chore(deps): bump the python group with 5 updates

[dependabot]

Bumps the python group with 5 updates:

Package	From	To
pypdf	4.1.0	4.2.0
aws-lambda-powertools	2.36.0	2.37.0
boto3	1.34.76	1.34.86
black	24.3.0	24.4.0
types-requests	2.31.0.20240403	2.31.0.20240406

Updates pypdf from 4.1.0 to 4.2.0

Release notes

Sourced from pypdf's releases.

Version 4.2.0, 2024-04-07

What's new

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585) by @​pubpub-zz
• Add support for /Kids in page labels (#2562) by @​stefan6419846
• Allow to update fields on many pages (#2571) by @​pubpub-zz
• Tolerate PDF with invalid xref pointed objects (#2335) by @​pubpub-zz
• Add Enforce from PDF2.0 in viewer_preferences (#2511) by @​pubpub-zz
• Add += and -= operators to ArrayObject (#2510) by @​pubpub-zz

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588) by @​rfotino
• Fix fields update where annotations are kids of field (#2570) by @​pubpub-zz
• Process CMYK images without a filter correctly (#2557) by @​pubpub-zz
• Extract text in layout mode without finding resources (#2555) by @​pubpub-zz
• Prevent recursive loop in some PDF files (#2505) by @​pubpub-zz

Robustness (ROB)

• Tolerate "truncated" xref (#2580) by @​pubpub-zz
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334) by @​pubpub-zz
• Rebuild xref table if one entry is invalid (#2528) by @​pubpub-zz
• Robustify stream extraction (#2526) by @​pubpub-zz

Documentation (DOC)

• Update release process for latest changes (#2564) by @​stefan6419846
• Encryption/decryption: Clone document instead of copying all pages (#2546) by @​redfast00
• Minor improvements (#2542) by @​j-t-1
• Update annotation list (#2534) by @​j-t-1
• Update references and formatting (#2529) by @​j-t-1
• Correct threads reference, plus minor changes (#2521) by @​j-t-1
• Minor readability increases (#2515) by @​j-t-1
• Simplify PaperSize examples (#2504) by @​j-t-1
• Minor improvements (#2501) by @​j-t-1

Developer Experience (DEV)

• Remove unused dependencies (#2572) by @​stefan6419846
• Remove page labels PR link from message (#2561) by @​stefan6419846
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492) by @​stefan6419846
• Add REL to known PR prefixes (#2554) by @​stefan6419846
• Release using the REL commit instead of git tag (#2500) by @​MartinThoma
• Unify code between PdfReader and PdfWriter (#2497) by @​pubpub-zz
• Bump softprops/action-gh-release from 1 to 2 (#2514) by @​dependabot[bot]

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550) by @​pubpub-zz
• Fix typos found by codespell (#2549) by @​stefan6419846
• Update Read the Docs configuration (#2538) by @​j-t-1
• Add root_object, _info and _ID to PdfReader (#2495) by @​pubpub-zz

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 4.2.0, 2024-04-07

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585)
• Add support for /Kids in page labels (#2562)
• Allow to update fields on many pages (#2571)
• Tolerate PDF with invalid xref pointed objects (#2335)
• Add Enforce from PDF2.0 in viewer_preferences (#2511)
• Add += and -= operators to ArrayObject (#2510)

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• Fix fields update where annotations are kids of field (#2570)
• Process CMYK images without a filter correctly (#2557)
• Extract text in layout mode without finding resources (#2555)
• Prevent recursive loop in some PDF files (#2505)

Robustness (ROB)

• Tolerate "truncated" xref (#2580)
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334)
• Rebuild xref table if one entry is invalid (#2528)
• Robustify stream extraction (#2526)

Documentation (DOC)

• Update release process for latest changes (#2564)
• Encryption/decryption: Clone document instead of copying all pages (#2546)
• Minor improvements (#2542)
• Update annotation list (#2534)
• Update references and formatting (#2529)
• Correct threads reference, plus minor changes (#2521)
• Minor readability increases (#2515)
• Simplify PaperSize examples (#2504)
• Minor improvements (#2501)

Developer Experience (DEV)

• Remove unused dependencies (#2572)
• Remove page labels PR link from message (#2561)
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492)
• Add REL to known PR prefixes (#2554)
• Release using the REL commit instead of git tag (#2500)
• Unify code between PdfReader and PdfWriter (#2497)
• Bump softprops/action-gh-release from 1 to 2 (#2514)

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550)
• Fix typos found by codespell (#2549)
• Update Read the Docs configuration (#2538)
• Add root_object, _info and _ID to PdfReader (#2495)

Testing (TST)

... (truncated)

Commits

• 2ac88e6 REL: 4.2.0
• 561b1b0 BUG: Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• ae0d27b TST: Allow loading truncated images if required (#2586)
• 956fd03 ENH: Allow multiple charsets for NameObject.read_from_stream (#2585)
• 0f7c8fe ROB: Tolerate "truncated" xref (#2580)
• 6152893 TST: Fix download issues from #2562 (#2578)
• bc29901 ENH: Add support for /Kids in page labels (#2562)
• 4bdca16 ENH: Allow to update fields on many pages (#2571)
• 4d3d797 DEV: Remove unused dependencies (#2572)
• 50bb7f2 BUG: Fix fields update where annotations are kids of field (#2570)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.36.0 to 2.37.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.37.0

Summary

This release adds Security Schemes support for generated OpenAPI / Swagger UI, and a new feature to manipulate idempotent responses. 🚀🚀 And of course, you know it, fixes in typing and documentation. 🎉

🌟 Tons of things in this release was only possible because of our community. 🌟 A huge thank you to @​walmsles, @​Wurstnase, @​SZubarev, @​Emerson-MM-Filho, @​nlykkei, @​amyc92 and many others for your support and collaboration!

OpenAPI Security Schemes

Docs

You can now add security scheme annotations to your generated OpenAPI documentation (HTTP headers, API keys, OAuth 2 and OpenID connect). Additionally, you can configure the built-in Swagger UI to use OAuth 2 when generating requests.

🌟 Huge thanks to @​nlykkei for helping us shape this feature!

Manipulating Idempotent Responses

Docs

You can now set up a response_hook in the IdempotentConfig class to manipulate the returned data when an operation is idempotent. The hook function will be called with the current deserialized response object and the idempotency record.

This can be used for changing something in the response, inject headers, emit custom metrics, and many other use cases.

🌟 Thank you @​walmsles for leading the design and implementation of this!

Changes

🌟New features and non-breaking changes

• feat(event_handler): add support for OpenAPI security schemes (#4103) by @​rubenfonseca
• feat(event_sources,parser): add support for DeadLetterQueueSourceArn for SQS (#4133) by @​rubenfonseca
• feat(logger): add method to return currently configured keys (#4033) by @​leandrodamascena
• feat(idempotency): add feature for manipulating idempotent responses (#4037) by @​walmsles

📜 Documentation updates

• docs(we-made-this): new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068) by @​leandrodamascena

🐛 Bug and hot fixes

• fix(typing): make the case_sensitive field a boolean only (#4128) by @​Wurstnase
• fix(typing): improve overloads to ensure the return type follows the default_value type (#4114) by @​Wurstnase
• fix(docs): clarified usage of validation with fine grained responses (#4101) by @​rubenfonseca
• fix(event_source): fix typo in physicalname attribute for AmazonMQ events (#4053) by @​SZubarev

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.37.0] - 2024-04-18

Maintenance

• version bump

Commits

• 444dbaa chore: version bump
• bb8675c chore(ci): changelog rebuild (#4149)
• 4f27133 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.115 to 0....
• 113eb07 chore(deps-dev): bump types-redis from 4.6.0.20240409 to 4.6.0.20240417 (#4145)
• 55713ce feat(event_handler): add support for OpenAPI security schemes (#4103)
• 1e7b3ab chore(deps-dev): bump mkdocs-material from 9.5.17 to 9.5.18 (#4143)
• 446a706 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.113 to 0....
• 9244a35 chore(deps): bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /d...
• f114a8e chore(deps-dev): bump cfn-lint from 0.86.2 to 0.86.3 (#4137)
• 7f88384 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0....
• Additional commits viewable in compare view

Updates boto3 from 1.34.76 to 1.34.86

Changelog

Sourced from boto3's changelog.

1.34.86

• api-change:ec2: [botocore] Documentation updates for Elastic Compute Cloud (EC2).
• api-change:qbusiness: [botocore] This release adds support for IAM Identity Center (IDC) as the identity gateway for Q Business. It also allows users to provide an explicit intent for Q Business to identify how the Chat request should be handled.

1.34.85

• api-change:bedrock-agent: [botocore] For Create Agent API, the agentResourceRoleArn parameter is no longer required.
• api-change:emr-serverless: [botocore] This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads.
• api-change:entityresolution: [botocore] Cross Account Resource Support .
• api-change:iotwireless: [botocore] Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device.
• api-change:lakeformation: [botocore] This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration"
• api-change:m2: [botocore] Adding new ListBatchJobRestartPoints API and support for restart batch job.
• api-change:mediapackagev2: [botocore] Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format.
• api-change:outposts: [botocore] This release adds new APIs to allow customers to configure their Outpost capacity at order-time.
• api-change:wellarchitected: [botocore] AWS Well-Architected now has a Connector for Jira to allow customers to efficiently track workload risks and improvement efforts and create closed-loop mechanisms.
• enhancement:AWSCRT: [botocore] Update awscrt version to 0.20.9

1.34.84

• api-change:cloudformation: [botocore] Adding support for the new parameter "IncludePropertyValues" in the CloudFormation DescribeChangeSet API. When this parameter is included, the DescribeChangeSet response will include more detailed information such as before and after values for the resource properties that will change.
• api-change:config: [botocore] Updates documentation for AWS Config
• api-change:glue: [botocore] Modifying request for GetUnfilteredTableMetadata for view-related fields.
• api-change:healthlake: [botocore] Added new CREATE_FAILED status for data stores. Added new errorCause to DescribeFHIRDatastore API and ListFHIRDatastores API response for additional insights into data store creation and deletion workflows.
• api-change:iotfleethub: [botocore] Documentation updates for AWS IoT Fleet Hub to clarify that Fleet Hub supports organization instance of IAM Identity Center.
• api-change:kms: [botocore] This feature supports the ability to specify a custom rotation period for automatic key rotations, the ability to perform on-demand key rotations, and visibility into your key material rotations.
• api-change:mediatailor: [botocore] Added InsertionMode to PlaybackConfigurations. This setting controls whether players can use stitched or guided ad insertion. The default for players that do not specify an insertion mode is stitched.
• api-change:neptune-graph: [botocore] Update to API documentation to resolve customer reported issues.
• api-change:outposts: [botocore] This release adds EXPEDITORS as a valid shipment carrier.
• api-change:redshift: [botocore] Adds support for Amazon Redshift DescribeClusterSnapshots API to include Snapshot ARN response field.
• api-change:transfer: [botocore] This change releases support for importing self signed certificates to the Transfer Family for sending outbound file transfers over TLS/HTTPS.

1.34.83

• api-change:batch: [botocore] This release adds the task properties field to attempt details and the name field on EKS container detail.
• api-change:cloudfront: [botocore] CloudFront origin access control extends support to AWS Lambda function URLs and AWS Elemental MediaPackage v2 origins.
• api-change:cloudwatch: [botocore] This release adds support for Metric Characteristics for CloudWatch Anomaly Detection. Anomaly Detector now takes Metric Characteristics object with Periodic Spikes boolean field that tells Anomaly Detection that spikes that repeat at the same time every week are part of the expected pattern.
• api-change:codebuild: [botocore] Support access tokens for Bitbucket sources
• api-change:iam: [botocore] For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required.
• api-change:medialive: [botocore] AWS Elemental MediaLive introduces workflow monitor, a new feature that enables the visualization and monitoring of your media workflows. Create signal maps of your existing workflows and monitor them by creating notification and monitoring template groups.
• api-change:omics: [botocore] This release adds support for retrieval of S3 direct access metadata on sequence stores and read sets, and adds support for SHA256up and SHA512up HealthOmics ETags.
• api-change:pipes: [botocore] LogConfiguration ARN validation fixes
• api-change:rds: [botocore] Updates Amazon RDS documentation for Standard Edition 2 support in RDS Custom for Oracle.

... (truncated)

Commits

• 4252413 Merge branch 'release-1.34.86'
• 3b79a95 Bumping version to 1.34.86
• 71fb94b Add changelog entries from botocore
• 850b542 Merge branch 'release-1.34.85'
• 3c9115e Merge branch 'release-1.34.85' into develop
• 8c7a960 Bumping version to 1.34.85
• 31e1afe Add changelog entries from botocore
• 5062f72 Merge branch 'release-1.34.84'
• 6383325 Merge branch 'release-1.34.84' into develop
• 8b3ecff Bumping version to 1.34.84
• Additional commits viewable in compare view

Updates black from 24.3.0 to 24.4.0

Release notes

Sourced from black's releases.

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Changelog

Sourced from black's changelog.

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Commits

• 8fe6270 Prepare release 24.4.0 (#4307)
• 6b25e7c Bump peter-evans/find-comment from 3.0.0 to 3.1.0 (#4304)
• 07fe1ca docs: remove repetitive word (#4303)
• 3383f53 GitHub Action: Allow reading version from pyproject.toml (#4294)
• c8f1a55 [pre-commit.ci] pre-commit autoupdate (#4297)
• 836acad Improve AST safety check (#4290)
• 13bd092 fix: Stop moving multiline strings to a new line unless inside brackets (#4289)
• c9d2635 Remove mocking from tests (#4287)
• bf11956 Fix two logging calls in the test helper (#4286)
• 97993f9 Bump pypa/cibuildwheel from 2.16.5 to 2.17.0 (#4283)
• Additional commits viewable in compare view

Updates types-requests from 2.31.0.20240403 to 2.31.0.20240406

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: 6f4558b

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.