Bump the python group across 1 directory with 12 updates

[dependabot]

Bumps the python group with 11 updates in the / directory:

Package	From	To
flask	3.0.2	3.0.3
eventlet	0.35.1	0.36.1
paramdb	0.11.0	0.12.0
mypy	1.8.0	1.10.0
pylint	3.0.3	3.2.2
black	24.1.1	24.4.2
pytest	8.0.0	8.2.1
playwright	1.41.2	1.44.0
pytest-playwright	0.4.4	0.5.0
freezegun	1.4.0	1.5.1
astropy	6.0.0	6.0.1

Updates flask from 3.0.2 to 3.0.3

Release notes

Sourced from flask's releases.

3.0.3

This is a fix release for the 3.0.x feature branch.

PyPI: https://pypi.org/project/Flask/3.0.3/ Changes: https://flask.palletsprojects.com/en/3.0.x/changes/#version-3-0-3 Milestone: https://github.com/pallets/flask/milestone/35?closed=1

• The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. #5448
• Don't initialize the cli attribute in the sansio scaffold, but rather in the Flask concrete class. #5270

Changelog

Sourced from flask's changelog.

Version 3.0.3

Released 2024-04-07

• The default hashlib.sha1 may not be available in FIPS builds. Don't access it at import time so the developer has time to change the default. :issue:5448
• Don't initialize the cli attribute in the sansio scaffold, but rather in the Flask concrete class. :pr:5270

Commits

• c12a5d8 release version 3.0.3
• 5e22cc9 Don't set the cli attribute in the sansio scaffold (#5270)
• 5fdce4c Don't set the cli attribute in the sansio scaffold
• adb7dd9 don't access app.logger when configuring app.logger
• b739390 support FIPS builds without SHA-1 (#5460)
• db46111 access sha1 lazily
• 7320e31 start version 3.0.3
• 87d5f5b update project files (#5457)
• d5e321b release version 3.0.2 (#5403)
• See full diff in compare view

Updates eventlet from 0.35.1 to 0.36.1

Changelog

Sourced from eventlet's changelog.

0.36.1

• [fix] eventlet.websocket is not always used from eventlet.wsgi, so do not assume eventlet.set_idle exists eventlet/eventlet#949

0.36.0

• [fix] Make sure asyncio hub doesn't use greendns for asyncio DNS APIs eventlet/eventlet#938
• [fix] Make asyncio.to_thread work with the same semantics as normal asyncio eventlet/eventlet#930
• [fix] Refactor congruence checks based on assert at runtime eventlet/eventlet#932
• [tests] Run tests on macOS in CI, and some fixes to get it in reasonable state (#list eventlet/eventlet#934
• [fix] Fix wsgi.server shutdown for in-flight requests eventlet/eventlet#912
• [feature] Add debug convenience helpers - asyncio, threads eventlet/eventlet#925
• [fix] Handle errors better. eventlet/eventlet#923

0.35.2

• [fix] Fix tool.setuptools/packages list eventlet/eventlet#921
• [security] Dnspython 2.6.1 - Address DoS via the Tudoor mechanism (CVE-2023-29483) eventlet/eventlet#916
• [doc] add asyncio into the doc hub page eventlet/eventlet#918
• [clean] clean obsolete python 2 code from the ssl module eventlet/eventlet#915
• [fix] Add get_server_info to db_pool.py eventlet/eventlet#324
• [fix] wsgi: Handle Timeouts from applications eventlet/eventlet#911
• [fix] shrinks window before connecting eventlet/eventlet#905

Commits

• 7eb208b Update changelog for version 0.36.1 (#952)
• c0cb04d fix: eventlet.websocket not always used from eventlet.wsgi (fixes #946) (#949)
• 80f3936 [doc] clean remnant refs to the pyevent removed hub (#944)
• d396281 [trivial] linkage awesome-asyncio into our migration guide (#947)
• e1afe7b Update changelog for version 0.36.0 (#941)
• 3fcc9a5 Add asyncio API docs. (#939)
• 1612191 Make sure asyncio hub doesn't use greendns for asyncio DNS APIs (#938)
• 1c869fb add a python doc link about to_thread (#937)
• 520c6e2 Make asyncio.to_thread() work, with the same semantics as normal asyncio (#...
• 48c259c Refactor congruence checks based on assert at runtime (#932)
• Additional commits viewable in compare view

Updates paramdb from 0.11.0 to 0.12.0

Release notes

Sourced from paramdb's releases.

v0.12.0

Added

• If Pydantic is installed, parameter data classes automatically have Pydantic type validation enabled.
• Parameter primitives classes ParamInt, ParamFloat, ParamBool, ParamStr, and ParamNone.
• Parameter file classes ParamFile and ParamDataFrame.

Changed

• All ParamData objects now internally track the latest time that they or any of their children were last updated, which is returned by ParamData.last_updated.
• Param and Struct are combined into a single class ParamDataclass.

Changelog

Sourced from paramdb's changelog.

[0.12.0] (May 8 2024)

Added

• If Pydantic is installed, parameter data classes automatically have Pydantic type validation enabled.
• Parameter primitives classes ParamInt, ParamFloat, ParamBool, ParamStr, and ParamNone.
• Parameter file classes ParamFile and ParamDataFrame.

Changed

• All ParamData objects now internally track the latest time that they or any of their children were last updated, which is returned by ParamData.last_updated.
• Param and Struct are combined into a single class ParamDataclass.

Commits

• 6430d81 Fix poetry.lock
• 32fe840 Update README
• d94e452 Bump version from 0.11.0 to 0.12.0
• d7521b6 Merge pull request #185 from PainterQubits/develop
• 4bbc5e4 Upgrade dependencies
• 2e8915e Merge pull request #183 from PainterQubits/Bump @mui/lab from 5.0.0-alpha.146 to 5.0.0-alpha.151 in /frontend #181-paramfile-and-paramdataframe
• 2234115 #181 Update docs
• dcc79f2 #181 Update docs and fix Pylint error
• bf3438c #181 Update CHANGELOG
• 684dd33 #181 Add tests for ParamFile and ParamDataFrame
• Additional commits viewable in compare view

Updates mypy from 1.8.0 to 1.10.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.10

We’ve just uploaded mypy 1.10 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support TypeIs (PEP 742)

Mypy now supports TypeIs (PEP 742), which allows functions to narrow the type of a value, similar to isinstance(). Unlike TypeGuard, TypeIs can narrow in both the if and else branches of an if statement:

from typing_extensions import TypeIs
def is_str(s: object) -> TypeIs[str]:
return isinstance(s, str)
def f(o: str | int) -> None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...

TypeIs will be added to the typing module in Python 3.13, but it can be used on earlier Python versions by importing it from typing_extensions.

This feature was contributed by Jelle Zijlstra (PR 16898).

Support TypeVar Defaults (PEP 696)

PEP 696 adds support for type parameter defaults. Example:

from typing import Generic
from typing_extensions import TypeVar
</tr></table>

... (truncated)

Commits

• 3faf0fc Remove +dev for version for release 1.10
• a5998d2 Update CHANGELOG.md (#17159)
• 62ea5b0 Various updates to changelog for 1.10 (#17158)
• 2f0864c Update CHANGELOG.md with draft for release 1.10 (#17150)
• e1443bb fix: incorrect returned type of access descriptors on unions of types (#16604)
• 5161ac2 Sync typeshed (#17124)
• e2fc1f2 Fix crash when expanding invalid Unpack in a Callable alias (#17028)
• 3ff6e47 Docs: docstrings in checker.py, ast_helpers.py (#16908)
• 732d98e Fix string formatting for string enums (#16555)
• 8019010 Narrow individual items when matching a tuple to a sequence pattern (#16905)
• Additional commits viewable in compare view

Updates pylint from 3.0.3 to 3.2.2

Commits

• 769ffd2 Bump pylint to 3.2.2, update changelog (#9658)
• 98c5af9 Fix false-positive with contextmanager missing cleanup (#9654) (#9657)
• 9a9db8f Update astroid to 3.2.2 (#9655) (#9656)
• 9223172 Bump pylint to 3.2.1, update changelog
• 926547b [trailing-comma-tuple] Fix enabling with message control locally when disable...
• 1498675 Fix linterstats.get_module_message_count() (#9146) (#9648)
• aed496a Fix FP for possibly-used-before-assignment with assert_never() (#9645) (#...
• 9dae975 [Backport maintenance/3.2.x] Add --prefer-stubs=y option (#9646)
• a03ceae Add --prefer-stubs=y option (#9632)
• b2ea316 [Backport maintenance/3.2.x] Don't emit incorrect-variance for type parameter...
• Additional commits viewable in compare view

Updates black from 24.1.1 to 24.4.2

Release notes

Sourced from black's releases.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

• Fix regression where certain complex f-strings failed to parse (#4332)

Performance

• Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

24.3.0

Highlights

... (truncated)

Changelog

Sourced from black's changelog.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

• Fix regression where certain complex f-strings failed to parse (#4332)

Performance

• Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

24.3.0

... (truncated)

Commits

• 3702ba2 Prepare release 24.4.2 (#4335)
• e4aaa8a Fix incorrect f-string tokenization (#4332)
• ba88fc3 Simplify string tokenization regexes (#4331)
• 5683242 New release template
• e7fb048 Prepare release 24.4.1 (#4328)
• 3f0f8f1 Support PEP 696 (#4327)
• 2f88085 Github Action: Directly install from repo if export-subst is skipped (#4313)
• 12ce3db Move changelog entry to right section (#4326)
• 1354be2 Add support to style function definitions with newlines before function stubs...
• f4b644b Prevent wrapping of multiline fstrings in parens (#4325)
• Additional commits viewable in compare view

Updates pytest from 8.0.0 to 8.2.1

Release notes

Sourced from pytest's releases.

8.2.1

pytest 8.2.1 (2024-05-19)

Improvements

• #12334: Support for Python 3.13 (beta1 at the time of writing).

Bug Fixes

• #12120: Fix [PermissionError]{.title-ref} crashes arising from directories which are not selected on the command-line.
• #12191: Keyboard interrupts and system exits are now properly handled during the test collection.
• #12300: Fixed handling of 'Function not implemented' error under squashfuse_ll, which is a different way to say that the mountpoint is read-only.
• #12308: Fix a regression in pytest 8.2.0 where the permissions of automatically-created .pytest_cache directories became rwx------ instead of the expected rwxr-xr-x.

Trivial/Internal Changes

• #12333: pytest releases are now attested using the recent Artifact Attestation support from GitHub, allowing users to verify the provenance of pytest's sdist and wheel artifacts.

8.2.0

pytest 8.2.0 (2024-04-27)

Deprecations

• #12069: A deprecation warning is now raised when implementations of one of the following hooks request a deprecated py.path.local parameter instead of the pathlib.Path parameter which replaced it:

  • pytest_ignore_collect{.interpreted-text role="hook"} - the path parameter - use collection_path instead.
  • pytest_collect_file{.interpreted-text role="hook"} - the path parameter - use file_path instead.
  • pytest_pycollect_makemodule{.interpreted-text role="hook"} - the path parameter - use module_path instead.
  • pytest_report_header{.interpreted-text role="hook"} - the startdir parameter - use start_path instead.
  • pytest_report_collectionfinish{.interpreted-text role="hook"} - the startdir parameter - use start_path instead.

  The replacement parameters are available since pytest 7.0.0. The old parameters will be removed in pytest 9.0.0.

  See legacy-path-hooks-deprecated{.interpreted-text role="ref"} for more details.

Features

• #11871: Added support for reading command line arguments from a file using the prefix character @, like e.g.: pytest @tests.txt. The file must have one argument per line.

  See Read arguments from file <args-from-file>{.interpreted-text role="ref"} for details.

Improvements

... (truncated)

Commits

• 66ff8df Prepare release version 8.2.1
• 3ffcfd1 Merge pull request #12340 from pytest-dev/backport-12334-to-8.2.x
• 0b28313 [8.2.x] Add Python 3.13 (beta) support
• f3dd93a [8.2.x] Attest package provenance (#12335)
• bb5a125 [8.2.x] Spelling (#12331)
• f179bf2 Merge pull request #12327 from pytest-dev/backport-12325-to-8.2.x
• 2b671b5 [8.2.x] cacheprovider: fix .pytest_cache not being world-readable
• 65ab7cb Merge pull request #12324 from pytest-dev/backport-12320-to-8.2.x
• 4d5fb7d Merge pull request #12319 from pytest-dev/backport-12311-to-8.2.x
• cbe5996 [8.2.x] changelog: document unittest 8.2 change as breaking
• Additional commits viewable in compare view

Updates playwright from 1.41.2 to 1.44.0

Release notes

Sourced from playwright's releases.

v1.44.0

New APIs

Accessibility assertions

• expect(locator).to_have_accessible_name() checks if the element has the specified accessible name:

  locator = page.get_by_role("button")
  expect(locator).to_have_accessible_name("Submit")

• expect(locator).to_have_accessible_description() checks if the element has the specified accessible description:

  locator = page.get_by_role("button")
  expect(locator).to_have_accessible_description("Upload a photo")

• expect(locator).to_have_role() checks if the element has the specified ARIA role:

  locator = page.get_by_test_id("save-button")
  expect(locator).to_have_role("button")

Locator handler

• After executing the handler added with page.add_locator_handler(), Playwright will now wait until the overlay that triggered the handler is not visible anymore. You can opt-out of this behavior with the new no_wait_after option.
• You can use new times option in page.add_locator_handler() to specify maximum number of times the handler should be run.
• The handler in page.add_locator_handler() now accepts the locator as argument.
• New page.remove_locator_handler() method for removing previously added locator handlers.

locator = page.get_by_text("This interstitial covers the button")
page.add_locator_handler(locator, lambda overlay: overlay.locator("#close").click(), times=3, no_wait_after=True)
# Run your tests that can be interrupted by the overlay.
# ...
page.remove_locator_handler(locator)

Miscellaneous options

• expect(page).to_have_url() now supports ignore_case option.

Browser Versions

• Chromium 125.0.6422.14
• Mozilla Firefox 125.0.1
• WebKit 17.4

This version was also tested against the following stable channels:

• Google Chrome 124
• Microsoft Edge 124

... (truncated)

Commits

• 7cc2bc9 chore(roll): roll Playwright to 1.44.0-beta-1715802478000 (#2438)
• e756233 feat(roll): roll Playwright to v1.44.0 (#2433)
• 8dc3978 build(deps): bump pytest from 8.1.1 to 8.2.0 (#2422)
• a053818 test: unflake Firefox tests (#2431)
• 7bd2c7f build(deps): bump mypy from 1.9.0 to 1.10.0 (#2423)
• 789a47e build(deps): bump pytest-xdist from 3.5.0 to 3.6.1 (#2421)
• 5cf07fa build(deps): bump types-pyopenssl from 24.0.0.20240417 to 24.1.0.20240425 (#2...
• 4ac3b49 build(deps): bump black from 24.4.0 to 24.4.2 (#2419)
• 27079a1 devops: upgrade EsrpRelease task to v7 (#2429)
• cb94c25 fix(connect): Future exception was never retrieved on close() (#2427)
• Additional commits viewable in compare view

Updates pytest-playwright from 0.4.4 to 0.5.0

Release notes

Sourced from pytest-playwright's releases.

v0.5.0

Bugfixes:

• fix: improve video naming in microsoft/playwright-pytest#217
• feat: support artifact collection with multiple contexts in microsoft/playwright-pytest#216
• fix: clean up videos after each test in microsoft/playwright-pytest#221
• fix: migrate artifacts_folder to session fixture in microsoft/playwright-pytest#223

Full Changelog: microsoft/playwright-pytest@v0.4.4...v0.5.0

Commits

• 6d624fc devops: migrate publishing to ESRP (#226)
• 74ade3e fix: migrate artifacts_folder to session fixture (#223)
• 40ba0da fix: clean up videos after each test (#221)
• 2d5a080 feat: support artifact collection with multiple contexts (#216)
• be0be7c test: enhance test-artifact assertion utility (#218)
• 3cec62e fix: improve video naming (#217)
• 1a54e22 devops: delete unused conda_build_config (#214)
• ac21122 devops: bump GitHub Action workflows (#215)
• ff4f8e9 chore(deps): bump black from 22.6.0 to 24.3.0 (#212)
• 6f38e7c chore(deps): bump django from 3.2.24 to 3.2.25 (#211)
• Additional commits viewable in compare view

Updates freezegun from 1.4.0 to 1.5.1

Changelog

Sourced from freezegun's changelog.

1.5.1

• Fix the typing of the tick() method, and improve it's behaviour.

1.5.0

• The default ignore list now contains the queue-package
• Added a missing move_to-function when calling freeze_time(tick=True)
• Fixes a rounding error in time.time_ns()
• Fixed a bug where the default ignore list could not be empty (configure(default_ignore_list=[]))
• All tick() methods now return the new datetime (instead of None)
• Type improvements

Commits

• 3f9fac4 Increase version number
• e0f2c3c CHANGELOG for 1.5.1
• ea054a3 Merge pull request #546 from robsdedude/patch-1
• df263dc Extend type checking
• aecc78a Keep numbers for runtime type checks, use float for type hints
• 023c7a3 Revert runtime type-check to numbers.Real
• be779f4 Add test for manually ticking StepTickTimeFactory
• d2872d0 Fix instance checks
• c963608 Fix tick delta type handling
• 17ea422 Admin: Release may not need to update version nr
• Additional commits viewable in compare view

Updates sqlalchemy from 2.0.26 to 2.0.30

Release notes

Sourced from sqlalchemy's releases.

2.0.30

Released: May 5, 2024

orm

• [orm] [bug] Added new attribute _orm.ORMExecuteState.is_from_statement to detect statements created using _sql.Select.from_statement(), and enhanced FromStatement to set _orm.ORMExecuteState.is_select, _orm.ORMExecuteState.is_insert, _orm.ORMExecuteState.is_update, and _orm.ORMExecuteState.is_delete according to the element that is sent to the _sql.Select.from_statement() method itself.

  References: #11220

• [orm] [bug] Fixed issue in _orm.selectin_polymorphic() loader option where attributes defined with _orm.composite() on a superclass would cause an internal exception on load.

  References: #11291

• [orm] [bug] [regression] Fixed regression from 1.4 where using _orm.defaultload() in conjunction with a non-propagating loader like _orm.contains_eager() would nonetheless propagate the _orm.contains_eager() to a lazy load operation, causing incorrect queries as this option is only intended to come from an original load.

  References: #11292

• [orm] [bug] Fixed issue in ORM Annotated Declarative where typing issue where literals defined using PEP 695 type aliases would not work with inference of Enum datatypes. Pull request courtesy of Alc-Alc.

  References: #11305

• [orm] [bug] Fixed issue in _orm.selectin_polymorphic() loader option where the SELECT emitted would only accommodate for the child-most class among the result rows that were returned, leading intermediary-class attributes to be unloaded if there were no concrete instances of that intermediary-class present in the result. This issue only presented itself for multi-level inheritance hierarchies.

  References: #11327

• [orm] [bug] Fixed issue in _orm.Session.bulk_save_objects() where the form of the identity key produced when using return_defaults=True would be incorrect. This could lead to an errors during pickling as well as identity map mismatches.

... (truncated)

Commits

• See full diff in compare view

Updates astropy from 6.0.0 to 6.0.1

Release notes

Sourced from astropy's releases.

v6.0.1

See https://docs.astropy.org/en/v6.0.1/changelog.html

Commits

• 78cf534 Merge pull request #16230 from saimn/v6.0.1-changelog
• ec14b3d Merge pull request #16242 from meeseeksmachine/auto-backport-of-pr-16232-on-v...
• 3171b1b Backport PR #16232: DOC: add a note that wrapping Angle with integral dtypes ...
• ce2af5a Add note about Numpy 2.0
• 9958151 Finalizing changelog for v6.0.1
• d38e7c8 Merge pull request #16231 from saimn/v6.0.1-pin-numpy
• fe95e69 Pin Numpy<2.0
• b56e304 Merge pull request #16233 from neutrinoceros/table/bug/hotfix_6.0.x
• a7c9d6f BUG: hotfix compatibility with numpy 1.22 for astropy 6.0.x
• d756154 Merge pull request #15869 into v6.0.x
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.