Bump pipenv from 2018.10.13 to 2018.11.14

[dependabot-preview]

Bumps pipenv from 2018.10.13 to 2018.11.14.

Release notes

Sourced from pipenv's releases.

2018.11.14 (2018-11-14)

Features & Improvements

• Improved exceptions and error handling on
  failures. #1977
• Added persistent settings for all CLI flags via PIPENV_{FLAG_NAME}
  environment variables by enabling auto_envvar_prefix=PIPENV in
  click (implements PEEP-0002). #2200
• Added improved messaging about available but skipped updates due to
  dependency conflicts when running
  pipenv update --outdated. #2411
• Added environment variable PIPENV_PYUP_API_KEY to add ability to
  override the bundled pyup.io API key. #2825
• Added additional output to pipenv update --outdated to indicate
  that the operation succeded and all packages were already up to
  date. #2828
• Updated crayons patch to enable colors on native powershell but
  swap native blue for magenta. #3020
• Added support for --bare to pipenv clean, and fixed
  pipenv sync --bare to actually reduce output. #3041
• Added windows-compatible spinner via upgraded vistir dependency. #3089
• Added support for python installations managed by
  asdf. #3096
• Improved runtime performance of no-op commands such as
  pipenv --venv by around 2/3. #3158
• Do not show error but success for running pipenv uninstall --all
  in a fresh virtual environment. #3170
• Improved asynchronous installation and error handling via queued
  subprocess paralleization. #3217

Bug Fixes

• Remote non-PyPI artifacts and local wheels and artifacts will now
  include their own hashes rather than including hashes from
  PyPI. #2394
• Non-ascii characters will now be handled correctly when parsed by
  pipenv's ToML
  parsers. #2737
• Updated pipenv uninstall to respect the --skip-lock
  argument. #2848
• Fixed a bug which caused uninstallation to sometimes fail to
  successfullly remove packages from Pipfiles with comments on
  preceding or following
  lines. #2885, #3099
• Pipenv will no longer fail when encountering python versions on
  Windows that have been

... (truncated)

Changelog

Sourced from pipenv's changelog.

2018.11.14 (2018-11-14)

Features & Improvements

• Improved exceptions and error handling on failures.#1977 <https://github-redirect.dependabot.com/pypa/pipenv/issues/1977>_
• Added persistent settings for all CLI flags via PIPENV_{FLAG_NAME} environment variables by enabling auto_envvar_prefix=PIPENV in click (implements PEEP-0002).#2200 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2200>_
• Added improved messaging about available but skipped updates due to dependency conflicts when running pipenv update --outdated.#2411 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2411>_
• Added environment variable PIPENV_PYUP_API_KEY to add ability
  to override the bundled pyup.io API key.#2825 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2825>_
• Added additional output to pipenv update --outdated to indicate that the operation succeded and all packages were already up to date.#2828 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2828>_
• Updated crayons patch to enable colors on native powershell but swap native blue for magenta.#3020 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3020>_
• Added support for --bare to pipenv clean, and fixed pipenv sync --bare to actually reduce output.#3041 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3041>_
• Added windows-compatible spinner via upgraded vistir dependency.#3089 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3089>_
• • Added support for python installations managed by asdf.#3096 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3096>_
• Improved runtime performance of no-op commands such as pipenv --venv by around 2/3.#3158 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3158>_
• Do not show error but success for running pipenv uninstall --all in a fresh virtual environment.#3170 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3170>_
• Improved asynchronous installation and error handling via queued subprocess paralleization.#3217 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3217>_

Bug Fixes

• Remote non-PyPI artifacts and local wheels and artifacts will now include their own hashes rather than including hashes from PyPI.#2394 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2394>_
• Non-ascii characters will now be handled correctly when parsed by pipenv's ToML parsers.#2737 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2737>_
• Updated pipenv uninstall to respect the --skip-lock argument.#2848 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2848>_
• Fixed a bug which caused uninstallation to sometimes fail to successfullly remove packages from Pipfiles with comments on preceding or following lines.#2885 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2885>,
  #3099 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3099>
• Pipenv will no longer fail when encountering python versions on Windows that have been uninstalled.#2983 <https://github-redirect.dependabot.com/pypa/pipenv/issues/2983>_
• Fixed unnecessary extras are added when translating markers#3026 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3026>_
• Fixed a virtualenv creation issue which could cause new virtualenvs to inadvertently attempt to read and write to global site packages.#3047 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3047>_
• Fixed an issue with virtualenv path derivation which could cause errors, particularly for users on WSL bash.#3055 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3055>_
• Fixed a bug which caused Unexpected EOF errors to be thrown when pip was waiting for input from users who had put login credentials in environment variables.#3088 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3088>_
• Fixed a bug in requirementslib which prevented successful installation from mercurial repositories.#3090 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3090>_
• Fixed random resource warnings when using pyenv or any other subprocess calls.#3094 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3094>_
• • Fixed a bug which sometimes prevented cloning and parsing mercurial requirements.#3096 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3096>_
• Fixed an issue in delegator.py related to subprocess calls when using PopenSpawn to stream output, which sometimes threw unexpected EOF errors.#3102 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3102>,
  #3114 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3114>,
  #3117 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3117>_
• Fix the path casing issue that makes pipenv clean fail on Windows#3104 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3104>_
• Pipenv will avoid leaving build artifacts in the current working directory.#3106 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3106>_
• Fixed issues with broken subprocess calls leaking resource handles and causing random and sporadic failures.#3109 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3109>_
• Fixed an issue which caused pipenv clean to sometimes clean packages from the base site-packages folder or fail entirely.#3113 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3113>_
• Updated pythonfinder to correct an issue with unnesting of nested paths when searching for python versions.#3121 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3121>_
• Added additional logic for ignoring and replacing non-ascii characters when formatting console output on non-UTF-8 systems.#3131 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3131>_
• Fix virtual environment discovery when PIPENV_VENV_IN_PROJECT is set, but the in-project .venv is a file.#3134 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3134>_
• Hashes for remote and local non-PyPI artifacts will now be included in Pipfile.lock during resolution.#3145 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3145>_
• Fix project path hashing logic in purpose to prevent collisions of virtual environments.#3151 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3151>_
• Fix package installation when the virtual environment path contains parentheses.#3158 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3158>_
• Azure Pipelines YAML files are updated to use the latest syntax and product name.#3164 <https://github-redirect.dependabot.com/pypa/pipenv/issues/3164>_

... (truncated)

Commits

• 6f07e72 Release 2018.11.14
• b51afde Update towncrier template
• d9ebad3 Merge pull request #3217 from pypa/maintenance/merge-3191-3196-3209
• 41cbe4d Pin postreleases to pass packaging ci
• a8f4c7e accidental commit
• 08d94d4 Update core and rebuild ci
• 5e5e1ed Stray print
• bfa0b29 Update vendored deps
• ada66d3 Remove old patch
• 86c894d Woops, delegator isn't updated, neither packaging
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[davehunt]

@dependabot ignore this version

The latest version is failing on Jenkins due to pypa/pipenv#3223

[dependabot-preview]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.