Bump the dependencies group in /.config with 18 updates

[dependabot]

Bumps the dependencies group in /.config with 18 updates:

Package	From	To
ansible-builder	3.0.0	3.0.1
ansible-runner	2.3.4	2.3.5
black	24.1.1	24.2.0
coverage	7.4.1	7.4.3
cryptography	42.0.2	42.0.5
dnspython	2.5.0	2.6.1
identify	2.5.34	2.5.35
libtmux	0.16.1	0.31.0.post0
mkdocs-material	9.5.9	9.5.11
pipdeptree	2.13.2	2.15.1
pre-commit	3.6.1	3.6.2
pytest	8.0.0	8.0.2
rpds-py	0.17.1	0.18.0
types-setuptools	69.0.0.20240125	69.1.0.20240223
urllib3	2.2.0	2.2.1
virtualenv	20.25.0	20.25.1
wcmatch	8.5	8.5.1
yamllint	1.34.0	1.35.1

Updates ansible-builder from 3.0.0 to 3.0.1

Release notes

Sourced from ansible-builder's releases.

3.0.1

What's Changed

• Wrap variable in double quotes by @​Akasurde in ansible/ansible-builder#537
• definition.rst: Add link to Galaxy requirements file format; add example of specifying collection version by @​Andersson007 in ansible/ansible-builder#549
• Docs: mention a few base images as examples, using a free one as the default by @​felixfontein in ansible/ansible-builder#544
• Update to the builder documentation by @​acozine in ansible/ansible-builder#552
• Document PKGMGR_PRESERVE_CACHE by @​Akasurde in ansible/ansible-builder#558
• Added scenarios for version 3 by @​Akasurde in ansible/ansible-builder#538
• Docs: Using prepend_base by @​Akasurde in ansible/ansible-builder#563
• collection_metadata: improve documentation by @​Andersson007 in ansible/ansible-builder#551
• Improve CLI usage docs by @​Andersson007 in ansible/ansible-builder#559
• Fix container policy for version 3 by @​Shrews in ansible/ansible-builder#654

New Contributors

• @​felixfontein made their first contribution in ansible/ansible-builder#544
• @​acozine made their first contribution in ansible/ansible-builder#552

Full Changelog: ansible/ansible-builder@3.0.0...3.0.1

Commits

• e991c1a Revert "[RFE] Support for tags from the configuration file (#555)" (#655)
• 0563a9d Fix container policy for version 3 (#652)
• 3ca2372 Bump linters: pylint==3.0.1, mypy==1.6.0 (#622)
• 9d54763 Add pylint to CI (#575)
• ec99827 Improve CLI usage docs (#559)
• b73f65d collection_metadata: improve documentation (#551)
• 1bb59b3 Docs: Using prepend_base (#563)
• 317b132 [RFE] Support for tags from the configuration file (#555)
• 8e9f86c Added scenarios for version 3 (#538)
• 3ca0922 Documented PKGMGR_PRESERVE_CACHE (#558)
• Additional commits viewable in compare view

Updates ansible-runner from 2.3.4 to 2.3.5

Release notes

Sourced from ansible-runner's releases.

2.3.5

What's Changed

• fix pexpect child shutdown race (#1331) by @​TheRealHaoLiu in ansible/ansible-runner#1336

Full Changelog: ansible/ansible-runner@2.3.4...2.3.5

Commits

• c129775 fix pexpect child shutdown race (#1331) (#1336)
• See full diff in compare view

Updates black from 24.1.1 to 24.2.0

Release notes

Sourced from black's releases.

24.2.0

Stable style

• Fixed a bug where comments where mistakenly removed along with redundant parentheses (#4218)

Preview style

• Move the hug_parens_with_braces_and_square_brackets feature to the unstable style due to an outstanding crash and proposed formatting tweaks (#4198)
• Fixed a bug where base expressions caused inconsistent formatting of ** in tenary expression (#4154)
• Checking for newline before adding one on docstring that is almost at the line limit (#4185)
• Remove redundant parentheses in case statement if guards (#4214).

Configuration

• Fix issue where Black would ignore input files in the presence of symlinks (#4222)
• Black now ignores pyproject.toml that is missing a tool.black section when discovering project root and configuration. Since Black continues to use version control as an indicator of project root, this is expected to primarily change behavior for users in a monorepo setup (desirably). If you wish to preserve previous behavior, simply add an empty [tool.black] to the previously discovered pyproject.toml (#4204)

Output

• Black will swallow any SyntaxWarnings or DeprecationWarnings produced by the ast module when performing equivalence checks (#4189)

Integrations

• Add a JSONSchema and provide a validate-pyproject entry-point (#4181)

Changelog

Sourced from black's changelog.

24.2.0

Stable style

• Fixed a bug where comments where mistakenly removed along with redundant parentheses (#4218)

Preview style

• Move the hug_parens_with_braces_and_square_brackets feature to the unstable style due to an outstanding crash and proposed formatting tweaks (#4198)
• Fixed a bug where base expressions caused inconsistent formatting of ** in tenary expression (#4154)
• Checking for newline before adding one on docstring that is almost at the line limit (#4185)
• Remove redundant parentheses in case statement if guards (#4214).

Configuration

• Fix issue where Black would ignore input files in the presence of symlinks (#4222)
• Black now ignores pyproject.toml that is missing a tool.black section when discovering project root and configuration. Since Black continues to use version control as an indicator of project root, this is expected to primarily change behavior for users in a monorepo setup (desirably). If you wish to preserve previous behavior, simply add an empty [tool.black] to the previously discovered pyproject.toml (#4204)

Output

• Black will swallow any SyntaxWarnings or DeprecationWarnings produced by the ast module when performing equivalence checks (#4189)

Integrations

• Add a JSONSchema and provide a validate-pyproject entry-point (#4181)

Commits

• 6fdf8a4 Prepare release 24.2.0 (#4226)
• 8af4394 fix: Don't remove comments along with parens (#4218)
• 35e9776 Bump pre-commit/action from 3.0.0 to 3.0.1 (#4225)
• 23dfc5b Fix ignoring input files for symlink reasons (#4222)
• a201003 Simplify check for symlinks that resolve outside root (#4221)
• dab37a6 Remove redundant parentheses in case statement if guards (#4214)
• 32230e6 fix: bug where the doublestar operation had inconsistent formatting. (#4154)
• 7edb50f fix: additional newline added to docstring when the previous line length is l...
• 3e80de3 Bump furo from 2023.9.10 to 2024.1.29 in /docs (#4211)
• a08b480 Bump pypa/cibuildwheel from 2.16.4 to 2.16.5 (#4212)
• Additional commits viewable in compare view

Updates coverage from 7.4.1 to 7.4.3

Changelog

Sourced from coverage's changelog.

Version 7.4.3 — 2024-02-23

• Fix: in some cases, coverage could fail with a RuntimeError: "Set changed size during iteration." This is now fixed, closing issue 1733_.

.. _issue 1733: nedbat/coveragepy#1733

.. _changes_7-4-2:

Version 7.4.2 — 2024-02-20

• Fix: setting COVERAGE_CORE=sysmon no longer errors on 3.11 and lower, thanks Hugo van Kemenade <pull 1747_>_. It now issues a warning that sys.monitoring is not available and falls back to the default core instead.

.. _pull 1747: nedbat/coveragepy#1747

.. _changes_7-4-1:

Commits

• 1af3624 docs: sample HTML for 7.4.3
• f06c5e4 docs: prep for 7.4.3
• 08fc997 fix: get atomic copies of iterables when flushing data. #1733
• 4e34571 build: put a time limit on the Python nightly tests
• a1d8d29 build: make targets should use underscores not dashes
• f7d40a0 build: tweak the release instructions
• 0f19b82 build: bump version
• 5d69334 test: if a test fails randomly, let it retry with @​flaky
• 65d686c docs: sample HTML for 7.4.2
• 026dca7 docs: prep for 7.4.2
• Additional commits viewable in compare view

Updates cryptography from 42.0.2 to 42.0.5

Changelog

Sourced from cryptography's changelog.

42.0.5 - 2024-02-23

* Limit the number of name constraint checks that will be performed in
  :mod:`X.509 path validation <cryptography.x509.verification>` to protect
  against denial of service attacks.
* Upgrade ``pyo3`` version, which fixes building on PowerPC.
.. _v42-0-4:
42.0.4 - 2024-02-20

• Fixed a null-pointer-dereference and segfault that could occur when creating a PKCS#12 bundle. Credit to Alexander-Programming for reporting the issue. CVE-2024-26130
• Fixed ASN.1 encoding for PKCS7/SMIME signed messages. The fields SMIMECapabilities and SignatureAlgorithmIdentifier should now be correctly encoded according to the definitions in :rfc:2633 :rfc:3370.

.. _v42-0-3:

42.0.3 - 2024-02-15

* Fixed an initialization issue that caused key loading failures for some
  users.
.. _v42-0-2:

Commits

• 33833f0 Release 42.0.5 (#10470)
• 4be53bf Added a budget for NC checks to protect against DoS (#10467) (#10468)
• 8e9de30 Bump pyo3 from 0.20.2 to 0.20.3 in /src/rust (#10462) (#10465)
• fe18470 Bump for 42.0.4 release (#10445)
• aaa2dd0 Fix ASN.1 issues in PKCS#7 and S/MIME signing (#10373) (#10442)
• 7a4d012 Fixes #10422 -- don't crash when a PKCS#12 key and cert don't match (#10423) ...
• df314bb backport actions m1 switch to 42.0.x (#10415)
• c49a7a5 changelog and version bump for 42.0.3 (#10396)
• 396bcf6 fix provider loading take two (#10390) (#10395)
• 0e0e46f backport: initialize openssl's legacy provider in rust (#10323) (#10333)
• See full diff in compare view

Updates dnspython from 2.5.0 to 2.6.1

Release notes

Sourced from dnspython's releases.

dnspython 2.6.1

See What's New for details.

This is a bug fix release for 2.6.0 where the "TuDoor" fix erroneously suppressed legitimate Truncated exceptions. This caused the stub resolver to timeout instead of failing over to TCP when a legitimate truncated response was received over UDP.

This release addresses the potential DoS issue discussed in the "TuDoor" paper (CVE-2023-29483). The dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query. In this situation, dnspython might switch to querying another resolver or give up entirely, possibly denying service for that resolution. This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

Thank you to all the contributors to this release, and, as usual, thanks to my co-maintainers: Tomáš Křížek, Petr Špaček, and Brian Wellington.

dnspython 2.6.0

See What's New for details.

This release addresses the potential DoS issue discussed in the "TuDoor" paper (CVE-2023-29483). The dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query. In this situation, dnspython might switch to querying another resolver or give up entirely, possibly denying service for that resolution. This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

Thank you to all the contributors to this release, and, as usual, thanks to my co-maintainers: Tomáš Křížek, Petr Špaček, and Brian Wellington.

Changelog

Sourced from dnspython's changelog.

2.6.1

• The Tudoor fix ate legitimate Truncated exceptions, preventing the resolver from failing over to TCP and causing the query to timeout #1053.

2.6.0

• As mentioned in the "TuDoor" paper and the associated CVE-2023-29483, the dnspython stub resolver is vulnerable to a potential DoS if a bad-in-some-way response from the right address and port forged by an attacker arrives before a legitimate one on the UDP port dnspython is using for that query.

  This release addresses the issue by adopting the recommended mitigation, which is ignoring the bad packets and continuing to listen for a legitimate response until the timeout for the query has expired.

• Added support for the NSID EDNS option.

• Dnspython now looks for version metadata for optional packages and will not use them if they are too old. This prevents possible exceptions when a feature like DoH is not desired in dnspython, but an old httpx is installed along with dnspython for some other purpose.

• The DoHNameserver class now allows GET to be used instead of the default POST, and also passes source and source_port correctly to the underlying query methods.

Commits

• 0a742b9 update CI
• 0ea5ad0 The Tudoor fix should not eat valid Truncated exceptions #1053 (#1054)
• f12d398 2.6.1 version prep
• cecb853 Further improve CVE fix coverage to 100% for sync and async.
• 7952e31 test IgnoreErrors
• e093299 For the Tudoor fix, we also need the UDP nameserver to ignore_unexpected.
• 3af9f78 2.6.0 versioning
• ca63d95 Require cryptography >=41 instead of 42.
• 902cbf3 Create CODE_OF_CONDUCT.md
• ed9795f github contributing and pull request template
• Additional commits viewable in compare view

Updates identify from 2.5.34 to 2.5.35

Commits

• 62ca9e5 v2.5.35
• 6358894 Merge pull request #441 from StreamHPC/metal-shading-language
• 9209f67 feat: Indentify metal as Metal Shading Language
• See full diff in compare view

Updates libtmux from 0.16.1 to 0.31.0.post0

Release notes

Sourced from libtmux's releases.

v0.31.0post0 - Doc fixes

Post-release Documentation Fixes

• Doc fixes to command examples

Full Changelog: tmux-python/libtmux@v0.31.0...v0.31.0post0

v0.31.0 - Command overhaul, renamings

Cleanups (#527)

• Streamline {Server,Session,Window,Pane}.cmd(), across all usages to:

  • Use cmd: str as first positional
  • Removed unused keyword arguments **kwargs

Renamings (#527)

• Session.attached_window renamed to Session.active_window()
  • Session.attached_window deprecated
• Session.attached_pane renamed to Session.active_pane()
  • Session.attached_pane deprecated
• Window.attached_pane renamed to Window.active_pane()
  • Window.attached_pane deprecated

Improvements (#527)

• Server.attached_windows now users QueryList’s .filter()

Full Changelog: tmux-python/libtmux@v0.30.2...v0.31.0

v0.30.2: Bump TMUX_MAX_VERSION

• TMUX_MAX_VERSION: 3.3 -> 3.4

Full Changelog: tmux-python/libtmux@v0.30.1...v0.30.2

v0.30.1 - pytest plugin renamings

• pytest plugin, test module: Update to renamed methods introduced in v0.30.0

Full Changelog: tmux-python/libtmux@v0.30.0...v0.30.1

v0.30.0 - Improved commands

New and improved commands

by @​tony in tmux-python/libtmux#525

New commands

• Pane.kill()

Renamed commands

• Window.select_window() renamed to Window.select()

... (truncated)

Changelog

Sourced from libtmux's changelog.

Changelog

For instructions on installing the development version of libtmux, refer to development releases.

To install via pip, use:

$ pip install --user --upgrade --pre libtmux

libtmux 0.32.x (Yet to be released)

• Future release notes will be placed here

libtmux 0.31.0 (2024-02-17)

Cleanups (#527)

• Streamline {Server,Session,Window,Pane}.cmd(), across all usages to:
  • Use cmd: str as first positional
  • Removed unused keyword arguments **kwargs

Renamings (#527)

• Session.attached_window renamed to {meth}Session.active_window
  • Session.attached_window deprecated
• Session.attached_pane renamed to {meth}Session.active_pane
  • Session.attached_pane deprecated
• Window.attached_pane renamed to {meth}Window.active_pane
  • Window.attached_pane deprecated

Improvements (#527)

• Server.attached_windows now uses QueryList's .filter()

Documentation (#527)

• Document .cmd in README and quickstart
• Add doctests and improve docstrings to cmd() methods across:
  • {meth}Server.cmd()
  • {meth}Session.cmd()
  • {meth}Window.cmd()
  • {meth}Pane.cmd()

Post-release: v0.31.0post0 (2024-02-17)

• Documentation updates

... (truncated)

Commits

• f384ee9 Tag v0.31.0post0 (doc fixes)
• 8baa764 docs: Cleanup for command examples
• 915fd19 build(deps): Bump packages
• 26acd5b docs(CHANGES): Typo fix
• af5b999 Tag v0.31.0 (command refactor #527)
• 8cc2ab7 docs(MIGRATION): Note renamings
• b356b92 refactor,docs: Streamline and document direct commands (#527)
• e7eb5a5 docs(CHANGES): Note command updates
• 0ade87a docs(CHANGES): Typo
• bcae86a docs(Pane.cmd): Add examples
• Additional commits viewable in compare view

Updates mkdocs-material from 9.5.9 to 9.5.11

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.5.11

• Updated Finnish translation

mkdocs-material-9.5.10

• Updated Bahasa Malaysia translations
• Fixed #6783: Hide continue reading link for blog posts without separators
• Fixed #6779: Incorrect positioning of integrated table of contents

Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.5.11+insiders-4.53.0 (2024-02-24)

• Added support for automatic instant previews
• Added support for pinned blog posts

mkdocs-material-9.5.11 (2024-02-19)

• Updated Finnish translation

mkdocs-material-9.5.10+insiders-4.52.3 (2024-02-21)

• Fixed resolution of URLs in instant previews
• Fixed instant previews not mounting for same-page links

mkdocs-material-9.5.10 (2024-02-19)

• Updated Bahasa Malaysia translations
• Fixed #6783: Hide continue reading link for blog posts without separators
• Fixed #6779: Incorrect positioning of integrated table of contents

mkdocs-material-9.5.9 (2024-02-10)

• Fixed navigation pruning with tabs and sections enabled

mkdocs-material-9.5.8+insiders-4.52.2 (2024-02-07)

• Fixed #6735: Instant previews misplaced when below tabs

mkdocs-material-9.5.8 (2024-02-07)

• Added Tamil translations
• Updated Esperanto translations
• Fixed relative images not being resolved for instant navigation

mkdocs-material-9.5.7 (2024-02-03)

• Fixed #6731: Small images in figures are not centered
• Fixed #6719: Instant navigation breaks table of contents (9.5.5 regression)

mkdocs-material-9.5.6+insiders-4.52.1 (2024-01-30)

• Fixed #6705: Navigation path not being hidden when specified
• Fixed #6703: New tags plugin crashes on Windows (2nd attempt)

mkdocs-material-9.5.6+insiders-4.52.0 (2024-01-28)

• Added support for instant previews
• Fixed footnote tooltips positioning edge cases
• Fixed #6703: New tags plugin crashes on Windows

... (truncated)

Commits

• 10a97aa Updated Insiders changelog
• be21a6f Prepare 9.5.11 release
• f26cfaa Documentation
• 23f1886 Removed manually added instant previews in light of new extension
• 59f4147 Updated Insiders changelog
• a1f4084 Updated distribution files
• b24e494 Updated Finnish translation (#6801)
• 740552a Documentation (#6803)
• b3e8f09 Updated Premium sponsors
• c8eea6b Merge branch 'master' of github.com:squidfunk/mkdocs-material
• Additional commits viewable in compare view

Updates pipdeptree from 2.13.2 to 2.15.1

Release notes

Sourced from pipdeptree's releases.

2.15.1

What's Changed

• Have --license work with --reverse by @​kemzeb in tox-dev/pipdeptree#321

Full Changelog: tox-dev/pipdeptree@2.15.0...2.15.1

2.15.0

What's Changed

• Have --license and --reverse options in the "render" argument group by @​kemzeb in tox-dev/pipdeptree#320

Full Changelog: tox-dev/pipdeptree@2.14.0...2.15.0

2.14.0

What's Changed

• Implement --license option by @​kemzeb in tox-dev/pipdeptree#318

Full Changelog: tox-dev/pipdeptree@2.13.2...2.14.0

Commits

• bc804e3 Have --license work with --reverse (#321)
• e8a7801 Have --license and --reverse options in the "render" argument group (#320)
• c6de3c3 [pre-commit.ci] pre-commit autoupdate (#319)
• 134ca6e Implement --license option (#318)
• 312818a [pre-commit.ci] pre-commit autoupdate (#317)
• 9d8f2b7 [pre-commit.ci] pre-commit autoupdate (#316)
• 1cd3453 [pre-commit.ci] pre-commit autoupdate (#315)
• 75389a0 [pre-commit.ci] pre-commit autoupdate (#314)
• d317f9b [pre-commit.ci] pre-commit autoupdate (#313)
• See full diff in compare view

Updates pre-commit from 3.6.1 to 3.6.2

Release notes

Sourced from pre-commit's releases.

pre-commit v3.6.2

Fixes

• Fix building golang hooks during git commit --all.
  • #3130 PR by @​asottile.
  • #2722 issue by @​pestanko and @​matthewhughes934.

Changelog

Sourced from pre-commit's changelog.

3.6.2 - 2024-02-18

Fixes

• Fix building golang hooks during git commit --all.
  • #3130 PR by @​asottile.
  • #2722 issue by @​pestanko and @​matthewhughes934.

Commits

• e525726 v3.6.2
• 3187538 Merge pull request #3130 from pre-commit/golang-build-during-commit-a
• 61d9c95 fix building golang hooks during commit --all
• See full diff in compare view

Updates pytest from 8.0.0 to 8.0.2

Release notes

Sourced from pytest's releases.

8.0.2

pytest 8.0.2 (2024-02-24)

Bug Fixes

• #11895: Fix collection on Windows where initial paths contain the short version of a path (for example c:\PROGRA~1\tests).
• #11953: Fix an IndexError crash raising from getstatementrange_ast.
• #12021: Reverted a fix to [--maxfail]{.title-ref} handling in pytest 8.0.0 because it caused a regression in pytest-xdist whereby session fixture teardowns may get executed multiple times when the max-fails is reached.

8.0.1

pytest 8.0.1 (2024-02-16)

Bug Fixes

• #11875: Correctly handle errors from getpass.getuser{.interpreted-text role="func"} in Python 3.13.
• #11879: Fix an edge case where ExceptionInfo._stringify_exception could crash pytest.raises{.interpreted-text role="func"}.
• #11906: Fix regression with pytest.warns{.interpreted-text role="func"} using custom warning subclasses which have more than one parameter in their [__init__]{.title-ref}.
• #11907: Fix a regression in pytest 8.0.0 whereby calling pytest.skip{.interpreted-text role="func"} and similar control-flow exceptions within a pytest.warns(){.interpreted-text role="func"} block would get suppressed instead of propagating.
• #11929: Fix a regression in pytest 8.0.0 whereby autouse fixtures defined in a module get ignored by the doctests in the module.
• #11937: Fix a regression in pytest 8.0.0 whereby items would be collected in reverse order in some circumstances.

Commits

• 31afeeb Prepare release version 8.0.2
• 1b00a2f Merge pull request #12025 from pytest-dev/backport-12022-to-8.0.x
• ff2f66d [8.0.x] Revert "Fix teardown error reporting when --maxfail=1 (#11721)"
• 8a8eed6 [8.0.x] Fix collection of short paths on Windows (#12024)
• 74346f0 [8.0.x] Allow Sphinx 7.x (#12005)
• b7657b4 [8.0.x] Disallow Sphinx 6 and 7 (#12001)
• feb7c5e Merge pull request #11999 from pytest-dev/backport-11996-to-8.0.x
• 0909655 [8.0.x] code: fix IndexError crash in getstatementrange_ast
• 68524d4 Merge pull request #11993 from pytest-dev/release-8.0.1
• d7d320a Prepare release version 8.0.1
• Additional commits viewable in compare view

Updates rpds-py from 0.17.1 to 0.18.0

Release notes

Sourced from rpds-py's releases.

v0.18.0

Full Changelog: crate-py/rpds@v0.17.1...v0.18.0

Commits

• ce3bf37 Type annotation and test for HashTrieMap.update.
• 7ff2d43 Merge pull request #52 from crate-py/dependabot/github_actions/pre-commit/act...
• d57b92c Bump pre-commit/action from 3.0.0 to 3.0.1
• 0b1a9ac Merge pull request #51 from crate-py/pre-commit-ci-update-config
• ce4b8bc [pre-commit.ci] auto fixes from pre-commit.com hooks
• c581b56 [pre-commit.ci] pre-commit autoupdate
• 783e3ef Implement Queue.hash.
• ee1bf7e Explicitly remind ourselves that dict.values != dict.values in the tests.
• See full diff in compare view

Updates types-setuptools from 69.0.0.20240125 to 69.1.0.20240223

Commits

• See full diff in compare view

Updates urllib3 from 2.2.0 to 2.2.1

Release notes

Sourced from urllib3's releases.

2.2.1

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

• Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. (#3331)
• Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. (#3343)
• Changed ProtocolError to InvalidChunkLength when response terminates before the chunk length is sent. (#2860)
• Changed ProtocolError to be more verbose on incomplete reads with excess content. (#3261)

Changelog

Sourced from urllib3's changelog.

2.2.1 (2024-02-16)

• Fixed issue where InsecureRequestWarning was emitted for HTTPS connections when using Emscripten. ([#3331](https://github.com/urllib3/urllib3/issues/3331) <https://github.com/urllib3/urllib3/issues/3331>__)
• Fixed HTTPConnectionPool.urlopen to stop automatically casting non-proxy headers to HTTPHeaderDict. This change was premature as it did not apply to proxy headers and HTTPHeaderDict does not handle byte header values correctly yet. ([#3343](https://github.com/urllib3/urllib3/issues/3343) <https://github.com/urllib3/urllib3/issues/3343>__)
• Changed InvalidChunkLength to ProtocolError when response terminates before the chunk length is sent. ([#2860](https://github.com/urllib3/urllib3/issues/2860) <https://github.com/urllib3/urllib3/issues/2860>__)
• Changed ProtocolError to be more verbose on incomplete reads with excess content. ([#3261](https://github.com/urllib3/urllib3/issues/3261) <https://github.com/urllib3/urllib3/issues/3261>__)

Commits

• 54d6edf Release 2.2.1
• 49b2dda Stop casting request headers to HTTPHeaderDict (#3344)
• e22f651 Fix docstring of retries parameter
• fa54179 Distinguish between truncated and excess content in response (#3273)
• cfe52f9 Fix InsecureRequestWarning for HTTPS Emscripten requests (#3333)
• 25155d7 Ensure no remote connections during testing (#3328)
• 12f9233 Bump cryptography to 42.0.2 and PyOpenSSL to 24.0.0 (#3340)
• 9929d3c Add nox session to start local Pyodide console
• aa8d3dd Fix ssl_version tests for upcoming migration to pytest 8
• 23f2287 Remove TODO about informational responses (#3319)
• Additional commits viewable in compare view

Updates virtualenv from 20.25.0 to 20.25.1

Changelog

Sourced from virtualenv's changelog.

v20.25.1 (2024-02-21)

Bugfixes - 20.25.1

- Upgrade embedded wheels:

setuptools to 69.0.3 from 69.0.2
pip to 23.3.2 from 23.3.1 (:issue:2681)



Upgrade embedded wheels:

pip 23.3.2 to `24.0``,
setuptools 69.0.3 to 69.1.0. (:issue:2691)



Misc - 20.25.1
- :issue:`2688`
</code></pre>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>

<li><a href="https://github.com/pypa/virtualenv/commit/b49b35d1bd740af80d9c3a0a187402b93d2f7031&quot;&gt;&lt;code&gt;b49b35d&lt;/code&gt;&lt;/a> release 20.25.1</li>

<li><a href="https://github.com/pypa/virtualenv/commit/fd24a280f2c6b8e33528933bacb5945ce2ed26b7&quot;&gt;&lt;code&gt;fd24a28&lt;/code&gt;&lt;/a> Upgrade embedded wheels (<a href="https://redirect.github.com/pypa/virtualenv/issues/2691&quot;&gt;#2691&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pypa/virtualenv/commit/e72dea8098c36a6bc9088411f5a420a47e4e4e3e&quot;&gt;&lt;code&gt;e72dea8&lt;/code&gt;&lt;/a> Avoid importing contextlib in <code>_virtualenv</code> (<a href="https://redirect.github.com/pypa/virtualenv/issues/2688&quot;&gt;#2688&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pypa/virtualenv/commit/c221b32099f016c6d1e87a1bafcd11ba75b9cee8&quot;&gt;&lt;code&gt;c221b32&lt;/code&gt;&lt;/a> Resolve symbolic links for environment metadata (<a href="https://redirect.github.com/pypa/virtualenv/issues/2686&quot;&gt;#2686&lt;/a&gt;)&lt;/li>

<li><a href="https://github.com/pypa/virtualenv/commit/cad550030ae77e181a1d7c328742a97f2880ef9b&quot;&gt;&lt;code&gt;cad5...
Description has been truncated

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.