Bump the allpip group across 1 directory with 9 updates

[dependabot]

Bumps the allpip group with 9 updates in the / directory:

Package	From	To
pydantic-settings	2.7.0	2.7.1
fastapi-csrf-protect	0.3.7	1.0.0
pytest-asyncio	0.25.0	0.25.1
coverage	7.6.9	7.6.10
vcrpy	6.0.2	7.0.0
ruff	0.8.4	0.8.6
setuptools	75.6.0	75.7.0
types-pyyaml	6.0.12.20241221	6.0.12.20241230
djlint	1.36.3	1.36.4

Updates pydantic-settings from 2.7.0 to 2.7.1

Commits

• c989335 Prepare release 2.7.1 (#511)
• 66ecc3a Move preferred alias resolution to private method (#507)
• See full diff in compare view

Updates fastapi-csrf-protect from 0.3.7 to 1.0.0

Commits

• See full diff in compare view

Updates pytest-asyncio from 0.25.0 to 0.25.1

Release notes

Sourced from pytest-asyncio's releases.

pytest-asyncio 0.25.1

• Fixes an issue that caused a broken event loop when a function-scoped test was executed in between two tests with wider loop scope #950
• Improves test collection speed in auto mode #1020
• Corrects the warning that is emitted upon redefining the event_loop fixture

Commits

• 623ab74 docs: Prepare release of v0.25.1.
• c236550 docs: Fix broken link to the pytest.mark.asyncio reference.
• 41c645b fix: Correct warning message when redefining the event_loop fixture.
• 2fd10f8 docs: Clarify deprecation of event_loop fixture.
• a4e82ab docs: Added changelog entry for #1020.
• 04f9044 refactor: Replace the "__original_fixture_loop" magic attribute with the more...
• dafef6c refactor: Extracted a function to mark an event loop as created by pytest-asy...
• 0c931b7 refactor: Extracted function to check if a loop was created by pytest-asyncio.
• 0642dcd fix: Fix broken event loop when a function-scoped test is in between two wide...
• 050a5f8 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates coverage from 7.6.9 to 7.6.10

Changelog

Sourced from coverage's changelog.

Version 7.6.10 — 2024-12-26

• Fix: some descriptions of missing branches in HTML and LCOV reports were incorrect when multi-line statements were involved (issue 1874_ and issue 1875_). These are now fixed.

• Fix: Python 3.14 defers evaluation of annotations <pep649_>_ by moving them into separate code objects. That code is rarely executed, so coverage.py would mark them as missing, as reported in issue 1908_. Now they are ignored by coverage automatically.

• Fixed an obscure and mysterious problem on PyPy 3.10 seemingly involving mocks, imports, and trace functions: issue 1902_. To be honest, I don't understand the problem or the solution, but git bisect helped find it, and now it's fixed.

• Docs: re-wrote the :ref:subprocess page to put multiprocessing first and to highlight the correct use of :class:multiprocessing.Pool <python:multiprocessing.pool.Pool>.

.. _issue 1874: nedbat/coveragepy#1874 .. _issue 1875: nedbat/coveragepy#1875 .. _issue 1902: nedbat/coveragepy#1902 .. _issue 1908: nedbat/coveragepy#1908 .. _pep649: https://docs.python.org/3.14/whatsnew/3.14.html#pep-649-deferred-evaluation-of-annotations

.. _changes_7-6-9:

Commits

• f0dcf65 docs: sample HTML for 7.6.10
• 0f26f35 docs: prep for 7.6.10
• 81c5e43 docs: rewrite the subprocess page
• 878410c chore: make doc_upgrade
• f1d320d chore: make upgrade
• 67f1440 debug: this condition is never true. really?
• c85eaba fix: multi-line statements no longer confuse branch target descriptions. #187...
• 73e58fa refactor: clarify the code that fixes with-statement exits
• e16c9cc typo: backslask
• 865fd7f chore: bump the action-dependencies group with 4 updates (#1909)
• Additional commits viewable in compare view

Updates vcrpy from 6.0.2 to 7.0.0

Release notes

Sourced from vcrpy's releases.

v7.0.0

What's Changed

- Drop support for python 3.8 (major version bump) - thanks @jairhenrique
- Various linting and test fixes - thanks @jairhenrique
- Bugfix for urllib2>=2.3.0 - missing version_string ([#888](https://github.com/kevin1024/vcrpy/issues/888))
- Bugfix for asyncio.run - thanks @alekeik1

New Contributors

• @​exslim made their first contribution in kevin1024/vcrpy#889
• @​alekseik1 made their first contribution in kevin1024/vcrpy#886

Changelog

Sourced from vcrpy's changelog.

Changelog

For a full list of triaged issues, bugs and PRs and what release they are targeted for please see the following link.

ROADMAP MILESTONES <https://github.com/kevin1024/vcrpy/milestones>_

All help in providing PRs to close out bug issues is appreciated. Even if that is providing a repo that fully replicates issues. We have very generous contributors that have added these to bug issues which meant another contributor picked up the bug and closed it out.

• 7.0.0

  • Drop support for python 3.8 (major version bump) - thanks @​jairhenrique
  • Various linting and test fixes - thanks @​jairhenrique
  • Bugfix for urllib2>=2.3.0 - missing version_string (#888)
  • Bugfix for asyncio.run - thanks @​alekeik1

• 6.0.2

  • Ensure body is consumed only once (#846) - thanks @​sathieu
  • Permit urllib3 2.x for non-PyPy Python >=3.10
  • Fix typos in test commands - thanks @​chuckwondo
  • Several test and workflow improvements - thanks @​hartwork and @​graingert

• 6.0.1

  • Bugfix with to Tornado cassette generator (thanks @​graingert)

• 6.0.0

  • BREAKING: Fix issue with httpx support (thanks @​parkerhancock) in #784. NOTE: You may have to recreate some of your cassettes produced in previous releases due to the binary format being saved incorrectly in previous releases
  • BREAKING: Drop support for boto (vcrpy still supports boto3, but is dropping the deprecated boto support in this release. (thanks @​jairhenrique)
  • Fix compatibility issue with Python 3.12 (thanks @​hartwork)
  • Drop simplejson (fixes some compatibility issues) (thanks @​jairhenrique)
  • Run CI on Python 3.12 and PyPy 3.9-3.10 (thanks @​mgorny)
  • Various linting and docs improvements (thanks @​jairhenrique)
  • Tornado fixes (thanks @​graingert)

• 5.1.0

  • Use ruff for linting (instead of current flake8/isort/pyflakes) - thanks @​jairhenrique
  • Enable rule B (flake8-bugbear) on ruff - thanks @​jairhenrique
  • Configure read the docs V2 - thanks @​jairhenrique
  • Fix typo in docs - thanks @​quasimik
  • Make json.loads of Python >=3.6 decode bytes by itself - thanks @​hartwork
  • Fix body matcher for chunked requests (fixes #734) - thanks @​hartwork
  • Fix query param filter for aiohttp (fixes #517) - thanks @​hartwork and @​salomvary
  • Remove unnecessary dependency on six. - thanks @​charettes
  • build(deps): update sphinx requirement from <7 to <8 - thanks @​jairhenrique
  • Add action to validate docs - thanks @​jairhenrique
  • Add editorconfig file - thanks @​jairhenrique
  • Drop iscoroutinefunction fallback function for unsupported python thanks @​jairhenrique

• 5.0.0

  • BREAKING CHANGE: Drop support for Python 3.7. 3.7 is EOL as of 6/27/23 Thanks @​jairhenrique
  • BREAKING CHANGE: Custom Cassette persisters no longer catch ValueError. If you have implemented a custom persister (has anyone implemented a custom persister? Let us know!) then you will need to throw a CassetteNotFoundError when unable to find a cassette. See #681 for discussion and reason for this change. Thanks @​amosjyng for the PR and the review from @​hartwork

