chore(deps): bump the python group with 7 updates

[dependabot]

Bumps the python group with 7 updates:

Package	From	To
pypdf	3.16.4	3.17.1
aws-lambda-powertools	2.26.0	2.28.1
boto3	1.28.66	1.33.2
black	23.10.0	23.11.0
mypy	1.6.1	1.7.1
pylint	3.0.1	3.0.2
pytest	7.4.2	7.4.3

Updates pypdf from 3.16.4 to 3.17.1

Release notes

Sourced from pypdf's releases.

Version 3.17.1, 2023-11-14

What's new

Bug Fixes (BUG)

• Mediabox expansion size when applying non-right angle rotation (#2282) by @​MrinalJain17

Robustness (ROB)

• MissingWidth is IndirectObject (#2288) by @​MartinThoma
• Initialize states array with an empty value (#2280) by @​alexey-v-paramonov

Documentation (DOC)

• Typo in example in extract-attachments.md (#2285) by @​ageitgey
• Add Alexey Paramonov as a contributor for #2280 by @​MartinThoma

Maintenance (MAINT)

• Update sample-files by @​MartinThoma

Full Changelog

Version 3.17.0, 2023-10-29

What's new

Security (SEC)

• Infinite recursion when using PdfWriter(clone_from=reader) (#2264) by @​Alexhuszagh

New Features (ENH)

• Add parameter to select images to be removed (#2214) by @​pubpub-zz

Bug Fixes (BUG)

• Correctly handle image mode 1 with FlateDecode (#2249) by @​stefan6419846
• Error when filling a value with parentheses #2268 (#2269) by @​KanorUbu
• Handle empty root outline (#2239) by @​pubpub-zz

Documentation (DOC)

• Improve merging docs (#2247) by @​stefan6419846

Developer Experience (DEV)

• Test Python 3.7 with cryptopgraphy provider as well (#2276) by @​stefan6419846
• Run CI with windows-latest (#2258) by @​MartinThoma
• Use pytest-xdist (#2254) by @​MartinThoma
• Attribute correct authors in the release notes (#2246) by @​stefan6419846

Maintenance (MAINT)

• Apply pre-commit hooks (#2277) by @​MartinThoma
• Update requirements + mypy fixes (#2275) by @​MartinThoma
• Explicitly provide Any for IO generic argument (#2272) by @​nilehmann

Testing (TST)

• Fix test_image_without_pillow in windows environment (#2257) by @​pubpub-zz

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 3.17.1, 2023-11-14

Bug Fixes (BUG)

• Mediabox expansion size when applying non-right angle rotation (#2282)

Robustness (ROB)

• MissingWidth is IndirectObject (#2288)
• Initialize states array with an empty value (#2280)

Full Changelog

Version 3.17.0, 2023-10-29

Security (SEC)

• Infinite recursion when using PdfWriter(clone_from=reader) (#2264)

New Features (ENH)

• Add parameter to select images to be removed (#2214)

Bug Fixes (BUG)

• Correctly handle image mode 1 with FlateDecode (#2249)
• Error when filling a value with parentheses #2268 (#2269)
• Handle empty root outline (#2239)

Full Changelog

Commits

• c411a1e REL: 3.17.1
• e9ef60a MAINT: Update sample-files
• 8d51903 DOC: Typo in example in extract-attachments.md (#2285)
• 9a2d983 ROB: MissingWidth is IndirectObject (#2288)
• 03bce94 BUG: Mediabox expansion size when applying non-right angle rotation (#2282)
• 112bfab DOC: Add Alexey Paramonov as a contributor for #2280
• e11c2b6 ROB: Initialize states array with an empty value (#2280)
• 5a2dd75 REL: 3.17.0
• cb90320 MAINT: Apply pre-commit hooks (#2277)
• 9afda0a ENH: Add parameter to select images to be removed (#2214)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.26.0 to 2.28.1

Release notes

Sourced from aws-lambda-powertools's releases.

v2.28.1

Summary

This patch release fixes a bug on the event handler utility, where using the compress option was causing an error.

Huge thanks to @​dacianf for reporting this!

Changes

• fix(event_handler): fix compress handling (#3420) by @​rubenfonseca

This release was made possible by the following contributors:

@​github-actions, @​github-actions[bot] and @​rubenfonseca

v2.28.0

Summary

This release adds support for Data Validation and automatic OpenAPI generation in Event Handler.

Even better, it works with your existing resolver (API Gateway REST/HTTP, ALB, Lambda Function URL, VPC Lattice)!

Did you read that correctly? Yes, you did! Look at this:

Data validation

Docs: Data validation

By adding enable_validation=True to your resolver constructor, you’ll change the way the resolver works. We will:

1. inspect your route handlers to gather input and output types (including Pydantic models and dataclasses)
2. validate and coerce the input data for you automatically before invoking your route handlers
3. validate and coerce the output data for you automatically after invoking your route handlers
4. enable a cool feature (see the next section!)

This moves data validation responsibilities to Event Handler resolvers, reducing a ton of boilerplate code. You can now focus on just writing your business logic, and leave the validation to us!

from typing import List, Optional
import requests
from pydantic import BaseModel, Field
from aws_lambda_powertools import Logger, Tracer
from aws_lambda_powertools.event_handler import APIGatewayRestResolver
from aws_lambda_powertools.logging import correlation_paths
from aws_lambda_powertools.utilities.typing import LambdaContext
</tr></table>

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.28.1] - 2023-11-28

Bug Fixes

• event_handler: fix compress handling (#3420)

Maintenance

• version bump

[v2.28.0] - 2023-11-23

Bug Fixes

• event_handler: hide error details by default (#3406)
• event_handler: fix format for OpenAPI path templating (#3399)
• event_handler: lazy load Pydantic to improve cold start (#3397)
• event_handler: allow fine grained Response with data validation (#3394)
• event_handler: apply serialization as the last operation for middlewares (#3392)

Documentation

• event_handlers: new data validation and OpenAPI feature (#3386)

Features

• event_handler: allow customers to catch request validation errors (#3396)

Maintenance

• version bump
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 3 updates (#3389)
• deps: bump datadog-lambda from 4.82.0 to 5.83.0 (#3401)
• deps-dev: bump aws-cdk-lib from 2.110.0 to 2.110.1 (#3402)
• deps-dev: bump pytest-xdist from 3.4.0 to 3.5.0 (#3387)
• deps-dev: bump the boto-typing group with 1 update (#3400)
• deps-dev: bump sentry-sdk from 1.35.0 to 1.36.0 (#3388)
• deps-dev: bump aws-cdk from 2.110.0 to 2.110.1 (#3403)

[v2.27.1] - 2023-11-21

Bug Fixes

• logger: allow custom JMESPath functions to extract correlation ID (#3382)

Documentation

• event_handlers: note that CORS and / binary mime type don't work in API Gateway (#3383)
• logger: improve ALC messaging in the PT context (#3359)

... (truncated)

Commits

• 56c2ee8 chore: version bump
• ac577b8 fix(event_handler): fix compress handling (#3420)
• dc9a237 chore(ci): layer docs update (#3408)
• 9c3914d chore(ci): bump version to 2.28.0 (#3407)
• 765781c docs(event_handlers): new data validation and OpenAPI feature (#3386)
• 89a92b7 chore(deps-dev): bump the boto-typing group with 1 update (#3400)
• 334a30b chore(deps-dev): bump aws-cdk-lib from 2.110.0 to 2.110.1 (#3402)
• 716ff9a fix(event_handler): hide error details by default (#3406)
• 365c2dc chore(deps): bump datadog-lambda from 4.82.0 to 5.83.0 (#3401)
• 5a78fd5 chore(deps-dev): bump aws-cdk from 2.110.0 to 2.110.1 (#3403)
• Additional commits viewable in compare view

Updates boto3 from 1.28.66 to 1.33.2

Changelog

Sourced from boto3's changelog.

1.33.2

• api-change:accessanalyzer: [botocore] This release adds support for external access findings for S3 directory buckets to help you easily identify cross-account access. Updated service API, documentation, and paginators.
• api-change:bedrock-agent-runtime: [botocore] This release introduces Agents for Amazon Bedrock Runtime
• api-change:bedrock-agent: [botocore] This release introduces Agents for Amazon Bedrock
• api-change:bedrock-runtime: [botocore] This release adds support for minor versions/aliases for invoke model identifier.
• api-change:bedrock: [botocore] This release adds support for customization types, model life cycle status and minor versions/aliases for model identifiers.
• api-change:connect: [botocore] Added support for following capabilities: Amazon Connect's in-app, web, and video calling. Two-way SMS integrations. Contact Lens real-time chat analytics feature. Amazon Connect Analytics Datalake capability. Capability to configure real time chat rules.
• api-change:customer-profiles: [botocore] This release introduces DetectProfileObjectType API to auto generate object type mapping.
• api-change:qbusiness: [botocore] Amazon Q - a generative AI powered application that your employees can use to ask questions and get answers from knowledge spread across disparate content repositories, summarize reports, write articles, take actions, and much more - all within their company's connected content repositories.
• api-change:qconnect: [botocore] Amazon Q in Connect, an LLM-enhanced evolution of Amazon Connect Wisdom. This release adds generative AI support to Amazon Q Connect QueryAssistant and GetRecommendations APIs.
• api-change:s3: [botocore] Adds support for S3 Express One Zone.
• api-change:s3control: [botocore] Adds support for S3 Express One Zone, and InvocationSchemaVersion 2.0 for S3 Batch Operations.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

1.33.1

• api-change:elasticache: [botocore] Launching Amazon ElastiCache Serverless that enables you to create a cache in under a minute without any capacity management. ElastiCache Serverless monitors the cache's memory, CPU, and network usage and scales both vertically and horizontally to support your application's requirements.

1.33.0

• enhancement:Versioning: Bump boto3 from 1.29.7 to 1.33.0 to match Botocore versioning scheme.
• feature:s3: Boto3 will now opt into using the awscrt on select EC2 instance types for s3 transfers.
• feature:Versioning: [botocore] With the release of Botocore 1.33.0, Boto3 and Botocore will share the same version number.
• api-change:appsync: [botocore] This update enables introspection of Aurora cluster databases using the RDS Data API
• api-change:b2bi: [botocore] This is the initial SDK release for AWS B2B Data Interchange.
• api-change:backup: [botocore] AWS Backup now supports restore testing, a new feature that allows customers to automate restore testing and validating their backups. Additionally, this release adds support for EBS Snapshots Archive tier.
• api-change:controltower: [botocore] This release adds the following support: 1. The EnableControl API can configure controls that are configurable. 2. The GetEnabledControl API shows the configured parameters on an enabled control. 3. The new UpdateEnabledControl API can change parameters on an enabled control.
• api-change:efs: [botocore] Update efs client to latest version
• api-change:fis: [botocore] AWS FIS adds support for multi-account experiments & empty target resolution. This release also introduces the CreateTargetAccountConfiguration API that allows experiments across multiple AWS accounts, and the ListExperimentResolvedTargets API to list target details.
• api-change:glue: [botocore] add observations support to DQ CodeGen config model + update document for connectiontypes supported by ConnectorData entities
• api-change:rds: [botocore] Updates Amazon RDS documentation for support for RDS for Db2.
• api-change:securityhub: [botocore] Adds and updates APIs to support central configuration. This feature allows the Security Hub delegated administrator to configure Security Hub for their entire AWS Org across multiple regions from a home Region. With this release, findings also include account name and application metadata.
• api-change:transcribe: [botocore] This release adds support for AWS HealthScribe APIs within Amazon Transcribe
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

1.29.7

• enhancement:AWSCRT: [botocore] Update awscrt version to 0.19.17
• api-change:accessanalyzer: [botocore] IAM Access Analyzer now continuously monitors IAM roles and users in your AWS account or organization to generate findings for unused access. Additionally, IAM Access Analyzer now provides custom policy checks to validate that IAM policies adhere to your security standards ahead of deployments.
• api-change:amp: [botocore] This release adds support for the Amazon Managed Service for Prometheus collector, a fully managed, agentless Prometheus metrics scraping capability.
• api-change:bcm-data-exports: [botocore] Users can create, read, update, delete Exports of billing and cost management data. Users can get details of Export Executions and details of Tables for exporting. Tagging support is provided for Exports
• api-change:cloudtrail: [botocore] CloudTrail Lake now supports federating event data stores. giving users the ability to run queries against their event data using Amazon Athena.

... (truncated)

Commits

• 5351917 Merge branch 'release-1.33.2'
• 1753fa7 Bumping version to 1.33.2
• 9491fdc Add changelog entries from botocore
• 24f3485 Merge branch 'release-1.33.1'
• 1d2c009 Merge branch 'release-1.33.1' into develop
• 59969a3 Bumping version to 1.33.1
• 0d455d3 Add changelog entries from botocore
• 5f0ee68 fix CRT debug log (#3950)
• f2a9158 Merge branch 'release-1.33.0'
• 3c0c883 Merge branch 'release-1.33.0' into develop
• Additional commits viewable in compare view

Updates black from 23.10.0 to 23.11.0

Release notes

Sourced from black's releases.

23.11.0

Highlights

• Support formatting ranges of lines with the new --line-ranges command-line option (#4020)

Stable style

• Fix crash on formatting bytes strings that look like docstrings (#4003)
• Fix crash when whitespace followed a backslash before newline in a docstring (#4008)
• Fix standalone comments inside complex blocks crashing Black (#4016)
• Fix crash on formatting code like await (a ** b) (#3994)
• No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#4019)

Preview style

• Multiline dicts and lists that are the sole argument to a function are now indented less (#3964)
• Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#3992)
• In f-string debug expressions, quote types that are visible in the final string are now preserved (#4005)
• Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#4024)
• Keep requiring two empty lines between module-level docstring and first function or class definition (#4028)
• Add support for single-line format skip with other comments on the same line (#3959)

Configuration

• Consistently apply force exclusion logic before resolving symlinks (#4015)
• Fix a bug in the matching of absolute path names in --include (#3976)

Performance

• Fix mypyc builds on arm64 on macOS (#4017)

Integrations

• Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#3940)

23.10.1

Highlights

• Maintanence release to get a fix out for GitHub Action edge case (#3957)

Preview style

... (truncated)

Changelog

Sourced from black's changelog.

23.11.0

Highlights

• Support formatting ranges of lines with the new --line-ranges command-line option (#4020)

Stable style

• Fix crash on formatting bytes strings that look like docstrings (#4003)
• Fix crash when whitespace followed a backslash before newline in a docstring (#4008)
• Fix standalone comments inside complex blocks crashing Black (#4016)
• Fix crash on formatting code like await (a ** b) (#3994)
• No longer treat leading f-strings as docstrings. This matches Python's behaviour and fixes a crash (#4019)

Preview style

• Multiline dicts and lists that are the sole argument to a function are now indented less (#3964)
• Multiline unpacked dicts and lists as the sole argument to a function are now also indented less (#3992)
• In f-string debug expressions, quote types that are visible in the final string are now preserved (#4005)
• Fix a bug where long case blocks were not split into multiple lines. Also enable general trailing comma rules on case blocks (#4024)
• Keep requiring two empty lines between module-level docstring and first function or class definition (#4028)
• Add support for single-line format skip with other comments on the same line (#3959)

Configuration

• Consistently apply force exclusion logic before resolving symlinks (#4015)
• Fix a bug in the matching of absolute path names in --include (#3976)

Performance

• Fix mypyc builds on arm64 on macOS (#4017)

Integrations

• Black's pre-commit integration will now run only on git hooks appropriate for a code formatter (#3940)

23.10.1

Highlights

• Maintenance release to get a fix out for GitHub Action edge case (#3957)

... (truncated)

Commits

• 2a1c67e Prepare release 23.11.0 (#4032)
• 72e7a2e Remove redundant condition from has_magic_trailing_comma (#4023)
• 1a7d9c2 Preserve visible quote types for f-string debug expressions (#4005)
• f4c7be5 docs: fix minor typo (#4030)
• 2e4fac9 Apply force exclude logic before symlink resolution (#4015)
• 66008fd [563] Fix standalone comments inside complex blocks crashing Black (#4016)
• 50ed622 Fix long case blocks not split into multiple lines (#4024)
• 46be1f8 Support formatting specified lines (#4020)
• ecbd9e8 Fix crash with f-string docstrings (#4019)
• e808e61 Preview: Keep requiring two empty lines between module-level docstring and fi...
• Additional commits viewable in compare view

Updates mypy from 1.6.1 to 1.7.1

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Stubgen will now include __all__ in its output if it is in the input file (PR 16356).

Mypy 1.7

We’ve just uploaded mypy 1.7 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Using TypedDict for **kwargs Typing

Mypy now has support for using Unpack[...] with a TypedDict type to annotate **kwargs arguments enabled by default. Example:

# Or 'from typing_extensions import ...'
from typing import TypedDict, Unpack
class Person(TypedDict):
name: str
age: int
def foo(**kwargs: Unpack[Person]) -> None:
...
foo(name="x", age=1)  # Ok
foo(name=1)  # Error

The definition of foo above is equivalent to the one below, with keyword-only arguments name and age:

def foo(*, name: str, age: int) -> None:
    ...

Refer to PEP 692 for more information. Note that unlike in the current version of the PEP, mypy always treats signatures with Unpack[SomeTypedDict] as equivalent to their expanded forms with explicit keyword arguments, and there aren't special type checking rules for TypedDict arguments.

This was contributed by Ivan Levkivskyi back in 2022 (PR 13471).

TypeVarTuple Support Enabled (Experimental)

Mypy now has support for variadic generics (TypeVarTuple) enabled by default, as an experimental feature. Refer to PEP 646 for the details.

TypeVarTuple was implemented by Jared Hance and Ivan Levkivskyi over several mypy releases, with help from Jukka Lehtosalo.

... (truncated)

Commits

• 6b3c418 Update version to 1.7.1 (without +dev)
• c10e173 [mypyc] Fix regression with nested functions (#16484)
• e6399d1 Fix polymorphic application for callback protocols (#16514)
• 661adb7 Fix crash on strict-equality with recursive types (#16483)
• 6c8e0cc Ignore position if imprecise arguments are matched by name (#16471)
• 5c354c4 Fix missing meet case exposed by len narrowing (#16470)
• 88791ca Exclude private attributes from override checks (#16464)
• 4b5b316 Special-case unions in polymorphic inference (#16461)
• f862d3e Fix crash on Callable self in call (#16453)
• fe79a59 Bump version to 1.7.1+dev
• Additional commits viewable in compare view

Updates pylint from 3.0.1 to 3.0.2

Commits

• efee961 Bump pylint to 3.0.2, update changelog
• 31aca81 Fixes duplicate-code check with ignore-imports (#9147) (#9176)
• 792da24 Escape special symbols and newlines in messages. (#9164) (#9165)
• 759e2cc Fix used-before-assignment FP for generic type syntax (Py 3.12) (#9150) (#9...
• a77f0c1 Respect py-version for inconsistent-quotes inside f-strings (#9152) (#9155)
• a9d9dc3 Fix suggestion for min-max with expressions (#9131) (#9141)
• See full diff in compare view

Updates pytest from 7.4.2 to 7.4.3

Release notes

Sourced from pytest's releases.

pytest 7.4.3 (2023-10-24)

Bug Fixes

• #10447: Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression.

• #11239: Fixed := in asserts impacting unrelated test cases.

• #11439: Handled an edge case where :data:sys.stderr might already be closed when :ref:faulthandler is tearing down.

Commits

• 2390610 Tweak changelog.rst
• a0714aa Prepare release version 7.4.3
• 44ad1c9 [7.4.x] fix #10447 - consider marks in reverse mro order to give base classes...
• 5dc7725 [7.4.x] Ensure logging tests always cleanup after themselves (#11541)
• a517827 [7.4.x] Configure ReadTheDocs to fail on warnings (#11540)
• 21fe071 [7.4.x] fix for ValueError raised in faulthandler teardown code (#11455)
• f8bb857 Force terminal width when running tests (#11425) (#11432)
• 1944dc0 [7.4.x] Fix --import-mode=importlib when root contains __init__.py file (#1...
• 946634c Merge pull request #11419 from nicoddemus/backport-11414-to-7.4.x
• d849a3e [7.4.x] fix: closes #11343's [attr-defined] type errors (#11421)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: d5caea9

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.