Bump the dev-dependencies group in /backend with 8 updates

[dependabot]

Bumps the dev-dependencies group in /backend with 8 updates:

Package	From	To
coverage	6.5.0	7.5.3
pytest	7.4.3	8.2.2
pytest-cov	4.1.0	5.0.0
mypy	1.7.1	1.10.0
ruff	0.1.8	0.4.8
setuptools	69.0.2	70.0.0
responses	0.24.1	0.25.2
time-machine	2.13.0	2.14.1

Updates coverage from 6.5.0 to 7.5.3

Changelog

Sourced from coverage's changelog.

Version 7.5.3 — 2024-05-28

• Performance improvements for combining data files, especially when measuring line coverage. A few different quadratic behaviors were eliminated. In one extreme case of combining 700+ data files, the time dropped from more than three hours to seven minutes. Thanks for Kraken Tech for funding the fix.

• Performance improvements for generating HTML reports, with a side benefit of reducing memory use, closing issue 1791_. Thanks to Daniel Diniz for helping to diagnose the problem.

.. _issue 1791: nedbat/coveragepy#1791

.. _changes_7-5-2:

Version 7.5.2 — 2024-05-24

• Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779_. This is now fixed.

• Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported.

• In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz <pull 1776_>_.

• Python 3.13.0b1 is supported.

• Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe <pull 1788_>. Closes issue 1787.

.. _pull 1776: nedbat/coveragepy#1776 .. _issue 1779: nedbat/coveragepy#1779 .. _issue 1787: nedbat/coveragepy#1787 .. _pull 1788: nedbat/coveragepy#1788

.. _changes_7-5-1:

Version 7.5.1 — 2024-05-04

... (truncated)

Commits

• f310d7e docs: sample HTML for 7.5.3
• a51d52f docs: prep for 7.5.3
• b666f3a perf: it's faster in all versions if we don't cache tokenize #1791
• a2b4929 docs: changelog entry for combine performance improvements
• b9aff50 perf: don't read full line_bits table each time
• c45ebac perf: cache alias mapping
• 390cb97 perf: avoid quadratic behavior when combining line coverage
• d3caf53 docs(build): tweaks to howto
• 909e887 build: bump version
• 242adea build: don't claim pre-alpha-1 in classifiers
• Additional commits viewable in compare view

Updates pytest from 7.4.3 to 8.2.2

Release notes

Sourced from pytest's releases.

8.2.2

pytest 8.2.2 (2024-06-04)

Bug Fixes

• #12355: Fix possible catastrophic performance slowdown on a certain parametrization pattern involving many higher-scoped parameters.
• #12367: Fix a regression in pytest 8.2.0 where unittest class instances (a fresh one is created for each test) were not released promptly on test teardown but only on session teardown.
• #12381: Fix possible "Directory not empty" crashes arising from concurent cache dir (.pytest_cache) creation. Regressed in pytest 8.2.0.

Improved Documentation

• #12290: Updated Sphinx theme to use Furo instead of Flask, enabling Dark mode theme.
• #12356: Added a subsection to the documentation for debugging flaky tests to mention lack of thread safety in pytest as a possible source of flakyness.
• #12363: The documentation webpages now links to a canonical version to reduce outdated documentation in search engine results.

8.2.1

pytest 8.2.1 (2024-05-19)

Improvements

• #12334: Support for Python 3.13 (beta1 at the time of writing).

Bug Fixes

• #12120: Fix [PermissionError]{.title-ref} crashes arising from directories which are not selected on the command-line.
• #12191: Keyboard interrupts and system exits are now properly handled during the test collection.
• #12300: Fixed handling of 'Function not implemented' error under squashfuse_ll, which is a different way to say that the mountpoint is read-only.
• #12308: Fix a regression in pytest 8.2.0 where the permissions of automatically-created .pytest_cache directories became rwx------ instead of the expected rwxr-xr-x.

Trivial/Internal Changes

• #12333: pytest releases are now attested using the recent Artifact Attestation support from GitHub, allowing users to verify the provenance of pytest's sdist and wheel artifacts.

8.2.0

pytest 8.2.0 (2024-04-27)

Deprecations

• #12069: A deprecation warning is now raised when implementations of one of the following hooks request a deprecated py.path.local parameter instead of the pathlib.Path parameter which replaced it:

... (truncated)

Commits

• 329d371 Prepare release version 8.2.2
• 214d098 Merge pull request #12414 from bluetech/backport-12409
• 153a436 [8.2.x] fixtures: fix catastrophic performance problem in reorder_items
• b41d5a5 Merge pull request #12412 from pytest-dev/backport-12408-to-8.2.x
• 9bb73d7 [8.2.x] cacheprovider: fix "Directory not empty" crash from cache directory c...
• 4569a01 [8.2.x] doc: Update trainings/events (#12402)
• 1d103e5 [8.2.x] Clarify pytest_ignore_collect docs (#12386)
• 240a252 [8.2.x] Add html_baseurl to sphinx conf.py (#12372)
• a5ee3c4 Merge pull request #12370 from pytest-dev/backport-12368-to-8.2.x
• f7358ae [8.2.x] unittest: fix class instances no longer released on test teardown sin...
• Additional commits viewable in compare view

Updates pytest-cov from 4.1.0 to 5.0.0

Changelog

Sourced from pytest-cov's changelog.

5.0.0 (2024-03-24)

• Removed support for xdist rsync (now deprecated). Contributed by Matthias Reichenbach in [#623](https://github.com/pytest-dev/pytest-cov/issues/623) <https://github.com/pytest-dev/pytest-cov/pull/623>_.
• Switched docs theme to Furo.
• Various legacy Python cleanup and CI improvements. Contributed by Christian Clauss and Hugo van Kemenade in [#630](https://github.com/pytest-dev/pytest-cov/issues/630) <https://github.com/pytest-dev/pytest-cov/pull/630>, [#631](https://github.com/pytest-dev/pytest-cov/issues/631) <https://github.com/pytest-dev/pytest-cov/pull/631>, [#632](https://github.com/pytest-dev/pytest-cov/issues/632) <https://github.com/pytest-dev/pytest-cov/pull/632>_ and [#633](https://github.com/pytest-dev/pytest-cov/issues/633) <https://github.com/pytest-dev/pytest-cov/pull/633>_.
• Added a pyproject.toml example in the docs. Contributed by Dawn James in [#626](https://github.com/pytest-dev/pytest-cov/issues/626) <https://github.com/pytest-dev/pytest-cov/pull/626>_.
• Modernized project's pre-commit hooks to use ruff. Initial POC contributed by Christian Clauss in [#584](https://github.com/pytest-dev/pytest-cov/issues/584) <https://github.com/pytest-dev/pytest-cov/pull/584>_.

Commits

• 5295ce0 Bump version: 4.1.0 → 5.0.0
• 1181b06 Update changelog.
• 9757222 Fix a minor grammar error (#636)
• 9f5cd81 Cleanup releasing instructions. Closes #616.
• 93b5047 Add test for pyproject.toml loading without explicit --cov-config. Ref #508.
• ff50860 docs: add config instructions for pyproject.toml.
• 4a5a4b5 Keep GitHub Actions up to date with GitHub's Dependabot
• 1d7f559 Fix or remove URLs that are causing docs tests to fail
• 6a5af8e Update changelog.
• d9fe8df Switch to furo. Closes #618.
• Additional commits viewable in compare view

Updates mypy from 1.7.1 to 1.10.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.10

We’ve just uploaded mypy 1.10 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support TypeIs (PEP 742)

Mypy now supports TypeIs (PEP 742), which allows functions to narrow the type of a value, similar to isinstance(). Unlike TypeGuard, TypeIs can narrow in both the if and else branches of an if statement:

from typing_extensions import TypeIs
def is_str(s: object) -> TypeIs[str]:
return isinstance(s, str)
def f(o: str | int) -> None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...

