From d54bc78c6370154810923ac9a2f4b17e396bf3cc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 12 Nov 2021 18:04:08 +0100
Subject: [PATCH] Bump setuptools from 53.0.0 to 58.5.3 (PR #3431)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [setuptools](https://github.com/pypa/setuptools) from 53.0.0 to 58.5.3.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pypa/setuptools/blob/main/CHANGES.rst">setuptools's changelog</a>.</em></p>
<blockquote>
<h2>v58.5.3</h2>
<p>Misc
^^^^</p>
<ul>
<li><a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2849">#2849</a>: Add fallback for custom <code>build_py</code> commands inheriting directly from
:mod:<code>distutils</code>, while still handling <code>include_package_data=True</code> for
<code>sdist</code>.</li>
</ul>
<h2>v58.5.2</h2>
<p>Misc
^^^^</p>
<ul>
<li><a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2847">#2847</a>: Suppress 'setup.py install' warning under bdist_wheel.</li>
</ul>
<h2>v58.5.1</h2>
<p>Misc
^^^^</p>
<ul>
<li><a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2846">#2846</a>: Move PkgResourcesDeprecationWarning above implicitly-called function so that it's in the namespace when version warnings are generated in an environment that contains them.</li>
</ul>
<h2>v58.5.0</h2>
<p>Changes
^^^^^^^</p>
<ul>
<li><a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/1461">#1461</a>: Fix inconsistency with <code>include_package_data</code> and <code>packages_data</code> in sdist
by replacing the loop breaking mechanism between the <code>sdist</code> and
<code>egg_info</code> commands -- by :user:<code>abravalheri</code></li>
</ul>
<h2>v58.4.0</h2>
<p>Changes
^^^^^^^</p>
<ul>
<li><a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2497">#2497</a>: Officially deprecated PEP 440 non-compliant versions.</li>
</ul>
<p>Documentation changes
^^^^^^^^^^^^^^^^^^^^^</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pypa/setuptools/commit/33f4d7e9423bf833b60f5b2b788e932ca4e702ba"><code>33f4d7e</code></a> Bump version: 58.5.2 → 58.5.3</li>
<li><a href="https://github.com/pypa/setuptools/commit/51eb5a1d3f3ec3020c1b756997c1084f4b5da65d"><code>51eb5a1</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2855">#2855</a> from abravalheri/fix-2849</li>
<li><a href="https://github.com/pypa/setuptools/commit/748d00e8310df05b2667b8024681f0818b07cb12"><code>748d00e</code></a> Mark change as bugfix.</li>
<li><a href="https://github.com/pypa/setuptools/commit/cc80157b595fef88810fd7e79754ddc4f284aab8"><code>cc80157</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2848">#2848</a> from aphedges/fix-doc-typo</li>
<li><a href="https://github.com/pypa/setuptools/commit/e7e9548b273b8fd0a99e4b01958c60a44edde0c0"><code>e7e9548</code></a> Add news fragment regarding the fix for <a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2849">#2849</a></li>
<li><a href="https://github.com/pypa/setuptools/commit/9d0dc418639a0bf7cd9244feb705d30b60e1a906"><code>9d0dc41</code></a> Make sure user gets warned when using distutils</li>
<li><a href="https://github.com/pypa/setuptools/commit/08235e88d10179c89ed80a4dd9bf2d18c76b478d"><code>08235e8</code></a> Handle custom build_py inheriting from distutils</li>
<li><a href="https://github.com/pypa/setuptools/commit/a5716723c3e311c0a69da57dbf7c5bc65d4ef062"><code>a571672</code></a> Add regression test for <a href="https://github-redirect.dependabot.com/pypa/setuptools/issues/2849">#2849</a></li>
<li><a href="https://github.com/pypa/setuptools/commit/503785c2f0a991eff0826ea1379901d6c7de08e4"><code>503785c</code></a> Fix wrong issue number in CHANGES.rst</li>
<li><a href="https://github.com/pypa/setuptools/commit/41b6e7655dd72e2f0dcc06e776009f73af738c48"><code>41b6e76</code></a> Bump version: 58.5.1 → 58.5.2</li>
<li>Additional commits viewable in <a href="https://github.com/pypa/setuptools/compare/v53.0.0...v58.5.3">compare view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=53.0.0&new-version=58.5.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>
---
 changelogs/unreleased/3431-dependabot.yml | 5 +++++
 requirements.txt                          | 2 +-
 2 files changed, 6 insertions(+), 1 deletion(-)
 create mode 100644 changelogs/unreleased/3431-dependabot.yml

diff --git a/changelogs/unreleased/3431-dependabot.yml b/changelogs/unreleased/3431-dependabot.yml
new file mode 100644
index 0000000000..e3e3792bce
--- /dev/null
+++ b/changelogs/unreleased/3431-dependabot.yml
@@ -0,0 +1,5 @@
+change-type: patch
+description: Bump setuptools from 53.0.0 to 58.5.3
+destination-branches:
+- iso4
+sections: {}
diff --git a/requirements.txt b/requirements.txt
index 4d92c44b92..b5bde84a88 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -19,7 +19,7 @@ pyformance==0.4
 PyJWT==2.1.0
 python-dateutil==2.8.2
 pyyaml==5.4.1
-setuptools==53.0.0
+setuptools==58.5.3
 texttable==1.6.3
 tornado==6.1
 typing_inspect==0.6.0