From 0ed8e1d6f6d56b6292132f2223a7c0f26eaa2bc9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Apr 2025 11:40:21 +0000
Subject: [PATCH 1/3] Bump identify from 2.6.9 to 2.6.10 (#10777)

Bumps [identify](https://github.com/pre-commit/identify) from 2.6.9 to
2.6.10.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pre-commit/identify/commit/e200468dd1b921e75a300545bd1e28abe1d5985c"><code>e200468</code></a>
v2.6.10</li>
<li><a
href="https://github.com/pre-commit/identify/commit/41f40e2b7e0e9e0a25b0d74dbff14086c816147a"><code>41f40e2</code></a>
Merge pull request <a
href="https://redirect.github.com/pre-commit/identify/issues/517">#517</a>
from sebastiaanspeck/patch-1</li>
<li><a
href="https://github.com/pre-commit/identify/commit/2ae839d33d6094bea9a26b1deea975a135d13bf3"><code>2ae839d</code></a>
Add support for Magik</li>
<li><a
href="https://github.com/pre-commit/identify/commit/dc20df20bda102dc74ca8531465bfcd20a7f26bf"><code>dc20df2</code></a>
Merge pull request <a
href="https://redirect.github.com/pre-commit/identify/issues/516">#516</a>
from pre-commit/pre-commit-ci-update-config</li>
<li><a
href="https://github.com/pre-commit/identify/commit/cba874fadf0f8c032853fff8762ac4caeb551056"><code>cba874f</code></a>
[pre-commit.ci] auto fixes from pre-commit.com hooks</li>
<li><a
href="https://github.com/pre-commit/identify/commit/e839dfb32782ec1248840f7eeb47dc3495a99e72"><code>e839dfb</code></a>
[pre-commit.ci] pre-commit autoupdate</li>
<li>See full diff in <a
href="https://github.com/pre-commit/identify/compare/v2.6.9...v2.6.10">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=identify&package-manager=pip&previous-version=2.6.9&new-version=2.6.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 003ddb2018c..56414801881 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -86,7 +86,7 @@ gidgethub==5.3.0
     # via cherry-picker
 gunicorn==23.0.0
     # via -r requirements/base.in
-identify==2.6.9
+identify==2.6.10
     # via pre-commit
 idna==3.6
     # via
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 891638a1ebd..78a9cfa106e 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -84,7 +84,7 @@ gidgethub==5.3.0
     # via cherry-picker
 gunicorn==23.0.0
     # via -r requirements/base.in
-identify==2.6.9
+identify==2.6.10
     # via pre-commit
 idna==3.6
     # via
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 1b9c8849163..65de7a153b5 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -33,7 +33,7 @@ forbiddenfruit==0.1.4
     # via blockbuster
 freezegun==1.5.1
     # via -r requirements/lint.in
-identify==2.6.9
+identify==2.6.10
     # via pre-commit
 idna==3.7
     # via trustme

From 80ad5ab5831f6a048f7383a8e6e2e0e7d3c08e9a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Apr 2025 12:06:37 +0000
Subject: [PATCH 2/3] Bump setuptools from 78.1.0 to 79.0.0 (#10779)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [setuptools](https://github.com/pypa/setuptools) from 78.1.0 to
79.0.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/setuptools/blob/main/NEWS.rst">setuptools's
changelog</a>.</em></p>
<blockquote>
<h1>v79.0.0</h1>
<h2>Deprecations and Removals</h2>
<ul>
<li>Removed support for 'legacy-editable' installs. (<a
href="https://redirect.github.com/pypa/setuptools/issues/917">#917</a>)</li>
</ul>
<h1>v78.1.1</h1>
<h2>Bugfixes</h2>
<ul>
<li>More fully sanitized the filename in PackageIndex._download. (<a
href="https://redirect.github.com/pypa/setuptools/issues/4946">#4946</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/setuptools/commit/56962ec38bb53e1681de00dc5dc5b2e96b1b02b8"><code>56962ec</code></a>
Bump version: 78.1.1 → 79.0.0</li>
<li><a
href="https://github.com/pypa/setuptools/commit/b137521018b68c9900b25af5c6ab44491bbf843c"><code>b137521</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/setuptools/issues/4953">#4953</a>
from pypa/debt/917/remove-legacy-editable</li>
<li><a
href="https://github.com/pypa/setuptools/commit/f89e652a79ecd4afbb71eabaf04a6709e11a4d5a"><code>f89e652</code></a>
Removed support for the 'legacy-editable' feature.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/8e4868a036b7fae3208d16cb4e5fe6d63c3752df"><code>8e4868a</code></a>
Bump version: 78.1.0 → 78.1.1</li>
<li><a
href="https://github.com/pypa/setuptools/commit/100e9a61ad24d5a147ada57357425a8d40626d09"><code>100e9a6</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/setuptools/issues/4951">#4951</a></li>
<li><a
href="https://github.com/pypa/setuptools/commit/8faf1d7e0ca309983252e4f21837b73ee12e960f"><code>8faf1d7</code></a>
Add news fragment.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/2ca4a9fe4758fcd39d771d3d3a5b4840aacebdf7"><code>2ca4a9f</code></a>
Rely on re.sub to perform the decision in one expression.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/e409e8002932f2b86aae7b1abc8f8c2ebf96df2c"><code>e409e80</code></a>
Extract _sanitize method for sanitizing the filename.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/250a6d17978f9f6ac3ac887091f2d32886fbbb0b"><code>250a6d1</code></a>
Add a check to ensure the name resolves relative to the tmpdir.</li>
<li><a
href="https://github.com/pypa/setuptools/commit/d8390feaa99091d1ba9626bec0e4ba7072fc507a"><code>d8390fe</code></a>
Extract _resolve_download_filename with test.</li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/setuptools/compare/v78.1.0...v79.0.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=78.1.0&new-version=79.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt  | 2 +-
 requirements/dev.txt          | 2 +-
 requirements/doc-spelling.txt | 2 +-
 requirements/doc.txt          | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 56414801881..fcea4602f70 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -296,7 +296,7 @@ zlib-ng==0.5.1
 # The following packages are considered to be unsafe in a requirements file:
 pip==25.0.1
     # via pip-tools
-setuptools==78.1.0
+setuptools==79.0.0
     # via
     #   incremental
     #   pip-tools
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 78a9cfa106e..87177207812 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -287,7 +287,7 @@ zlib-ng==0.5.1
 # The following packages are considered to be unsafe in a requirements file:
 pip==25.0.1
     # via pip-tools
-setuptools==78.1.0
+setuptools==79.0.0
     # via
     #   incremental
     #   pip-tools
diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt
index f8e609e1b0c..afd6d19eb80 100644
--- a/requirements/doc-spelling.txt
+++ b/requirements/doc-spelling.txt
@@ -76,5 +76,5 @@ urllib3==2.4.0
     # via requests
 
 # The following packages are considered to be unsafe in a requirements file:
-setuptools==78.1.0
+setuptools==79.0.0
     # via incremental
diff --git a/requirements/doc.txt b/requirements/doc.txt
index d25cb572551..383bc2359bd 100644
--- a/requirements/doc.txt
+++ b/requirements/doc.txt
@@ -69,5 +69,5 @@ urllib3==2.4.0
     # via requests
 
 # The following packages are considered to be unsafe in a requirements file:
-setuptools==78.1.0
+setuptools==79.0.0
     # via incremental

From f904825b818be0792f93ef9c43d07bcc687a6711 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Apr 2025 12:42:17 +0000
Subject: [PATCH 3/3] Bump packaging from 24.2 to 25.0 (#10784)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [packaging](https://github.com/pypa/packaging) from 24.2 to 25.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/packaging/releases">packaging's
releases</a>.</em></p>
<blockquote>
<h2>25.0</h2>
<h2>What's Changed</h2>
<ul>
<li>Re-add a test for Unicode file name parsing by <a
href="https://github.com/Siddhesh-Agarwal"><code>@​Siddhesh-Agarwal</code></a>
in <a
href="https://redirect.github.com/pypa/packaging/pull/863">pypa/packaging#863</a></li>
<li>Upgrade to ruff 0.9.1 by <a
href="https://github.com/DimitriPapadopoulos"><code>@​DimitriPapadopoulos</code></a>
in <a
href="https://redirect.github.com/pypa/packaging/pull/865">pypa/packaging#865</a></li>
<li>Add support for PEP 738 Android tags by <a
href="https://github.com/mhsmith"><code>@​mhsmith</code></a> in <a
href="https://redirect.github.com/pypa/packaging/pull/880">pypa/packaging#880</a></li>
<li>feat(markers): support 'extras' and 'dependency_groups' markers by
<a href="https://github.com/frostming"><code>@​frostming</code></a> in
<a
href="https://redirect.github.com/pypa/packaging/pull/888">pypa/packaging#888</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/Siddhesh-Agarwal"><code>@​Siddhesh-Agarwal</code></a>
made their first contribution in <a
href="https://redirect.github.com/pypa/packaging/pull/863">pypa/packaging#863</a></li>
<li><a href="https://github.com/mhsmith"><code>@​mhsmith</code></a> made
their first contribution in <a
href="https://redirect.github.com/pypa/packaging/pull/880">pypa/packaging#880</a></li>
<li><a href="https://github.com/frostming"><code>@​frostming</code></a>
made their first contribution in <a
href="https://redirect.github.com/pypa/packaging/pull/888">pypa/packaging#888</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/pypa/packaging/compare/24.2...25.0">https://github.com/pypa/packaging/compare/24.2...25.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/packaging/blob/main/CHANGELOG.rst">packaging's
changelog</a>.</em></p>
<blockquote>
<p>25.0 - 2025-04-19</p>
<pre><code>
* PEP 751: Add support for ``extras`` and ``dependency_groups`` markers.
(:issue:`885`)
* PEP 738: Add support for Android platform tags. (:issue:`880`)
</code></pre>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/packaging/commit/f58537628042c7f29780b9d33f31597e7fc9d664"><code>f585376</code></a>
Bump for release</li>
<li><a
href="https://github.com/pypa/packaging/commit/600ecea15b2388037b8dc94883504ca612947576"><code>600ecea</code></a>
Add changelog entries</li>
<li><a
href="https://github.com/pypa/packaging/commit/3910129009b25dd1aa1fe32e644bc891188c56fe"><code>3910129</code></a>
support 'extras' and 'dependency_groups' markers (<a
href="https://redirect.github.com/pypa/packaging/issues/888">#888</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/8e49b4373731bffb110c9583e64ad802cb67c7ea"><code>8e49b43</code></a>
Add support for PEP 738 Android tags (<a
href="https://redirect.github.com/pypa/packaging/issues/880">#880</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/e624d8edfaa28865de7b5a7da8bd59fd410e5331"><code>e624d8e</code></a>
Bump the github-actions group with 3 updates (<a
href="https://redirect.github.com/pypa/packaging/issues/886">#886</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/71f38d872a6e88b28da9d1b270f8512475bc90d4"><code>71f38d8</code></a>
Bump the github-actions group with 2 updates (<a
href="https://redirect.github.com/pypa/packaging/issues/878">#878</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/9b4922dd3c26c8522d716bec79d7e0ed408631c1"><code>9b4922d</code></a>
Bump the github-actions group with 3 updates (<a
href="https://redirect.github.com/pypa/packaging/issues/870">#870</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/8510bd9d3bab5571974202ec85f6ef7b0359bfaf"><code>8510bd9</code></a>
Upgrade to ruff 0.9.1 (<a
href="https://redirect.github.com/pypa/packaging/issues/865">#865</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/9375ec2eff48257967c97d331b9a76019e95bdb0"><code>9375ec2</code></a>
Re-add tests for Unicode file name parsing (<a
href="https://redirect.github.com/pypa/packaging/issues/863">#863</a>)</li>
<li><a
href="https://github.com/pypa/packaging/commit/2256ed4ac261309a09daa04cc801abd7cff2e6f0"><code>2256ed4</code></a>
Bump the github-actions group across 1 directory with 2 updates (<a
href="https://redirect.github.com/pypa/packaging/issues/864">#864</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/packaging/compare/24.2...25.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=packaging&package-manager=pip&previous-version=24.2&new-version=25.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/base.txt         | 2 +-
 requirements/constraints.txt  | 2 +-
 requirements/dev.txt          | 2 +-
 requirements/doc-spelling.txt | 2 +-
 requirements/doc.txt          | 2 +-
 requirements/lint.txt         | 2 +-
 requirements/test.txt         | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/requirements/base.txt b/requirements/base.txt
index 3ee6eae233f..433d2b6a72e 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -28,7 +28,7 @@ multidict==6.4.3
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
-packaging==24.2
+packaging==25.0
     # via gunicorn
 propcache==0.3.1
     # via
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index fcea4602f70..90f58621bab 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -126,7 +126,7 @@ mypy-extensions==1.0.0
     # via mypy
 nodeenv==1.9.1
     # via pre-commit
-packaging==24.2
+packaging==25.0
     # via
     #   build
     #   gunicorn
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 87177207812..7b683287ef8 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -123,7 +123,7 @@ mypy-extensions==1.0.0
     # via mypy
 nodeenv==1.9.1
     # via pre-commit
-packaging==24.2
+packaging==25.0
     # via
     #   build
     #   gunicorn
diff --git a/requirements/doc-spelling.txt b/requirements/doc-spelling.txt
index afd6d19eb80..041d58dab57 100644
--- a/requirements/doc-spelling.txt
+++ b/requirements/doc-spelling.txt
@@ -30,7 +30,7 @@ jinja2==3.1.6
     #   towncrier
 markupsafe==3.0.2
     # via jinja2
-packaging==24.2
+packaging==25.0
     # via sphinx
 pyenchant==3.2.2
     # via sphinxcontrib-spelling
diff --git a/requirements/doc.txt b/requirements/doc.txt
index 383bc2359bd..0a39991a9f4 100644
--- a/requirements/doc.txt
+++ b/requirements/doc.txt
@@ -30,7 +30,7 @@ jinja2==3.1.6
     #   towncrier
 markupsafe==3.0.2
     # via jinja2
-packaging==24.2
+packaging==25.0
     # via sphinx
 pygments==2.19.1
     # via sphinx
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 65de7a153b5..ef141dee226 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -51,7 +51,7 @@ mypy-extensions==1.0.0
     # via mypy
 nodeenv==1.9.1
     # via pre-commit
-packaging==24.2
+packaging==25.0
     # via pytest
 platformdirs==4.3.7
     # via virtualenv
diff --git a/requirements/test.txt b/requirements/test.txt
index 3b4b8aa76eb..c8399e1a8c6 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -65,7 +65,7 @@ mypy==1.15.0 ; implementation_name == "cpython"
     # via -r requirements/test.in
 mypy-extensions==1.0.0
     # via mypy
-packaging==24.2
+packaging==25.0
     # via
     #   gunicorn
     #   pytest