chore(deps): bump the python group across 1 directory with 6 updates

[dependabot]

Bumps the python group with 6 updates in the / directory:

Package	From	To
pypdf	4.1.0	4.2.0
aws-lambda-powertools	2.36.0	2.37.0
boto3	1.34.76	1.34.91
black	24.3.0	24.4.1
mypy	1.9.0	1.10.0
types-requests	2.31.0.20240403	2.31.0.20240406

Updates pypdf from 4.1.0 to 4.2.0

Release notes

Sourced from pypdf's releases.

Version 4.2.0, 2024-04-07

What's new

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585) by @​pubpub-zz
• Add support for /Kids in page labels (#2562) by @​stefan6419846
• Allow to update fields on many pages (#2571) by @​pubpub-zz
• Tolerate PDF with invalid xref pointed objects (#2335) by @​pubpub-zz
• Add Enforce from PDF2.0 in viewer_preferences (#2511) by @​pubpub-zz
• Add += and -= operators to ArrayObject (#2510) by @​pubpub-zz

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588) by @​rfotino
• Fix fields update where annotations are kids of field (#2570) by @​pubpub-zz
• Process CMYK images without a filter correctly (#2557) by @​pubpub-zz
• Extract text in layout mode without finding resources (#2555) by @​pubpub-zz
• Prevent recursive loop in some PDF files (#2505) by @​pubpub-zz

Robustness (ROB)

• Tolerate "truncated" xref (#2580) by @​pubpub-zz
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334) by @​pubpub-zz
• Rebuild xref table if one entry is invalid (#2528) by @​pubpub-zz
• Robustify stream extraction (#2526) by @​pubpub-zz

Documentation (DOC)

• Update release process for latest changes (#2564) by @​stefan6419846
• Encryption/decryption: Clone document instead of copying all pages (#2546) by @​redfast00
• Minor improvements (#2542) by @​j-t-1
• Update annotation list (#2534) by @​j-t-1
• Update references and formatting (#2529) by @​j-t-1
• Correct threads reference, plus minor changes (#2521) by @​j-t-1
• Minor readability increases (#2515) by @​j-t-1
• Simplify PaperSize examples (#2504) by @​j-t-1
• Minor improvements (#2501) by @​j-t-1

Developer Experience (DEV)

• Remove unused dependencies (#2572) by @​stefan6419846
• Remove page labels PR link from message (#2561) by @​stefan6419846
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492) by @​stefan6419846
• Add REL to known PR prefixes (#2554) by @​stefan6419846
• Release using the REL commit instead of git tag (#2500) by @​MartinThoma
• Unify code between PdfReader and PdfWriter (#2497) by @​pubpub-zz
• Bump softprops/action-gh-release from 1 to 2 (#2514) by @​dependabot[bot]

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550) by @​pubpub-zz
• Fix typos found by codespell (#2549) by @​stefan6419846
• Update Read the Docs configuration (#2538) by @​j-t-1
• Add root_object, _info and _ID to PdfReader (#2495) by @​pubpub-zz

... (truncated)

Changelog

Sourced from pypdf's changelog.

Version 4.2.0, 2024-04-07

New Features (ENH)

• Allow multiple charsets for NameObject.read_from_stream (#2585)
• Add support for /Kids in page labels (#2562)
• Allow to update fields on many pages (#2571)
• Tolerate PDF with invalid xref pointed objects (#2335)
• Add Enforce from PDF2.0 in viewer_preferences (#2511)
• Add += and -= operators to ArrayObject (#2510)

Bug Fixes (BUG)

• Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• Fix fields update where annotations are kids of field (#2570)
• Process CMYK images without a filter correctly (#2557)
• Extract text in layout mode without finding resources (#2555)
• Prevent recursive loop in some PDF files (#2505)

Robustness (ROB)

• Tolerate "truncated" xref (#2580)
• Replace error by warning for EOD in RunLengthDecode/ASCIIHexDecode (#2334)
• Rebuild xref table if one entry is invalid (#2528)
• Robustify stream extraction (#2526)