TypeIs will be added to the typing module in Python 3.13, but it can be used on earlier Python versions by importing it from typing_extensions.

This feature was contributed by Jelle Zijlstra (PR 16898).

Support TypeVar Defaults (PEP 696)

PEP 696 adds support for type parameter defaults. Example:

from typing import Generic
from typing_extensions import TypeVar
</tr></table>

... (truncated)

Commits

• 3faf0fc Remove +dev for version for release 1.10
• a5998d2 Update CHANGELOG.md (#17159)
• 62ea5b0 Various updates to changelog for 1.10 (#17158)
• 2f0864c Update CHANGELOG.md with draft for release 1.10 (#17150)
• e1443bb fix: incorrect returned type of access descriptors on unions of types (#16604)
• 5161ac2 Sync typeshed (#17124)
• e2fc1f2 Fix crash when expanding invalid Unpack in a Callable alias (#17028)
• 3ff6e47 Docs: docstrings in checker.py, ast_helpers.py (#16908)
• 732d98e Fix string formatting for string enums (#16555)
• 8019010 Narrow individual items when matching a tuple to a sequence pattern (#16905)
• Additional commits viewable in compare view

Updates ruff from 0.1.8 to 0.4.8

Release notes

Sourced from ruff's releases.

v0.4.8

Changes

Performance

• Linter performance has been improved by around 10% on some microbenchmarks by refactoring the lexer and parser to maintain synchronicity between them (#11457)

Preview features

• [flake8-bugbear] Implement return-in-generator (B901) (#11644)
• [flake8-pyi] Implement PYI063 (#11699)
• [pygrep_hooks] Check blanket ignores via file-level pragmas (PGH004) (#11540)

Rule changes

• [pyupgrade] Update UP035 for Python 3.13 and the latest version of typing_extensions (#11693)
• [numpy] Update NPY001 rule for NumPy 2.0 (#11735)

Server

• Formatting a document with syntax problems no longer spams a visible error popup (#11745)

CLI

• Add RDJson support for --output-format flag (#11682)

Bug fixes

• [pyupgrade] Write empty string in lieu of panic when fixing UP032 (#11696)
• [flake8-simplify] Simplify double negatives in SIM103 (#11684)
• Ensure the expression generator adds a newline before type statements (#11720)
• Respect per-file ignores for blanket and redirected noqa rules (#11728)

Contributors

• @​AlexWaygood
• @​MichaReiser
• @​MichaelOultram-pexip
• @​ajesipow
• @​carljm
• @​charliermarsh
• @​dhruvmanila
• @​github-actions
• @​mtsokol
• @​renovate
• @​snowsignal
• @​tobb10001
• @​tusharsadhwani

v0.4.7

... (truncated)

Changelog

Sourced from ruff's changelog.

0.4.8

Performance

• Linter performance has been improved by around 10% on some microbenchmarks by refactoring the lexer and parser to maintain synchronicity between them (#11457)

Preview features

• [flake8-bugbear] Implement return-in-generator (B901) (#11644)
• [flake8-pyi] Implement PYI063 (#11699)
• [pygrep_hooks] Check blanket ignores via file-level pragmas (PGH004) (#11540)

Rule changes

• [pyupgrade] Update UP035 for Python 3.13 and the latest version of typing_extensions (#11693)
• [numpy] Update NPY001 rule for NumPy 2.0 (#11735)

Server

• Formatting a document with syntax problems no longer spams a visible error popup (#11745)

CLI

• Add RDJson support for --output-format flag (#11682)

Bug fixes

• [pyupgrade] Write empty string in lieu of panic when fixing UP032 (#11696)
• [flake8-simplify] Simplify double negatives in SIM103 (#11684)
• Ensure the expression generator adds a newline before type statements (#11720)
• Respect per-file ignores for blanket and redirected noqa rules (#11728)

0.4.7

Preview features

• [flake8-pyi] Implement PYI064 (#11325)
• [flake8-pyi] Implement PYI066 (#11541)
• [flake8-pyi] Implement PYI057 (#11486)
• [pyflakes] Enable F822 in __init__.py files by default (#11370)

