chore(deps): bump the python group with 7 updates

[dependabot]

Bumps the python group with 7 updates:

Package	From	To
pypdf	3.16.4	3.17.1
aws-lambda-powertools	2.26.0	2.28.0
boto3	1.28.66	1.29.6
black	23.10.0	23.11.0
mypy	1.6.1	1.7.1
pylint	3.0.1	3.0.2
pytest	7.4.2	7.4.3

Updates pypdf from 3.16.4 to 3.17.1

Release notes

Sourced from pypdf's releases.

Version 3.17.1, 2023-11-14

What's new

Bug Fixes (BUG)

• Mediabox expansion size when applying non-right angle rotation (#2282) by @​MrinalJain17

Robustness (ROB)

• MissingWidth is IndirectObject (#2288) by @​MartinThoma
• Initialize states array with an empty value (#2280) by @​alexey-v-paramonov

Documentation (DOC)

• Typo in example in extract-attachments.md (#2285) by @​ageitgey
• Add Alexey Paramonov as a contributor for #2280 by @​MartinThoma

Maintenance (MAINT)

• Update sample-files by @​MartinThoma

Full Changelog

Version 3.17.0, 2023-10-29

What's new

Security (SEC)

• Infinite recursion when using PdfWriter(clone_from=reader) (#2264) by @​Alexhuszagh

New Features (ENH)

• Add parameter to select images to be removed (#2214) by @​pubpub-zz

Bug Fixes (BUG)

• Correctly handle image mode 1 with FlateDecode (#2249) by @​stefan6419846
• Error when filling a value with parentheses #2268 (#2269) by @​KanorUbu
• Handle empty root outline (#2239) by @​pubpub-zz

Documentation (DOC)

• Improve merging docs (#2247) by @​stefan6419846

Developer Experience (DEV)

• Test Python 3.7 with cryptopgraphy provider as well (#2276) by @​stefan6419846
• Run CI with windows-latest (#2258) by @​MartinThoma
• Use pytest-xdist (#2254) by @​MartinThoma
• Attribute correct authors in the release notes (#2246) by @​stefan6419846

Maintenance (MAINT)

• Apply pre-commit hooks (#2277) by @​MartinThoma
• Update requirements + mypy fixes (#2275) by @​MartinThoma
• Explicitly provide Any for IO generic argument (#2272) by @​nilehmann

Testing (TST)

• Fix test_image_without_pillow in windows environment (#2257) by @​pubpub-zz

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 3.17.1, 2023-11-14

Bug Fixes (BUG)

• Mediabox expansion size when applying non-right angle rotation (#2282)

Robustness (ROB)

• MissingWidth is IndirectObject (#2288)
• Initialize states array with an empty value (#2280)

Full Changelog

Version 3.17.0, 2023-10-29

Security (SEC)

• Infinite recursion when using PdfWriter(clone_from=reader) (#2264)

New Features (ENH)

• Add parameter to select images to be removed (#2214)

Bug Fixes (BUG)

• Correctly handle image mode 1 with FlateDecode (#2249)
• Error when filling a value with parentheses #2268 (#2269)
• Handle empty root outline (#2239)

Full Changelog

Commits

• c411a1e REL: 3.17.1
• e9ef60a MAINT: Update sample-files
• 8d51903 DOC: Typo in example in extract-attachments.md (#2285)
• 9a2d983 ROB: MissingWidth is IndirectObject (#2288)
• 03bce94 BUG: Mediabox expansion size when applying non-right angle rotation (#2282)
• 112bfab DOC: Add Alexey Paramonov as a contributor for #2280
• e11c2b6 ROB: Initialize states array with an empty value (#2280)
• 5a2dd75 REL: 3.17.0
• cb90320 MAINT: Apply pre-commit hooks (#2277)
• 9afda0a ENH: Add parameter to select images to be removed (#2214)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.26.0 to 2.28.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.28.0

Summary

This release adds support for Data Validation and automatic OpenAPI generation in Event Handler.

Even better, it works with your existing resolver (API Gateway REST/HTTP, ALB, Lambda Function URL, VPC Lattice)!

Did you read that correctly? Yes, you did! Look at this:

Data validation

Docs: Data validation

By adding enable_validation=True to your resolver constructor, you’ll change the way the resolver works. We will:

1. inspect your route handlers to gather input and output types (including Pydantic models and dataclasses)
2. validate and coerce the input data for you automatically before invoking your route handlers
3. validate and coerce the output data for you automatically after invoking your route handlers
4. enable a cool feature (see the next section!)

This moves data validation responsibilities to Event Handler resolvers, reducing a ton of boilerplate code. You can now focus on just writing your business logic, and leave the validation to us!

from typing import List, Optional
import requests
from pydantic import BaseModel, Field
from aws_lambda_powertools import Logger, Tracer
from aws_lambda_powertools.event_handler import APIGatewayRestResolver
from aws_lambda_powertools.logging import correlation_paths
from aws_lambda_powertools.utilities.typing import LambdaContext
tracer = Tracer()
logger = Logger()
app = APIGatewayRestResolver(enable_validation=True)
class Todo(BaseModel):
userId: int
id_: Optional[int] = Field(alias="id", default=None)
title: str
completed: bool
@​app.post("/todos")
def create_todo(todo: Todo) -> str:
response = requests.post("https://jsonplaceholder.typicode.com/todos", json=todo.dict(by_alias=True))
</tr></table>

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

Unreleased

Bug Fixes

• event_handler: fix format for OpenAPI path templating (#3399)
• event_handler: lazy load Pydantic to improve cold start (#3397)
• event_handler: allow fine grained Response with data validation (#3394)
• event_handler: apply serialization as the last operation for middlewares (#3392)

Features

• event_handler: allow customers to catch request validation errors (#3396)

Maintenance

• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 3 updates (#3389)
• deps-dev: bump pytest-xdist from 3.4.0 to 3.5.0 (#3387)
• deps-dev: bump sentry-sdk from 1.35.0 to 1.36.0 (#3388)

[v2.27.1] - 2023-11-21

Bug Fixes

• logger: allow custom JMESPath functions to extract correlation ID (#3382)

Documentation

• event_handlers: note that CORS and / binary mime type don't work in API Gateway (#3383)
• logger: improve ALC messaging in the PT context (#3359)
• logger: Fix ALC link (#3352)

Features

• logger: implement addFilter/removeFilter to address static typing errors (#3380)

Maintenance

• version bump
• ci: lint and type checking removal in Pydantic v2 quality check (#3360)
• deps: bump actions/github-script from 7.0.0 to 7.0.1 (#3377)
• deps: bump squidfunk/mkdocs-material from 2c57e4d to fc42bac in /docs (#3375)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 2 updates (#3353)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 1 update (#3374)
• deps: bump squidfunk/mkdocs-material from f486dc9 to 2c57e4d in /docs (#3366)
• deps-dev: bump cfn-lint from 0.83.2 to 0.83.3 (#3363)

... (truncated)

Commits

• 547372e chore: version bump
• 765781c docs(event_handlers): new data validation and OpenAPI feature (#3386)
• 89a92b7 chore(deps-dev): bump the boto-typing group with 1 update (#3400)
• 334a30b chore(deps-dev): bump aws-cdk-lib from 2.110.0 to 2.110.1 (#3402)
• 716ff9a fix(event_handler): hide error details by default (#3406)
• 365c2dc chore(deps): bump datadog-lambda from 4.82.0 to 5.83.0 (#3401)
• 5a78fd5 chore(deps-dev): bump aws-cdk from 2.110.0 to 2.110.1 (#3403)
• 148ae87 chore(ci): changelog rebuild (#3404)
• 9f59374 fix(event_handler): fix format for OpenAPI path templating (#3399)
• 0cc687a fix(event_handler): lazy load Pydantic to improve cold start (#3397)
• Additional commits viewable in compare view

Updates boto3 from 1.28.66 to 1.29.6

Changelog

Sourced from boto3's changelog.

1.29.6

• bugfix:sqs: [botocore] Rolled back recent change to wire format protocol
• api-change:kinesis: [botocore] This release adds support for resource based policies on streams and consumers.
• api-change:s3control: [botocore] Amazon S3 Batch Operations now manages buckets or prefixes in a single step.
• api-change:sagemaker: [botocore] This feature adds the end user license agreement status as a model access configuration parameter.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

1.29.5

• api-change:cloudfront-keyvaluestore: [botocore] This release adds support for CloudFront KeyValueStore, a globally managed key value datastore associated with CloudFront Functions.
• api-change:cloudfront: [botocore] This release adds support for CloudFront KeyValueStore, a globally managed key value datastore associated with CloudFront Functions.
• api-change:ec2: [botocore] Documentation updates for Amazon EC2.
• api-change:inspector-scan: [botocore] This release adds support for the new Amazon Inspector Scan API. The new Inspector Scan API can synchronously scan SBOMs adhering to the CycloneDX v1.5 format.
• api-change:iotsitewise: [botocore] Adds 1/ user-defined unique identifier for asset and model metadata, 2/ asset model components, and 3/ query API for asset metadata and telemetry data. Supports 4/ multi variate anomaly detection using Amazon Lookout for Equipment, 5/ warm storage tier, and 6/ buffered ingestion of time series data.
• api-change:iottwinmaker: [botocore] This release adds following support. 1. New APIs for metadata bulk operations. 2. Modify the component type API to support composite component types - nesting component types within one another. 3. New list APIs for components and properties. 4. Support the larger scope digital twin modeling.
• api-change:s3: [botocore] Add support for automatic date based partitioning in S3 Server Access Logs.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

1.29.4

• enhancement:IMDS: [botocore] Adds a config option to opt out of IMDSv1 fallback
• api-change:codestar-connections: [botocore] This release updates a few CodeStar Connections related APIs.
• api-change:docdb: [botocore] Amazon DocumentDB updates for new cluster storage configuration: Amazon DocumentDB I/O-Optimized.
• api-change:ec2: [botocore] This release adds support for Security group referencing over Transit gateways, enabling you to simplify Security group management and control of instance-to-instance traffic across VPCs that are connected by Transit gateway.

1.29.3

• api-change:macie: [botocore] The macie client has been removed following the deprecation of the service.
• api-change:appmesh: [botocore] Change the default value of these fields from 0 to null: MaxConnections, MaxPendingRequests, MaxRequests, HealthCheckThreshold, PortNumber, and HealthCheckPolicy -> port. Users are not expected to perceive the change, except that badRequestException is thrown when required fields missing configured.
• api-change:athena: [botocore] Adding SerivicePreProcessing time metric
• api-change:cloud9: [botocore] A minor doc only update related to changing the date of an API change.
• api-change:cloudformation: [botocore] This release adds a new flag ImportExistingResources to CreateChangeSet. Specify this parameter on a CREATE- or UPDATE-type change set to import existing resources with custom names instead of recreating them.
• api-change:codepipeline: [botocore] CodePipeline now supports overriding source revisions to achieve manual re-deploy of a past revision
• api-change:codestar-connections: [botocore] This release adds support for the CloudFormation Git sync feature. Git sync enables updating a CloudFormation stack from a template stored in a Git repository.
• api-change:connect: [botocore] This release adds WISDOM_QUICK_RESPONSES as new IntegrationType of Connect IntegrationAssociation resource and bug fixes.
• api-change:dlm: [botocore] Added support for SAP HANA in Amazon Data Lifecycle Manager EBS snapshot lifecycle policies with pre and post scripts.
• api-change:ec2: [botocore] This release adds new features for Amazon VPC IP Address Manager (IPAM) Allowing a choice between Free and Advanced Tiers, viewing public IP address insights across regions and in Amazon Cloudwatch, use IPAM to plan your subnet IPs within a VPC and bring your own autonomous system number to IPAM.
• api-change:ecr: [botocore] Documentation and operational updates for Amazon ECR, adding support for pull through cache rules for upstream registries that require authentication.
• api-change:emr: [botocore] Update emr client to latest version
• api-change:events: [botocore] Update events client to latest version
• api-change:internetmonitor: [botocore] Adds new querying capabilities for running data queries on a monitor
• api-change:ivs: [botocore] type & defaulting refinement to various range properties

... (truncated)

Commits

• 0778abe Merge branch 'release-1.29.6'
• 55ffb8d Bumping version to 1.29.6
• 3feaa6d Add changelog entries from botocore
• 48b4692 Merge branch 'release-1.29.5'
• 271ffc9 Merge branch 'release-1.29.5' into develop
• 3128d47 Bumping version to 1.29.5
• e20ad55 Add changelog entries from botocore
• 8a08ce8 Merge branch 'release-1.29.4'
• fcc24f3 Merge branch 'release-1.29.4' into develop
• e796389 Bumping version to 1.29.4
• Additional commits viewable in compare view

Updates black from 23.10.0 to 23.11.0

Release notes

Sourced from black's releases.

23.11.0

Highlights

• Support formatting ranges of lines with the new --line-ranges command-line option (#4020)

Stable style

• Fix crash on formatting bytes strings that look like docstrings (#4003)
• Fix crash when whitespace followed a backslash before newline in a docstring (#4008)
• Fix standalone comments inside complex blocks crashing Black (#4016)
• Fix crash on formatting code like await (a ** b) (#3994)
• No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#4019)

Preview style

• Multiline dicts and lists that are the sole argument to a function are now indented less (#3964)
• Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#3992)
• In f-string debug expressions, quote types that are visible in the final string are now preserved (#4005)
• Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#4024)
• Keep requiring two empty lines between module-level docstring and first function or class definition (#4028)
• Add support for single-line format skip with other comments on the same line (#3959)

Configuration

• Consistently apply force exclusion logic before resolving symlinks (#4015)
• Fix a bug in the matching of absolute path names in --include (#3976)

Performance

• Fix mypyc builds on arm64 on macOS (#4017)

Integrations

• Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#3940)

23.10.1

Highlights

• Maintanence release to get a fix out for GitHub Action edge case (#3957)

Preview style

... (truncated)

Changelog

Sourced from black's changelog.

23.11.0

Highlights

• Support formatting ranges of lines with the new --line-ranges command-line option (#4020)

Stable style

• Fix crash on formatting bytes strings that look like docstrings (#4003)
• Fix crash when whitespace followed a backslash before newline in a docstring (#4008)
• Fix standalone comments inside complex blocks crashing Black (#4016)
• Fix crash on formatting code like await (a ** b) (#3994)
• No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#4019)

Preview style

• Multiline dicts and lists that are the sole argument to a function are now indented less (#3964)
• Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#3992)
• In f-string debug expressions, quote types that are visible in the final string are now preserved (#4005)
• Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#4024)
• Keep requiring two empty lines between module-level docstring and first function or class definition (#4028)
• Add support for single-line format skip with other comments on the same line (#3959)

Configuration

• Consistently apply force exclusion logic before resolving symlinks (#4015)
• Fix a bug in the matching of absolute path names in --include (#3976)

Performance

• Fix mypyc builds on arm64 on macOS (#4017)

Integrations

• Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#3940)

23.10.1

Highlights

• Maintenance release to get a fix out for GitHub Action edge case (#3957)

... (truncated)

Commits

• 2a1c67e Prepare release 23.11.0 (#4032)
• 72e7a2e Remove redundant condition from has_magic_trailing_comma (#4023)
• 1a7d9c2 Preserve visible quote types for f-string debug expressions (#4005)
• f4c7be5 docs: fix minor typo (#4030)
• 2e4fac9 Apply force exclude logic before symlink resolution (#4015)
• 66008fd [563] Fix standalone comments inside complex blocks crashing Black (#4016)
• 50ed622 Fix long case blocks not split into multiple lines (#4024)
• 46be1f8 Support formatting specified lines (#4020)
• ecbd9e8 Fix crash with f-string docstrings (#4019)
• e808e61 Preview: Keep requiring two empty lines between module-level docstring and fi...
• Additional commits viewable in compare view

Updates mypy from 1.6.1 to 1.7.1

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Stubgen will now include __all__ in its output if it is in the input file (PR 16356).

Mypy 1.7

We’ve just uploaded mypy 1.7 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Using TypedDict for **kwargs Typing

Mypy now has support for using Unpack[...] with a TypedDict type to annotate **kwargs arguments enabled by default. Example:

# Or 'from typing_extensions import ...'
from typing import TypedDict, Unpack
class Person(TypedDict):
name: str
age: int
def foo(**kwargs: Unpack[Person]) -> None:
...
foo(name="x", age=1)  # Ok
foo(name=1)  # Error

The definition of foo above is equivalent to the one below, with keyword-only arguments name and age:

def foo(*, name: str, age: int) -> None:
    ...

Refer to PEP 692 for more information. Note that unlike in the current version of the PEP, mypy always treats signatures with Unpack[SomeTypedDict] as equivalent to their expanded forms with explicit keyword arguments, and there aren't special type checking rules for TypedDict arguments.

This was contributed by Ivan Levkivskyi back in 2022 (PR 13471).

TypeVarTuple Support Enabled (Experimental)

Mypy now has support for variadic generics (TypeVarTuple) enabled by default, as an experimental feature. Refer to PEP 646 for the details.

TypeVarTuple was implemented by Jared Hance and Ivan Levkivskyi over several mypy releases, with help from Jukka Lehtosalo.

... (truncated)

Commits

• 6b3c418 Update version to 1.7.1 (without +dev)
• c10e173 [mypyc] Fix regression with nested functions (#16484)
• e6399d1 Fix polymorphic application for callback protocols (#16514)
• 661adb7 Fix crash on strict-equality with recursive types (#16483)
• 6c8e0cc Ignore position if imprecise arguments are matched by name (#16471)
• 5c354c4 Fix missing meet case exposed by len narrowing (#16470)
• 88791ca Exclude private attributes from override checks (#16464)
• 4b5b316 Special-case unions in polymorphic inference (#16461)
• f862d3e Fix crash on Callable self in call (#16453)
• fe79a59 Bump version to 1.7.1+dev
• Additional commits viewable in compare view

Updates pylint from 3.0.1 to 3.0.2

Commits

• efee961 Bump pylint to 3.0.2, update changelog
• 31aca81 Fixes duplicate-code check with ignore-imports (#9147) (#9176)
• 792da24 Escape special symbols and newlines in messages. (#9164) (#9165)
• 759e2cc Fix used-before-assignment FP for generic type syntax (Py 3.12) (#9150) (#9...
• a77f0c1 Respect py-version for inconsistent-quotes inside f-strings (#9152) (#9155)
• a9d9dc3 Fix suggestion for min-max with expressions (#9131) (#9141)
• See full diff in compare view

Updates pytest from 7.4.2 to 7.4.3

Release notes

Sourced from pytest's releases.

pytest 7.4.3 (2023-10-24)

Bug Fixes

• #10447: Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression.

• #11239: Fixed := in asserts impacting unrelated test cases.

• #11439: Handled an edge case where :data:sys.stderr might already be closed when :ref:faulthandler is tearing down.

Commits

• 2390610 Tweak changelog.rst
• a0714aa Prepare release version 7.4.3
• 44ad1c9 [7.4.x] fix #10447 - consider marks in reverse mro order to give base classes...
• 5dc7725 [7.4.x] Ensure logging tests always cleanup after themselves (#11541)
• a517827 [7.4.x] Configure ReadTheDocs to fail on warnings (#11540)
• 21fe071 [7.4.x] fix for ValueError raised in faulthandler teardown code (#11455)
• f8bb857 Force terminal width when running tests (#11425) (#11432)
• 1944dc0 [7.4.x] Fix --import-mode=importlib when root contains __init__.py file (#1...
• 946634c Merge pull request #11419 from nicoddemus/backport-11414-to-7.4.x
• d849a3e [7.4.x] fix: closes #11343's [attr-defined] type errors (#11421)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: d9b187c

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.