build(deps): bump the pip-essence-feature-usage-stats group in /tools/essence-feature-usage-stats with 4 updates

[dependabot]

Bumps the pip-essence-feature-usage-stats group in /tools/essence-feature-usage-stats with 4 updates: platformdirs, requests, ruff and tqdm.

Updates platformdirs from 4.2.1 to 4.2.2

Release notes

Sourced from platformdirs's releases.

4.2.2

What's Changed

• Fix android detection when python4android is present by @​tmolitor-stud-tu in platformdirs/platformdirs#277

New Contributors

• @​tmolitor-stud-tu made their first contribution in platformdirs/platformdirs#277

Full Changelog: tox-dev/platformdirs@4.2.1...4.2.2

Commits

• 5ec69d8 Fix android detection when python4android is present (#277)
• dbf360f [pre-commit.ci] pre-commit autoupdate (#280)
• b318012 [pre-commit.ci] pre-commit autoupdate (#279)
• 120a441 [pre-commit.ci] pre-commit autoupdate (#278)
• See full diff in compare view

Updates requests from 2.32.0 to 2.32.3

Release notes

Sourced from requests's releases.

v2.32.3

2.32.3 (2024-05-29)

Bugfixes

• Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
• Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

v2.32.2

2.32.2 (2024-05-21)

Deprecations

• To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

  A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

v2.32.1

2.32.1 (2024-05-20)

Bugfixes

• Add missing test certs to the sdist distributed on PyPI.

Changelog

Sourced from requests's changelog.

2.32.3 (2024-05-29)

Bugfixes

• Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. (#6716)
• Fixed issue where Requests started failing to run on Python versions compiled without the ssl module. (#6724)

2.32.2 (2024-05-21)

Deprecations

• To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed _get_connection to a new public API, get_connection_with_tls_context. Existing custom HTTPAdapters will need to migrate their code to use this new API. get_connection is considered deprecated in all versions of Requests>=2.32.0.

  A minimal (2-line) example has been provided in the linked PR to ease migration, but we strongly urge users to evaluate if their custom adapter is subject to the same issue described in CVE-2024-35195. (#6710)

2.32.1 (2024-05-20)

Bugfixes

• Add missing test certs to the sdist distributed on PyPI.

Commits

• 0e322af v2.32.3
• e188799 Don't create default SSLContext if ssl module isn't present (#6724)
• 145b539 Merge pull request #6716 from sigmavirus24/bug/6715
• b1d73dd Don't use default SSLContext with custom poolmanager kwargs
• 6badbac Update HISTORY.md
• a62a2d3 Allow for overriding of specific pool key params
• 88dce9d v2.32.2
• c98e4d1 Merge pull request #6710 from nateprewitt/api_rename
• 92075b3 Add deprecation warning
• aa1461b Move _get_connection to get_connection_with_tls_context
• Additional commits viewable in compare view

Updates ruff from 0.4.2 to 0.4.7

Release notes

Sourced from ruff's releases.

v0.4.7

Changes

Preview features

• [flake8-pyi] Implement PYI064 (#11325)
• [flake8-pyi] Implement PYI066 (#11541)
• [flake8-pyi] Implement PYI057 (#11486)
• [pyflakes] Add option to enable F822 in __init__.py files (#11370)

Formatter

• Fix incorrect placement of trailing stub function comments (#11632)

Server

• Respect file exclusions in ruff server (#11590)
• Add support for documents not exist on disk (#11588)
• Add Vim and Kate setup guide for ruff server (#11615)

Bug fixes

• Avoid removing newlines between docstring headers and rST blocks (#11609)
• Infer indentation with imports when logical indent is absent (#11608)
• Use char index rather than position for indent slice (#11645)
• [flake8-comprehension] Strip parentheses around generators in C400 (#11607)
• Mark repeated-isinstance-calls as unsafe on Python 3.10 and later (#11622)

Contributors

• @​AlexWaygood
• @​Chubercik
• @​JaRoSchm
• @​MichaReiser
• @​T-256
• @​carljm
• @​charliermarsh
• @​hassec
• @​plredmond
• @​tomasr8
• @​tusharsadhwani
• @​vitaliyf

v0.4.6

Changes

Breaking changes

• Use project-relative paths when calculating GitLab fingerprints (#11532)

... (truncated)

Changelog

Sourced from ruff's changelog.

0.4.7

Preview features

• [flake8-pyi] Implement PYI064 (#11325)
• [flake8-pyi] Implement PYI066 (#11541)
• [flake8-pyi] Implement PYI057 (#11486)
• [pyflakes] Add option to enable F822 in __init__.py files (#11370)

Formatter

• Fix incorrect placement of trailing stub function comments (#11632)

Server

• Respect file exclusions in ruff server (#11590)
• Add support for documents not exist on disk (#11588)
• Add Vim and Kate setup guide for ruff server (#11615)

Bug fixes

• Avoid removing newlines between docstring headers and rST blocks (#11609)
• Infer indentation with imports when logical indent is absent (#11608)
• Use char index rather than position for indent slice (#11645)
• [flake8-comprehension] Strip parentheses around generators in C400 (#11607)
• Mark repeated-isinstance-calls as unsafe on Python 3.10 and later (#11622)

0.4.6

Breaking changes

• Use project-relative paths when calculating GitLab fingerprints (#11532)
• Bump minimum supported Windows version to Windows 10 (#11613)

Preview features

• [flake8-async] Sleep with >24 hour interval should usually sleep forever (ASYNC116) (#11498)

Rule changes

• [numpy] Add missing functions to NumPy 2.0 migration rule (#11528)
• [mccabe] Consider irrefutable pattern similar to if .. else for C901 (#11565)
• Consider match-case statements for C901, PLR0912, and PLR0915 (#11521)
• Remove empty strings when converting to f-string (UP032) (#11524)
• [flake8-bandit] request-without-timeout should warn for requests.request (#11548)
• [flake8-self] Ignore sunder accesses in flake8-self rules (#11546)
• [pyupgrade] Lint for TypeAliasType usages (UP040) (#11530)

Server

... (truncated)

Commits

• 1ad5f9c Bump version to v0.4.7 (#11646)
• e914bc3 F401 sort bindings before adding to all (#11648)
• 27f6f04 [red-knot] initial (very incomplete) flow graph (#11624)
• d62a617 red-knot: Don't refer to Module instances as IDs (#11649)
• 16a926d [red-knot] infer int literal types (#11623)
• 05566c6 Update Who's Using Ruff? section to include Godot (#11647)
• 7ce17b7 Add Vim and Kate setup guide for ruff server (#11615)
• f9a6450 Use char index rather than position for indent slice (#11645)
• 8a25531 red-knot: improve internal documentation in module.rs (#11638)
• 9b6d2ce Fix incorect placement of trailing stub function comments (#11632)
• Additional commits viewable in compare view

Updates tqdm from 4.66.3 to 4.66.4

Release notes

Sourced from tqdm's releases.

tqdm v4.66.4 stable

• rich: fix completion (#1395 <- #1306)
• minor framework updates & code tidy (#1578)

Commits

• 7472295 bump version, merge pull request #1578 from tqdm/devel
• e84d488 tests: bump pre-commit
• 7c8753f Merge pull request #1395 from glensc/patch-1
• d7f469e Add display to close in rich module
• d774884 tidy super() calls
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions