chore(deps): Bump the minor group with 7 updates

[dependabot]

Bumps the minor group with 7 updates:

Package	From	To
boto3	1.34.54	1.34.64
graphviz	0.20.1	0.20.2
black	24.2.0	24.3.0
coverage	7.4.3	7.4.4
moto	5.0.2	5.0.3
pytest	8.1.0	8.1.1
mkdocs-material	9.5.12	9.5.14

Updates boto3 from 1.34.54 to 1.34.64

Changelog

Sourced from boto3's changelog.

1.34.64

• api-change:backup: [botocore] This release introduces a boolean attribute ManagedByAWSBackupOnly as part of ListRecoveryPointsByResource api to filter the recovery points based on ownership. This attribute can be used to filter out the recovery points protected by AWSBackup.
• api-change:codebuild: [botocore] AWS CodeBuild now supports overflow behavior on Reserved Capacity.
• api-change:connect: [botocore] This release adds Hierarchy based Access Control fields to Security Profile public APIs and adds support for UserAttributeFilter to SearchUsers API.
• api-change:ec2: [botocore] Add media accelerator and neuron device information on the describe instance types API.
• api-change:kinesisanalyticsv2: [botocore] Support for Flink 1.18 in Managed Service for Apache Flink
• api-change:s3: [botocore] Documentation updates for Amazon S3.
• api-change:sagemaker: [botocore] Adds m6i, m6id, m7i, c6i, c6id, c7i, r6i r6id, r7i, p5 instance type support to Sagemaker Notebook Instances and miscellaneous wording fixes for previous Sagemaker documentation.
• api-change:workspaces-thin-client: [botocore] Removed unused parameter kmsKeyArn from UpdateDeviceRequest

1.34.63

• api-change:amplify: [botocore] Documentation updates for Amplify. Identifies the APIs available only to apps created using Amplify Gen 1.
• api-change:ec2-instance-connect: [botocore] This release includes a new exception type "SerialConsoleSessionUnsupportedException" for SendSerialConsoleSSHPublicKey API.
• api-change:elbv2: [botocore] This release allows you to configure HTTP client keep-alive duration for communication between clients and Application Load Balancers.
• api-change:fis: [botocore] This release adds support for previewing target resources before running a FIS experiment. It also adds resource ARNs for actions, experiments, and experiment templates to API responses.
• api-change:iot-roborunner: [botocore] The iot-roborunner client has been removed following the deprecation of the service.
• api-change:rds: [botocore] Updates Amazon RDS documentation for EBCDIC collation for RDS for Db2.
• api-change:secretsmanager: [botocore] Doc only update for Secrets Manager
• api-change:timestream-influxdb: [botocore] This is the initial SDK release for Amazon Timestream for InfluxDB. Amazon Timestream for InfluxDB is a new time-series database engine that makes it easy for application developers and DevOps teams to run InfluxDB databases on AWS for near real-time time-series applications using open source APIs.
• enhancement:urllib3: [botocore] Added support for urllib3 2.2.1+ in Python 3.10+

1.34.62

• api-change:ivs-realtime: [botocore] adds support for multiple new composition layout configuration options (grid, pip)
• api-change:kinesisanalyticsv2: [botocore] Support new RuntimeEnvironmentUpdate parameter within UpdateApplication API allowing callers to change the Flink version upon which their application runs.
• api-change:s3: [botocore] This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT).

1.34.61

• api-change:cloudformation: [botocore] CloudFormation documentation update for March, 2024
• api-change:connect: [botocore] This release increases MaxResults limit to 500 in request for SearchUsers, SearchQueues and SearchRoutingProfiles APIs of Amazon Connect.
• api-change:ec2: [botocore] Documentation updates for Amazon EC2.
• api-change:kafka: [botocore] Added support for specifying the starting position of topic replication in MSK-Replicator.
• api-change:ssm: [botocore] March 2024 doc-only updates for Systems Manager.

1.34.60

• api-change:codestar-connections: [botocore] Added a sync configuration enum to disable publishing of deployment status to source providers (PublishDeploymentStatus). Added a sync configuration enum (TriggerStackUpdateOn) to only trigger changes.
• api-change:elasticache: [botocore] Revisions to API text that are now to be carried over to SDK text, changing usages of "SFO" in code examples to "us-west-1", and some other typos.

... (truncated)

Commits

• f4491f1 Merge branch 'release-1.34.64'
• a3306a7 Bumping version to 1.34.64
• c4b5971 Add changelog entries from botocore
• e2d520c Merge branch 'release-1.34.63'
• 675cded Merge branch 'release-1.34.63' into develop
• d1aefcd Bumping version to 1.34.63
• e627bf6 Add changelog entries from botocore
• 23c0741 Fix boto3 resource reference docs (#4050)
• 49d87f3 Merge branch 'release-1.34.62'
• 453b615 Merge branch 'release-1.34.62' into develop
• Additional commits viewable in compare view

Updates graphviz from 0.20.1 to 0.20.2

Changelog

Sourced from graphviz's changelog.

Version 0.20.2

Drop Python 3.7 support (end of life 27 Jun 2023).

Tag Python 3.11 and 3.12 support.

Add caveat about labe escaping/quoting to .node() and .render() API docs.

Document that doctest_skip_exe() lines in doctest should be ignored.

Improve internal tools.deprecate_positional_args() decorator and fix incorect test assertion.

Update GitHub actions.

Commits

• 34fb16b release 0.20.2
• 7fab480 ignore own signature-related deprecation warnings in release process
• 09e2161 run update-help.py with Python 3.12
• 24507fc document excluded pytest 8.1.1 version
• 7fb9191 fix inline literal start-string without end-string
• f1a9f8d work around pytest import file mismatch error
• f586034 move update-help to Python 3.11
• b5827bd run update-help.py for 8cddcf125e55216097375de03d0e969af80cd81d
• c638217 document latest changes
• 8cddcf1 add caveat about label escaping/quoting to .node() and .render() API docs
• Additional commits viewable in compare view

Updates black from 24.2.0 to 24.3.0

Release notes

Sourced from black's releases.

24.3.0

Highlights

This release is a milestone: it fixes Black's first CVE security vulnerability. If you run Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings, you are strongly encouraged to upgrade immediately to fix CVE-2024-21503.

This release also fixes a bug in Black's AST safety check that allowed Black to make incorrect changes to certain f-strings that are valid in Python 3.12 and higher.

Stable style

• Don't move comments along with delimiters, which could cause crashes (#4248)
• Strengthen AST safety check to catch more unsafe changes to strings. Previous versions of Black would incorrectly format the contents of certain unusual f-strings containing nested strings with the same quote type. Now, Black will crash on such strings until support for the new f-string syntax is implemented. (#4270)
• Fix a bug where line-ranges exceeding the last code line would not work as expected (#4273)

Performance

• Fix catastrophic performance on docstrings that contain large numbers of leading tab characters. This fixes CVE-2024-21503. (#4278)

Documentation

• Note what happens when --check is used with --quiet (#4236)

Changelog

Sourced from black's changelog.

24.3.0

Highlights

This release is a milestone: it fixes Black's first CVE security vulnerability. If you run Black on untrusted input, or if you habitually put thousands of leading tab characters in your docstrings, you are strongly encouraged to upgrade immediately to fix CVE-2024-21503.

This release also fixes a bug in Black's AST safety check that allowed Black to make incorrect changes to certain f-strings that are valid in Python 3.12 and higher.

Stable style

• Don't move comments along with delimiters, which could cause crashes (#4248)
• Strengthen AST safety check to catch more unsafe changes to strings. Previous versions of Black would incorrectly format the contents of certain unusual f-strings containing nested strings with the same quote type. Now, Black will crash on such strings until support for the new f-string syntax is implemented. (#4270)
• Fix a bug where line-ranges exceeding the last code line would not work as expected (#4273)

Performance

• Fix catastrophic performance on docstrings that contain large numbers of leading tab characters. This fixes CVE-2024-21503. (#4278)

Documentation

• Note what happens when --check is used with --quiet (#4236)

