chore(deps): bump the python group across 1 directory with 5 updates

[dependabot]

Bumps the python group with 5 updates in the / directory:

Package	From	To
pypdf	4.1.0	4.2.0
aws-lambda-powertools	2.36.0	2.37.0
boto3	1.34.76	1.34.89
black	24.3.0	24.4.0
types-requests	2.31.0.20240403	2.31.0.20240406

Updates pypdf from 4.1.0 to 4.2.0

Release notes

Sourced from pypdf's releases.

Version 4.2.0, 2024-04-07

What's new

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585) by @​pubpub-zz
• Add support for /Kids in page labels (#2562) by @​stefan6419846
• Allow to update fields on many pages (#2571) by @​pubpub-zz
• Tolerate PDF with invalid xref pointed objects (#2335) by @​pubpub-zz
• Add Enforce from PDF2.0 in viewer_preferences (#2511) by @​pubpub-zz
• Add += and -= operators to ArrayObject (#2510) by @​pubpub-zz

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588) by @​rfotino
• Fix fields update where annotations are kids of field (#2570) by @​pubpub-zz
• Process CMYK images without a filter correctly (#2557) by @​pubpub-zz
• Extract text in layout mode without finding resources (#2555) by @​pubpub-zz
• Prevent recursive loop in some PDF files (#2505) by @​pubpub-zz

Robustness (ROB)

• Tolerate "truncated" xref (#2580) by @​pubpub-zz
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334) by @​pubpub-zz
• Rebuild xref table if one entry is invalid (#2528) by @​pubpub-zz
• Robustify stream extraction (#2526) by @​pubpub-zz

Documentation (DOC)

• Update release process for latest changes (#2564) by @​stefan6419846
• Encryption/decryption: Clone document instead of copying all pages (#2546) by @​redfast00
• Minor improvements (#2542) by @​j-t-1
• Update annotation list (#2534) by @​j-t-1
• Update references and formatting (#2529) by @​j-t-1
• Correct threads reference, plus minor changes (#2521) by @​j-t-1
• Minor readability increases (#2515) by @​j-t-1
• Simplify PaperSize examples (#2504) by @​j-t-1
• Minor improvements (#2501) by @​j-t-1

Developer Experience (DEV)

• Remove unused dependencies (#2572) by @​stefan6419846
• Remove page labels PR link from message (#2561) by @​stefan6419846
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492) by @​stefan6419846
• Add REL to known PR prefixes (#2554) by @​stefan6419846
• Release using the REL commit instead of git tag (#2500) by @​MartinThoma
• Unify code between PdfReader and PdfWriter (#2497) by @​pubpub-zz
• Bump softprops/action-gh-release from 1 to 2 (#2514) by @​dependabot[bot]

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550) by @​pubpub-zz
• Fix typos found by codespell (#2549) by @​stefan6419846
• Update Read the Docs configuration (#2538) by @​j-t-1
• Add root_object, _info and _ID to PdfReader (#2495) by @​pubpub-zz

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 4.2.0, 2024-04-07

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585)
• Add support for /Kids in page labels (#2562)
• Allow to update fields on many pages (#2571)
• Tolerate PDF with invalid xref pointed objects (#2335)
• Add Enforce from PDF2.0 in viewer_preferences (#2511)
• Add += and -= operators to ArrayObject (#2510)

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• Fix fields update where annotations are kids of field (#2570)
• Process CMYK images without a filter correctly (#2557)
• Extract text in layout mode without finding resources (#2555)
• Prevent recursive loop in some PDF files (#2505)

Robustness (ROB)

• Tolerate "truncated" xref (#2580)
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334)
• Rebuild xref table if one entry is invalid (#2528)
• Robustify stream extraction (#2526)

Documentation (DOC)

• Update release process for latest changes (#2564)
• Encryption/decryption: Clone document instead of copying all pages (#2546)
• Minor improvements (#2542)
• Update annotation list (#2534)
• Update references and formatting (#2529)
• Correct threads reference, plus minor changes (#2521)
• Minor readability increases (#2515)
• Simplify PaperSize examples (#2504)
• Minor improvements (#2501)

Developer Experience (DEV)

• Remove unused dependencies (#2572)
• Remove page labels PR link from message (#2561)
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492)
• Add REL to known PR prefixes (#2554)
• Release using the REL commit instead of git tag (#2500)
• Unify code between PdfReader and PdfWriter (#2497)
• Bump softprops/action-gh-release from 1 to 2 (#2514)

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550)
• Fix typos found by codespell (#2549)
• Update Read the Docs configuration (#2538)
• Add root_object, _info and _ID to PdfReader (#2495)

Testing (TST)

... (truncated)

Commits

• 2ac88e6 REL: 4.2.0
• 561b1b0 BUG: Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• ae0d27b TST: Allow loading truncated images if required (#2586)
• 956fd03 ENH: Allow multiple charsets for NameObject.read_from_stream (#2585)
• 0f7c8fe ROB: Tolerate "truncated" xref (#2580)
• 6152893 TST: Fix download issues from #2562 (#2578)
• bc29901 ENH: Add support for /Kids in page labels (#2562)
• 4bdca16 ENH: Allow to update fields on many pages (#2571)
• 4d3d797 DEV: Remove unused dependencies (#2572)
• 50bb7f2 BUG: Fix fields update where annotations are kids of field (#2570)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.36.0 to 2.37.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.37.0

Summary

This release adds Security Schemes support for generated OpenAPI / Swagger UI, and a new feature to manipulate idempotent responses. 🚀🚀 And of course, you know it, fixes in typing and documentation. 🎉

🌟 Tons of things in this release was only possible because of our community. 🌟 A huge thank you to @​walmsles, @​Wurstnase, @​SZubarev, @​Emerson-MM-Filho, @​nlykkei, @​amyc92 and many others for your support and collaboration!

OpenAPI Security Schemes

Docs

You can now add security scheme annotations to your generated OpenAPI documentation (HTTP headers, API keys, OAuth 2 and OpenID connect). Additionally, you can configure the built-in Swagger UI to use OAuth 2 when generating requests.

🌟 Huge thanks to @​nlykkei for helping us shape this feature!

Manipulating Idempotent Responses

Docs

You can now set up a response_hook in the IdempotentConfig class to manipulate the returned data when an operation is idempotent. The hook function will be called with the current deserialized response object and the idempotency record.

This can be used for changing something in the response, inject headers, emit custom metrics, and many other use cases.

🌟 Thank you @​walmsles for leading the design and implementation of this!

Changes

🌟New features and non-breaking changes

• feat(event_handler): add support for OpenAPI security schemes (#4103) by @​rubenfonseca
• feat(event_sources,parser): add support for DeadLetterQueueSourceArn for SQS (#4133) by @​rubenfonseca
• feat(logger): add method to return currently configured keys (#4033) by @​leandrodamascena
• feat(idempotency): add feature for manipulating idempotent responses (#4037) by @​walmsles

📜 Documentation updates

• docs(we-made-this): new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068) by @​leandrodamascena

🐛 Bug and hot fixes

• fix(typing): make the case_sensitive field a boolean only (#4128) by @​Wurstnase
• fix(typing): improve overloads to ensure the return type follows the default_value type (#4114) by @​Wurstnase
• fix(docs): clarified usage of validation with fine grained responses (#4101) by @​rubenfonseca
• fix(event_source): fix typo in physicalname attribute for AmazonMQ events (#4053) by @​SZubarev

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.37.0] - 2024-04-18

Bug Fixes

• docs: clarified usage of validation with fine grained responses (#4101)
• event_source: fix typo in physicalname attribute for AmazonMQ events (#4053)
• typing: make the case_sensitive field a boolean only (#4128)
• typing: improve overloads to ensure the return type follows the default_value type (#4114)

Documentation

• we-made-this: new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068)

Features

• Idempotency: add feature for manipulating idempotent responses (#4037)
• event_handler: add support for OpenAPI security schemes (#4103)
• logger: add method to return currently configured keys (#4033)

Maintenance

• version bump
• ci: add monthly roadmap reminder workflow (#4075)
• ci: prevent deprecated custom runner from being used (#4061)
• deps: bump squidfunk/mkdocs-material from 065f3af to 6b124e1 in /docs (#4055)
• deps: bump squidfunk/mkdocs-material from 3307665 to 065f3af in /docs (#4052)
• deps: bump idna from 3.6 to 3.7 (#4121)
• deps: bump sqlparse from 0.4.4 to 0.5.0 (#4138)
• deps: bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /docs (#4141)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 1 update (#4066)
• deps: bump pydantic from 1.10.14 to 1.10.15 (#4064)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 3 updates (#4042)
• deps: bump golang.org/x/sync from 0.6.0 to 0.7.0 in /layer/scripts/layer-balancer in the layer-balancer group (#4071)
• deps: bump codecov/codecov-action from 4.1.1 to 4.2.0 (#4072)
• deps: bump datadog-lambda from 5.91.0 to 5.92.0 (#4038)
• deps: bump github.com/aws/aws-sdk-go-v2/config from 1.27.10 to 1.27.11 in /layer/scripts/layer-balancer in the layer-balancer group (#4079)
• deps: bump typing-extensions from 4.10.0 to 4.11.0 (#4080)
• deps: bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.3 to 3.0.4 (#4099)
• deps: bump codecov/codecov-action from 4.2.0 to 4.3.0 (#4098)
• deps: bump docker/setup-buildx-action from 3.2.0 to 3.3.0 (#4091)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0.1.113 (#4136)
• deps-dev: bump aws-cdk from 2.135.0 to 2.136.0 (#4090)
• deps-dev: bump types-redis from 4.6.0.20240311 to 4.6.0.20240409 (#4094)
• deps-dev: bump aws-cdk-lib from 2.135.0 to 2.136.0 (#4092)
• deps-dev: bump cfn-lint from 0.86.1 to 0.86.2 (#4081)
• deps-dev: bump aws-cdk-aws-lambda-python-alpha from 2.135.0a0 to 2.136.0a0 (#4095)
• deps-dev: bump filelock from 3.13.3 to 3.13.4 (#4096)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.106 to 0.1.107 (#4082)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.107 to 0.1.110 (#4097)
• deps-dev: bump aws-cdk from 2.136.0 to 2.136.1 (#4106)
• deps-dev: bump aws-cdk-lib from 2.136.0 to 2.136.1 (#4107)

... (truncated)

Commits

• 444dbaa chore: version bump
• bb8675c chore(ci): changelog rebuild (#4149)
• 4f27133 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.115 to 0....
• 113eb07 chore(deps-dev): bump types-redis from 4.6.0.20240409 to 4.6.0.20240417 (#4145)
• 55713ce feat(event_handler): add support for OpenAPI security schemes (#4103)
• 1e7b3ab chore(deps-dev): bump mkdocs-material from 9.5.17 to 9.5.18 (#4143)
• 446a706 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.113 to 0....
• 9244a35 chore(deps): bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /d...
• f114a8e chore(deps-dev): bump cfn-lint from 0.86.2 to 0.86.3 (#4137)
• 7f88384 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0....
• Additional commits viewable in compare view

Updates boto3 from 1.34.76 to 1.34.89

Changelog

Sourced from boto3's changelog.

1.34.89

• api-change:bedrock-agent: [botocore] Releasing the support for simplified configuration and return of control
• api-change:bedrock-agent-runtime: [botocore] Releasing the support for simplified configuration and return of control
• api-change:payment-cryptography: [botocore] Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service.
• api-change:redshift-serverless: [botocore] Updates description of schedule field for scheduled actions.
• api-change:route53profiles: [botocore] Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account.
• api-change:sagemaker: [botocore] This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio.
• api-change:servicediscovery: [botocore] This release adds examples to several Cloud Map actions.
• api-change:transfer: [botocore] Adding new API to support remote directory listing using SFTP connector

1.34.88

• api-change:glue: [botocore] Adding RowFilter in the response for GetUnfilteredTableMetadata API
• api-change:internetmonitor: [botocore] This update introduces the GetInternetEvent and ListInternetEvents APIs, which provide access to internet events displayed on the Amazon CloudWatch Internet Weather Map.
• api-change:personalize: [botocore] This releases auto training capability while creating a solution and automatically syncing latest solution versions when creating/updating a campaign

1.34.87

• api-change:drs: [botocore] Outpost ARN added to Source Server and Recovery Instance
• api-change:emr-serverless: [botocore] This release adds the capability to publish detailed Spark engine metrics to Amazon Managed Service for Prometheus (AMP) for enhanced monitoring for Spark jobs.
• api-change:guardduty: [botocore] Added IPv6Address fields for local and remote IP addresses
• api-change:quicksight: [botocore] This release adds support for the Cross Sheet Filter and Control features, and support for warnings in asset imports for any permitted errors encountered during execution
• api-change:rolesanywhere: [botocore] This release introduces the PutAttributeMapping and DeleteAttributeMapping APIs. IAM Roles Anywhere now provides the capability to define a set of mapping rules, allowing customers to specify which data is extracted from their X.509 end-entity certificates.
• api-change:sagemaker: [botocore] Removed deprecated enum values and updated API documentation.
• api-change:workspaces: [botocore] Adds new APIs for managing and sharing WorkSpaces BYOL configuration across accounts.

1.34.86

• api-change:ec2: [botocore] Documentation updates for Elastic Compute Cloud (EC2).
• api-change:qbusiness: [botocore] This release adds support for IAM Identity Center (IDC) as the identity gateway for Q Business. It also allows users to provide an explicit intent for Q Business to identify how the Chat request should be handled.

1.34.85

• api-change:bedrock-agent: [botocore] For Create Agent API, the agentResourceRoleArn parameter is no longer required.
• api-change:emr-serverless: [botocore] This release adds support for shuffle optimized disks that allow larger disk sizes and higher IOPS to efficiently run shuffle heavy workloads.
• api-change:entityresolution: [botocore] Cross Account Resource Support .
• api-change:iotwireless: [botocore] Add PublicGateways in the GetWirelessStatistics call response, indicating the LoRaWAN public network accessed by the device.
• api-change:lakeformation: [botocore] This release adds Lake Formation managed RAM support for the 4 APIs - "DescribeLakeFormationIdentityCenterConfiguration", "CreateLakeFormationIdentityCenterConfiguration", "DescribeLakeFormationIdentityCenterConfiguration", and "DeleteLakeFormationIdentityCenterConfiguration"
• api-change:m2: [botocore] Adding new ListBatchJobRestartPoints API and support for restart batch job.
• api-change:mediapackagev2: [botocore] Dash v2 is a MediaPackage V2 feature to support egressing on DASH manifest format.

... (truncated)

Commits

• 1745077 Merge branch 'release-1.34.89'
• 94600a9 Bumping version to 1.34.89
• dffe026 Add changelog entries from botocore
• 40c02b5 Merge branch 'release-1.34.88'
• f8d8b9a Merge branch 'release-1.34.88' into develop
• fb4e5da Bumping version to 1.34.88
• dda8243 Add changelog entries from botocore
• a300f56 Merge branch 'release-1.34.87'
• 552f9e6 Merge branch 'release-1.34.87' into develop
• 7b97476 Bumping version to 1.34.87
• Additional commits viewable in compare view

Updates black from 24.3.0 to 24.4.0

Release notes

Sourced from black's releases.

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Changelog

Sourced from black's changelog.

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Commits

• 8fe6270 Prepare release 24.4.0 (#4307)
• 6b25e7c Bump peter-evans/find-comment from 3.0.0 to 3.1.0 (#4304)
• 07fe1ca docs: remove repetitive word (#4303)
• 3383f53 GitHub Action: Allow reading version from pyproject.toml (#4294)
• c8f1a55 [pre-commit.ci] pre-commit autoupdate (#4297)
• 836acad Improve AST safety check (#4290)
• 13bd092 fix: Stop moving multiline strings to a new line unless inside brackets (#4289)
• c9d2635 Remove mocking from tests (#4287)
• bf11956 Fix two logging calls in the test helper (#4286)
• 97993f9 Bump pypa/cibuildwheel from 2.16.5 to 2.17.0 (#4283)
• Additional commits viewable in compare view

Updates types-requests from 2.31.0.20240403 to 2.31.0.20240406

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: 3fbab36

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[changeset-bot]

⚠️ No Changeset found

Latest commit: b5640a4

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.