• 4.4.0

  • HUGE thanks to @​hartwork for all the work done on this release!
  • Bring vcr/unittest in to vcrpy as a full feature of vcr instead of a separate library. Big thanks to @​hartwork for doing this and to @​agriffis for originally creating the library
  • Make decompression robust towards already decompressed input (thanks @​hartwork)

... (truncated)

Commits

• 3278619 Release v7.0.0
• 3fb62e0 fix: correctly handle asyncio.run when loop exists
• 8197865 build(deps): update sphinx requirement from <8 to <9
• be651bd pre-commit: Autoupdate
• a6698ed Fix aiohttp tests
• 48d0a2e Fixed missing version_string attribute when used with urllib3>=2.3.0
• 5b858b1 Fix lint
• c8d99a9 Fix ruff configuration
• ce27c63 Merge pull request #736 from kevin1024/drop-python38
• ab8944d Drop python 3.8 support
• Additional commits viewable in compare view

Updates ruff from 0.8.4 to 0.8.6

Release notes

Sourced from ruff's releases.

0.8.6

Release Notes

Preview features

• [format]: Preserve multiline implicit concatenated strings in docstring positions (#15126)
• [ruff] Add rule to detect empty literal in deque call (RUF025) (#15104)
• [ruff] Avoid reporting when ndigits is possibly negative (RUF057) (#15234)

Rule changes

• [flake8-todos] remove issue code length restriction (TD003) (#15175)
• [pyflakes] Ignore errors in @no_type_check string annotations (F722, F821) (#15215)

CLI

• Show errors for attempted fixes only when passed --verbose (#15237)

Bug fixes

• [ruff] Avoid syntax error when removing int over multiple lines (RUF046) (#15230)
• [pyupgrade] Revert "Add all PEP-585 names to UP006 rule" (#15250)

Contributors

• @​AlexWaygood
• @​InSyncWithFoo
• @​Lee-W
• @​MichaReiser
• @​augustelalande
• @​charliermarsh
• @​dcreager
• @​dylwil3
• @​mdbernard
• @​sharkdp
• @​w0nder1ng

Install ruff 0.8.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.8.6/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.8.6/ruff-installer.ps1 | iex"

... (truncated)

Changelog

Sourced from ruff's changelog.

0.8.6

Preview features

• [format]: Preserve multiline implicit concatenated strings in docstring positions (#15126)
• [ruff] Add rule to detect empty literal in deque call (RUF025) (#15104)
• [ruff] Avoid reporting when ndigits is possibly negative (RUF057) (#15234)

Rule changes

• [flake8-todos] remove issue code length restriction (TD003) (#15175)
• [pyflakes] Ignore errors in @no_type_check string annotations (F722, F821) (#15215)

CLI

• Show errors for attempted fixes only when passed --verbose (#15237)

Bug fixes

• [ruff] Avoid syntax error when removing int over multiple lines (RUF046) (#15230)
• [pyupgrade] Revert "Add all PEP-585 names to UP006 rule" (#15250)

0.8.5

Preview features

• [airflow] Extend names moved from core to provider (AIR303) (#15145, #15159, #15196, #15216)
• [airflow] Extend rule to check class attributes, methods, arguments (AIR302) (#15054, #15083)
• [fastapi] Update FAST002 to check keyword-only arguments (#15119)
• [flake8-type-checking] Disable TC006 and TC007 in stub files (#15179)
• [pylint] Detect nested methods correctly (PLW1641) (#15032)
• [ruff] Detect more strict-integer expressions (RUF046) (#14833)
• [ruff] Implement falsy-dict-get-fallback (RUF056) (#15160)
• [ruff] Implement unnecessary-round (RUF057) (#14828)

