chore(deps): bump the python group with 8 updates

[dependabot]

Bumps the python group with 8 updates:

Package	From	To
pypdf	3.16.4	3.17.4
aws-lambda-powertools	2.26.0	2.31.0
boto3	1.28.66	1.34.13
black	23.10.0	23.12.1
mypy	1.6.1	1.8.0
pylint	3.0.1	3.0.3
types-requests	2.31.0.10	2.31.0.20231231
pytest	7.4.2	7.4.4

Updates pypdf from 3.16.4 to 3.17.4

Release notes

Sourced from pypdf's releases.

Version 3.17.4, 2023-12-24

What's new

Bug Fixes (BUG)

• Handle IndirectObject as image filter (#2355) by @​stefan6419846

Documentation (DOC)

• Quote specs in generate_file_identifiers (#2363) by @​exiledkingcc
• Notes about form fields and annotations (#1945) by @​dmjohnsson23
• Notes about update_page_form_field_values(auto_regenerate) (#2359) by @​dmjohnsson23
• Fix stamping example (#2358) by @​dmjohnsson23
• Stamp images directly on a PDF (#2357) by @​dmjohnsson23
• Correct the example of adding highlight annotation (#2341) by @​Tobeabellwether

Maintenance (MAINT)

• Update upload-artifact and download-artifact actions from v3 to v4 (#2352) by @​stefan6419846

Testing (TST)

• Add xfail test for #2336 (#2365) by @​MartinThoma
• Increase test coverage for flate handling of image mode 1 (#2339) by @​stefan6419846

Code Style (STY)

• File identifier generation restructuring (#2362) by @​exiledkingcc
• Add PdfWriter._ID attribute (#2361) by @​exiledkingcc
• Variable naming convention (#2360) by @​MartinThoma

Full Changelog

Version 3.17.3, 2023-12-17

What's new

Robustness (ROB)

• Out-of-bounds issue in handle_tj (text extraction) (#2342) by @​rgwood-rely

Developer Experience (DEV)

• Make make_release.py easier to configure (#2348) by @​MartinThoma

Maintenance (MAINT)

• Bump actions/download-artifact from 3 to 4 (#2344) by @​dependabot[bot]

Full Changelog

Version 3.17.2, 2023-12-10

What's new

Bug Fixes (BUG)

• Cope with deflated images with CMYK Black Only (#2322) by @​pubpub-zz
• Handle indirect objects as parameters for CCITTFaxDecode (#2307) by @​stefan6419846
• check words length in _cmap type1_alternative function (#2310) by @​Takher

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 3.17.4, 2023-12-24

Bug Fixes (BUG)

• Handle IndirectObject as image filter (#2355)

Full Changelog

Version 3.17.3, 2023-12-17

Robustness (ROB)

• Out-of-bounds issue in handle_tj (text extraction) (#2342)

Developer Experience (DEV)

• Make make_release.py easier to configure (#2348)

Maintenance (MAINT)

• Bump actions/download-artifact from 3 to 4 (#2344)

Full Changelog

Version 3.17.2, 2023-12-10

Bug Fixes (BUG)

• Cope with deflated images with CMYK Black Only (#2322)
• Handle indirect objects as parameters for CCITTFaxDecode (#2307)
• check words length in _cmap type1_alternative function (#2310)

Robustness (ROB)

• Relax flate decoding for too many lookup values (#2331)
• Let _build_destination skip in case of missing /D key (#2018)

Full Changelog

Version 3.17.1, 2023-11-14

Bug Fixes (BUG)

• Mediabox expansion size when applying non-right angle rotation (#2282)

Robustness (ROB)

• MissingWidth is IndirectObject (#2288)
• Initialize states array with an empty value (#2280)

Full Changelog

Version 3.17.0, 2023-10-29

Security (SEC)

• Infinite recursion when using PdfWriter(clone_from=reader) (#2264)

New Features (ENH)

... (truncated)

Commits

• 54a30cb REL: 3.17.4
• ba36031 TST: Add xfail test for #2336 (#2365)
• 3ab1581 DOC: Quote specs in generate_file_identifiers (#2363)
• ec85a27 STY: File identifier generation restructuring (#2362)
• beca111 STY: Add PdfWriter._ID attribute (#2361)
• 85b5768 STY: Variable naming convention (#2360)
• 5a9a420 DOC: Notes about form fields and annotations (#1945)
• cfae3a6 DOC: Notes about update_page_form_field_values(auto_regenerate) (#2359)
• 0a79b3c DOC: Fix stamping example (#2358)
• c43ca15 DOC: Stamp images directly on a PDF (#2357)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.26.0 to 2.31.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.30.2

Summary

This patch release fixes three bugs related to the OpenAPI and Swagger features:

• Generating Operation Tags now correctly follows the official OpenAPI spec
• Fixed Swagger UI regressions that was causing the UI to be non functional under certain scenarios
• Ensured that all references to the OpenAPI version used is 3.0.0

⭐ Huge thanks to @​MCR2019 and @​danikenan for reporting those issues! ⭐

Changes

• fix(event-handler): operation tags are now string to correct schema generation (#3528) by @​rubenfonseca
• fix(event-handler): set default OpenAPI version to 3.0.0 (#3527) by @​rubenfonseca
• fix(event-handler): upgrade Swagger UI to fix regressions (#3526) by @​rubenfonseca

🔧 Maintenance

• chore(deps-dev): bump cfn-lint from 0.83.5 to 0.83.6 (#3521) by @​dependabot

This release was made possible by the following contributors:

@​dependabot, @​dependabot[bot], @​github-actions, @​github-actions[bot] and @​rubenfonseca

v2.30.1

Summary

This patch release fixes a bug when using the event handler Router together with OpenAPI metadata.

Huge thanks to @​MCR2019 for finding and reporting this out!

Changes

• fix(event_handler): allow responses and metadata when using Router (#3514) by @​rubenfonseca

🔧 Maintenance

• chore(deps-dev): bump aws-cdk from 2.114.1 to 2.115.0 (#3508) by @​dependabot
• chore(deps-dev): bump the boto-typing group with 11 updates (#3509) by @​dependabot
• chore(deps-dev): bump sentry-sdk from 1.39.0 to 1.39.1 (#3512) by @​dependabot

This release was made possible by the following contributors:

@​dependabot, @​dependabot[bot], @​github-actions, @​github-actions[bot] and @​rubenfonseca

v2.30.0

Summary

This release follows the newly announced Python 3.12 runtime in AWS Lambda 🚀

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.31.0] - 2024-01-05

Code Refactoring

• parser: Improve error message when parsing models and envelopes (#3587)

Maintenance

• version bump

[v2.30.2] - 2023-12-18

Bug Fixes

• event-handler: fix operation tags schema generation (#3528)
• event-handler: set default OpenAPI version to 3.0.0 (#3527)
• event-handler: upgrade Swagger UI to fix regressions (#3526)

Maintenance

• version bump
• deps-dev: bump cfn-lint from 0.83.5 to 0.83.6 (#3521)

[v2.30.1] - 2023-12-15

Bug Fixes

• event_handler: allow responses and metadata when using Router (#3514)

Maintenance

• version bump
• deps-dev: bump aws-cdk from 2.114.1 to 2.115.0 (#3508)
• deps-dev: bump the boto-typing group with 11 updates (#3509)
• deps-dev: bump sentry-sdk from 1.39.0 to 1.39.1 (#3512)

[v2.30.0] - 2023-12-14

Bug Fixes

• docs: make the Lambda Layer version consistent (#3498)

Documentation

• customer-reference: add Transformity as a customer reference (#3497)

Features

... (truncated)

Commits

• 96dd148 chore: version bump
• aacb37d refactor(parser): Improve error message when parsing models and envelopes (#3...
• 67d3537 chore(ci): changelog rebuild (#3594)
• d19ed9f chore(deps): bump the layer-balancer group in /layer/scripts/layer-balancer w...
• ea01920 chore(deps): bump actions/dependency-review-action from 3.1.4 to 3.1.5 (#3592)
• 6c41463 chore(ci): changelog rebuild (#3590)
• 131aecc chore(deps-dev): bump aws-cdk from 2.117.0 to 2.118.0 (#3589)
• f6a3ac1 chore(deps-dev): bump ruff from 0.1.10 to 0.1.11 (#3588)
• bc81a69 chore(ci): changelog rebuild (#3585)
• 78d7004 chore(ci): Remove dev dependencies locked to Pydantic v1 within the Pydantic ...
• Additional commits viewable in compare view

Updates boto3 from 1.28.66 to 1.34.13

Changelog

Sourced from boto3's changelog.

1.34.13

• api-change:config: [botocore] Updated ResourceType enum with new resource types onboarded by AWS Config in November and December 2023.
• api-change:docdb: [botocore] Adding PerformanceInsightsEnabled and PerformanceInsightsKMSKeyId fields to DescribeDBInstances Response.
• api-change:ecs: [botocore] This release adds support for managed instance draining which facilitates graceful termination of Amazon ECS instances.
• api-change:es: [botocore] This release adds support for new or existing Amazon OpenSearch domains to enable TLS 1.3 or TLS 1.2 with perfect forward secrecy cipher suites for domain endpoints.
• api-change:lightsail: [botocore] This release adds support to set up an HTTPS endpoint on an instance.
• api-change:opensearch: [botocore] This release adds support for new or existing Amazon OpenSearch domains to enable TLS 1.3 or TLS 1.2 with perfect forward secrecy cipher suites for domain endpoints.
• api-change:sagemaker: [botocore] Adding support for provisioned throughput mode for SageMaker Feature Groups
• api-change:servicecatalog: [botocore] Added Idempotency token support to Service Catalog AssociateServiceActionWithProvisioningArtifact, DisassociateServiceActionFromProvisioningArtifact, DeleteServiceAction API
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

1.34.12

• api-change:connect: [botocore] Amazon Connect, Contact Lens Evaluation API increase evaluation notes max length to 3072.
• api-change:mediaconvert: [botocore] This release includes video engine updates including HEVC improvements, support for ingesting VP9 encoded video in MP4 containers, and support for user-specified 3D LUTs.

1.34.11

• api-change:apprunner: [botocore] AWS App Runner adds Python 3.11 and Node.js 18 runtimes.
• api-change:location: [botocore] This release introduces a new parameter to bypasses an API key's expiry conditions and delete the key.
• api-change:quicksight: [botocore] Add LinkEntityArn support for different partitions; Add UnsupportedUserEditionException in UpdateDashboardLinks API; Add support for New Reader Experience Topics

1.34.10

• api-change:codestar-connections: [botocore] New integration with the GitLab self-managed provider type.
• api-change:kinesis-video-archived-media: [botocore] NoDataRetentionException thrown when GetImages requested for a Stream that does not retain data (that is, has a DataRetentionInHours of 0).
• api-change:sagemaker: [botocore] Amazon SageMaker Studio now supports Docker access from within app container

1.34.9

• api-change:emr: [botocore] Update emr client to latest version

1.34.8

• api-change:iam: [botocore] Documentation updates for AWS Identity and Access Management (IAM).
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version

... (truncated)

Commits

• 1f863ec Merge branch 'release-1.34.13'
• fac1271 Bumping version to 1.34.13
• cf4ff48 Add changelog entries from botocore
• 391e6f0 Merge branch 'release-1.34.12'
• dab1d14 Merge branch 'release-1.34.12' into develop
• 407aaf0 Bumping version to 1.34.12
• 740c8bf Add changelog entries from botocore
• 270df83 Merge branch 'release-1.34.11'
• 186bcbe Merge branch 'release-1.34.11' into develop
• 136ae45 Bumping version to 1.34.11
• Additional commits viewable in compare view

Updates black from 23.10.0 to 23.12.1

Release notes

Sourced from black's releases.

23.12.1

Fixed a bug that included dependencies from the d extra by default (#4108)

23.12.0

Highlights

It's almost 2024, which means it's time for a new edition of Black's stable style! Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft 2024 stable style, which we'll finalize in the January release. Please try it out and share your feedback.

This release (23.12.0) will still produce the 2023 style. Most but not all of the changes in --preview mode will be in the 2024 stable style.

Stable style

• Fix bug where # fmt: off automatically dedents when used with the --line-ranges option, even when it is not within the specified line range. (#4084)
• Fix feature detection for parenthesized context managers (#4104)

Preview style

• Prefer more equal signs before a break when splitting chained assignments (#4010)
• Standalone form feed characters at the module level are no longer removed (#4021)
• Additional cases of immediately nested tuples, lists, and dictionaries are now indented less (#4012)
• Allow empty lines at the beginning of all blocks, except immediately before a docstring (#4060)
• Fix crash in preview mode when using a short --line-length (#4086)
• Keep suites consisting of only an ellipsis on their own lines if they are not functions or class definitions (#4066) (#4103)

Configuration

• --line-ranges now skips Black's internal stability check in --safe mode. This avoids a crash on rare inputs that have many unformatted same-content lines. (#4034)

Packaging

• Upgrade to mypy 1.7.1 (#4049) (#4069)
• Faster compiled wheels are now available for CPython 3.12 (#4070)

Integrations

• Enable 3.12 CI (#4035)
• Build docker images in parallel (#4054)
• Build docker images with 3.12 (#4055)

23.11.0

... (truncated)

Changelog

Sourced from black's changelog.

23.12.1

Packaging

• Fixed a bug that included dependencies from the d extra by default (#4108)

23.12.0

Highlights

It's almost 2024, which means it's time for a new edition of Black's stable style! Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft 2024 stable style, which we'll finalize in the January release. Please try it out and share your feedback.

This release (23.12.0) will still produce the 2023 style. Most but not all of the changes in --preview mode will be in the 2024 stable style.

Stable style

• Fix bug where # fmt: off automatically dedents when used with the --line-ranges option, even when it is not within the specified line range. (#4084)
• Fix feature detection for parenthesized context managers (#4104)

Preview style

• Prefer more equal signs before a break when splitting chained assignments (#4010)
• Standalone form feed characters at the module level are no longer removed (#4021)
• Additional cases of immediately nested tuples, lists, and dictionaries are now indented less (#4012)
• Allow empty lines at the beginning of all blocks, except immediately before a docstring (#4060)
• Fix crash in preview mode when using a short --line-length (#4086)
• Keep suites consisting of only an ellipsis on their own lines if they are not functions or class definitions (#4066) (#4103)

Configuration

• --line-ranges now skips Black's internal stability check in --safe mode. This avoids a crash on rare inputs that have many unformatted same-content lines. (#4034)

Packaging

• Upgrade to mypy 1.7.1 (#4049) (#4069)
• Faster compiled wheels are now available for CPython 3.12 (#4070)

Integrations

• Enable 3.12 CI (#4035)
• Build docker images in parallel (#4054)

... (truncated)

Commits

• ec91a2b Prepare release 23.12.1 (#4124)
• 8fec1c3 Adds paren to deps for hidden extra constraint (#4108)
• 35ce37d Add new changelog template
• d9ad09a Prepare release 23.12.0 (#4105)
• ebd543c Fix feature detection for parenthesized context managers (#4104)
• eb7661f Fix another case where we format dummy implementation for non-functions/class...
• 0c98999 Fix path in test message (#4102)
• 9aea976 Only use dummy implementation logic for functions and classes (#4066)
• 67b23d7 Bump actions/setup-python from 4 to 5 (#4101)
• ce28be2 Add dedicated preview feature for East Asian Width (#4097)
• Additional commits viewable in compare view

Updates mypy from 1.6.1 to 1.8.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.8

We’ve just uploaded mypy 1.8 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Type-checking Improvements

• Do not intersect types in isinstance checks if at least one is final (Christoph Tyralla, PR 16330)
• Detect that @final class without __bool__ cannot have falsey instances (Ilya Priven, PR 16566)
• Do not allow TypedDict classes with extra keywords (Nikita Sobolev, PR 16438)
• Do not allow class-level keywords for NamedTuple (Nikita Sobolev, PR 16526)
• Make imprecise constraints handling more robust (Ivan Levkivskyi, PR 16502)
• Fix strict-optional in extending generic TypedDict (Ivan Levkivskyi, PR 16398)
• Allow type ignores of PEP 695 constructs (Shantanu, PR 16608)
• Enable type_check_only support for TypedDict and NamedTuple (Nikita Sobolev, PR 16469)

Performance Improvements

• Add fast path to analyzing special form assignments (Jukka Lehtosalo, PR 16561)

Improvements to Error Reporting

• Don't show documentation links for plugin error codes (Ivan Levkivskyi, PR 16383)
• Improve error messages for super checks and add more tests (Nikita Sobolev, PR 16393)
• Add error code for mutable covariant override (Ivan Levkivskyi, PR 16399)

Stubgen Improvements

• Preserve simple defaults in function signatures (Ali Hamdan, PR 15355)
• Include __all__ in output (Jelle Zijlstra, PR 16356)
• Fix stubgen regressions with pybind11 and mypy 1.7 (Chad Dombrova, PR 16504)

Stubtest Improvements

• Improve handling of unrepresentable defaults (Jelle Zijlstra, PR 16433)
• Print more helpful errors if a function is missing from stub (Alex Waygood, PR 16517)
• Support @type_check_only decorator (Nikita Sobolev, PR 16422)
• Warn about missing __del__ (Shantanu, PR 16456)
• Fix crashes with some uses of final and deprecated (Shantanu, PR 16457)

Fixes to Crashes

• Fix crash with type alias to Callable[[Unpack[Tuple[Any, ...]]], Any] (Alex Waygood, PR 16541)
• Fix crash on TypeGuard in __call__ (Ivan Levkivskyi, PR 16516)
• Fix crash on invalid enum in method (Ivan Levkivskyi, PR 16511)
• Fix crash on unimported Any in TypedDict (Ivan Levkivskyi, PR 16510)

Documentation Updates

• Update soft-error-limit default value to -1 (Sveinung Gundersen, PR 16542)

... (truncated)

Commits

• 3b46750 remove +dev suffix from version
• c9bc833 Fix tests broken by hatchling (#16655)
• 60d30e3 Fix crash with type alias to Callable[[Unpack[Tuple[Any, ...]]], Any] (#16541)
• f53f422 Allow type ignores of PEP 695 constructs (#16608)
• 7c33e7c @​final class without bool cannot have falsey instances (#16566)
• c224da5 Do not intersect types in isinstance checks if at least one is final (#16330)
• d54cc35 Change example in test cases with no stubs available (#16513)
• eb1ee97 Update hashes in sync-typeshed.py following recent typeshed sync (#16600)
• 344298e Revert use of ParamSpec for functools.wraps
• 3e5d813 Revert typeshed ctypes change
• Additional commits viewable in compare view

Updates pylint from 3.0.1 to 3.0.3

Commits

• 1a5ffc1 Bump pylint to 3.0.3, update changelog
• 54687e7 Disallow isort 5.13.0 (#9290) (#9292)
• fea5483 [wrong-exception-operation] Fix FP for tuple concatenation of exception types...
• d0d5c91 [pointless-string-statement] Ignore docstrings on py3.12 type aliases (#9269)...
• 81f0f2e [Backport maintenance/3.0.x] [bugfix] Find files with ./ as input with a __in...
• 7f01d83 Fix doc generation in implicit-str-concat
• a60ddd1 Fix incorrect suggestion for unnecessary-comprehension (#9172) (#9242)
• dc11223 [todos] Fix the todos version and the warnings' text (#9202) (#9204)
• 0273db7 Fix false positive for unnecessary-lambda. (#9149) (#9200)
• 53d4541 Fix undefined-variable etc for Python 3.12 generic type syntax (#9195) (#9199)
• Additional commits viewable in compare view

Updates types-requests from 2.31.0.10 to 2.31.0.20231231

Commits

• See full diff in compare view

Updates pytest from 7.4.2 to 7.4.4

Release notes

Sourced from pytest's releases.

pytest 7.4.4 (2023-12-31)

Bug Fixes

• #11140: Fix non-string constants at the top of file being detected as docstrings on Python>=3.8.
• #11572: Handle an edge case where sys.stderr{.interpreted-text role="data"} and sys.__stderr__{.interpreted-text role="data"} might already be closed when faulthandler{.interpreted-text role="ref"} is tearing down.
• #11710: Fixed tracebacks from collection errors not getting pruned.
• #7966: Removed unhelpful error message from assertion rewrite mechanism when exceptions are raised in __iter__ methods. Now they are treated un-iterable instead.

Improved Documentation

• #11091: Updated documentation to refer to hyphenated options: replaced --junitxml with --junit-xml and --collectonly with --collect-only.

pytest 7.4.3 (2023-10-24)

Bug Fixes

• #10447: Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression.

• #11239: Fixed := in asserts impacting unrelated test cases.

• #11439: Handled an edge case where :data:sys.stderr might already be closed when :ref:faulthandler is tearing down.

Commits

• 33f694f Prepare release version 7.4.4
• 76c107c Merge pull request #11751 from bluetech/backport-11143-to-7.4.x
• 531d76d [7.4.x] Improve reporting from iter exceptions (#11749)
• a0f58fa Merge pull request #11143 from tushar-deepsource/patch-1
• b1f3387 [7.4.x] #11091: documentation should use hypthonated properties (#11750)
• 2cdd619 Merge pull request #11747 from pytest-dev/backport-11711-to-7.4.x
• d06c05b [7.4.x] nodes: fix tracebacks from collection errors are not getting pruned
• 5582bfc [7.4.x] Improves clarity in Sphinx documentation for function signature. (#11...
• 13024ef [7.4.x] Fix for operation on closed file in faulthandler teardown (#11631)
• a40dacf [7.4.x] XFAIL TestLocalPath.test_make_numbered_dir_multiprocess_safe (#11616)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: 7b1f500

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.