Commits

• 552baf8 Prepare release 24.3.0 (#4279)
• f000936 Fix catastrophic performance in lines_with_leading_tabs_expanded() (#4278)
• 7b5a657 Fix --line-ranges behavior when ranges are at EOF (#4273)
• 1abcffc Use regex where we ignore case on windows (#4252)
• 719e674 Fix 4227: Improve documentation for --quiet --check (#4236)
• e5510af update plugin url for Thonny (#4259)
• 6af7d11 Fix AST safety check false negative (#4270)
• f03ee11 Ensure blib2to3.pygram is initialized before use (#4224)
• e4bfedb fix: Don't move comments while splitting delimiters (#4248)
• d0287e1 Make trailing comma logic more concise (#4202)
• Additional commits viewable in compare view

Updates coverage from 7.4.3 to 7.4.4

Changelog

Sourced from coverage's changelog.

Version 7.4.4 — 2024-03-14

• Fix: in some cases, even with [run] relative_files=True, a data file could be created with absolute path names. When combined with other relative data files, it was random whether the absolute file names would be made relative or not. If they weren't, then a file would be listed twice in reports, as detailed in issue 1752_. This is now fixed: absolute file names are always made relative when combining. Thanks to Bruno Rodrigues dos Santos for support.

• Fix: the last case of a match/case statement had an incorrect message if the branch was missed. It said the pattern never matched, when actually the branch is missed if the last case always matched.

• Fix: clicking a line number in the HTML report now positions more accurately.

• Fix: the report:format setting was defined as a boolean, but should be a string. Thanks, Tanaydin Sirin <pull 1754_>_. It is also now documented on the :ref:configuration page <config_report_format>.

.. _issue 1752: nedbat/coveragepy#1752 .. _pull 1754: nedbat/coveragepy#1754

.. _changes_7-4-3:

Commits

• bc5e2d7 docs: sample HTML for 7.4.4
• 9b0008b docs: prep for 7.4.4
• a536161 docs: thanks, Bruno Rodrigues dos Santos
• e06e4f9 chore: make doc_upgrade
• f30818e chore: make upgrade
• 1b19799 fix: ensure absolute paths are relative when combined #1752
• 1ef020d build: more cheats for convenient URLs
• 3d57a07 docs: document the report:format setting
• 8e30221 fix: correct the type of report:format in config.py (#1754)
• 6289be8 refactor: use dataclasses, no namedtuple
• Additional commits viewable in compare view

Updates moto from 5.0.2 to 5.0.3

Changelog

Sourced from moto's changelog.

5.0.3

Docker Digest for 5.0.3: sha256:032d8ead42f289d9700e9bc844c6d264575ad11b3f6c22cc76d65ff638c8c7bd

General:
    * New configuration options for:
      - Passing URL's through the proxy
      - Configuring DOcker-less services in ServerMode
      See http://docs.getmoto.org/en/latest/docs/configuration/index.html
New Services:
* Route53Domains:
* delete_domain()
* list_domains()
* list_operations()
* register_domain()
* update_domain_nameservers()
New Methods:
* CostExplorer:
* get_cost_and_usage()
* ECR:
    * get_registry_scanning_configuration()

Miscellaneous:
* ApiGateway: update_usage_plan() now supports adding apiStages
* Athena: get_query_execution() now returns exact OutputLocation file
* Autoscaling: describe_auto_scaling_groups() now supports the filters-argument
* CloudFront: create_distribution() now supports CustomHeaders
* CloudFront: update_distribution() now handles updates to DistributionConfig correctly
* CloudFormation - Now supports creation and deletion of AWS::EMR::Cluster
* CloudFormation - Now supports creation and deletion of AWS::EMR::SecurityConfiguration
* CloudFormation - Now supports creation and deletion of AWS::EFS::AccessPoint
* CloudFormation - Now supports creation and deletion of AWS::EFS::FileSystem
* CloudFormation - Now supports creation and deletion of AWS::EMR::InstanceGroupConfig
* CloudFormation - Now supports deletion of AWS::Logs::LogGroup
* CloudFormation: delete_stack() now handles resource dependencies better
* CloudWatch: put_metric_data() now supports large (compressed) requests
* CognitoIDP: admin_initiate_auth() and respond_to_auth_challenge() now support SMS_MFA
* DynamoDB: transact_write_items() now raises ValidationException when putting and deleting the same item
* EC2: authorize_security_group_egress/_ingress now support the TagSpecifications-argument
* EC2: describe_security_group_rules() now supports Tag-filters
* S3: EventBridge notifications are now supported for ObjectCreated:POST/COPY/MULTIPART_UPLOAD and ObjectDeleted
* SNS: subscribe() now adds support the $or, equals-ignore-case and suffix features in a FilterPolicy
* SQS: send_message() should respect DelaySeconds of 0

