chore(pip-dev)(deps-dev): bump setuptools from 73.0.1 to 74.0.0 #344

2024-08-28T17:49:57+02:00

dependabot[bot] commented

2024-08-28 17:49:57 +02:00

(Migrated from github.com)

Bumps setuptools from 73.0.1 to 74.0.0.

Changelog

v74.0.0

Features

Changed the type of error raised by setuptools.command.easy_install.CommandSpec.from_param on unsupported argument from AttributeError to TypeError -- by :user:Avasam (#4548)

Added detection of ARM64 variant of MSVC -- by :user:saschanaz (#4553)

Made setuptools.package_index.Credential a typing.NamedTuple -- by :user:Avasam (#4585)

Reraise error from setuptools.command.easy_install.auto_chmod instead of nonsensical TypeError: 'Exception' object is not subscriptable -- by :user:Avasam (#4593)

Fully typed all collection attributes in pkg_resources -- by :user:Avasam (#4598)

Automatically exclude .tox|.nox|.venv directories from sdist. (#4603)

Deprecations and Removals

Removed the monkeypatching of distutils._msvccompiler. Now all compiler logic is consolidated in distutils. (#4600)

Synced with pypa/distutils@58fe058e4, including consolidating Visual Studio 2017 support (#4600, pypa/distutils#289pypa/distutils#287#4606)

Misc

#4592

Commits

98ad794 Bump version: 73.0.1 → 74.0.0
b4fb917 Merge pull request #4600 from pypa/debt/msvc-monkey
18a44d8 Add news fragment.
5f8215d Merge pull request #4548 from Avasam/from_param-TypeError
6928048 Merge branch 'main' into debt/msvc-monkey
11a6b59 Merge pull request #4606 from pypa/distutils-58fe058e4
903604b Reraise sensible errors from auto_chmod (#4593)
8ec5b5a Add missing news fragment for PR 4603
e90dfd5 Exclude top-level .tox|.nox|.venv from sdist (#4603)
ef2957a Reraise sensible errors from auto_chmod
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [setuptools](https://github.com/pypa/setuptools) from 73.0.1 to 74.0.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pypa/setuptools/blob/main/NEWS.rst">setuptools's changelog</a>.</em></p> <blockquote> <h1>v74.0.0</h1> <h2>Features</h2> <ul> <li>Changed the type of error raised by <code>setuptools.command.easy_install.CommandSpec.from_param</code> on unsupported argument from <code>AttributeError</code> to <code>TypeError</code> -- by :user:<code>Avasam</code> (<a href="https://redirect.github.com/pypa/setuptools/issues/4548">#4548</a>)</li> <li>Added detection of ARM64 variant of MSVC -- by :user:<code>saschanaz</code> (<a href="https://redirect.github.com/pypa/setuptools/issues/4553">#4553</a>)</li> <li>Made <code>setuptools.package_index.Credential</code> a <code>typing.NamedTuple</code> -- by :user:<code>Avasam</code> (<a href="https://redirect.github.com/pypa/setuptools/issues/4585">#4585</a>)</li> <li>Reraise error from <code>setuptools.command.easy_install.auto_chmod</code> instead of nonsensical <code>TypeError: 'Exception' object is not subscriptable</code> -- by :user:<code>Avasam</code> (<a href="https://redirect.github.com/pypa/setuptools/issues/4593">#4593</a>)</li> <li>Fully typed all collection attributes in <code>pkg_resources</code> -- by :user:<code>Avasam</code> (<a href="https://redirect.github.com/pypa/setuptools/issues/4598">#4598</a>)</li> <li>Automatically exclude <code>.tox|.nox|.venv</code> directories from <code>sdist</code>. (<a href="https://redirect.github.com/pypa/setuptools/issues/4603">#4603</a>)</li> </ul> <h2>Deprecations and Removals</h2> <ul> <li>Removed the monkeypatching of distutils._msvccompiler. Now all compiler logic is consolidated in distutils. (<a href="https://redirect.github.com/pypa/setuptools/issues/4600">#4600</a>)</li> <li>Synced with pypa/distutils@58fe058e4, including consolidating Visual Studio 2017 support (<a href="https://redirect.github.com/pypa/setuptools/issues/4600">#4600</a>, <a href="https://redirect.github.com/pypa/distutils/issues/289">pypa/distutils#289</a><code>pypa/distutils#287</code><a href="https://redirect.github.com/pypa/setuptools/issues/4606">#4606</a>)</li> </ul> <h2>Misc</h2> <ul> <li><a href="https://redirect.github.com/pypa/setuptools/issues/4592">#4592</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/setuptools/commit/98ad794354efecf4ed1f629d4e5f02feae00d2ae"><code>98ad794</code></a> Bump version: 73.0.1 → 74.0.0</li> <li><a href="https://github.com/pypa/setuptools/commit/b4fb91796ba9f9473280a69a3c8213066e5bc107"><code>b4fb917</code></a> Merge pull request <a href="https://redirect.github.com/pypa/setuptools/issues/4600">#4600</a> from pypa/debt/msvc-monkey</li> <li><a href="https://github.com/pypa/setuptools/commit/18a44d8f5660df9e23ee823a073b2d3238bc8293"><code>18a44d8</code></a> Add news fragment.</li> <li><a href="https://github.com/pypa/setuptools/commit/5f8215d9888cb555d2a206635f0f59421cc4afa9"><code>5f8215d</code></a> Merge pull request <a href="https://redirect.github.com/pypa/setuptools/issues/4548">#4548</a> from Avasam/from_param-TypeError</li> <li><a href="https://github.com/pypa/setuptools/commit/6928048a3c52370363fa47e7c2b9496ff0de0f79"><code>6928048</code></a> Merge branch 'main' into debt/msvc-monkey</li> <li><a href="https://github.com/pypa/setuptools/commit/11a6b596ed1453407061b3e57da04bd49c0adb91"><code>11a6b59</code></a> Merge pull request <a href="https://redirect.github.com/pypa/setuptools/issues/4606">#4606</a> from pypa/distutils-58fe058e4</li> <li><a href="https://github.com/pypa/setuptools/commit/903604bb3a648a26ce268753f6f05ce049336e5c"><code>903604b</code></a> Reraise sensible errors from auto_chmod (<a href="https://redirect.github.com/pypa/setuptools/issues/4593">#4593</a>)</li> <li><a href="https://github.com/pypa/setuptools/commit/8ec5b5aeef7a6cd80ca8c3291ad66acc3986069b"><code>8ec5b5a</code></a> Add missing news fragment for PR 4603</li> <li><a href="https://github.com/pypa/setuptools/commit/e90dfd568eef9dde8aa69a8a0ec1a7e692c532c8"><code>e90dfd5</code></a> Exclude top-level <code>.tox|.nox|.venv</code> from sdist (<a href="https://redirect.github.com/pypa/setuptools/issues/4603">#4603</a>)</li> <li><a href="https://github.com/pypa/setuptools/commit/ef2957a952244e4dfd179d29e1eaaa2cd83a1e26"><code>ef2957a</code></a> Reraise sensible errors from auto_chmod</li> <li>Additional commits viewable in <a href="https://github.com/pypa/setuptools/compare/v73.0.1...v74.0.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=73.0.1&new-version=74.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>

luketainton (Migrated from github.com) reviewed 2024-08-28 17:49:57 +02:00

sonarqubecloud[bot] commented

2024-08-28 17:51:19 +02:00

(Migrated from github.com)

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

## [![Quality Gate Passed](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/checks/QualityGateBadge/qg-passed-20px.png 'Quality Gate Passed')](https://sonarcloud.io/dashboard?id=luketainton_webexmemebot&pullRequest=344) **Quality Gate passed** Issues ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0 New issues](https://sonarcloud.io/project/issues?id=luketainton_webexmemebot&pullRequest=344&issueStatuses=OPEN,CONFIRMED&sinceLeakPeriod=true) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/accepted-16px.png '') [0 Accepted issues](https://sonarcloud.io/project/issues?id=luketainton_webexmemebot&pullRequest=344&issueStatuses=ACCEPTED) Measures ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0 Security Hotspots](https://sonarcloud.io/project/security_hotspots?id=luketainton_webexmemebot&pullRequest=344&issueStatuses=OPEN,CONFIRMED&sinceLeakPeriod=true) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0.0% Coverage on New Code](https://sonarcloud.io/component_measures?id=luketainton_webexmemebot&pullRequest=344&metric=new_coverage&view=list) ![](https://sonarsource.github.io/sonarcloud-github-static-resources/v2/common/passed-16px.png '') [0.0% Duplication on New Code](https://sonarcloud.io/component_measures?id=luketainton_webexmemebot&pullRequest=344&metric=new_duplicated_lines_density&view=list) [See analysis details on SonarCloud](https://sonarcloud.io/dashboard?id=luketainton_webexmemebot&pullRequest=344)

Sign in to join this conversation.

No reviewers

luketainton