Bump the pip group with 5 updates

[dependabot]

Bumps the pip group with 5 updates:

Package	From	To
aiohttp	3.10.11	3.11.8
async-timeout	4.0.3	5.0.1
packaging	24.1	24.2
yarl	1.17.1	1.18.0
sentry-sdk	2.17.0	2.19.0

Updates aiohttp from 3.10.11 to 3.11.8

Release notes

Sourced from aiohttp's releases.

3.11.8

Miscellaneous internal changes

• Improved performance of creating :class:aiohttp.ClientResponse objects when there are no cookies -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10029.

• Improved performance of creating :class:aiohttp.ClientResponse objects -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10030.

• Improved performances of creating objects during the HTTP request lifecycle -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10037.

• Improved performance of constructing :class:aiohttp.web.Response with headers -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10043.

• Improved performance of making requests when there are no auto headers to skip -- by :user:bdraco.

  Related issues and pull requests on GitHub: #10049.

• Downgraded logging of invalid HTTP method exceptions on the first request to debug level -- by :user:bdraco.

  HTTP requests starting with an invalid method are relatively common, especially when connected to the public internet, because browsers or other clients may try to speak SSL to a plain-text server or vice-versa. These exceptions can quickly fill the log with noise when nothing is wrong.

  Related issues and pull requests on GitHub:

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.11.8 (2024-11-27)

Miscellaneous internal changes

• Improved performance of creating :class:aiohttp.ClientResponse objects when there are no cookies -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10029.

• Improved performance of creating :class:aiohttp.ClientResponse objects -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10030.

• Improved performances of creating objects during the HTTP request lifecycle -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10037.

• Improved performance of constructing :class:aiohttp.web.Response with headers -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10043.

• Improved performance of making requests when there are no auto headers to skip -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:10049.

• Downgraded logging of invalid HTTP method exceptions on the first request to debug level -- by :user:bdraco.

  HTTP requests starting with an invalid method are relatively common, especially when connected to the public internet, because browsers or other clients may try to speak SSL to a plain-text server or vice-versa. These exceptions can quickly fill the log with noise when nothing is wrong.

... (truncated)

Commits

• 5ddf720 Release 3.11.8 (#10066)
• 13152c3 [PR #10055/c11fe96 backport][3.11] Downgrade logging of invalid HTTP methods ...
• 1b78cae [PR #10059/aac6f741 backport][3.11] Combine executor jobs in FileResponse sen...
• a5a6981 [PR #10058/12372d7 backport][3.11] Remove unreachable content length check fo...
• 7e628f4 [PR #8699/11f0e7f backport][3.11] Reduce code indent in ResponseHandler.data_...
• 1a6fafe [PR #10037/2e369db backport][3.11] Refactor requests and responses to use cla...
• 653302e [PR #10049/006fbc37 backport][3.11] Improve client performance when there are...
• d411bc5 [PR #10043/5255cec backport][3.11] Avoid constructing headers mulitidict twic...
• 3dfd7ae Bump pypa/cibuildwheel from 2.21.3 to 2.22.0 (#10042)
• 65dab0e [PR #10038/6f4e9615 backport][3.11] Small speed up to StreamWriter.__init__...
• Additional commits viewable in compare view

Updates async-timeout from 4.0.3 to 5.0.1

Release notes

Sourced from async-timeout's releases.

5.0.1

Misc

• [#423](https://github.com/aio-libs/async-timeout/issues/423) <https://github.com/aio-libs/async-timeout/issues/423>_

5.0.0

Features

• Make asyncio_timeout fully compatible with the standard asyncio.Timeout but keep backward compatibility with existing asyncio_timeout.Timeout API. ([#422](https://github.com/aio-libs/async-timeout/issues/422) <https://github.com/aio-libs/async-timeout/issues/422>_)

Improved Documentation

• On the CHANGES/README.rst <https://github.com/aio-libs/async-timeout/tree/master/CHANGES/README.rst>_ page, a link to the Towncrier philosophy has been fixed. ([#388](https://github.com/aio-libs/async-timeout/issues/388) <https://github.com/aio-libs/async-timeout/issues/388>_)

Deprecations and Removals

• Drop deprecated sync context manager support, use async with timeout(...): ... instead. ([#421](https://github.com/aio-libs/async-timeout/issues/421) <https://github.com/aio-libs/async-timeout/issues/421>_)

Changelog

Sourced from async-timeout's changelog.

5.0.1 (2024-11-06)

Misc

• [#423](https://github.com/aio-libs/async-timeout/issues/423) <https://github.com/aio-libs/async-timeout/issues/423>_

5.0.0 (2024-10-31)

Features

• Make asyncio_timeout fully compatible with the standard asyncio.Timeout but keep backward compatibility with existing asyncio_timeout.Timeout API. ([#422](https://github.com/aio-libs/async-timeout/issues/422) <https://github.com/aio-libs/async-timeout/issues/422>_)

Improved Documentation

• On the CHANGES/README.rst <https://github.com/aio-libs/async-timeout/tree/master/CHANGES/README.rst>_ page, a link to the Towncrier philosophy has been fixed. ([#388](https://github.com/aio-libs/async-timeout/issues/388) <https://github.com/aio-libs/async-timeout/issues/388>_)

Deprecations and Removals

• Drop deprecated sync context manager support, use async with timeout(...): ... instead. ([#421](https://github.com/aio-libs/async-timeout/issues/421) <https://github.com/aio-libs/async-timeout/issues/421>_)

Commits

• cc52d41 Bump to 5.0.1
• 1af7d71 Bump to 5.0.1
• 3bf26d9 Fix #423: add requirements.txt to sdist package (#425)
• 380e8ba Mention condition import of asyncio.timeout / async_timeout.timeout in README...
• 8a232d0 Update README
• 3d3e3e4 Bump to 5.0.0
• d5c21f3 Mimic asyncio.Timeout behavior (#422)
• a1111c2 Drop deprecated sync context manager support (#421)
• 00fd343 Imports cleanup
• 7b61b33 Update CI config file
• Additional commits viewable in compare view

Updates packaging from 24.1 to 24.2

Release notes

Sourced from packaging's releases.

24.2

What's Changed

• The source is auto-formatted with ruff, not black by @​DimitriPapadopoulos in pypa/packaging#798
• Bump the github-actions group across 1 directory with 3 updates by @​dependabot in pypa/packaging#813
• Apply ruff rules (RUF) by @​DimitriPapadopoulos in pypa/packaging#800
• Fix typo in Version __str__ by @​aryanpingle in pypa/packaging#817
• Bump the github-actions group with 3 updates by @​dependabot in pypa/packaging#819
• Get rid of duplicate test cases by @​DimitriPapadopoulos in pypa/packaging#821
• Fix doc for canonicalize_version and a typo in a docstring by @​Laurent-Dx in pypa/packaging#801
• docs: public/base_version comparison by @​henryiii in pypa/packaging#818
• Apply ruff/bugbear rules (B) by @​DimitriPapadopoulos in pypa/packaging#787
• Apply ruff/pyupgrade rules (UP) by @​DimitriPapadopoulos in pypa/packaging#786
• Add a changelog entry for dropping Python 3.7 support by @​alexwlchan in pypa/packaging#824
• Patch python_full_version unconditionally by @​jaraco in pypa/packaging#825
• Refactor canonicalize_version by @​jaraco in pypa/packaging#793
• Allow creating a SpecifierSet from a list of specifiers by @​pfmoore in pypa/packaging#777
• Fix uninformative error message by @​abravalheri in pypa/packaging#830
• Fix prerelease detection for > and < by @​notatallshaw in pypa/packaging#794
• Bump the github-actions group across 1 directory with 4 updates by @​dependabot in pypa/packaging#839
• Add support for PEP 730 iOS tags. by @​freakboy3742 in pypa/packaging#832
• Update the changelog to reflect 24.1 changes by @​pradyunsg in pypa/packaging#840
• Mention updating changelog in release process by @​pradyunsg in pypa/packaging#841
• Add a comment as to why Metadata.name isn't normalized by @​brettcannon in pypa/packaging#842
• Use !r formatter for error messages with filenames. by @​Carreau in pypa/packaging#844
• PEP 639: Implement License-Expression and License-File by @​ewdurbin in pypa/packaging#828
• Bump the github-actions group with 4 updates by @​dependabot in pypa/packaging#852
• Upgrade to latest mypy by @​hauntsaninja in pypa/packaging#853
• Extraneous quotes by @​ewdurbin in pypa/packaging#848

New Contributors

• @​aryanpingle made their first contribution in pypa/packaging#817
• @​Laurent-Dx made their first contribution in pypa/packaging#801
• @​alexwlchan made their first contribution in pypa/packaging#824
• @​jaraco made their first contribution in pypa/packaging#825
• @​notatallshaw made their first contribution in pypa/packaging#794
• @​freakboy3742 made their first contribution in pypa/packaging#832
• @​Carreau made their first contribution in pypa/packaging#844
• @​ewdurbin made their first contribution in pypa/packaging#828

Full Changelog: pypa/packaging@24.1...24.2

Changelog

Sourced from packaging's changelog.

24.2 - 2024-11-08

* PEP 639: Implement License-Expression and License-File (:issue:`828`)
* Use ``!r`` formatter for error messages with filenames (:issue:`844`)
* Add support for PEP 730 iOS tags (:issue:`832`)
* Fix prerelease detection for ``>`` and ``<`` (:issue:`794`)
* Fix uninformative error message (:issue:`830`)
* Refactor ``canonicalize_version`` (:issue:`793`)
* Patch python_full_version unconditionally (:issue:`825`)
* Fix doc for ``canonicalize_version`` to mention ``strip_trailing_zero`` and a typo in a docstring (:issue:`801`)
* Fix typo in Version ``__str__`` (:issue:`817`)
* Support creating a ``SpecifierSet`` from an iterable of ``Specifier`` objects (:issue:`775`)

Commits

• d8e3b31 Bump for release
• 2de393d Update changelog for release
• 9c66f5c Remove extraneous quotes in f-strings by using !r (#848)
• 4dc334c Upgrade to latest mypy (#853)
• d1a9f93 Bump the github-actions group with 4 updates (#852)
• 029f415 PEP 639: Implement License-Expression and License-File (#828)
• 6c338a8 Use !r formatter for error messages with filenames. (#844)
• 28e7da7 Add a comment as to why Metadata.name isn't normalized (#842)
• ce0d79c Mention updating changelog in release process (#841)
• ac5bdf3 Update the changelog to reflect 24.1 changes (#840)
• Additional commits viewable in compare view

Updates yarl from 1.17.1 to 1.18.0

Release notes

Sourced from yarl's releases.

1.18.0

Features

• Added keep_query and keep_fragment flags in the :py:meth:yarl.URL.with_path, :py:meth:yarl.URL.with_name and :py:meth:yarl.URL.with_suffix methods, allowing users to optionally retain the query string and fragment in the resulting URL when replacing the path -- by :user:paul-nameless.

  Related issues and pull requests on GitHub: #111, #1421.

Contributor-facing changes

• Started running downstream aiohttp tests in CI -- by :user:Cycloctane.

  Related issues and pull requests on GitHub: #1415.

Miscellaneous internal changes

• Improved performance of converting :class:~yarl.URL to a string -- by :user:bdraco.

  Related issues and pull requests on GitHub: #1422.

---

1.17.2

Bug fixes

• Stopped implicitly allowing the use of Cython pre-release versions when building the distribution package -- by :user:ajsanchezsanz and :user:markgreene74.

  Related issues and pull requests on GitHub: #1411, #1412.

• Fixed a bug causing :attr:~yarl.URL.port to return the default port when the given port was zero -- by :user:gmacon.

  Related issues and pull requests on GitHub: #1413.

Features

... (truncated)

Changelog

Sourced from yarl's changelog.

1.18.0

(2024-11-21)

Features

• Added keep_query and keep_fragment flags in the :py:meth:yarl.URL.with_path, :py:meth:yarl.URL.with_name and :py:meth:yarl.URL.with_suffix methods, allowing users to optionally retain the query string and fragment in the resulting URL when replacing the path -- by :user:paul-nameless.

  Related issues and pull requests on GitHub: :issue:111, :issue:1421.

Contributor-facing changes

• Started running downstream aiohttp tests in CI -- by :user:Cycloctane.

  Related issues and pull requests on GitHub: :issue:1415.

Miscellaneous internal changes

• Improved performance of converting :class:~yarl.URL to a string -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:1422.

---

1.17.2

(2024-11-17)

Bug fixes

• Stopped implicitly allowing the use of Cython pre-release versions when building the distribution package -- by :user:ajsanchezsanz and :user:markgreene74.

  Related issues and pull requests on GitHub:

... (truncated)

Commits

• 2e8cd0d Release 1.18.0 (#1429)
• b7bdfd5 Add aiohttp tests to CI (#1415)
• fc08cb8 Allow replacing path without replacing query or fragment (#1421)
• 2b94725 Revert "Temporarily downgrade codecov-action to 5.0.3 to fix CI" (#1428)
• 9f99a40 Remove internal _default_port property (#1424)
• 57d69fe Temporarily downgrade codecov-action to 5.0.3 to fix CI (#1425)
• a8d2556 Bump master to 1.18.0.dev0 (#1423)
• b07cbb8 Improve performance of converting a URL to a string (#1422)
• b31eaa1 Increment version to 1.17.3.dev0 (#1420)
• 4ab9b12 Release 1.17.2 (#1419)
• Additional commits viewable in compare view

Updates sentry-sdk from 2.17.0 to 2.19.0

Release notes

Sourced from sentry-sdk's releases.

2.19.0

Various fixes & improvements

• New: introduce rust_tracing integration. See https://docs.sentry.io/platforms/python/integrations/rust_tracing/ (#3717) by @​matt-codecov
• Auto enable Litestar integration (#3540) by @​provinzkraut
• Deprecate sentry_sdk.init context manager (#3729) by @​szokeasaurusrex
• feat(spotlight): Send PII to Spotlight when no DSN is set (#3804) by @​BYK
• feat(spotlight): Add info logs when Sentry is enabled (#3735) by @​BYK
• feat(spotlight): Inject Spotlight button on Django (#3751) by @​BYK
• feat(spotlight): Auto enable cache_spans for Spotlight on DEBUG (#3791) by @​BYK
• fix(logging): Handle parameter stack_info for the LoggingIntegration (#3745) by @​gmcrocetti
• fix(pure-eval): Make sentry-sdk[pure-eval] installable with pip==24.0 (#3757) by @​sentrivana
• fix(rust_tracing): include_tracing_fields arg to control unvetted data in rust_tracing integration (#3780) by @​matt-codecov
• fix(aws) Fix aws lambda tests (by reducing event size) (#3770) by @​antonpirker
• fix(arq): fix integration with Worker settings as a dict (#3742) by @​saber-solooki
• fix(httpx): Prevent Sentry baggage duplication (#3728) by @​szokeasaurusrex
• fix(falcon): Don't exhaust request body stream (#3768) by @​szokeasaurusrex
• fix(integrations): Check retries_left before capturing exception (#3803) by @​malkovro
• fix(openai): Use name instead of description (#3807) by @​sourceful-rob
• test(gcp): Only run GCP tests when they should (#3721) by @​szokeasaurusrex
• chore: Shorten CI workflow names (#3805) by @​sentrivana
• chore: Test with pyspark prerelease (#3760) by @​sentrivana
• build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.2 (#3792) by @​dependabot
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3691) by @​dependabot

2.18.0

Various fixes & improvements

• Add LaunchDarkly and OpenFeature integration (#3648) by @​cmanallen
• Correct typo in a comment (#3726) by @​szokeasaurusrex
• End http.client span on timeout (#3723) by @​Zylphrex
• Check for h2 existence in HTTP/2 transport (#3690) by @​BYK
• Use type() instead when extracting frames (#3716) by @​Zylphrex
• Prefer python_multipart import over multipart (#3710) by @​musicinmybrain
• Update active thread for asgi (#3669) by @​Zylphrex
• Only enable HTTP2 when DSN is HTTPS (#3678) by @​BYK
• Prepare for upstream Strawberry extension removal (#3649) by @​DoctorJohn
• Enhance README with improved clarity and developer-friendly examples (#3667) by @​UTSAVS26
• Run license compliance action on all PRs (#3699) by @​szokeasaurusrex
• Run CodeQL action on all PRs (#3698) by @​szokeasaurusrex
• Fix UTC assuming test (#3722) by @​BYK
• Exclude fakeredis 2.26.0 on py3.6 and 3.7 (#3695) by @​szokeasaurusrex
• Unpin pytest for tornado-latest tests (#3714) by @​szokeasaurusrex
• Install pytest-asyncio for redis tests (Python 3.12-13) (#3706) by @​szokeasaurusrex
• Clarify that only pinned tests are required (#3713) by @​szokeasaurusrex
• Remove accidentally-committed print (#3712) by @​szokeasaurusrex
• Disable broken RQ test in newly-released RQ 2.0 (#3708) by @​szokeasaurusrex
• Unpin pytest for celery tests (#3701) by @​szokeasaurusrex
• Unpin pytest on Python 3.8+ gevent tests (#3700) by @​szokeasaurusrex
• Unpin pytest for Python 3.8+ common tests (#3697) by @​szokeasaurusrex

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.19.0

Various fixes & improvements

• New: introduce rust_tracing integration. See https://docs.sentry.io/platforms/python/integrations/rust_tracing/ (#3717) by @​matt-codecov
• Auto enable Litestar integration (#3540) by @​provinzkraut
• Deprecate sentry_sdk.init context manager (#3729) by @​szokeasaurusrex
• feat(spotlight): Send PII to Spotlight when no DSN is set (#3804) by @​BYK
• feat(spotlight): Add info logs when Sentry is enabled (#3735) by @​BYK
• feat(spotlight): Inject Spotlight button on Django (#3751) by @​BYK
• feat(spotlight): Auto enable cache_spans for Spotlight on DEBUG (#3791) by @​BYK
• fix(logging): Handle parameter stack_info for the LoggingIntegration (#3745) by @​gmcrocetti
• fix(pure-eval): Make sentry-sdk[pure-eval] installable with pip==24.0 (#3757) by @​sentrivana
• fix(rust_tracing): include_tracing_fields arg to control unvetted data in rust_tracing integration (#3780) by @​matt-codecov
• fix(aws) Fix aws lambda tests (by reducing event size) (#3770) by @​antonpirker
• fix(arq): fix integration with Worker settings as a dict (#3742) by @​saber-solooki
• fix(httpx): Prevent Sentry baggage duplication (#3728) by @​szokeasaurusrex
• fix(falcon): Don't exhaust request body stream (#3768) by @​szokeasaurusrex
• fix(integrations): Check retries_left before capturing exception (#3803) by @​malkovro
• fix(openai): Use name instead of description (#3807) by @​sourceful-rob
• test(gcp): Only run GCP tests when they should (#3721) by @​szokeasaurusrex
• chore: Shorten CI workflow names (#3805) by @​sentrivana
• chore: Test with pyspark prerelease (#3760) by @​sentrivana
• build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.2 (#3792) by @​dependabot
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3691) by @​dependabot

2.18.0

Various fixes & improvements

• Add LaunchDarkly and OpenFeature integration (#3648) by @​cmanallen
• Correct typo in a comment (#3726) by @​szokeasaurusrex
• End http.client span on timeout (#3723) by @​Zylphrex
• Check for h2 existence in HTTP/2 transport (#3690) by @​BYK
• Use type() instead when extracting frames (#3716) by @​Zylphrex
• Prefer python_multipart import over multipart (#3710) by @​musicinmybrain
• Update active thread for asgi (#3669) by @​Zylphrex
• Only enable HTTP2 when DSN is HTTPS (#3678) by @​BYK
• Prepare for upstream Strawberry extension removal (#3649) by @​DoctorJohn
• Enhance README with improved clarity and developer-friendly examples (#3667) by @​UTSAVS26
• Run license compliance action on all PRs (#3699) by @​szokeasaurusrex
• Run CodeQL action on all PRs (#3698) by @​szokeasaurusrex
• Fix UTC assuming test (#3722) by @​BYK
• Exclude fakeredis 2.26.0 on py3.6 and 3.7 (#3695) by @​szokeasaurusrex
• Unpin pytest for tornado-latest tests (#3714) by @​szokeasaurusrex
• Install pytest-asyncio for redis tests (Python 3.12-13) (#3706) by @​szokeasaurusrex
• Clarify that only pinned tests are required (#3713) by @​szokeasaurusrex
• Remove accidentally-committed print (#3712) by @​szokeasaurusrex
• Disable broken RQ test in newly-released RQ 2.0 (#3708) by @​szokeasaurusrex
• Unpin pytest for celery tests (#3701) by @​szokeasaurusrex

... (truncated)

Commits

• 039c220 Updated changelog
• c83e742 release: 2.19.0
• 8fe5bb4 feat: Send PII to Spotlight when no DSN is set (#3804)
• 295dd8d Auto enable Litestar integration (#3540)
• bd50c38 fix(httpx): Prevent Sentry baggage duplication (#3728)
• e9ec6c1 test(gcp): Only run GCP tests when they should (#3721)
• aa6e8fd fix(falcon): Don't exhaust request body stream (#3768)
• 3e28853 fix(integrations): Check retries_left before capturing exception (#3803)
• 01146bd fix(openai): Use name instead of description (#3807)
• d894fc2 Shorten CI workflow names (#3805)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (7c6e75d) to head (04ca503).
Report is 1 commits behind head on main.

@@            Coverage Diff            @@
##              main      #654   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           18        18           
  Lines         2149      2149           
  Branches        97        97           
=========================================
  Hits          2149      2149           

Flag	Coverage Δ
Python_3.10.15	100.00% <ø> (ø)
Python_3.11.10	100.00% <ø> (ø)
Python_3.12.7	100.00% <ø> (ø)
Python_3.13.0	100.00% <ø> (ø)
Python_3.9.20	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.