Rule changes

• Visit PEP 764 inline TypedDict keys as non-type-expressions (#15073)
• [flake8-comprehensions] Skip C416 if comprehension contains unpacking (#14909)
• [flake8-pie] Allow cast(SomeType, ...) (PIE796) (#15141)
• [flake8-simplify] More precise inference for dictionaries (SIM300) (#15164)
• [flake8-use-pathlib] Catch redundant joins in PTH201 and avoid syntax errors (#15177)
• [pycodestyle] Preserve original value format (E731) (#15097)
• [pydocstyle] Split on first whitespace character (D403) (#15082)
• [pyupgrade] Add all PEP-585 names to UP006 rule (#5454)

Configuration

• [flake8-type-checking] Improve flexibility of runtime-evaluated-decorators (#15204)
• [pydocstyle] Add setting to ignore missing documentation for *args and **kwargs parameters (D417) (#15210)

... (truncated)

Commits

• 6b907c1 Ruff 0.8.6 (#15253)
• f319531 Make unreachable a test rule for now (#15252)
• e4d9fe0 Revert "Add all PEP-585 names to UP006 rule" (#15250)
• baf0d66 Update salsa (#15243)
• bde8ecd [red-knot] Remove unneeded branch in Type::is_equivalent_to() (#15242)
• 842f882 [ruff] Avoid reporting when ndigits is possibly negative (RUF057) (#15234)
• 75015b0 Attribute panics to the mdtests that cause them (#15241)
• 706d87f Show errors for attempted fixes only when passed --verbose (#15237)
• 0837cdd [RUF] Add rule to detect empty literal in deque call (RUF025) (#15104)
• 0dbfa8d TD003: remove issue code length restriction (#15175)
• Additional commits viewable in compare view

Updates setuptools from 75.6.0 to 75.7.0

Changelog

Sourced from setuptools's changelog.

v75.7.0

Features

• pypa/distutils#310#4478)
• Synced with pypa/distutils@ff11eed0c including bugfix for duplicate CFLAGS and adaption to support Python 3.13 is_abs in the C compiler (#4669). (#4790)

Commits

• 4e82e8b Bump version: 75.6.0 → 75.7.0
• 50b15db Merge pull request #4787 from Avasam/simplify-typed-assignements
• 86d8c99 Merge pull request #4790 from pypa/feature/distutils-ff11eed0c
• c384f18 Py_GIL_Disabled was handled previously.
• fbe834a Merge branch 'main' into feature/distutils-ff11eed0c
• 5ed9d93 Add news fragment.
• e94ce0d Merge with pypa/distutils.
• ff11eed Merge pull request pypa/distutils#325 from thesamesam/cflags
• ebfebc0 Merge pull request pypa/distutils#302 from adang1345/fix-python313-abs
• 36ce8b3 Refactor for simplicity.
• Additional commits viewable in compare view

Updates types-pyyaml from 6.0.12.20241221 to 6.0.12.20241230

Commits

• See full diff in compare view

Updates djlint from 1.36.3 to 1.36.4

Release notes

Sourced from djlint's releases.

v1.36.4

• Fix specific mixture of quotes and escaped quotes (e.g. in a json string in an html attribute) breaks the html. Thanks, @​oliverhaas.
• Fix broken formatting of template tags inside template tags. Thanks, @​oliverhass.

Changelog

Sourced from djlint's changelog.

[1.36.4] - 2024-12-24

• Fix specific mixture of quotes and escaped quotes (e.g. in a json string in an html attribute) breaks the html. Thanks, @​oliverhaas.
• Fix broken formatting of template tags inside template tags. Thanks, @​oliverhass.

Commits

• 9112cb6 fix mypyc
• eaec964 remove all mypyc dependencies for test
• 59748ac fix mypyc
• d91c025 v1.36.4
• d279680 chore: reformat pyproject.toml
• e25a6d4 chore: remove orjson from mypy pre-commit
• 11766a7 chore(deps): lock file maintenance (#1087)
• 1402f61 chore(deps): lock file maintenance (#1086)
• a8a77aa chore: fix pre-commit
• 0466393 chore: add typing-extensions to pre-commit mypy
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.