Formatter

• Fix incorrect placement of trailing stub function comments (#11632)

Server

• Respect file exclusions in ruff server (#11590)
• Add support for documents not exist on disk (#11588)
• Add Vim and Kate setup guide for ruff server (#11615)

... (truncated)

Commits

• a8cf709 Bump version to v0.4.8 (#11755)
• 895eb3e [red-knot] refactor CFG outside of symbol table (#11746)
• 2e0a975 Disallow access to Parsed output, use the API instead (#11741)
• b021b5b Use Tokens from parsed type annotation or parsed source (#11740)
• eed6d78 Update type annotation parsing API to return Parsed (#11739)
• 8338db6 ruff server: Formatting a document with syntax problems no longer spams a v...
• d056d09 [red-knot] add if-statement support to FlowGraph (#11673)
• 1645be0 Update NPY001 rule for NumPy 2.0 (#11735)
• 2c86502 CI: add job to run tests under minimum supported rust version (msrv) (#11737)
• 2567e14 Lexer should consider BOM for the start offset (#11732)
• Additional commits viewable in compare view

Updates setuptools from 69.0.2 to 70.0.0

Changelog

Sourced from setuptools's changelog.

v70.0.0

Features

• Emit a warning when [tools.setuptools] is present in pyproject.toml and will be ignored. -- by :user:SnoopJ (#4150)
• Improved AttributeError error message if pkg_resources.EntryPoint.require is called without extras or distribution Gracefully "do nothing" when trying to activate a pkg_resources.Distribution with a None location, rather than raising a TypeError -- by :user:Avasam (#4262)
• Typed the dynamically defined variables from pkg_resources -- by :user:Avasam (#4267)
• Modernized and refactored VCS handling in package_index. (#4332)

Bugfixes

• In install command, use super to call the superclass methods. Avoids race conditions when monkeypatching from _distutils_system_mod occurs late. (#4136)
• Fix finder template for lenient editable installs of implicit nested namespaces constructed by using package_dir to reorganise directory structure. (#4278)
• Fix an error with UnicodeDecodeError handling in pkg_resources when trying to read files in UTF-8 with a fallback -- by :user:Avasam (#4348)

Improved Documentation

• Uses RST substitution to put badges in 1 line. (#4312)

Deprecations and Removals

• Further adoption of UTF-8 in setuptools. This change regards mostly files produced and consumed during the build process (e.g. metadata files, script wrappers, automatically updated config files, etc..) Although precautions were taken to minimize disruptions, some edge cases might be subject to backwards incompatibility.

  Support for "locale" encoding is now deprecated. (#4309)

• Remove setuptools.convert_path after long deprecation period. This function was never defined by setuptools itself, but rather a side-effect of an import for internal usage. (#4322)

• Remove fallback for customisations of distutils' build.sub_command after long deprecated period. Users are advised to import build directly from setuptools.command.build. (#4322)

• Removed typing_extensions from vendored dependencies -- by :user:Avasam (#4324)

• Remove deprecated setuptools.dep_util. The provided alternative is setuptools.modified. (#4360)

... (truncated)

Commits

• 5cbf12a Workaround for release error in v70
• 9c1bcc3 Bump version: 69.5.1 → 70.0.0
• 4dc0c31 Remove deprecated setuptools.dep_util (#4360)
• 6c1ef57 Remove xfail now that test passes. Ref #4371.
• d14fa01 Add all site-packages dirs when creating simulated environment for test_edita...
• 6b7f7a1 Prevent bin folders to be taken as extern packages when vendoring (#4370)
• 69141f6 Add doctest for vendorised bin folder
• 2a53cc1 Prevent 'bin' folders to be taken as extern packages
• 7208628 Replace call to deprecated validate_pyproject command (#4363)
• 96d681a Remove call to deprecated validate_pyproject command
• Additional commits viewable in compare view

Updates responses from 0.24.1 to 0.25.2

Release notes

Sourced from responses's releases.

0.25.2

• Mulligan on 0.25.1 to run release pipeline correctly.
• Added matchers.body_matcher for matching string request bodies. See #717

Responses 0.25.1

What's Changed

• Use pytest.mark.asyncio by @​markstory in getsentry/responses#707
• fix mocked HEAD response when content-length header is present by @​ddarricau in getsentry/responses#712
• fix(matchers): Don't sort failed matches when printing error message by @​mgaligniana in getsentry/responses#711

New Contributors

• @​ddarricau made their first contribution in getsentry/responses#712
• @​mgaligniana made their first contribution in getsentry/responses#711

Full Changelog: getsentry/responses@0.25.0...0.25.1

0.25.0

• Added support for Python 3.12
• Fixed matchers.header_matcher not failing when a matched header is missing from the request. See #702

Changelog

Sourced from responses's changelog.

0.25.2

• Mulligan on 0.25.1 to run release pipeline correctly.
• Added matchers.body_matcher for matching string request bodies. See #717

0.25.1

• Fixed tests failures during RPM package builds. See #706
• Fix mocked HEAD responses that have Content-Length set. See #712
• Fixed error messages when matches fail: inputs are not sorted or reformatted. See #704

0.25.0

• Added support for Python 3.12
• Fixed matchers.header_matcher not failing when a matched header is missing from the request. See #702

Commits

• a89ba90 release: 0.25.2
• 733ffbe Update CHANGES
• 4b6b91a Fix mypy errors on master
• 19efe5b Add feature for allowing the body of a request to be matched Closes #716 (#717)
• 83f2e28 Update CHANGES
• bfe063a Update CHANGES
• 6791922 fix(matchers): Don't sort failed matches when printing error message (#711)
• 2bc3496 Update CHANGES for #712
• bfd3a0d fix mocked HEAD response when content-length header is present (#712)
• 3478dcf Update CHANGES for #707
• Additional commits viewable in compare view

Updates time-machine from 2.13.0 to 2.14.1

Changelog

Sourced from time-machine's changelog.

2.14.1 (2024-03-22)

• Fix segmentation fault when the first travel() call in a process uses a timedelta.

  Thanks to Marcin Sulikowski for the report in Issue [#431](https://github.com/adamchainz/time-machine/issues/431) <https://github.com/adamchainz/time-machine/issues/431>__.

2.14.0 (2024-03-03)

• Fix utcfromtimestamp() warning on Python 3.12+.

  Thanks to Konstantin Baikov in PR [#424](https://github.com/adamchainz/time-machine/issues/424) <https://github.com/adamchainz/time-machine/pull/424>__.

• Fix class decorator for classmethod overrides.

  Thanks to Pavel Bitiukov for the reproducer in PR [#404](https://github.com/adamchainz/time-machine/issues/404) <https://github.com/adamchainz/time-machine/pull/404>__.

• Avoid calling deprecated uuid._load_system_functions() on Python 3.9+.

  Thanks to Nikita Sobolev for the ping in CPython Issue [#113308](https://github.com/adamchainz/time-machine/issues/113308) <https://github.com/python/cpython/issues/113308>__.

• Support Python 3.13 alpha 4.

  Thanks to Miro Hrončok in PR [#409](https://github.com/adamchainz/time-machine/issues/409) <https://github.com/adamchainz/time-machine/pull/409>__.

Commits

• cc1716c Version 2.14.1
• ee93b04 Fix timedelta segmentation fault (#433)
• 8e28b9e Add flake8-logging to Flake8 setup
• 825c7f1 Drop Black target version
• f151428 GitHub Actions coverage summary
• 2bf3160 [pre-commit.ci] pre-commit autoupdate (#430)
• e03c83f Upgrade requirements (#429)
• 6279079 [pre-commit.ci] pre-commit autoupdate (#428)
• 11d55b6 Upgrade GitHub Actions artifact actions
• 2014dd6 Upgrade requirements (#427)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[tillprochaska]

@dependabot rebase

[dependabot]

Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry!

If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.