Commits

• e3330af Prep release 5.0.3 (#7447)
• cb60935 CloudFormation: Support AWS::EMR::InstanceGroupConfig (#7446)
• b13e493 CloudFormation: Support deletion of AWS::LOGS::LogGroup (#7443)
• b2ff3d9 CloudFormation: AWS::IAM::Role now supports RoleId (#7442)
• 06bfd7f Docs: refer to client, not client2, in sample (#7441)
• 4fc45e7 S3: Sending notification to EventBridge `OBJECT_CREATED_COMPLETE_MULTIPART_UP...
• 643c0da Techdebt: Ignore proxy typing issue (#7444)
• 0455ebb SecretsManager: Ensure AWSPREVIOUS is only ever tied to one version (#7439)
• 349353e Techdebt: Move S3 CompleteMultipartUpload to the backend (#7437)
• 4a7ed82 fix: add dynamodb type mismatch validator (#7429)
• Additional commits viewable in compare view

Updates pytest from 8.1.0 to 8.1.1

Release notes

Sourced from pytest's releases.

8.1.1

pytest 8.1.1 (2024-03-08)

::: {.note} ::: {.title} Note :::

This release is not a usual bug fix release -- it contains features and improvements, being a follow up to 8.1.0, which has been yanked from PyPI. :::

Features

• #11475: Added the new consider_namespace_packages{.interpreted-text role="confval"} configuration option, defaulting to False.

  If set to True, pytest will attempt to identify modules that are part of namespace packages when importing modules.

• #11653: Added the new verbosity_test_cases{.interpreted-text role="confval"} configuration option for fine-grained control of test execution verbosity. See Fine-grained verbosity <pytest.fine_grained_verbosity>{.interpreted-text role="ref"} for more details.

Improvements

• #10865: pytest.warns{.interpreted-text role="func"} now validates that warnings.warn{.interpreted-text role="func"} was called with a [str]{.title-ref} or a [Warning]{.title-ref}. Currently in Python it is possible to use other types, however this causes an exception when warnings.filterwarnings{.interpreted-text role="func"} is used to filter those warnings (see [CPython #103577](python/cpython#103577) for a discussion). While this can be considered a bug in CPython, we decided to put guards in pytest as the error message produced without this check in place is confusing.

• #11311: When using --override-ini for paths in invocations without a configuration file defined, the current working directory is used as the relative directory.

  Previoulsy this would raise an AssertionError{.interpreted-text role="class"}.

• #11475: --import-mode=importlib <import-mode-importlib>{.interpreted-text role="ref"} now tries to import modules using the standard import mechanism (but still without changing :pysys.path{.interpreted-text role="data"}), falling back to importing modules directly only if that fails.

  This means that installed packages will be imported under their canonical name if possible first, for example app.core.models, instead of having the module name always be derived from their path (for example .env310.lib.site_packages.app.core.models).

• #11801: Added the iter_parents() <_pytest.nodes.Node.iter_parents>{.interpreted-text role="func"} helper method on nodes. It is similar to listchain <_pytest.nodes.Node.listchain>{.interpreted-text role="func"}, but goes from bottom to top, and returns an iterator, not a list.

• #11850: Added support for sys.last_exc{.interpreted-text role="data"} for post-mortem debugging on Python>=3.12.

• #11962: In case no other suitable candidates for configuration file are found, a pyproject.toml (even without a [tool.pytest.ini_options] table) will be considered as the configuration file and define the rootdir.

• #11978: Add --log-file-mode option to the logging plugin, enabling appending to log-files. This option accepts either "w" or "a" and defaults to "w".

  Previously, the mode was hard-coded to be "w" which truncates the file before logging.

... (truncated)

Commits

• 81653ee Adjust changelog manually for 8.1.1
• e60b4b9 Prepare release version 8.1.1
• 15fbe57 [8.1.x] Revert legacy path removals (#12093)
• 86c3aab [8.1.x] Do not import duplicated modules with --importmode=importlib (#12077)
• 5b82b0c [8.1.x] Yank version 8.1.0 (#12076)
• 0a53681 Merge pull request #12054 from pytest-dev/release-8.1.0
• See full diff in compare view

Updates mkdocs-material from 9.5.12 to 9.5.14

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.5.14

• Added support for hiding versions from selector when using mike
• Added init system to improve signal handling in Docker image
• Fixed edge cases in exclusion logic of info plugin
• Fixed inability to reset pipeline in search plugin
• Fixed syntax error in Finnish translations
• Fixed #6917: UTF-8 encoding problems in blog plugin on Windows
• Fixed #6889: Transparent iframes get background color

Thanks to @​kamilkrzyskow, @​yubiuser and @​todeveni for their contributions

mkdocs-material-9.5.13

• Updated Slovak translations
• Improved info plugin interop with projects plugin
• Improved info plugin inclusion/exclusion logic
• Fixed info plugin not gathering files recursively
• Fixed #6750: Ensure info plugin packs up all necessary files

Thanks to @​kamilkrzyskow and @​scepka for their contributions

Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.5.14 (2024-03-18)

• Added support for hiding versions from selector when using mike
• Added init system to improve signal handling in Docker image
• Fixed edge cases in exclusion logic of info plugin
• Fixed inability to reset pipeline in search plugin
• Fixed syntax error in Finnish translations
• Fixed #6917: UTF-8 encoding problems in blog plugin on Windows
• Fixed #6889: Transparent iframes get background color

mkdocs-material-9.5.13+insiders-4.53.1 (2024-03-06)

• Fixed #6877: Projects plugin computes incorrect path to assets
• Fixed #6869: Blog plugin should emit warning on invalid related link

mkdocs-material-9.5.13 (2024-03-06)

• Updated Slovak translations
• Improved info plugin interop with projects plugin
• Improved info plugin inclusion/exclusion logic
• Fixed info plugin not gathering files recursively
• Fixed #6750: Ensure info plugin packs up all necessary files

mkdocs-material-9.5.12 (2024-02-29)

• Fixed #6846: Some meta tags removed on instant navigation (9.4.2 regression)
• Fixed #6823: KaTex not rendering on instant navigation (9.5.5 regression)
• Fixed #6821: Privacy plugin doesn't handle URLs with encoded characters

mkdocs-material-9.5.11+insiders-4.53.0 (2024-02-24)

• Added support for automatic instant previews
• Added support for pinned blog posts

mkdocs-material-9.5.11 (2024-02-19)

• Updated Finnish translation

mkdocs-material-9.5.10+insiders-4.52.3 (2024-02-21)

• Fixed resolution of URLs in instant previews
• Fixed instant previews not mounting for same-page links

mkdocs-material-9.5.10 (2024-02-19)

• Updated Bahasa Malaysia translations
• Fixed #6783: Hide continue reading link for blog posts without separators
• Fixed #6779: Incorrect positioning of integrated table of contents

mkdocs-material-9.5.9 (2024-02-10)

... (truncated)

Commits

• cc78979 Updated Insiders changelog
• c51eb2f Prepare 9.5.14 release
• 3311a61 Updated dependencies
• 022f14c Fixed UTF-8 with BOM encoding support
• 2f1b2e9 Added support for hiding versions from selector
• babc995 Formatting
• 7e27f4d Merge branch 'master' of github.com:squidfunk/mkdocs-material
• dc97a56 Updated dependencies
• 2d39824 Fixed info plugin's exclusion logic (#6874)
• f325238 Fixed inability to reset search pipeline
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.