Bump the pip group with 10 updates

[dependabot]

Bumps the pip group with 10 updates:

Package	From	To
django-import-export	4.1.1	4.2.0
ipython	8.28.0	8.29.0
mypy	1.12.1	1.13.0
werkzeug	3.0.4	3.0.6
diff-match-patch	20230430	20241021
et-xmlfile	1.1.0	2.0.0
faker	30.6.0	30.8.1
redis	5.1.1	5.2.0
rich	13.9.2	13.9.3
tablib	3.5.0	3.7.0

Updates django-import-export from 4.1.1 to 4.2.0

Release notes

Sourced from django-import-export's releases.

4.2.0

• Changelog
• Release notes

4.2.0-rc.0

• Changelog
• Release notes

Changelog

Sourced from django-import-export's changelog.

4.2.0 (2024-10-23)

This release contains breaking changes. Please refer to :doc:release notes<release_notes>.

• Upgraded tablib version (1627 <https://github.com/django-import-export/django-import-export/issues/1627>_)
• Document overriding formats (1868 <https://github.com/django-import-export/django-import-export/issues/1868>_)
• Consistent queryset creation in ModelAdmin export mixin (1890 <https://github.com/django-import-export/django-import-export/pull/1890>_)
• Deprecated :meth:~import_export.admin.ExportMixin.get_valid_export_item_pks in favour of :meth:~import_export.admin.ExportMixin.get_queryset (1890 <https://github.com/django-import-export/django-import-export/pull/1890>_)
• Improve deprecation warning for ExportViewFormMixin to report at point of class definition (1900 <https://github.com/django-import-export/django-import-export/pull/1900>_)
• Fix export for fields with custom declared name (1903 <https://github.com/django-import-export/django-import-export/pull/1903>_)
• Hide the "Resource" form when it only has one option (1908 <https://github.com/django-import-export/django-import-export/issues/1908>_)
• Update date, time and datetime widget render method to handle derived instance (1918 <https://github.com/django-import-export/django-import-export/issues/1918>_)
• Add support for Django 5.1 (1926 <https://github.com/django-import-export/django-import-export/issues/1926>_)
• Accept numbers using the numeric separators of the current language in number widgets (:meth:~import_export.widgets.FloatWidget, :meth:~import_export.widgets.IntegerWidget, :meth:~import_export.widgets.DecimalWidget) (1927 <https://github.com/django-import-export/django-import-export/issues/1927>_)
• Added warning for declared fields excluded from fields whitelist (1930 <https://github.com/django-import-export/django-import-export/issues/1930>_)
• Fix v3 regression: handle native types on export to spreadsheet (1939 <https://github.com/django-import-export/django-import-export/issues/1939>_)
• Fix export button displayed on change screen when export permission not assigned (1942 <https://github.com/django-import-export/django-import-export/issues/1942>_)
• Fix crash for Django 5.1 when rows are skipped (1944 <https://github.com/django-import-export/django-import-export/issues/1944>_)
• Allow callable in dehydrate method (1950 <https://github.com/django-import-export/django-import-export/issues/1950>_)
• Fix crash when Resource fields declared incorrectly (1963 <https://github.com/django-import-export/django-import-export/issues/1963>_)
• Updated dependencies (1979 <https://github.com/django-import-export/django-import-export/issues/1979>_)

Commits

• abc9829 updated changelog for v4.2.0
• a94ef4e Update dependencies (#1979)
• 0f807cd Added ManyToManyField tests (#1980)
• 0de0fdc Docs updates (#1977)
• b01ee9e Merge branch 'main' of github.com:django-import-export/django-import-export
• 1b54c1a [pre-commit.ci] pre-commit autoupdate (#1966)
• e33b27f correction of misnamed property in documentation
• 3d05cd0 Added 4.2.0-rc.0 date
• feb0a95 fixed broken links
• fdeb7d7 Fix crash when Resource fields declared incorrectly (#1963)
• Additional commits viewable in compare view

Updates ipython from 8.28.0 to 8.29.0

Commits

• af19fb0 release 8.29.0
• b2fc308 Whats new 8.29 (#14560)
• 9c221bb Whats new 8.29
• d022657 Fix line stripping edge case for %load magic command (#14495)
• 25703b5 Refactor with Pathlib for setupbase.py (#14543)
• de562f8 Fix re pattern pretty print (#14559)
• 298e9f5 Fix formatting
• 2888354 Fix line stripping logic
• d7d58a3 ENH: add webp support to IPython.display.Image and complete identification of...
• 5f39fd8 Fix str error in path again
• Additional commits viewable in compare view

Updates mypy from 1.12.1 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Note that unlike typical releases, Mypy 1.13 does not have any changes to type checking semantics from 1.12.1.

Improved performance

Mypy 1.13 contains several performance improvements. Users can expect mypy to be 5-20% faster. In environments with long search paths (such as environments using many editable installs), mypy can be significantly faster, e.g. 2.2x faster in the use case targeted by these improvements.

Mypy 1.13 allows use of the orjson library for handling the cache instead of the stdlib json, for improved performance. You can ensure the presence of orjson using the faster-cache extra:

python3 -m pip install -U mypy[faster-cache]

Mypy may depend on orjson by default in the future.

These improvements were contributed by Shantanu.

List of changes:

• Significantly speed up file handling error paths (Shantanu, PR 17920)
• Use fast path in modulefinder more often (Shantanu, PR 17950)
• Let mypyc optimise os.path.join (Shantanu, PR 17949)
• Make is_sub_path faster (Shantanu, PR 17962)
• Speed up stubs suggestions (Shantanu, PR 17965)
• Use sha1 for hashing (Shantanu, PR 17953)
• Use orjson instead of json, when available (Shantanu, PR 17955)
• Add faster-cache extra, test in CI (Shantanu, PR 17978)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Shantanu Jain
• Jukka Lehtosalo

Mypy 1.12

We’ve just uploaded mypy 1.12 to the Python Package Index (PyPI). Mypy is a static type

... (truncated)

Commits

• eb31034 Bump version to 1.13.0
• 2eeb588 Update changelog for 1.12.1 (#17999)
• bc0386b Changelog for 1.13 (#18000)
• 5c4d2db Add faster-cache extra, test in CI (#17978)
• 854ad18 Make is_sub_path faster (#17962)
• 50aa4ca Speed up stubs suggestions (#17965)
• 7c27808 Use orjson instead of json, when available (#17955)
• 2cd2406 Use fast path in modulefinder more often (#17950)
• e20aaee Let mypyc optimise os.path.join (#17949)
• 159974c Use sha1 for hashing (#17953)
• Additional commits viewable in compare view

Updates werkzeug from 3.0.4 to 3.0.6

Release notes

Sourced from werkzeug's releases.

3.0.6

This is the Werkzeug 3.0.6 security fix release, which fixes security issues but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Werkzeug/3.0.6/ Changes: https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-6

• Fix how max_form_memory_size is applied when parsing large non-file fields. GHSA-q34m-jh98-gwm2
• safe_join catches certain paths on Windows that were not caught by ntpath.isabs on Python < 3.11. GHSA-f9vj-2wh5-fj8j

3.0.5

This is the Werkzeug 3.0.5 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Werkzeug/3.0.5/ Changes: https://werkzeug.palletsprojects.com/en/stable/changes/#version-3-0-5 Milestone: https://github.com/pallets/werkzeug/milestone/37?closed=1

• The Watchdog reloader ignores file closed no write events. #2945
• Logging works with client addresses containing an IPv6 scope. #2952
• Ignore invalid authorization parameters. #2955
• Improve type annotation fore SharedDataMiddleware. #2958
• Compatibility with Python 3.13 when generating debugger pin and the current UID does not have an associated name. #2957

Changelog

Sourced from werkzeug's changelog.

Version 3.0.6

Released 2024-10-25

• Fix how max_form_memory_size is applied when parsing large non-file fields. :ghsa:q34m-jh98-gwm2
• safe_join catches certain paths on Windows that were not caught by ntpath.isabs on Python < 3.11. :ghsa:f9vj-2wh5-fj8j

Version 3.0.5

Released 2024-10-24

• The Watchdog reloader ignores file closed no write events. :issue:2945
• Logging works with client addresses containing an IPv6 scope :issue:2952
• Ignore invalid authorization parameters. :issue:2955
• Improve type annotation fore SharedDataMiddleware. :issue:2958
• Compatibility with Python 3.13 when generating debugger pin and the current UID does not have an associated name. :issue:2957

Commits

• 5eaefc3 release version 3.0.6
• 2767bcb Merge commit from fork
• 87cc78a catch special absolute path on Windows Python < 3.11
• 50cfeeb Merge commit from fork
• 8760275 apply max_form_memory_size another level up in the parser
• 8d6a12e start version 3.0.6
• a7b121a release version 3.0.5 (#2961)
• 9caf72a release version 3.0.5
• e28a245 catch OSError from getpass.getuser (#2960)
• e6b4cce catch OSError from getpass.getuser
• Additional commits viewable in compare view

Updates diff-match-patch from 20230430 to 20241021

Changelog

Sourced from diff-match-patch's changelog.

