chore: Bump the development-dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the development-dependencies group with 5 updates in the / directory:

Package	From	To
black	24.3.0	24.4.2
coverage	7.4.4	7.5.3
mypy	1.9.0	1.10.0
tox	4.14.2	4.15.0
twine	5.0.0	5.1.0

Updates black from 24.3.0 to 24.4.2

Release notes

Sourced from black's releases.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

• Fix regression where certain complex f-strings failed to parse (#4332)

Performance

• Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Changelog

Sourced from black's changelog.

24.4.2

This is a bugfix release to fix two regressions in the new f-string parser introduced in 24.4.1.

Parser

• Fix regression where certain complex f-strings failed to parse (#4332)

Performance

• Fix bad performance on certain complex string literals (#4331)

24.4.1

Highlights

• Add support for the new Python 3.12 f-string syntax introduced by PEP 701 (#3822)

Stable style

• Fix crash involving indented dummy functions containing newlines (#4318)

Parser

• Add support for type parameter defaults, a new syntactic feature added to Python 3.13 by PEP 696 (#4327)

Integrations

• Github Action now works even when git archive is skipped (#4313)

24.4.0

Stable style

• Fix unwanted crashes caused by AST equivalency check (#4290)

Preview style

• if guards in case blocks are now wrapped in parentheses when the line is too long. (#4269)
• Stop moving multiline strings to a new line unless inside brackets (#4289)

Integrations

• Add a new option use_pyproject to the GitHub Action psf/black. This will read the Black version from pyproject.toml. (#4294)

Commits

• 3702ba2 Prepare release 24.4.2 (#4335)
• e4aaa8a Fix incorrect f-string tokenization (#4332)
• ba88fc3 Simplify string tokenization regexes (#4331)
• 5683242 New release template
• e7fb048 Prepare release 24.4.1 (#4328)
• 3f0f8f1 Support PEP 696 (#4327)
• 2f88085 Github Action: Directly install from repo if export-subst is skipped (#4313)
• 12ce3db Move changelog entry to right section (#4326)
• 1354be2 Add support to style function definitions with newlines before function stubs...
• f4b644b Prevent wrapping of multiline fstrings in parens (#4325)
• Additional commits viewable in compare view

Updates coverage from 7.4.4 to 7.5.3

Changelog

Sourced from coverage's changelog.

Version 7.5.3 — 2024-05-28

• Performance improvements for combining data files, especially when measuring line coverage. A few different quadratic behaviors were eliminated. In one extreme case of combining 700+ data files, the time dropped from more than three hours to seven minutes. Thanks for Kraken Tech for funding the fix.

• Performance improvements for generating HTML reports, with a side benefit of reducing memory use, closing issue 1791_. Thanks to Daniel Diniz for helping to diagnose the problem.

.. _issue 1791: nedbat/coveragepy#1791

.. _changes_7-5-2:

Version 7.5.2 — 2024-05-24

• Fix: nested matches of exclude patterns could exclude too much code, as reported in issue 1779_. This is now fixed.

• Changed: previously, coverage.py would consider a module docstring to be an executable statement if it appeared after line 1 in the file, but not executable if it was the first line. Now module docstrings are never counted as executable statements. This can change coverage.py's count of the number of statements in a file, which can slightly change the coverage percentage reported.

• In the HTML report, the filter term and "hide covered" checkbox settings are remembered between viewings, thanks to Daniel Diniz <pull 1776_>_.

• Python 3.13.0b1 is supported.

• Fix: parsing error handling is improved to ensure bizarre source files are handled gracefully, and to unblock oss-fuzz fuzzing, thanks to Liam DeVoe <pull 1788_>. Closes issue 1787.

.. _pull 1776: nedbat/coveragepy#1776 .. _issue 1779: nedbat/coveragepy#1779 .. _issue 1787: nedbat/coveragepy#1787 .. _pull 1788: nedbat/coveragepy#1788

.. _changes_7-5-1:

Version 7.5.1 — 2024-05-04

... (truncated)

Commits

• f310d7e docs: sample HTML for 7.5.3
• a51d52f docs: prep for 7.5.3
• b666f3a perf: it's faster in all versions if we don't cache tokenize #1791
• a2b4929 docs: changelog entry for combine performance improvements
• b9aff50 perf: don't read full line_bits table each time
• c45ebac perf: cache alias mapping
• 390cb97 perf: avoid quadratic behavior when combining line coverage
• d3caf53 docs(build): tweaks to howto
• 909e887 build: bump version
• 242adea build: don't claim pre-alpha-1 in classifiers
• Additional commits viewable in compare view

Updates mypy from 1.9.0 to 1.10.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.10

We’ve just uploaded mypy 1.10 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support TypeIs (PEP 742)

Mypy now supports TypeIs (PEP 742), which allows functions to narrow the type of a value, similar to isinstance(). Unlike TypeGuard, TypeIs can narrow in both the if and else branches of an if statement:

from typing_extensions import TypeIs
def is_str(s: object) -> TypeIs[str]:
return isinstance(s, str)
def f(o: str | int) -> None:
if is_str(o):
# Type of o is 'str'
...
else:
# Type of o is 'int'
...

TypeIs will be added to the typing module in Python 3.13, but it can be used on earlier Python versions by importing it from typing_extensions.

This feature was contributed by Jelle Zijlstra (PR 16898).

Support TypeVar Defaults (PEP 696)

PEP 696 adds support for type parameter defaults. Example:

from typing import Generic
from typing_extensions import TypeVar
</tr></table>

... (truncated)

Commits

• 3faf0fc Remove +dev for version for release 1.10
• a5998d2 Update CHANGELOG.md (#17159)
• 62ea5b0 Various updates to changelog for 1.10 (#17158)
• 2f0864c Update CHANGELOG.md with draft for release 1.10 (#17150)
• e1443bb fix: incorrect returned type of access descriptors on unions of types (#16604)
• 5161ac2 Sync typeshed (#17124)
• e2fc1f2 Fix crash when expanding invalid Unpack in a Callable alias (#17028)
• 3ff6e47 Docs: docstrings in checker.py, ast_helpers.py (#16908)
• 732d98e Fix string formatting for string enums (#16555)
• 8019010 Narrow individual items when matching a tuple to a sequence pattern (#16905)
• Additional commits viewable in compare view

Updates tox from 4.14.2 to 4.15.0

Release notes

Sourced from tox's releases.

4.15.0

What's Changed

• Remove duplicated and misleading configuration section by @​jugmac00 in tox-dev/tox#3251
• Fix dropped leading characters c from constraints' packages by @​jugmac00 in tox-dev/tox#3250
• Fix type-checking by @​stefanor in tox-dev/tox#3260
• Update installation.rst by @​shenxianpeng in tox-dev/tox#3257
• Allow appending to deps with the command line by @​stefanor in tox-dev/tox#3259
• Support multiple override appends by @​amitschang in tox-dev/tox#3261
• Add bang to invert exit code by @​sillydan1 in tox-dev/tox#3271
• fix(parser): Fix --discover parsed incorrectly from env by @​mimre25 in tox-dev/tox#3274

New Contributors

• @​shenxianpeng made their first contribution in tox-dev/tox#3257
• @​amitschang made their first contribution in tox-dev/tox#3261
• @​sillydan1 made their first contribution in tox-dev/tox#3271
• @​mimre25 made their first contribution in tox-dev/tox#3274

Full Changelog: tox-dev/tox@4.14.2...4.15.0

Changelog

Sourced from tox's changelog.

v4.15.0 (2024-04-26)

Features - 4.15.0

- Add support for multiple appending override options (-x, --override) on command line - by :user:`amitschang`. (:issue:`3261`)
- Add support for inverting exit code success criteria using bang (!) (:issue:`3271`)
Bugfixes - 4.15.0

• Fix issue that the leading character c was dropped from packages in constraints files - by :user:jugmac00. (:issue:3247)
• Allow appending to deps with --override testenv.deps+=foo - by :user:stefanor. (:issue:3256)
• Fix non-existing branch rewrite in the documentation to main. (:issue:3257)
• Update test typing for build 1.2.0, which has an explicit Distribution type - by :user:stefanor. (:issue:3260)
• Fix broken input parsing for --discover flag. - by :user:mimre25 (:issue:3272)

Improved Documentation - 4.15.0

- Rephrase ``--discover`` flag's description to avoid confusion between paths and executables. - by :user:`mimre25` (:issue:`3274`)

Commits

• 261b4ca release 4.15.0
• c54dfbd fix(parser): Fix --discover parsed incorrectly from env (#3274)
• 809e10f Add bang to invert exit code (#3271)
• 822c9d0 [pre-commit.ci] pre-commit autoupdate (#3267)
• 0e5a3db [pre-commit.ci] pre-commit autoupdate (#3265)
• f5850c0 Support multiple override appends (#3261)
• c2be629 Allow appending to deps with the command line (#3259)
• d28a9ee Update installation.rst (#3257)
• a19a946 [pre-commit.ci] pre-commit autoupdate (#3258)
• a22fe8f Fix type-checking (#3260)
• Additional commits viewable in compare view

Updates twine from 5.0.0 to 5.1.0

Changelog

Sourced from twine's changelog.

Twine 5.1.0 (2024-05-15)

Features ^^^^^^^^

• Add the experimental --attestations flag. ([#1095](https://github.com/pypa/twine/issues/1095) <https://github.com/pypa/twine/issues/1095>_)

Twine 5.1.0 (2024-05-15)

Misc ^^^^

• [#1104](https://github.com/pypa/twine/issues/1104) <https://github.com/pypa/twine/issues/1104>_

Commits

• e9f70cf Merge pull request #1108 from pypa/fix-release-workflow
• 1908be7 Fix release workflow
• 6d7ffea Merge pull request #1107 from woodruffw-forks/release-5.1.0
• bc91e57 Update changelog for 5.1.0
• de39ade Merge pull request #1085 from pypa/feature/pep-621
• 75de094 Merge pull request #1104 from ascheel/main
• c512bbf Properly handle repository URLs with auth in them
• e0ed808 Changelog entry
• 72ee030 Change regex string to a raw string.
• 04d7e27 Sanitize URLs for logging/display purposes.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud