build(deps): bump the minor-and-patch group with 9 updates

[dependabot]

Bumps the minor-and-patch group with 9 updates:

Package	From	To
pystac-client	0.8.5	0.8.6
coverage	7.6.11	7.6.12
flake8	7.1.1	7.1.2
safety	3.2.14	3.3.0
typeguard	4.4.1	4.4.2
myst-parser	4.0.0	4.0.1
cryptography	44.0.0	44.0.1
numpy	2.2.2	2.2.3
virtualenv	20.29.1	20.29.2

Updates pystac-client from 0.8.5 to 0.8.6

Release notes

Sourced from pystac-client's releases.

v0.8.6

What's Changed

• fix: tests by ceiling on urllib3 (again?) by @​gadomski in stac-utils/pystac-client#768
• Fix Client.get_collection for static catalogs by @​jsignell in stac-utils/pystac-client#782
• chore: pyupgrade v3.10 by @​gadomski in stac-utils/pystac-client#783
• feat: modernize dev tooling by @​gadomski in stac-utils/pystac-client#784
• fix: permissive extent parsing for collections by @​gadomski in stac-utils/pystac-client#787
• release: v0.8.6 by @​gadomski in stac-utils/pystac-client#788

Full Changelog: stac-utils/pystac-client@v0.8.5...v0.8.6

Changelog

Sourced from pystac-client's changelog.

[v0.8.6] - 2025-02-11

Changed

• Use uv for development (#784)
• Updated to Python 3.10 syntax with pyupgrade (#783)

Fixed

• Client.get_collection for static catalogs (#782)
• Permissive collection reading (#787)

Commits

• 11acd6e release: v0.8.6 (#788)
• 86a0ad8 fix: permissive extent parsing for collections (#787)
• 9163eb2 feat: modernize dev tooling (#784)
• 605e95c chore: pyupgrade v3.10 (#783)
• 1b16191 Fix Client.get_collection for static catalogs (#782)
• b9d6540 build(deps): bump ruff from 0.9.3 to 0.9.4 (#781)
• 13d4385 build(deps): update black requirement from ~=24.0 to ~=25.1 (#779)
• 550574c build(deps): bump conda-incubator/setup-miniconda from 3.1.0 to 3.1.1 (#778)
• 35274bb build(deps): bump ruff from 0.9.2 to 0.9.3 (#777)
• 95b8d62 build(deps): update codespell requirement from ~=2.3.0 to ~=2.4.0 (#776)
• Additional commits viewable in compare view

Updates coverage from 7.6.11 to 7.6.12

Changelog

Sourced from coverage's changelog.

Version 7.6.12 — 2025-02-11

• Fix: some aarch64 distributions were missing (issue 1927_). These are now building reliably.

.. _issue 1927: nedbat/coveragepy#1927

.. _changes_7-6-11:

Commits

• 7e5373e docs: sample HTML for 7.6.12
• a4ed38b docs: prep for 7.6.12
• ce4efdc build: fix aarch64 kits #1927
• a1f3192 build: don't publish if kit building failed
• bb68f99 chore: bump the action-dependencies group with 2 updates (#1926)
• f3d6b4a refactor: check for more kinds of constant tests
• 67899ea refactor: we no longer care what kind of constant the compile-time constants are
• c850f20 refactor: macOS is MACOS, not OSX
• a1b2c1a build: there are always tweaks to howto.txt
• 9c03039 build: bump version to 7.6.12
• See full diff in compare view

Updates flake8 from 7.1.1 to 7.1.2

Commits

• fffee8b Release 7.1.2
• 19001f7 Merge pull request #1966 from PyCQA/limit-procs-to-file-count
• f35737a avoid starting unnecessary processes when file count is limited
• See full diff in compare view

Updates safety from 3.2.14 to 3.3.0

Release notes

Sourced from safety's releases.

Version 3.3.0

What's Changed

• bump: version 3.3.0b0 → 3.3.0 (3de59d8)
• ci: rename assets on release to avoid conflicts (#678) (73a211f)
• ci: use bot token on release creation (#677) (6a05419)

Version 3.3.0b0

What's Changed

• bump: version 3.2.14 → 3.3.0b0 (fc9c9f0)
• ci: use bot token on bump push (#676) (d928688)
• ci: fetch tags and history on bump workflow (#675) (8e7172b)
• ci: improve beta bump and release handling (#674) (1f05c1d)
• feat: added safety firewall (#671) (e1c2b6a)
• ci: remove legacy workflow (#672) (209e443)
• ci: add bump file (#670) (f97fb15)
• chore: switch to pyproject (#669) (4d3adbd)
• fix/scan-refactor-round-2 (#662) (9a6619e)
• fix/refactor-scan-part-1 (#661) (3f5882f)

Changelog

Sourced from safety's changelog.

3.3.0 (2025-02-14)

3.3.0b0 (2025-02-13)

Feat

• added safety firewall (#671)

Commits

• 3de59d8 bump: version 3.3.0b0 → 3.3.0
• 73a211f ci: rename assets on release to avoid conflicts (#678)
• 6a05419 ci: use bot token on release creation (#677)
• fc9c9f0 bump: version 3.2.14 → 3.3.0b0
• d928688 ci: use bot token on bump push (#676)
• 8e7172b ci: fetch tags and history on bump workflow (#675)
• 1f05c1d ci: improve beta bump and release handling (#674)
• e1c2b6a feat: added safety firewall (#671)
• 209e443 ci: remove legacy workflow (#672)
• f97fb15 ci: add bump file (#670)
• Additional commits viewable in compare view

Updates typeguard from 4.4.1 to 4.4.2

Release notes

Sourced from typeguard's releases.

4.4.2

• Fixed TypeCheckError in unpacking assignment involving properties of a parameter of the function (#506; regression introduced in v4.4.1)
• Fixed display of module name for forward references (#492; PR by @​JelleZijlstra)
• Fixed TypeError when using an assignment expression (#510; PR by @​JohannesK71083)
• Fixed ValueError: no signature found for builtin when checking against a protocol and a matching attribute in the subject is a built-in function (#504)

Changelog

Sourced from typeguard's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <https://semver.org/#semantic-versioning-200>_.

4.4.2 (2025-02-16)

• Fixed TypeCheckError in unpacking assignment involving properties of a parameter of the function ([#506](https://github.com/agronholm/typeguard/issues/506) <https://github.com/agronholm/typeguard/issues/506>_; regression introduced in v4.4.1)
• Fixed display of module name for forward references ([#492](https://github.com/agronholm/typeguard/issues/492) <https://github.com/agronholm/typeguard/pull/492>_; PR by @​JelleZijlstra)
• Fixed TypeError when using an assignment expression ([#510](https://github.com/agronholm/typeguard/issues/510) <https://github.com/agronholm/typeguard/issues/510>_; PR by @​JohannesK71083)
• Fixed ValueError: no signature found for builtin when checking against a protocol and a matching attribute in the subject is a built-in function ([#504](https://github.com/agronholm/typeguard/issues/504) <https://github.com/agronholm/typeguard/issues/504>_)

4.4.1 (2024-11-03)

• Dropped Python 3.8 support
• Changed the signature of typeguard_ignore() to be compatible with typing.no_type_check() (PR by @​jolaf)
• Avoid creating reference cycles when type checking uniontypes and classes
• Fixed checking of variable assignments involving tuple unpacking ([#486](https://github.com/agronholm/typeguard/issues/486) <https://github.com/agronholm/typeguard/issues/486>_)
• Fixed TypeError when checking a class against type[Self] ([#481](https://github.com/agronholm/typeguard/issues/481) <https://github.com/agronholm/typeguard/issues/481>_)
• Fixed checking of protocols on the class level (against type[SomeProtocol]) ([#498](https://github.com/agronholm/typeguard/issues/498) <https://github.com/agronholm/typeguard/issues/498>_)
• Fixed Self checks in instance/class methods that have positional-only arguments
• Fixed explicit checks of PEP 604 unions against types.UnionType ([#467](https://github.com/agronholm/typeguard/issues/467) <https://github.com/agronholm/typeguard/issues/467>_)
• Fixed checks against annotations wrapped in NotRequired not being run unless the NotRequired is a forward reference ([#454](https://github.com/agronholm/typeguard/issues/454) <https://github.com/agronholm/typeguard/issues/454>_)

4.4.0 (2024-10-27)

• Added proper checking for method signatures in protocol checks ([#465](https://github.com/agronholm/typeguard/issues/465) <https://github.com/agronholm/typeguard/pull/465>_)
• Fixed basic support for intersection protocols ([#490](https://github.com/agronholm/typeguard/issues/490) <https://github.com/agronholm/typeguard/pull/490>_; PR by @​antonagestam)

4.3.0 (2024-05-27)

• Added support for checking against static protocols
• Fixed some compatibility problems when running on Python 3.13 ([#460](https://github.com/agronholm/typeguard/issues/460) <https://github.com/agronholm/typeguard/issues/460>_; PR by @​JelleZijlstra)

... (truncated)

Commits

• 7f63619 Added release date
• 056a9a8 Fixed signature check raising ValueError for a built-in function
• 8559911 Switched to JSON output when running mypy
• 447ee40 Fixed checking of assignment expressions (#511)
• 95ef60d Fixes for Python 3.14 and PEP 649 (#492)
• f282802 Fixed TypeCheckError in unpacking assignment involving properties
• 91b0cbd [pre-commit.ci] pre-commit autoupdate (#505)
• b6a7e43 Removed changelog entry that was in fact not a user-facing change
• See full diff in compare view

Updates myst-parser from 4.0.0 to 4.0.1

Release notes

Sourced from myst-parser's releases.

v4.0.1

What's Changed

• 🔧 Minor fix for sphinx 8.2 compat by @​chrisjsewell in executablebooks/MyST-Parser#1013

• 🧪 Add CI testing support for Python 3.13 by @​hugovk in executablebooks/MyST-Parser#955

• 🔧 Fix type of MockIncludeDirective’s klass parameter by @​flying-sheep in executablebooks/MyST-Parser#975

• 📚 Fix typos discovered by codespell by @​cclauss in executablebooks/MyST-Parser#969

• 📚 remove redundant paragraph by @​Snoopy1866 in executablebooks/MyST-Parser#987

• 📚 Minor typo in cross-referencing.md by @​goekce in executablebooks/MyST-Parser#990

New Contributors

• @​cclauss made their first contribution in executablebooks/MyST-Parser#969
• @​flying-sheep made their first contribution in executablebooks/MyST-Parser#975
• @​Snoopy1866 made their first contribution in executablebooks/MyST-Parser#987
• @​goekce made their first contribution in executablebooks/MyST-Parser#990

Full Changelog: executablebooks/MyST-Parser@v4.0.0...v4.0.1

Changelog

Sourced from myst-parser's changelog.

4.0.1 - 2025-02-12

🔧 Minor fix for Sphinx 8.2 compatibility (in gh-pr:1013)

Commits

• 8a44f5d 🚀 Release v4.0.1 (#1022)
• fbb7f1d 🔧 Minor fix for sphinx 8.2 compat (#1013)
• 0437558 🔧 update pre-commit (#1006)
• b58737f ⬆️ Update pre-commit requirement from ~=3.0 to ~=4.0 (#982)
• f62025f [pre-commit.ci] pre-commit autoupdate (#986)
• 14ea197 📚 Minor typo in cross-referencing.md (#990)
• bc35794 📚 remove redundant paragraph (#987)
• 9fe724e 🧪 Fix tests for latest sphinx (#993)
• 59b5386 [pre-commit.ci] pre-commit autoupdate (#976)
• 6bcba98 🔧 Fix type of MockIncludeDirective’s klass parameter (#975)
• Additional commits viewable in compare view

Updates cryptography from 44.0.0 to 44.0.1

Changelog

Sourced from cryptography's changelog.

44.0.1 - 2025-02-11

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.1.
* We now build ``armv7l`` ``manylinux`` wheels and publish them to PyPI.
* We now build ``manylinux_2_34`` wheels and publish them to PyPI.
.. _v44-0-0:

Commits

• adaaaed Bump for 44.0.1 release (#12441)
• ccc61da [backport] test and build on armv7l (#12420) (#12431)
• See full diff in compare view

Updates numpy from 2.2.2 to 2.2.3

Release notes

Sourced from numpy's releases.

2.2.3 (Feb 13, 2025)

NumPy 2.2.3 Release Notes

NumPy 2.2.3 is a patch release that fixes bugs found after the 2.2.2 release. The majority of the changes are typing improvements and fixes for free threaded Python. Both of those areas are still under development, so if you discover new problems, please report them.

This release supports Python versions 3.10-3.13.

Contributors

A total of 9 people contributed to this release. People with a "+" by their names contributed a patch for the first time.

• !amotzop
• Charles Harris
• Chris Sidebottom
• Joren Hammudoglu
• Matthew Brett
• Nathan Goldbaum
• Raghuveer Devulapalli
• Sebastian Berg
• Yakov Danishevsky +

Pull requests merged

A total of 21 pull requests were merged for this release.

• #28185: MAINT: Prepare 2.2.x for further development
• #28201: BUG: fix data race in a more minimal way on stable branch
• #28208: BUG: Fix from_float_positional errors for huge pads
• #28209: BUG: fix data race in np.repeat
• #28212: MAINT: Use VQSORT_COMPILER_COMPATIBLE to determine if we should...
• #28224: MAINT: update highway to latest
• #28236: BUG: Add cpp atomic support (#28234)
• #28237: BLD: Compile fix for clang-cl on WoA
• #28243: TYP: Avoid upcasting float64 in the set-ops
• #28249: BLD: better fix for clang / ARM compiles
• #28266: TYP: Fix timedelta64.__divmod__ and timedelta64.__mod__...
• #28274: TYP: Fixed missing typing information of set_printoptions
• #28278: BUG: backport resource cleanup bugfix from gh-28273
• #28282: BUG: fix incorrect bytes to stringdtype coercion
• #28283: TYP: Fix scalar constructors
• #28284: TYP: stub numpy.matlib
• #28285: TYP: stub the missing numpy.testing modules
• #28286: CI: Fix the github label for TYP: PR's and issues
• #28305: TYP: Backport typing updates from main
• #28321: BUG: fix race initializing legacy dtype casts
• #28324: CI: update test_moderately_small_alpha

... (truncated)

Commits

• a274561 Merge pull request #28322 from charris/prepare-2.2.3
• 5ab0f71 REL: Prepare for the NumPy 2.2.3 release [wheel build]
• 010ad9b Merge pull request #28324 from charris/update-test_dirichlet_moderately_small...
• 6338746 CI: update test_moderately_small_alpha [wheel build]
• 56f8d5b Merge pull request #28321 from charris/backport-28290
• 48515a3 MAINT: Update some testing files from main
• 96ca7e3 MAINT: respond to code review
• c20ac88 MAINT: use a try/finally to make the deadlock protection more robust
• d494647 MAINT: fix indentation and clarify comment
• 3f8fbd6 MAINT: go back to try/except
• Additional commits viewable in compare view

Updates virtualenv from 20.29.1 to 20.29.2

Release notes

Sourced from virtualenv's releases.

20.29.2

What's Changed

• release 20.29.1 by @​gaborbernat in pypa/virtualenv#2828
• Remove old virtualenv wheel by @​gaborbernat in pypa/virtualenv#2842
• Bump pip to 25.0.1 by @​gaborbernat in pypa/virtualenv#2843

Full Changelog: pypa/virtualenv@20.29.1...20.29.2

Changelog

Sourced from virtualenv's changelog.

v20.29.2 (2025-02-10)

Bugfixes - 20.29.2

- Remove old virtualenv wheel from the source distribution - by :user:`gaborbernat`. (:issue:`2841`)
- Upgrade embedded wheel pip to ``25.0.1`` from ``24.3.1`` - by :user:`gaborbernat`. (:issue:`2843`)

Commits

• ca670cd release 20.29.2
• a2d2c3e Merge pull request #2843 from gaborbernat/bump-2-10
• 6203457 Merge pull request #2842 from gaborbernat/remove-whl
• d8a68e6 Bump pip to 25.0.1
• 7b8fde4 Remove old virtualenv wheel
• cb02b4f Merge pull request #2837 from pypa/pre-commit-ci-update-config
• 8332db8 [pre-commit.ci] pre-commit autoupdate
• 192cef7 [pre-commit.ci] pre-commit autoupdate (#2833)
• a6a5c45 [pre-commit.ci] pre-commit autoupdate (#2830)
• d409f6a release 20.29.1 (#2828)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions