Bump setuptools from 75.3.0 to 75.5.0

[dependabot]

Bumps setuptools from 75.3.0 to 75.5.0.

Changelog

Sourced from setuptools's changelog.

v75.5.0

Features

• Removed support for SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION, as it is deemed prone to errors. (#4746)

v75.4.0

Features

• Added support for the environment variable SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION=true, allowing users to bypass the validation of pyproject.toml. This option should be used only as a last resort when resolving dependency issues, as it may lead to improper functioning. Users who enable this setting are responsible for ensuring that pyproject.toml complies with setuptools requirements. (#4611)

  .. attention:: This environment variable was removed in a later version of setuptools.

• Require Python 3.9 or later. (#4718)

• Remove dependency on importlib_resources and the vendored copy of the library. Instead, setuptools consistently rely on stdlib's importlib.resources (available on Python 3.9+). (#4718)

• Setuptools' bdist_wheel implementation no longer produces wheels with the m SOABI flag (pymalloc-related). This flag was removed on Python 3.8+ (see :obj:sys.abiflags). (#4718)

• Updated vendored packaging version to 24.2. (#4740)

Bugfixes

• Merge with pypa/distutils@251797602, including fix for dirutil.mkpath handling in pypa/distutils#304.

Commits

• 5400015 Bump version: 75.4.0 → 75.5.0
• 01b9f20 Add note about removed variable in NEWS.rst
• 57ed6f0 Revert "Allow user to skip validation of pyproject.toml via env var" (#4746)
• 36e945e Add news fragment
• f6c9fdb Revert "Allow user to skip validation of pyproject.toml via env var"
• 8f5559c Bump version: 75.3.0 → 75.4.0
• 6cc5f08 Update mypy requirement from ==1.12.* to >=1.12,<1.14 (#4700)
• 748c851 Update mypy requirement from ==1.12.* to >=1.12,<1.14
• c9d980f Refactor/unify/extract shutil.rmtree callbacks (and avoid repetition) (#4682)
• db2b206 Extract test for shutil.rmtree callback to its own file
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[beaufour]

@dependabot merge

…

On Sun, Nov 17, 2024 at 8:13 PM dependabot[bot] ***@***.***> wrote: Bumps setuptools <https://github.com/pypa/setuptools> from 75.3.0 to 75.5.0. Changelog *Sourced from setuptools's changelog <https://github.com/pypa/setuptools/blob/main/NEWS.rst>.* v75.5.0 Features - Removed support for SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION, as it is deemed prone to errors. (#4746 <https://redirect.github.com/pypa/setuptools/issues/4746>) v75.4.0 Features - Added support for the environment variable SETUPTOOLS_DANGEROUSLY_SKIP_PYPROJECT_VALIDATION=true, allowing users to bypass the validation of pyproject.toml. This option should be used only as a last resort when resolving dependency issues, as it may lead to improper functioning. Users who enable this setting are responsible for ensuring that pyproject.toml complies with setuptools requirements. ( #4611 <https://redirect.github.com/pypa/setuptools/issues/4611>) .. attention:: This environment variable was removed in a later version of setuptools. - Require Python 3.9 or later. (#4718 <https://redirect.github.com/pypa/setuptools/issues/4718>) - Remove dependency on importlib_resources and the vendored copy of the library. Instead, setuptools consistently rely on stdlib's importlib.resources (available on Python 3.9+). (#4718 <https://redirect.github.com/pypa/setuptools/issues/4718>) - Setuptools' bdist_wheel implementation no longer produces wheels with the m SOABI flag (pymalloc-related). This flag was removed on Python 3.8+ (see :obj:sys.abiflags). (#4718 <https://redirect.github.com/pypa/setuptools/issues/4718>) - Updated vendored packaging version to 24.2. (#4740 <https://redirect.github.com/pypa/setuptools/issues/4740>) Bugfixes - Merge with ***@***.*** <pypa/distutils@251797602>, including fix for dirutil.mkpath handling in pypa/distutils#304 <https://redirect.github.com/pypa/distutils/issues/304>. Commits - 5400015 <pypa/setuptools@5400015> Bump version: 75.4.0 → 75.5.0 - 01b9f20 <pypa/setuptools@01b9f20> Add note about removed variable in NEWS.rst - 57ed6f0 <pypa/setuptools@57ed6f0> Revert "Allow user to skip validation of pyproject.toml via env var" ( #4746 <https://redirect.github.com/pypa/setuptools/issues/4746>) - 36e945e <pypa/setuptools@36e945e> Add news fragment - f6c9fdb <pypa/setuptools@f6c9fdb> Revert "Allow user to skip validation of pyproject.toml via env var" - 8f5559c <pypa/setuptools@8f5559c> Bump version: 75.3.0 → 75.4.0 - 6cc5f08 <pypa/setuptools@6cc5f08> Update mypy requirement from ==1.12.* to >=1.12,<1.14 (#4700 <https://redirect.github.com/pypa/setuptools/issues/4700>) - 748c851 <pypa/setuptools@748c851> Update mypy requirement from ==1.12.* to >=1.12,<1.14 - c9d980f <pypa/setuptools@c9d980f> Refactor/unify/extract shutil.rmtree callbacks (and avoid repetition) ( #4682 <https://redirect.github.com/pypa/setuptools/issues/4682>) - db2b206 <pypa/setuptools@db2b206> Extract test for shutil.rmtree callback to its own file - Additional commits viewable in compare view <pypa/setuptools@v75.3.0...v75.5.0> [image: Dependabot compatibility score] <https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase. ------------------------------ Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - @dependabot rebase will rebase this PR - @dependabot recreate will recreate this PR, overwriting any edits that have been made to it - @dependabot merge will merge this PR after your CI passes on it - @dependabot squash and merge will squash and merge this PR after your CI passes on it - @dependabot cancel merge will cancel a previously requested merge and block automerging - @dependabot reopen will reopen this PR if it is closed - @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency - @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) ------------------------------ You can view, comment on, or merge this pull request online at: #109 Commit Summary - cc3f508 <cc3f508> Bump setuptools from 75.3.0 to 75.5.0 File Changes (1 file <https://github.com/beaufour/flickr-download/pull/109/files>) - *M* poetry.lock <https://github.com/beaufour/flickr-download/pull/109/files#diff-f53a023eedfa3fbf2925ec7dc76eecdc954ea94b7e47065393dbad519613dc89> (16) Patch Links: - https://github.com/beaufour/flickr-download/pull/109.patch - https://github.com/beaufour/flickr-download/pull/109.diff — Reply to this email directly, view it on GitHub <#109>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAB2POOUNB67DUSQHYF2CY32BE5KHAVCNFSM6AAAAABR6RAZ4OVHI2DSMVQWIX3LMV43ASLTON2WKOZSGY3DMOBQHAYTINI> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>