v20241021

Bugfix release

• Stop breaking surrogate pairs in toDelta() (#17)
• Start tracking new upstream https://github.com/dmsnell/diff-match-patch (#17)
• Removed imp usage in speedtest
• Updated dev dependencies, use uv for dev workflows when available (#22)
• Tested on Python 3.8-3.13
• Untested on Python 3.7, will be unsupported in future release

$ git shortlog -s v20230430...v20241021
     7	Amethyst Reese
     5	dependabot[bot]
     5	matthewhegarty

Commits

• 04718db Version bump v20241021
• b5d9f34 Bump ufmt from 2.1.0 to 2.7.3 (#23)
• f299e30 Bump usort from 1.0.6 to 1.0.8.post1 (#20)
• d619399 Bump mypy from 1.2.0 to 1.12.1 (#21)
• 4ec7f4f Modernize speedtest
• b7193b6 Bump attribution from 1.6.2 to 1.8.0 (#19)
• b43cafd Upgrade black to 24.8.0
• f1f4f2e Stop testing on 3.7 :(
• bf09cfd Use ufmt makefile/CI workflow, use uv when available (#22)
• 282f8c2 Bump flit from 3.8.0 to 3.9.0 (#10)
• Additional commits viewable in compare view

Updates et-xmlfile from 1.1.0 to 2.0.0

Updates faker from 30.6.0 to 30.8.1

Release notes

Sourced from faker's releases.

Release v30.8.1

See CHANGELOG.md.

Release v30.8.0

See CHANGELOG.md.

Release v30.7.0

See CHANGELOG.md.

Changelog

Sourced from faker's changelog.

v30.8.1 - 2024-10-24

• Fix month_in_guj.

v30.8.0 - 2024-10-21

• Update city names for uk_UA. Thanks @​lexxai.

v30.7.0 - 2024-10-21

• Add person provider for gu_IN locale. Thanks @​debjeetsingha.
• Add datetime provider for gu_IN locale. Thanks @​wh0th3h3llam1.

Commits

• bd0e786 Bump version: 30.8.0 → 30.8.1
• 3e61fd4 📝 Update CHANGELOG.md
• 6a74b0b Update CHANGELOG.md, fix typos (#2126)
• 5561b94 fix month_in_guj
• dc22524 Bump version: 30.7.0 → 30.8.0
• 9ac4e86 📝 Update CHANGELOG.md
• 6269920 fix typo
• 4084c8d Update city names for uk_UA
• c5899a6 Bump version: 30.6.0 → 30.7.0
• 918f55a 📝 Update CHANGELOG.md
• Additional commits viewable in compare view

Updates redis from 5.1.1 to 5.2.0

Release notes

Sourced from redis's releases.

5.2.0

Changes

🚀 New Features

• Extend AggregateRequest with scorer argument (#3409)

🧰 Maintenance

• Pin pytest-profiling version due to the bug (#3417)

Contributors

We'd like to thank all the contributors who worked on this release!

@​uglide @​rbs333 @​vladvildanov @​dwdougherty

Commits

• 166ae7b Updated package version (#3418)
• 00f5be4 adds scorer to AggregateRequest (#3409)
• 4c4d4af Pin pytest-profiling (#3417)
• d6ddb0d DOC-4199: add TCEs to the combined query page (#3380)
• 17db62e DOC-4200: add TCEs to the aggregation query page (#3381)
• 700045c Backport 5.1 changes into master (#3406)
• See full diff in compare view

Updates rich from 13.9.2 to 13.9.3

Release notes

Sourced from rich's releases.

The irregular expression release

Fix a broken regex that resulted in the slow path being chosen for some operations. This fix should result in notable speedups for some operations, such as wrapping text.

[13.9.3] - 2024-10-22

Fixed

• Fixed broken regex that may have resulted in poor performance. Textualize/rich#3535

Changelog

Sourced from rich's changelog.

[13.9.3] - 2024-10-22

Fixed

• Fixed broken regex that may have resulted in poor performance. Textualize/rich#3535

Commits

• afcc5c5 Merge pull request #3535 from Textualize/regex-error
• 60f3b61 changelog
• 04db8c2 update regex
• b93d3b6 test single cell widths
• be42f1b test and added box drawing characters
• ad6b886 version bump
• db2e3e8 assert cut
• 68e1b63 fix regex
• See full diff in compare view

Updates tablib from 3.5.0 to 3.7.0

Release notes

Sourced from tablib's releases.

v3.7.0

What's Changed

• Add support for Python 3.13 by @​hugovk in jazzband/tablib#592
• Drop support for Python 3.8 by @​hugovk in jazzband/tablib#598
• feat: xls: add styling for date/time types by @​pascalfree in jazzband/tablib#596
• feat: ods: add style to datetime, date and time values by @​pascalfree in jazzband/tablib#594
• Avoid normalizing input twice in import_set/book by @​Viicos in jazzband/tablib#591
• Exclude bots from generated release notes by @​hugovk in jazzband/tablib#590
• Fix ods datetime and time export and import by @​pascalfree in jazzband/tablib#595
• Update history for 3.7.0 by @​hugovk in jazzband/tablib#600

New Contributors

• @​Viicos made their first contribution in jazzband/tablib#591
• @​pascalfree made their first contribution in jazzband/tablib#596

Full Changelog: jazzband/tablib@v3.6.1...v3.7.0

v3.6.1

What's Changed

• Add optional requirement specifier "html" back by @​mdellweg in jazzband/tablib#589

New Contributors

• @​mdellweg made their first contribution in jazzband/tablib#589

Full Changelog: jazzband/tablib@v3.6.0...v3.6.1

v3.6.0

What's Changed

• Replace MarkupPy by ElementTree for html conversion by @​claudep in jazzband/tablib#554
• Fixes #243 - Support import_set for html input by @​claudep in jazzband/tablib#555
• Clean up some IDE warnings by @​hugovk in jazzband/tablib#559
• Get row method by @​yoonthegoon in jazzband/tablib#557
• feat: transpose support dataset with no headers by @​sgqy in jazzband/tablib#560
• Fix crash when loading databook from XLS by @​jpvanhal in jazzband/tablib#563
• Fixes #567 - Implement ods import by @​claudep in jazzband/tablib#568
• Refactor import datetime as import datetime as dt by @​hugovk in jazzband/tablib#569
• Move src/tablib/packages/dbfpy to src/tablib/_vendor/dbfpy by @​hugovk in jazzband/tablib#570
• fix(ods): None values are not displayed as string by @​hoccau in jazzband/tablib#566
• Update README.md: add LaTeX format by @​mloesch in jazzband/tablib#571
• Avoid skipping entire tests when pandas is not installed by @​claudep in jazzband/tablib#574
• Fixes #572 - Allow appending rows after a dynamic column was inserted by @​claudep in jazzband/tablib#573
• Removed OrderedDict usage by @​claudep in jazzband/tablib#581
• Fixes #578 - Do not mutate data in place when applying formatters by @​claudep in jazzband/tablib#579
• Fixes #583 - Allow inserting columns for dataset with headers and no values by @​claudep in jazzband/tablib#584

New Contributors

• @​yoonthegoon made their first contribution in jazzband/tablib#557
• @​sgqy made their first contribution in jazzband/tablib#560

... (truncated)

Changelog

Sourced from tablib's changelog.

3.7.0 (2024-10-08)

Improvements

• Add support for Python 3.13 (#592)
• Drop support for EOL Python 3.8 (#598)
• Add styling to datetime, date and time values for ODS (#594)
• Add styling for date/time types for XLS (#596)

Bugfixes

• Fix time and datetime export in ODS format (#595)
• Avoid normalizing input twice in import_set/book (#591)

3.6.1 (2024-04-04)

Bugfixes

• Fix broken installs with pip failing to resolve the request for tablib[html] in some cases (#588).

3.6.0 (2024-03-23)

Improvements

• It's now possible to access a dataset row using its index without slicing (#24).
• The dataset transpose() method can be called on datasets without headers.
• The html format now supports importing from HTML content (#243)
• The ODS format now supports importing from .ods files (#567). The support is still a bit experimental.
• When adding rows to a dataset with dynamic columns, it's now possible to provide only static values, and dynamic column values will be automatically calculated and added to the row (#572).

Changes

• The html export format does not depend on MarkupPy any longer, therefore the tablib[html] install target was removed also.

Bugfixes

• Fix crash when loading a databook from an XLS file (#522).
• None Python values are now converted to the empty string by the ODS formatter.
• When applying formatters, the internal data is no longer mutated (#578).
• Columns can be inserted even when a dataset has headers but no values (#583).

Commits

• eeb8461 Update history for 3.7.0 (#600)
• e83ea02 Drop support for Python 3.8 (#598)
• 995267c [pre-commit.ci] pre-commit autoupdate (#599)
• be9cd93 feat: ods: add style to datetime, date and time values
• d3f6857 fix: ods export/import for datetime and time values
• 1975024 feat: xls: add styling for date/time types
• cd0ce71 [pre-commit.ci] pre-commit autoupdate (#593)
• 2121267 Add support for Python 3.13 (#592)
• 9c82f70 Exclude bots from generated release notes (#590)
• 9d29472 Avoid normalizing input twice in import_set/book
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 11546661764

Details

• 3 of 3 (100.0%) changed or added relevant lines in 2 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 90.687%

---

Totals
Change from base Build 11494360074:	0.0%
Covered Lines:	1334
Relevant Lines:	1471

---

💛 - Coveralls