Documentation (DOC)

• Update release process for latest changes (#2564)
• Encryption/decryption: Clone document instead of copying all pages (#2546)
• Minor improvements (#2542)
• Update annotation list (#2534)
• Update references and formatting (#2529)
• Correct threads reference, plus minor changes (#2521)
• Minor readability increases (#2515)
• Simplify PaperSize examples (#2504)
• Minor improvements (#2501)

Developer Experience (DEV)

• Remove unused dependencies (#2572)
• Remove page labels PR link from message (#2561)
• Fix changelog generator regarding whitespace and handling of "Other" group (#2492)
• Add REL to known PR prefixes (#2554)
• Release using the REL commit instead of git tag (#2500)
• Unify code between PdfReader and PdfWriter (#2497)
• Bump softprops/action-gh-release from 1 to 2 (#2514)

Maintenance (MAINT)

• Ressources → Resources (and internal name childs) (#2550)
• Fix typos found by codespell (#2549)
• Update Read the Docs configuration (#2538)
• Add root_object, _info and _ID to PdfReader (#2495)

Testing (TST)

... (truncated)

Commits

• 2ac88e6 REL: 4.2.0
• 561b1b0 BUG: Fix merge_page sometimes generating unknown operator 'QQ' (#2588)
• ae0d27b TST: Allow loading truncated images if required (#2586)
• 956fd03 ENH: Allow multiple charsets for NameObject.read_from_stream (#2585)
• 0f7c8fe ROB: Tolerate "truncated" xref (#2580)
• 6152893 TST: Fix download issues from #2562 (#2578)
• bc29901 ENH: Add support for /Kids in page labels (#2562)
• 4bdca16 ENH: Allow to update fields on many pages (#2571)
• 4d3d797 DEV: Remove unused dependencies (#2572)
• 50bb7f2 BUG: Fix fields update where annotations are kids of field (#2570)
• Additional commits viewable in compare view

Updates aws-lambda-powertools from 2.36.0 to 2.37.0

Release notes

Sourced from aws-lambda-powertools's releases.

v2.37.0

Summary

This release adds Security Schemes support for generated OpenAPI / Swagger UI, and a new feature to manipulate idempotent responses. 🚀🚀 And of course, you know it, fixes in typing and documentation. 🎉

🌟 Tons of things in this release was only possible because of our community. 🌟 A huge thank you to @​walmsles, @​Wurstnase, @​SZubarev, @​Emerson-MM-Filho, @​nlykkei, @​amyc92 and many others for your support and collaboration!

OpenAPI Security Schemes

Docs

You can now add security scheme annotations to your generated OpenAPI documentation (HTTP headers, API keys, OAuth 2 and OpenID connect). Additionally, you can configure the built-in Swagger UI to use OAuth 2 when generating requests.

🌟 Huge thanks to @​nlykkei for helping us shape this feature!

Manipulating Idempotent Responses

Docs

You can now set up a response_hook in the IdempotentConfig class to manipulate the returned data when an operation is idempotent. The hook function will be called with the current deserialized response object and the idempotency record.

This can be used for changing something in the response, inject headers, emit custom metrics, and many other use cases.

🌟 Thank you @​walmsles for leading the design and implementation of this!

Changes

🌟New features and non-breaking changes

• feat(event_handler): add support for OpenAPI security schemes (#4103) by @​rubenfonseca
• feat(event_sources,parser): add support for DeadLetterQueueSourceArn for SQS (#4133) by @​rubenfonseca
• feat(logger): add method to return currently configured keys (#4033) by @​leandrodamascena
• feat(idempotency): add feature for manipulating idempotent responses (#4037) by @​walmsles

📜 Documentation updates

• docs(we-made-this): new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068) by @​leandrodamascena

🐛 Bug and hot fixes

• fix(typing): make the case_sensitive field a boolean only (#4128) by @​Wurstnase
• fix(typing): improve overloads to ensure the return type follows the default_value type (#4114) by @​Wurstnase
• fix(docs): clarified usage of validation with fine grained responses (#4101) by @​rubenfonseca
• fix(event_source): fix typo in physicalname attribute for AmazonMQ events (#4053) by @​SZubarev

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.37.0] - 2024-04-18

Bug Fixes

• docs: clarified usage of validation with fine grained responses (#4101)
• event_source: fix typo in physicalname attribute for AmazonMQ events (#4053)
• typing: make the case_sensitive field a boolean only (#4128)
• typing: improve overloads to ensure the return type follows the default_value type (#4114)

Documentation

• we-made-this: new article on how to stream data with AWS Lambda & Powertools for AWS Lambda (#4068)

Features

• Idempotency: add feature for manipulating idempotent responses (#4037)
• event_handler: add support for OpenAPI security schemes (#4103)
• logger: add method to return currently configured keys (#4033)

Maintenance

• version bump
• ci: add monthly roadmap reminder workflow (#4075)
• ci: prevent deprecated custom runner from being used (#4061)
• deps: bump squidfunk/mkdocs-material from 065f3af to 6b124e1 in /docs (#4055)
• deps: bump squidfunk/mkdocs-material from 3307665 to 065f3af in /docs (#4052)
• deps: bump idna from 3.6 to 3.7 (#4121)
• deps: bump sqlparse from 0.4.4 to 0.5.0 (#4138)
• deps: bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /docs (#4141)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 1 update (#4066)
• deps: bump pydantic from 1.10.14 to 1.10.15 (#4064)
• deps: bump the layer-balancer group in /layer/scripts/layer-balancer with 3 updates (#4042)
• deps: bump golang.org/x/sync from 0.6.0 to 0.7.0 in /layer/scripts/layer-balancer in the layer-balancer group (#4071)
• deps: bump codecov/codecov-action from 4.1.1 to 4.2.0 (#4072)
• deps: bump datadog-lambda from 5.91.0 to 5.92.0 (#4038)
• deps: bump github.com/aws/aws-sdk-go-v2/config from 1.27.10 to 1.27.11 in /layer/scripts/layer-balancer in the layer-balancer group (#4079)
• deps: bump typing-extensions from 4.10.0 to 4.11.0 (#4080)
• deps: bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.3 to 3.0.4 (#4099)
• deps: bump codecov/codecov-action from 4.2.0 to 4.3.0 (#4098)
• deps: bump docker/setup-buildx-action from 3.2.0 to 3.3.0 (#4091)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0.1.113 (#4136)
• deps-dev: bump aws-cdk from 2.135.0 to 2.136.0 (#4090)
• deps-dev: bump types-redis from 4.6.0.20240311 to 4.6.0.20240409 (#4094)
• deps-dev: bump aws-cdk-lib from 2.135.0 to 2.136.0 (#4092)
• deps-dev: bump cfn-lint from 0.86.1 to 0.86.2 (#4081)
• deps-dev: bump aws-cdk-aws-lambda-python-alpha from 2.135.0a0 to 2.136.0a0 (#4095)
• deps-dev: bump filelock from 3.13.3 to 3.13.4 (#4096)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.106 to 0.1.107 (#4082)
• deps-dev: bump cdklabs-generative-ai-cdk-constructs from 0.1.107 to 0.1.110 (#4097)
• deps-dev: bump aws-cdk from 2.136.0 to 2.136.1 (#4106)
• deps-dev: bump aws-cdk-lib from 2.136.0 to 2.136.1 (#4107)

... (truncated)

Commits

• 444dbaa chore: version bump
• bb8675c chore(ci): changelog rebuild (#4149)
• 4f27133 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.115 to 0....
• 113eb07 chore(deps-dev): bump types-redis from 4.6.0.20240409 to 4.6.0.20240417 (#4145)
• 55713ce feat(event_handler): add support for OpenAPI security schemes (#4103)
• 1e7b3ab chore(deps-dev): bump mkdocs-material from 9.5.17 to 9.5.18 (#4143)
• 446a706 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.113 to 0....
• 9244a35 chore(deps): bump squidfunk/mkdocs-material from 6b124e1 to 521644b in /d...
• f114a8e chore(deps-dev): bump cfn-lint from 0.86.2 to 0.86.3 (#4137)
• 7f88384 chore(deps-dev): bump cdklabs-generative-ai-cdk-constructs from 0.1.112 to 0....
• Additional commits viewable in compare view

Updates boto3 from 1.34.76 to 1.34.91

Changelog

Sourced from boto3's changelog.

1.34.91

• api-change:datasync: [botocore] This change allows users to disable and enable the schedules associated with their tasks.
• api-change:ec2: [botocore] Launching capability for customers to enable or disable automatic assignment of public IPv4 addresses to their network interface
• api-change:emr-containers: [botocore] EMRonEKS Service support for SecurityConfiguration enforcement for Spark Jobs.
• api-change:entityresolution: [botocore] Support Batch Unique IDs Deletion.
• api-change:gamelift: [botocore] Amazon GameLift releases container fleets support for public preview. Deploy Linux-based containerized game server software for hosting on Amazon GameLift.
• api-change:ssm: [botocore] Add SSM DescribeInstanceProperties API to public AWS SDK.

1.34.90

• api-change:bedrock: [botocore] This release introduces Model Evaluation and Guardrails for Amazon Bedrock.
• api-change:bedrock-agent: [botocore] Introducing the ability to create multiple data sources per knowledge base, specify S3 buckets as data sources from external accounts, and exposing levers to define the deletion behavior of the underlying vector store data.
• api-change:bedrock-agent-runtime: [botocore] This release introduces zero-setup file upload support for the RetrieveAndGenerate API. This allows you to chat with your data without setting up a Knowledge Base.
• api-change:bedrock-runtime: [botocore] This release introduces Guardrails for Amazon Bedrock.
• api-change:ce: [botocore] Added additional metadata that might be applicable to your reservation recommendations.
• api-change:ec2: [botocore] This release introduces EC2 AMI Deregistration Protection, a new AMI property that can be enabled by customers to protect an AMI against an unintended deregistration. This release also enables the AMI owners to view the AMI 'LastLaunchedTime' in DescribeImages API.
• api-change:pi: [botocore] Clarifies how aggregation works for GetResourceMetrics in the Performance Insights API.
• api-change:rds: [botocore] Fix the example ARN for ModifyActivityStreamRequest
• api-change:sqs: [botocore] This release enables customers to call SQS using AWS JSON-1.0 protocol
• api-change:workspaces-web: [botocore] Added InstanceType and MaxConcurrentSessions parameters on CreatePortal and UpdatePortal Operations as well as the ability to read Customer Managed Key & Additional Encryption Context parameters on supported resources (Portal, BrowserSettings, UserSettings, IPAccessSettings)

1.34.89

• api-change:bedrock-agent: [botocore] Releasing the support for simplified configuration and return of control
• api-change:bedrock-agent-runtime: [botocore] Releasing the support for simplified configuration and return of control
• api-change:payment-cryptography: [botocore] Adding support to TR-31/TR-34 exports for optional headers, allowing customers to add additional metadata (such as key version and KSN) when exporting keys from the service.
• api-change:redshift-serverless: [botocore] Updates description of schedule field for scheduled actions.
• api-change:route53profiles: [botocore] Route 53 Profiles allows you to apply a central DNS configuration across many VPCs regardless of account.
• api-change:sagemaker: [botocore] This release adds support for Real-Time Collaboration and Shared Space for JupyterLab App on SageMaker Studio.
• api-change:servicediscovery: [botocore] This release adds examples to several Cloud Map actions.
• api-change:transfer: [botocore] Adding new API to support remote directory listing using SFTP connector

1.34.88

• api-change:glue: [botocore] Adding RowFilter in the response for GetUnfilteredTableMetadata API
• api-change:internetmonitor: [botocore] This update introduces the GetInternetEvent and ListInternetEvents APIs, which provide access to internet events displayed on the Amazon CloudWatch Internet Weather Map.
• api-change:personalize: [botocore] This releases auto training capability while creating a solution and automatically syncing latest solution versions when creating/updating a campaign

1.34.87

... (truncated)

Commits

• 1cdfd9e Merge branch 'release-1.34.91'
• 1db9ea4 Bumping version to 1.34.91
• 245435c Add changelog entries from botocore
• d7e4e96 Add missing changelog entry (#4096)
• eb20bba Merge branch 'release-1.34.90'
• 3982e49 Merge branch 'release-1.34.90' into develop
• 6bfee91 Bumping version to 1.34.90
• a909d17 Add changelog entries from botocore
• 11b5cca Move 3.8 and 3.9 builds back to macos-13 (#4094)
• 1745077 Merge branch 'release-1.34.89'
• Additional commits viewable in compare view

Updates black from 24.3.0 to 24.4.1

Release notes

Sourced from black's releases.

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Changelog

Sourced from black's changelog.

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Commits

• e7fb048 Prepare release 24.4.1 (#4328)
• 3f0f8f1 Support PEP 696 (#4327)
• 2f88085 Github Action: Directly install from repo if export-subst is skipped (#4313)
• 12ce3db Move changelog entry to right section (#4326)
• 1354be2 Add support to style function definitions with newlines before function stubs...
• f4b644b Prevent wrapping of multiline fstrings in parens (#4325)
• 551ede2 Add PEP 701 support (#3822)
• 944b99a Bump sphinx from 7.2.6 to 7.3.7 in /docs (#4322)
• 7134754 Remove node-specific logic from visit_default (#4321)
• 7669381 Pin to old flake8-bugbear (#4319)
• Additional commits viewable in compare view

Updates mypy from 1.9.0 to 1.10.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.10

We’ve just uploaded mypy 1.10 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support TypeIs (PEP 742)

Mypy now supports TypeIs (PEP 742), which allows functions to narrow the type of a value, similar to isinstance(). Unlike TypeGuard, TypeIs can narrow in both the if and else branches of an if statement:

from typing_extensions import TypeIs
def is_str(s: object) -> TypeIs[str]:
return isinstance(s, str)
def f(o: str | int) -> None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...

TypeIs will be added to the typing module in Python 3.13, but it can be used on earlier Python versions by importing it from typing_extensions.

This feature was contributed by Jelle Zijlstra (PR 16898).

Support TypeVar Defaults (PEP 696)

PEP 696 adds support for type parameter defaults. Example:

from typing import Generic
from typing_extensions import TypeVar
</tr></table>

... (truncated)

Commits

• 3faf0fc Remove +dev for version for release 1.10
• a5998d2 Update CHANGELOG.md (#17159)
• 62ea5b0 Various updates to changelog for 1.10 (#17158)
• 2f0864c Update CHANGELOG.md with draft for release 1.10 (#17150)
• e1443bb fix: incorrect returned type of access descriptors on unions of types (#16604)
• 5161ac2 Sync typeshed (#17124)
• e2fc1f2 Fix crash when expanding invalid Unpack in a Callable alias (#17028)
• 3ff6e47 Docs: docstrings in checker.py, ast_helpers.py (#16908)
• 732d98e Fix string formatting for string enums (#16555)
• 8019010 Narrow individual items when matching a tuple to a sequence pattern (#16905)
• Additional commits viewable in compare view

Updates types-requests from 2.31.0.20240403 to 2.31.0.20240406

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

🦋 Changeset detected

Latest commit: 6a907df

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package

Name	Type
arcane-scripts	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.