[pip] Bump the non-major-dependencies group with 2 updates

[dependabot]

Bumps the non-major-dependencies group with 2 updates: pipenv and mkdocs-material.

Updates pipenv from 2024.3.1 to 2024.4.0

Release notes

Sourced from pipenv's releases.

Release v2024.4.0

What's Changed

• correct regression in --skip-lock by @​matteius in pypa/pipenv#6304
• Vendoring Fall 2024 by @​matteius in pypa/pipenv#6293
• Vendor in pip==24.3.1 by @​matteius in pypa/pipenv#6292
• Add new paths to front of PATH by @​sanders41 in pypa/pipenv#6307
• Prevent regression with install upgrading packages; duplicated sources in Pipfile prevention by @​matteius in pypa/pipenv#6309

New Contributors

• @​sanders41 made their first contribution in pypa/pipenv#6307

Full Changelog: pypa/pipenv@v2024.3.1...v2024.4.0

Changelog

Sourced from pipenv's changelog.

2024.2.0 (2024-11-05)

Pipenv 2024.2.0 (2024-11-05)

Bug Fixes

• Fix regression where --skip-lock --dev was incorrectly searching Lockfile categories ("default", "develop") instead of Pipfile categories ("packages", "dev-packages"), causing packages to not be found. [#6304](https://github.com/pypa/pipenv/issues/6304) <https://github.com/pypa/pipenv/issues/6304>_
• Fix issue where pipenv install would unintentionally upgrade packages that had wildcard (*) specifiers in the Pipfile, even when locked versions existed and no upgrade was requested. [#6306](https://github.com/pypa/pipenv/issues/6306) <https://github.com/pypa/pipenv/issues/6306>_
• Fix issue where modules could not be found [#6307](https://github.com/pypa/pipenv/issues/6307) <https://github.com/pypa/pipenv/issues/6307>_

Vendored Libraries

• Vendor in pip==24.3.1. [#6292](https://github.com/pypa/pipenv/issues/6292) <https://github.com/pypa/pipenv/issues/6292>_

• Vendoring

  • Update vendored dependencies:
    • importlib-metadata from 8.4.0 to 8.5.0
    • packaging from 24.0 to 24.1
    • tomli from 2.0.1 to 2.0.2
    • tomlkit from 0.12.4 to 0.13.2
    • zipp from 3.18.1 to 3.20.2 [#6293](https://github.com/pypa/pipenv/issues/6293) <https://github.com/pypa/pipenv/issues/6293>_

Commits

• 1dc28bd Release v2024.4.0
• d77bf2d Bumped version to 2024.4.0.
• b9e9885 fix ruff
• 95f3af1 fix my new test
• 8b3a057 Add news fragment and test case
• ea63719 Prevent issue with upgrading when no packages are specified to install. Pre...
• 2383420 Merge pull request #6307 from sanders41/pipdeptree
• 65c8c5b Add news file
• 95028e0 Add new paths to front of PATH
• 5a51979 Vendor in pip==23.3.1
• Additional commits viewable in compare view

Updates mkdocs-material from 9.5.43 to 9.5.46

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.5.46

• Added support for removing preload hints in privacy plugin
• Fixed #7734: Code blocks in h5 headlines are uppercased
• Fixed #7725: Blog plugin crashing on missing timezone (9.5.45 regression)

Thanks go to @​nejch and @​perpil for their contributions

mkdocs-material-9.5.45

• Reduced size of Docker image through multi-stage build
• Fixed #7708: Blog plugin crashing on YAML dates with timezones

Thanks go to @​FrancoisCapon and @​perpil for their contributions

mkdocs-material-9.5.44

• Fixed #7672: Font CSS 404's when using privacy plugin (9.5.43 regression)

Thanks go to @​nejch for their contributions.

Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.5.46 (2024-11-25)

• Added support for removing preload hints in privacy plugin
• Fixed #7734: Code blocks in h5 headlines are uppercased
• Fixed #7725: Blog plugin crashing on missing timezone (9.5.45 regression)

mkdocs-material-9.5.45 (2024-11-20)

• Reduced size of Docker image through multi-stage build
• Fixed #7708: Blog plugin crashing on YAML dates with timezones

mkdocs-material-9.5.44 (2024-11-05)

• Fixed #7672: Font CSS 404's when using privacy plugin (9.5.43 regression)

mkdocs-material-9.5.43 (2024-10-31)

• Added support for external images in SVGs in privacy plugin
• Fixed #7651: Privacy plugin doesn't handle quoted URLs in CSS

mkdocs-material-9.5.42 (2024-10-20)

• Fixed #7625: Invalid encoding of boolean attributes in privacy plugin
• Fixed #7624: Crash when disabling privacy plugin (9.5.41 regression)

mkdocs-material-9.5.41 (2024-10-15)

• Fixed #7619: Improved tooltip on logo disappears after instant navigation
• Fixed #7616: Race condition in built-in privacy plugin when inlining assets
• Fixed #7615: Comments and "Was this page helpful?" visible when printing

mkdocs-material-9.5.40 (2024-10-10)

• Updated Latvian translations
• Fixed #7597: Social cards not using site name on home page

mkdocs-material-9.5.39+insiders-4.53.14 (2024-09-29)

• Fixed #7567: Empty headlines when using typeset plugin with anchorlinks

mkdocs-material-9.5.39 (2024-09-29)

• Fixed #7226: not staying on page when using mike's canonical versioning

mkdocs-material-9.5.38 (2024-09-26)

• Added Albanian translations

mkdocs-material-9.5.37 (2024-09-25)

... (truncated)

Commits

• b88d1f0 Prepare 9.5.46 release
• b3f1eb2 Fixed uppercasing of code blocks in H5 headlines
• 226321e Updated dependencies
• 6a0a790 Added preload hints in privacy plugin replacements (#7733)
• eee4934 Fixed blog plugin crashing on missing timezone (regression) (#7730)
• 0947f73 Prepare 9.5.45 release
• a08809a Fixed blog plugin crashing on dates with timezones (#7708)
• d4f0b66 Added Caption extension to JSON schema (#7718)
• 51c9f9a Updated dependencies
• 596aeea Updated link for Material Design Icons
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[changeset-bot]

⚠️ No Changeset found

Latest commit: a89e580

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR