Bump the dependencies group with 9 updates

[dependabot]

Bumps the dependencies group with 9 updates:

Package	From	To
certifi	2024.12.14	2025.1.31
pygments	2.18.0	2.19.1
black	24.10.0	25.1.0
filelock	3.16.1	3.17.0
isort	5.13.2	6.0.0
types-setuptools	75.6.0.20241223	75.8.0.20250110
virtualenv	20.28.0	20.29.1
attrs	24.3.0	25.1.0
pyopenssl	24.3.0	25.0.0

Updates certifi from 2024.12.14 to 2025.1.31

Commits

• 088f931 2025.01.31 (#336)
• 1c17795 Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4 (#335)
• a2e88f0 Bump actions/upload-artifact from 4.5.0 to 4.6.0 (#334)
• 82284ed Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 (#333)
• 10d3d1d Bump actions/upload-artifact from 4.4.3 to 4.5.0 (#332)
• See full diff in compare view

Updates pygments from 2.18.0 to 2.19.1

Release notes

Sourced from pygments's releases.

2.19.1

• Updated lexers:

  • Ini: Fix quoted string regression introduced in 2.19.0
  • Lua: Fix a regression introduced in 2.19.0

2.19.0

• New lexers:

  • CodeQL (#2819)
  • Debian Sources (#2788, #2747)
  • Gleam (#2662)
  • GoogleSQL (#2820, #2814)
  • JSON5 (#2734, #1880)
  • Maple (#2763, #2548)
  • NumbaIR (#2433)
  • PDDL (#2799, #2616)
  • Rego (#2794)
  • TableGen (#2751)
  • Vue.js (#2832)

• Updated lexers:

  • BQN: Various improvements (#2789)
  • C#: Fix number highlighting (#986, #2727), add file keyword (#2726, #2805, #2806), add various other keywords (#2745, #2770)
  • CSS: Add revert (#2766, #2775)
  • Debian control: Add Change-By field (#2757)
  • Elip: Improve punctuation handling (#2651)
  • Igor: Add int (#2801)
  • Ini: Fix quoted strings with embedded comment characters (#2767, #2720)
  • Java: Support functions returning types containing a question mark (#2737)
  • JavaScript: Support private identiiers (#2729, #2671)
  • LLVM: Add splat, improve floating-point number parsing (#2755)
  • Lua: Improve variable detection, add built-in functions (#2829)
  • Macaulay2: Update to 1.24.11 (#2800)
  • PostgreSQL: Add more EXPLAIN keywords (#2785), handle / (#2774)
  • S-Lexer: Fix keywords (#2082, #2750)
  • TransactSQL: Fix single-line comments (#2717)
  • Turtle: Fix triple quoted strings (#2744, #2758)
  • Typst: Various improvements (#2724)
  • Various: Add ^ as an operator to Matlab, Octave and Scilab (#2798)
  • Vyper: Add staticcall and extcall (#2719)

• Mark file extensions for HTML/XML+Evoque as aliases (#2743)
• Add a color for Operator.Word to the rrt style (#2709)
• Fix broken link in the documentation (#2803, #2804)
• Drop executable bit where not needed (#2781)
• Reduce Mojo priority relative to Python in ``analyze_text´` (#2771, #2772)
• Fix documentation builds (#2712)
• Match example file names to the lexer's name (#2713, #2715)

... (truncated)

Changelog

Sourced from pygments's changelog.

Version 2.19.1

(released January 6th, 2025)

• Updated lexers:

  • Ini: Fix quoted string regression introduced in 2.19.0
  • Lua: Fix a regression introduced in 2.19.0

Version 2.19.0

(released January 5th, 2025)

• New lexers:

  • CodeQL (#2819)
  • Debian Sources (#2788, #2747)
  • Gleam (#2662)
  • GoogleSQL (#2820, #2814)
  • JSON5 (#2734, #1880)
  • Maple (#2763, #2548)
  • NumbaIR (#2433)
  • PDDL (#2799, #2616)
  • Rego (#2794)
  • TableGen (#2751)
  • Vue.js (#2832)

• Updated lexers:

  • BQN: Various improvements (#2789)
  • C#: Fix number highlighting (#986, #2727), add file keyword (#2726, #2805, #2806), add various other keywords (#2745, #2770)
  • CSS: Add revert (#2766, #2775)
  • Debian control: Add Change-By field (#2757)
  • Elip: Improve punctuation handling (#2651)
  • Igor: Add int (#2801)
  • Ini: Fix quoted strings with embedded comment characters (#2767, #2720)
  • Java: Support functions returning types containing a question mark (#2737)
  • JavaScript: Support private identiiers (#2729, #2671)
  • LLVM: Add splat, improve floating-point number parsing (#2755)
  • Lua: Improve variable detection, add built-in functions (#2829)
  • Macaulay2: Update to 1.24.11 (#2800)
  • PostgreSQL: Add more EXPLAIN keywords (#2785), handle / (#2774)
  • S-Lexer: Fix keywords (#2082, #2750)
  • TransactSQL: Fix single-line comments (#2717)
  • Turtle: Fix triple quoted strings (#2744, #2758)
  • Typst: Various improvements (#2724)
  • Various: Add ^ as an operator to Matlab, Octave and Scilab (#2798)
  • Vyper: Add staticcall and extcall (#2719)

• Mark file extensions for HTML/XML+Evoque as aliases (#2743)

... (truncated)

Commits

• b583de4 Prepare 2.19.1 release.
• c13f3f1 Prepare 2.19.1 release.
• cdbcd43 Add regression test for .ini issue, update CHANGES.
• 5792a21 Update CHANGES.
• a985866 Merge pull request #2835 from kartben/fix_ini_double_quotes
• 5822fd1 Fix Lua regressions.
• 673d824 Fix quoted string handling
• 43bf86f Improve example regex in the docs.
• 452ac62 Move on past 2.19.0.
• 62dff31 Prepare 2.19 release.
• Additional commits viewable in compare view

Updates black from 24.10.0 to 25.1.0

Release notes

Sourced from black's releases.

25.1.0

Highlights

This release introduces the new 2025 stable style (#4558), stabilizing the following changes:

• Normalize casing of Unicode escape characters in strings to lowercase (#2916)
• Fix inconsistencies in whether certain strings are detected as docstrings (#4095)
• Consistently add trailing commas to typed function parameters (#4164)
• Remove redundant parentheses in if guards for case blocks (#4214)
• Add parentheses to if clauses in case blocks when the line is too long (#4269)
• Whitespace before # fmt: skip comments is no longer normalized (#4146)
• Fix line length computation for certain expressions that involve the power operator (#4154)
• Check if there is a newline before the terminating quotes of a docstring (#4185)
• Fix type annotation spacing between * and more complex type variable tuple (#4440)

The following changes were not in any previous release:

• Remove parentheses around sole list items (#4312)
• Generic function definitions are now formatted more elegantly: parameters are split over multiple lines first instead of type parameter definitions (#4553)

Stable style

• Fix formatting cells in IPython notebooks with magic methods and starting or trailing empty lines (#4484)
• Fix crash when formatting with statements containing tuple generators/unpacking (#4538)

Preview style

• Fix/remove string merging changing f-string quotes on f-strings with internal quotes (#4498)
• Collapse multiple empty lines after an import into one (#4489)
• Prevent string_processing and wrap_long_dict_values_in_parens from removing parentheses around long dictionary values (#4377)
• Move wrap_long_dict_values_in_parens from the unstable to preview style (#4561)

Packaging

• Store license identifier inside the License-Expression metadata field, see PEP 639. (#4479)

Performance

• Speed up the is_fstring_start function in Black's tokenizer (#4541)

Integrations

• If using stdin with --stdin-filename set to a force excluded path, stdin won't be

... (truncated)

Changelog

Sourced from black's changelog.

25.1.0

Highlights

This release introduces the new 2025 stable style (#4558), stabilizing the following changes:

• Normalize casing of Unicode escape characters in strings to lowercase (#2916)
• Fix inconsistencies in whether certain strings are detected as docstrings (#4095)
• Consistently add trailing commas to typed function parameters (#4164)
• Remove redundant parentheses in if guards for case blocks (#4214)
• Add parentheses to if clauses in case blocks when the line is too long (#4269)
• Whitespace before # fmt: skip comments is no longer normalized (#4146)
• Fix line length computation for certain expressions that involve the power operator (#4154)
• Check if there is a newline before the terminating quotes of a docstring (#4185)
• Fix type annotation spacing between * and more complex type variable tuple (#4440)

The following changes were not in any previous release:

• Remove parentheses around sole list items (#4312)
• Generic function definitions are now formatted more elegantly: parameters are split over multiple lines first instead of type parameter definitions (#4553)

Stable style

• Fix formatting cells in IPython notebooks with magic methods and starting or trailing empty lines (#4484)
• Fix crash when formatting with statements containing tuple generators/unpacking (#4538)

Preview style

• Fix/remove string merging changing f-string quotes on f-strings with internal quotes (#4498)
• Collapse multiple empty lines after an import into one (#4489)
• Prevent string_processing and wrap_long_dict_values_in_parens from removing parentheses around long dictionary values (#4377)
• Move wrap_long_dict_values_in_parens from the unstable to preview style (#4561)

Packaging

• Store license identifier inside the License-Expression metadata field, see PEP 639. (#4479)

Performance

• Speed up the is_fstring_start function in Black's tokenizer (#4541)

Integrations

... (truncated)

Commits

• 8a737e7 Prepare release 25.1.0 (#4563)
• d330dee docs: We're not going to use backslashes for the with statement (#4564)
• 3d81290 Move wrap_long_dict_values_in_parens to the preview style (#4561)
• 459562c Improve function declaration wrapping when it contains generic type definitio...
• 99dbf30 Cache executor to avoid hitting open file limits (#4560)
• c0b92f3 Prepare the 2025 stable style (#4558)
• e58baf1 Add test for #1187 (#4559)
• 1455ae4 Fix docs CI (#4555)
• 584d033 fix: Don't remove parenthesis around long dictionary values (#4377)
• 6e96540 Fix CI (#4551)
• Additional commits viewable in compare view

Updates filelock from 3.16.1 to 3.17.0

Release notes

Sourced from filelock's releases.

Drop 3.8

Full Changelog: tox-dev/filelock@3.16.1...3.17.0

Commits

• 5eb02b2 Drop 3.8 (#388)
• 23a9848 Bump astral-sh/setup-uv from 4 to 5 (#387)
• 79a9583 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#386)
• 46dddc8 [pre-commit.ci] pre-commit autoupdate (#385)
• 57f488f [pre-commit.ci] pre-commit autoupdate (#383)
• d4feb5a [pre-commit.ci] pre-commit autoupdate (#382)
• fb2a4e2 Bump astral-sh/setup-uv from 3 to 4 (#381)
• 07c2840 [pre-commit.ci] pre-commit autoupdate (#379)
• ee4c7ba [pre-commit.ci] pre-commit autoupdate (#377)
• 2e1a1b2 [pre-commit.ci] pre-commit autoupdate (#374)
• Additional commits viewable in compare view

Updates isort from 5.13.2 to 6.0.0

Release notes

Sourced from isort's releases.

6.0.0

Changes

💥 Breaking Changes

• Remove support for Python 3.8 (#2327) @​DanielNoord

🚀 Features

• Python 3.13 support (#2306) @​mayty
• Updates round 3 (#2334) @​matthewhughes934
• Speed up exists_case_sensitive calls (#2264) @​correctmost
• nit: Fix deprecation message link (#2220) @​syou6162
• Ensure that split_on_trailing_comma works with as imports (#2340) @​DanielNoord
• Black profile: enable magic comma (#2236) @​MrMino
• Fix google style test (#2336) @​DanielNoord
• Update line_length and single_line_exclusions in google profile (#2149) @​jagapiou
• Updates round 2 (#2329) @​matthewhughes934
• Dependency updates round 1 (#2325) @​matthewhughes934
• Run pre-commit autoupdate (#2321) @​kurtmckee

🪲 Fixes

• Allow --diff to be used with --jobs (#2302) @​mnakama
• wemake has 80 chars hard limit, not 79 (#2241) @​sobolevn
• Fix errors on main (#2320) @​DanielNoord
• Fixed syntax error (#2289) @​Sergio-prog
• fix: typo (#2298) @​Rotzbua
• Fix sort_reexports code mangling (#2283) @​Helveg
• fix: correct group by package tokenization (#2136) @​glasnt
• Fix isort-action usage documentation (#2297) @​jamescurtin
• Fix CDN for Ace (#2127) @​abitrolly
• Fix help text (#2229) @​stweil
• docs: fix spelling mistake (#2249) @​cachho

👷 Continuous Integration

• UV replacement of Poetry (#2349) @​staticdev
• Make actions happy (#2311) @​matthewhughes934
• Fix GitHub Actions badges (#2326) @​hugovk
• Eliminate actions/cache@v2 usage (#2322) @​kurtmckee
• feat: add dependabot for GH action update (#2300) @​Rotzbua
• Update stage names for pre-commit (#2296) @​matthewhughes934

📦 Dependencies

• Bump poetry to 2.0.1 (#2341) @​DanielNoord
• Fix misc unsafe dependencies (#2345) @​staticdev
• Bump the github-actions group across 1 directory with 5 updates (#2324) @dependabot[bot]
• Bump gitpython from 3.1.40 to 3.1.41 (#2223) @dependabot[bot]

... (truncated)

Changelog

Sourced from isort's changelog.

Changelog

NOTE: isort follows the semver versioning standard. Find out more about isort's release policy here.

Commits

• 0a0b7a8 6.0.0
• 2d00730 Merge pull request #2349 from PyCQA/revert-2347-revert-2346-ci/uv-replacement...
• 16bb0e2 Return user_options
• 73abbc8 Fix dev and optional dependencies
• 8b3828d Pin UV version
• 0225875 Remove pip and virtualenv usage
• 3d49bc0 Revert "Revert "UV replacement of Poetry""
• b3760ab Merge pull request #2347 from PyCQA/revert-2346-ci/uv-replacement-for-poetry
• cc12cce Revert "UV replacement of Poetry"
• f7ab073 Merge pull request #2346 from PyCQA/ci/uv-replacement-for-poetry
• Additional commits viewable in compare view

Updates types-setuptools from 75.6.0.20241223 to 75.8.0.20250110

Commits

• See full diff in compare view

Updates virtualenv from 20.28.0 to 20.29.1

Release notes

Sourced from virtualenv's releases.

20.29.1

What's Changed

• release 20.29.0 by @​gaborbernat in pypa/virtualenv#2824
• Simplify Solution to --python command-line flag precedence by @​DK96-OS in pypa/virtualenv#2826
• Change PyInfo cache versioning mechanism by @​robsdedude in pypa/virtualenv#2827

New Contributors

• @​DK96-OS made their first contribution in pypa/virtualenv#2826

Full Changelog: pypa/virtualenv@20.29.0...20.29.1

20.29.0

What's Changed

• release 20.28.1 by @​gaborbernat in pypa/virtualenv#2818
• Makes --python command-line flag take precedence over env var by @​filiplajszczak in pypa/virtualenv#2821
• Add free-threaded Python support by @​robsdedude in pypa/virtualenv#2809
• Upgrade embeded setuptools by @​gaborbernat in pypa/virtualenv#2823

New Contributors

• @​filiplajszczak made their first contribution in pypa/virtualenv#2821
• @​robsdedude made their first contribution in pypa/virtualenv#2809

Full Changelog: pypa/virtualenv@20.28.1...20.29.0

20.28.1

What's Changed

• release 20.28.0 by @​gaborbernat in pypa/virtualenv#2807
• Skip tcsh tests on broken tcsh versions by @​gaborbernat in pypa/virtualenv#2817

Full Changelog: pypa/virtualenv@20.28.0...20.28.1

Changelog

Sourced from virtualenv's changelog.

v20.29.1 (2025-01-17)

Bugfixes - 20.29.1

- Fix PyInfo cache incompatibility warnings - by :user:`robsdedude`. (:issue:`2827`)
v20.29.0 (2025-01-15)
Features - 20.29.0

• Add support for selecting free-threaded Python interpreters, e.g., python3.13t. (:issue:2809)

Bugfixes - 20.29.0

- Upgrade embedded wheels:

setuptools to 75.8.0 from 75.6.0 (:issue:2823)

v20.28.1 (2025-01-02)
Bugfixes - 20.28.1

• Skip tcsh tests on broken tcsh versions - by :user:gaborbernat. (:issue:2814)

Commits

• e07c0c3 release 20.29.1
• 61bee9f Add changelog for PyInfo fix
• fd0dc85 Change PyInfo cache versioning mechanism (#2827)
• 56ef466 Merge pull request #2826 from DK96-OS/cli-precedence-2285
• caf03a2 Merge pull request #2824 from pypa/release-20.29.0
• 0f6dc41 release 20.29.0
• ea5e5cb Upgrade embeded setuptools (#2823)
• b00d59c Add free-threaded Python support (#2809)
• bc7a91a Merge pull request #2821 from filiplajszczak/cli-precedence-2285
• 11995e7 Merge pull request #2819 from pypa/pre-commit-ci-update-config
• Additional commits viewable in compare view

Updates attrs from 24.3.0 to 25.1.0

Commits

• See full diff in compare view

Updates pyopenssl from 24.3.0 to 25.0.0

Changelog

Sourced from pyopenssl's changelog.

25.0.0 (2025-01-12)

Backward-incompatible changes: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

Deprecations: ^^^^^^^^^^^^^

Changes: ^^^^^^^^

• Corrected type annotations on Context.set_alpn_select_callback, Context.set_session_cache_mode, Context.set_options, Context.set_mode, X509.subject_name_hash, and X509Store.load_locations.
• Deprecated APIs are now marked using warnings.deprecated. mypy will emit deprecation notices for them when used with --enable-error-code deprecated.

Commits

• 787f176 Prepare for 25.0.0 release (#1411)
• 2d6299b Bump actions/upload-artifact in /.github/actions/upload-coverage (#1410)
• 96a4459 Bump actions/upload-artifact from 4.5.0 to 4.6.0 (#1409)
• 1b2b0ed Use type-level deprecations (#1389)
• 70e2835 Bring full tests directory to typing correctly (#1407)
• 9422c36 Bring us under 30 test_ssl type-check issues (#1406)
• a3972a0 A bit more test_ssl.py type check cleanup (#1405)
• 9baefba Bring us under 100 test_ssl type-check issues (#1404)
• 317c7fa Burn down another 100 mypy errors in test_ssl.py (#1403)
• 7c771de Type check all tests except test_ssl.py (#1402)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
certifi	[< 2023, > 2022.6.15]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions