd55eb Document the structure of our release number
• 8cdf797 Fix directories not cleaned up after test
• Additional commits viewable in compare view

Updates pyproject-api from 1.6.1 to 1.7.1

Release notes

Sourced from pyproject-api's releases.

1.7.1

What's Changed

• Move changelog to GH releases by @​gaborbernat in tox-dev/pyproject-api#141

Full Changelog: https://github.com/tox-dev/pyproject-api/compare/1.7.0...1.7.1

1.7.0

What's Changed

• docs: correct Homepage URL by @​bernardcooke53 in tox-dev/pyproject-api#116
• Bump and fix CI for new setuptools by @​gaborbernat in tox-dev/pyproject-api#140

New Contributors

• @​bernardcooke53 made their first contribution in tox-dev/pyproject-api#116

Full Changelog: https://github.com/tox-dev/pyproject-api/compare/1.6.1...1.7.0

Commits

• e384fce Move changelog to GH releases (#141)
• 0a41076 Bump and fix CI for new setuptools (#140)
• d7add0e Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#139)
• 4ddd11c [pre-commit.ci] pre-commit autoupdate (#138)
• 010a4fe [pre-commit.ci] pre-commit autoupdate (#137)
• 1cb7a4b [pre-commit.ci] pre-commit autoupdate (#136)
• c101877 [pre-commit.ci] pre-commit autoupdate (#135)
• 4b66582 [pre-commit.ci] pre-commit autoupdate (#134)
• 443355e [pre-commit.ci] pre-commit autoupdate (#133)
• ba3d734 [pre-commit.ci] pre-commit autoupdate (#132)
• Additional commits viewable in compare view

Updates setuptools from 70.0.0 to 70.1.1

Changelog

Sourced from setuptools's changelog.

v70.1.1

Misc

• #4429

v70.1.0

Features

• Adopted the bdist_wheel command from the wheel project -- by :user:agronholm (#1386)

• Improve error message when pkg_resources.ZipProvider tries to extract resources with a missing Egg -- by :user:Avasam

  Added variables and parameter type annotations to pkg_resources to be nearly on par with typeshed.* -- by :user:Avasam * Excluding TypeVar and overload. Return types are currently inferred. (#4246)

• Migrated Setuptools' own config to pyproject.toml (#4310)

Bugfixes

• Prevent a TypeError: 'NoneType' object is not callable when shutil_rmtree is called without an onexc parameter on Python<=3.11 -- by :user:Avasam (#4382)
• Replace use of mktemp with can_symlink from the stdlib test suite. (#4403)
• Improvement for attr: directives in configuration to handle more edge cases related to complex package_dir. (#4405)
• Fix accidental implicit string concatenation. (#4411)

Misc

• #4365, #4422

Commits

• 222ebf9 Bump version: 70.1.0 → 70.1.1
• a66cedc "Embed" test_bdist_wheel files and execution (#4429)
• 48ce5ed pkg_resources: Merge @overload and TypeVar annotations from typeshed (#4390)
• 11bd24c Use set instead of True-only dict for non-public names (#4381)
• 82145bc Merge branch 'main' of https://github.com/pypa/setuptools into typeshed-overl...
• 807d7c1 Move check to _fn
• 2adbd4f Simplify setuptools own tool.setuptools.packages.find by using include rule...
• b4f5a07 Add news fragment
• ffea3b0 Remove no longer used bdist_wheel_testdata directory
• 61e18ff Adopt latest change from wheel test
• Additional commits viewable in compare view

Updates subprocess-tee from 0.4.1 to 0.4.2

Release notes

Sourced from subprocess-tee's releases.

v0.4.2

Bugfixes

• Use exec mode when passed a list of strings (#101) @​KotlinIsland

Commits

• ae1ccb7 [pre-commit.ci] pre-commit autoupdate (#126)
• 2d3b1ad Use exec mode when passed a list of strings (#101)
• c6337b4 gha: rename reusable repo (#124)
• 8929893 [pre-commit.ci] pre-commit autoupdate (#123)
• 6289101 Bump actions/cache from 3 to 4 (#121)
• dc7e38d Bump actions/setup-python from 4 to 5 (#122)
• d82470d Add test for #110 (#119)
• 1dd55a0 Bump actions/checkout from 3 to 4 (#115)
• 2b9aba5 Fix tests (#120)
• b5755c7 [pre-commit.ci] pre-commit autoupdate (#109)
• Additional commits viewable in compare view

Updates virtualenv from 20.26.2 to 20.26.3

Release notes

Sourced from virtualenv's releases.

20.26.3

What's Changed

• release 20.26.2 by @​gaborbernat in pypa/virtualenv#2724
• Bump embeded wheels by @​gaborbernat in pypa/virtualenv#2741

Full Changelog: https://github.com/pypa/virtualenv/compare/20.26.2...20.26.3

Changelog

Sourced from virtualenv's changelog.

v20.26.3 (2024-06-21)

Bugfixes - 20.26.3

- Upgrade embedded wheels:

setuptools to 70.1.0 from 69.5.1
pip to 24.1from 24.0 (:issue:2741)

Commits

• 3185e1f release 20.26.3
• 2a149ec Bump embeded wheels (#2741)
• bd91d48 [pre-commit.ci] pre-commit autoupdate (#2739)
• 8220288 Bump pypa/gh-action-pypi-publish from 1.8.14 to 1.9.0 (#2738)
• 429d6a2 [pre-commit.ci] pre-commit autoupdate (#2734)
• c723579 [pre-commit.ci] pre-commit autoupdate (#2730)
• e35ece8 [pre-commit.ci] pre-commit autoupdate (#2727)
• 0646a05 Merge pull request #2724 from pypa/release-20.26.2
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

The following labels could not be found: dependabot-deps-updates.

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.