chore(deps): bump the all group across 1 directory with 6 updates

[dependabot]

Bumps the all group with 6 updates in the / directory:

Package	From	To
infrahub-sdk	1.0.1	1.1.0
pytest	8.3.3	8.3.4
hypothesis	6.119.3	6.122.1
bandit	1.7.10	1.8.0
antsibull-docs	2.16.0	2.16.1
ruff	0.7.4	0.8.1

Updates infrahub-sdk from 1.0.1 to 1.1.0

Release notes

Sourced from infrahub-sdk's releases.

Infrahub - v1.1.0b1

Release 1.1.0 Beta 1

This is a preview release of Infrahub v1.1.0.

This release contains both new features and bug-fixes to resolve issues found in Infrahub v1.0.7 and prior.

Main changes

The complete list of changes can always be found in the CHANGELOG.md file in the Infrahub Git repository.

Removed

• Remove at parameter from GraphQL mutate functions (#3587)
• Remove the "role" attribute of base schema account node
  • This attribute was no longer useful as roles are defined as dedicated nodes and are tightly related to permissions
• Remove the /api/diff/data and /api/diff/schema endpoints that have been replaced by the DiffTree GraphQL query

Added

• Add a "deprecation" property to attribute and relationship schema in order to allow users to identify deprecated fields for nodes and provide a user-friendly message about the deprecation reasons (#4245)
• Add ability to use node HFID to create a related node on a generic relationship (#4649)

Fixed

• Fix search anywhere so it looks at Groups (#3173)
• Loosened up logic to determine when an artifact needs to be regenerated during a proposed change. This is to ensure that we always generate a new artifact if required. Until some other sections are refactored this will also mean that Infrahub will generate artifacts in a few situations where it's not strictly required. This last part is a temporary solution. (#4198)
• Use the repository object ID as name for its git working copy directory (#4296)
• Search anywhere now supports IPv6 extended format (#4613)
• Synchronise git repository clones and updates for task workers in order to remove the need for a shared storage (#4789)
• Remove Profile in registry for renamed schema nodes (#4909)
• Forbid changing the "optional" property of an inherited attribute to not break GraphQL schema generation (#4936)
• Add support for irresolvable conflicts to the diff logic and DiffTree GraphQL query
• Fix a bug that prevented updating a relationship during a merge if ONLY the metadata was updated and not the peer
• Fix permission check when using multiple backends, if one grants a permission the next ones must not be queried
• Update the api/diff/artifacts endpoint to use a dedicated query

Migration guide

The process to migrate your instance of Infrahub to the latest version may vary depending on your deployment of Infrahub. However, at a high-level, it will involve getting the latest version of the Infrahub code, and then performing any needed Database Migrations and Schema updates.

Please ensure you have a backup of your Infrahub environment prior to attempting any migration or upgrade activities.

Migration of an Infrahub instance

First, update the Infrahub version running in your environment.

Below are some example ways to get the latest version of Infrahub in your environment.

... (truncated)

Changelog

Sourced from infrahub-sdk's changelog.

1.1.0 - 2024-11-29

Removed

• Remove at parameter from GraphQL mutate functions (#3587)
• Remove the "role" attribute of base schema account node
  • This attribute was no longer useful as roles are defined as dedicated nodes and are tightly related to permissions
• Remove the /api/diff/data and /api/diff/schema endpoints that have been replaced by the DiffTree GraphQL query

Added

• Add a "deprecation" property to attribute and relationship schema in order to allow users to identify deprecated fields for nodes and provide a user-friendly message about the deprecation reasons (#4245)
• Add ability to use node HFID to create a related node on a generic relationship (#4649)

Fixed

• Fix search anywhere so it looks at Groups (#3173)
• Loosened up logic to determine when an artifact needs to be regenerated during a proposed change. This is to ensure that we always generate a new artifact if required. Until some other sections are refactored this will also mean that Infrahub will generate artifacts in a few situations where it's not strictly required. This last part is a temporary solution. (#4198)
• Use the repository object ID as name for its git working copy directory (#4296)
• Search anywhere now supports IPv6 extended format (#4613)
• Synchronise git repository clones and updates for task workers in order to remove the need for a shared storage (#4789)
• Remove Profile in registry for renamed schema nodes (#4909)
• Forbid changing the "optional" property of an inherited attribute to not break GraphQL schema generation (#4936)
• Add support for irresolvable conflicts to the diff logic and DiffTree GraphQL query
• Fix a bug that prevented updating a relationship during a merge if ONLY the metadata was updated and not the peer
• Fix permission check when using multiple backends, if one grants a permission the next ones must not be queried
• Update the api/diff/artifacts endpoint to use a dedicated query

1.0.7 - 2024-11-20

Fixed

• Fix permission issue with Repository management (#4976)
• Fix bug that prevented setting an attribute to NULL as part of a merge (#4996)
• Fix a bug in the query to delete a relationship that could create unnecessary "deleted" edges on the database
• Fix bug in incremental diff addition for nodes within a hierarchy

1.0.6 - 2024-11-18

Fixed

• Forbid changing the "optional" property of an inherited attribute to not break GraphQL schema generation (#4936)
• Permission edit_default_branch is now enforced properly when loading a schema (#4958)
• Session is now correctly cleared when logging out from the web UI (#4962)
• Anonymous user will get a 401 response when trying to load a schema

1.0.5 - 2024-11-15

Fixed

... (truncated)

Commits

• See full diff in compare view

Updates pytest from 8.3.3 to 8.3.4

Release notes

Sourced from pytest's releases.

8.3.4

pytest 8.3.4 (2024-12-01)

Bug fixes

• #12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

• #12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

• #12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

• #9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

• #10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

• #10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

• #12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

• #12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

• #12497: Fixed two failing pdb-related tests on Python 3.13.

Commits

• 53f8b4e Update pypa/gh-action-pypi-publish to v1.12.2
• 98dff36 Prepare release version 8.3.4
• 1b474e2 approx: use exact comparison for bool (#13013)
• b541721 docs: Fix wrong statement about sys.modules with importlib import mode (#1298...
• 16cb87b pytest.fail: fix ANSI escape codes for colored output (#12959) (#12990)
• be6bc81 Issue #12966 Clarify filterwarnings docs on precedence when using multiple ma...
• 7aeb72b Improve docs on basetemp and retention (#12912) (#12928)
• c875841 Merge pull request #12917 from pytest-dev/patchback/backports/8.3.x/ded1f44e5...
• 6502816 Merge pull request #12913 from jakkdl/dontfailonbadpath
• 52135b0 Merge pull request #12885 from The-Compiler/pdb-py311 (#12887)
• Additional commits viewable in compare view

Updates hypothesis from 6.119.3 to 6.122.1

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.122.1

Fix "from_type()" on "collections.abc.Callable" returning "None".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.122.0

This release adds ".span_start()" and ".span_end()" methods to our internal "PrimitiveProvider" interface, for use by Alternative backends for Hypothesis.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.121.2

This patch updates our autoformatting tools, improving our code style without any API changes.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.121.1

This release brings back the old representation of "hypothesis.stateful.Bundle", reverting most changes of PR #4124.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.121.0

This release adds "BackgroundWriteDatabase", a new database backend which defers writes on the wrapped database to a background thread. This allows for low-overhead writes in performance-critical environments like fuzz_one_input.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.120.0

• This release changes our input distribution for low "max_examples". Previously, we capped the size of inputs when generating at least the first 10 inputs, with the reasoning that early inputs to a property should be small. However, this meant properties with "max_examples=10" would consistent entirely of small inputs. This patch removes the hard lower bound so that inputs to these properties are more representative of the input space.

• When a user requests an interactive input via "strategy.example", we generate and cache a batch of 100 inputs, returning the first one. This can be expensive for large strategies or when only a few examples are needed. This release improves the speed of "strategy.example" by lowering the batch size to 10.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.119.4

... (truncated)

Commits

• 5065f13 Bump hypothesis-python version to 6.122.1 and update changelog
• 40d943c Merge pull request #4193 from HypothesisWorks/issue-4192
• e4c4248 Update hypothesis-python/RELEASE.rst
• 1560b22 Fix from_type failure on collections.abc.Callable[..., None]
• fa0d158 Bump hypothesis-python version to 6.122.0 and update changelog
• 1e91394 Merge pull request #4164 from Zac-HD/report-spans
• 690520e Bump hypothesis-python version to 6.121.2 and update changelog
• 58145cb Merge pull request #4178 from HypothesisWorks/create-pull-request/patch
• a6e697d tweak pinning code
• afc1d07 remove flaky cache
• Additional commits viewable in compare view

Updates bandit from 1.7.10 to 1.8.0

Release notes

Sourced from bandit's releases.

1.8.0

What's Changed

• Bump docker/build-push-action from 6.7.0 to 6.9.0 by @​dependabot in PyCQA/bandit#1178
• Rename doc file to match proper bandit ID by @​ericwb in PyCQA/bandit#1183
• Removal of Python 3.8 support by @​ericwb in PyCQA/bandit#1174
• Add more insecure cryptography cipher algorithms by @​ericwb in PyCQA/bandit#1185
• Bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @​dependabot in PyCQA/bandit#1186
• Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @​dependabot in PyCQA/bandit#1187
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1162
• No need to check httpx client without timeout defined by @​ericwb in PyCQA/bandit#1177
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1191
• Mark Python 3.13 as officially supported by @​ericwb in PyCQA/bandit#1192
• Update project urls with added links by @​ericwb in PyCQA/bandit#1193
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1196
• Add a JSON to seek funding from the FLOSS/fund by @​ericwb in PyCQA/bandit#1194
• Remove Sentry as a sponsor by @​ericwb in PyCQA/bandit#1198
• Remove more leftover OpenStack references by @​ericwb in PyCQA/bandit#1195

Full Changelog: PyCQA/bandit@1.7.10...1.8.0

Commits

• 8fd258a Remove more leftover OpenStack references (#1195)
• a19b072 Remove Sentry as a sponsor (#1198)
• 48e0258 Add a JSON to seek funding from the FLOSS/fund (#1194)
• 5300a21 [pre-commit.ci] pre-commit autoupdate (#1196)
• 0b249d9 Update project urls with added links (#1193)
• 4be653d Mark Python 3.13 as officially supported (#1192)
• 8e6dc1b [pre-commit.ci] pre-commit autoupdate (#1191)
• 071386b No need to check httpx client without timeout defined (#1177)
• 9b4d480 [pre-commit.ci] pre-commit autoupdate (#1162)
• ddf9b48 Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 (#1187)
• Additional commits viewable in compare view

Updates antsibull-docs from 2.16.0 to 2.16.1

Release notes

Sourced from antsibull-docs's releases.

2.16.1

Release Summary

Bugfix release.

Bugfixes

• Also consider action plugin redirects/deprecations in runtime metadata for modules, since for users there is no difference. Also ansible.builtin.yum only has a action plugin redirect to ansible.builtin.dnf, so this is needed to ensure that a stub page generated for ansible.builtin.yum (ansible-community/antsibull-docs#360).

Changelog

Sourced from antsibull-docs's changelog.

v2.16.1

Release Summary

Bugfix release.

Bugfixes

• Also consider action plugin redirects/deprecations in runtime metadata for modules, since for users there is no difference. Also ansible.builtin.yum only has a action plugin redirect to ansible.builtin.dnf, so this is needed to ensure that a stub page generated for ansible.builtin.yum (ansible-community/antsibull-docs#360).

Commits

• ef0cb8c Release 2.16.1.
• d19d132 Prepare 2.16.1.
• 76fac5e Update test fixtures.
• 01a5e90 Consider action plugin redirects (#360)
• 7e0e20e Update all JavaScript dependencies. (#359)
• 5c22e5f Bump sass from 1.80.6 to 1.81.0 in /src/sphinx_antsibull_ext/css (#358)
• 5a1369b Bump postcss from 8.4.48 to 8.4.49 in /src/sphinx_antsibull_ext/css (#357)
• a9f7564 Bump codecov/codecov-action from 4 to 5 (#356)
• 639d058 Post-release version bump.
• See full diff in compare view

Updates ruff from 0.7.4 to 0.8.1

Release notes

Sourced from ruff's releases.

0.8.1

Release Notes

Preview features

• Formatter: Avoid invalid syntax for format-spec with quotes for all Python versions (#14625)
• Formatter: Consider quotes inside format-specs when choosing the quotes for an f-string (#14493)
• Formatter: Do not consider f-strings with escaped newlines as multiline (#14624)
• Formatter: Fix f-string formatting in assignment statement (#14454)
• Formatter: Fix unnecessary space around power operator (**) in overlong f-string expressions (#14489)
• [airflow] Avoid implicit schedule argument to DAG and @dag (AIR301) (#14581)
• [flake8-builtins] Exempt private built-in modules (A005) (#14505)
• [flake8-pytest-style] Fix pytest.mark.parametrize rules to check calls instead of decorators (#14515)
• [flake8-type-checking] Implement runtime-cast-value (TC006) (#14511)
• [flake8-type-checking] Implement unquoted-type-alias (TC007) and quoted-type-alias (TC008) (#12927)
• [flake8-use-pathlib] Recommend Path.iterdir() over os.listdir() (PTH208) (#14509)
• [pylint] Extend invalid-envvar-default to detect os.environ.get (PLW1508) (#14512)
• [pylint] Implement len-test (PLC1802) (#14309)
• [refurb] Fix bug where methods defined using lambdas were flagged by FURB118 (#14639)
• [ruff] Auto-add r prefix when string has no backslashes for unraw-re-pattern (RUF039) (#14536)
• [ruff] Implement invalid-assert-message-literal-argument (RUF040) (#14488)
• [ruff] Implement unnecessary-nested-literal (RUF041) (#14323)
• [ruff] Implement unnecessary-regular-expression (RUF055) (#14659)

Rule changes

• Ignore more rules for stub files (#14541)
• [pep8-naming] Eliminate false positives for single-letter names (N811, N814) (#14584)
• [pyflakes] Avoid false positives in @no_type_check contexts (F821, F722) (#14615)
• [ruff] Detect redirected-noqa in file-level comments (RUF101) (#14635)
• [ruff] Mark fixes for unsorted-dunder-all and unsorted-dunder-slots as unsafe when there are complex comments in the sequence (RUF022, RUF023) (#14560)

Bug fixes

• Avoid fixing code to None | None for redundant-none-literal (PYI061) and never-union (RUF020) (#14583, #14589)
• [flake8-bugbear] Fix mutable-contextvar-default to resolve annotated function calls properly (B039) (#14532)
• [flake8-pyi, ruff] Fix traversal of nested literals and unions (PYI016, PYI051, PYI055, PYI062, RUF041) (#14641)
• [flake8-pyi] Avoid rewriting invalid type expressions in unnecessary-type-union (PYI055) (#14660)
• [flake8-type-checking] Avoid syntax errors and type checking problem for quoted annotations autofix (TC003, TC006) (#14634)
• [pylint] Do not wrap function calls in parentheses in the fix for unnecessary-dunder-call (PLC2801) (#14601)
• [ruff] Handle attrs's auto_attribs correctly (RUF009) (#14520)

Contributors

• @​AlexWaygood
• @​Daverball
• @​Glyphack
• @​InSyncWithFoo
• @​Lokejoke
• @​MichaReiser
• @​cake-monotone

... (truncated)

Changelog

Sourced from ruff's changelog.

0.8.1

Preview features

• Formatter: Avoid invalid syntax for format-spec with quotes for all Python versions (#14625)
• Formatter: Consider quotes inside format-specs when choosing the quotes for an f-string (#14493)
• Formatter: Do not consider f-strings with escaped newlines as multiline (#14624)
• Formatter: Fix f-string formatting in assignment statement (#14454)
• Formatter: Fix unnecessary space around power operator (**) in overlong f-string expressions (#14489)
• [airflow] Avoid implicit schedule argument to DAG and @dag (AIR301) (#14581)
• [flake8-builtins] Exempt private built-in modules (A005) (#14505)
• [flake8-pytest-style] Fix pytest.mark.parametrize rules to check calls instead of decorators (#14515)
• [flake8-type-checking] Implement runtime-cast-value (TC006) (#14511)
• [flake8-type-checking] Implement unquoted-type-alias (TC007) and quoted-type-alias (TC008) (#12927)
• [flake8-use-pathlib] Recommend Path.iterdir() over os.listdir() (PTH208) (#14509)
• [pylint] Extend invalid-envvar-default to detect os.environ.get (PLW1508) (#14512)
• [pylint] Implement len-test (PLC1802) (#14309)
• [refurb] Fix bug where methods defined using lambdas were flagged by FURB118 (#14639)
• [ruff] Auto-add r prefix when string has no backslashes for unraw-re-pattern (RUF039) (#14536)
• [ruff] Implement invalid-assert-message-literal-argument (RUF040) (#14488)
• [ruff] Implement unnecessary-nested-literal (RUF041) (#14323)
• [ruff] Implement unnecessary-regular-expression (RUF055) (#14659)

Rule changes

• Ignore more rules for stub files (#14541)
• [pep8-naming] Eliminate false positives for single-letter names (N811, N814) (#14584)
• [pyflakes] Avoid false positives in @no_type_check contexts (F821, F722) (#14615)
• [ruff] Detect redirected-noqa in file-level comments (RUF101) (#14635)
• [ruff] Mark fixes for unsorted-dunder-all and unsorted-dunder-slots as unsafe when there are complex comments in the sequence (RUF022, RUF023) (#14560)

Bug fixes

• Avoid fixing code to None | None for redundant-none-literal (PYI061) and never-union (RUF020) (#14583, #14589)
• [flake8-bugbear] Fix mutable-contextvar-default to resolve annotated function calls properly (B039) (#14532)
• [flake8-pyi, ruff] Fix traversal of nested literals and unions (PYI016, PYI051, PYI055, PYI062, RUF041) (#14641)
• [flake8-pyi] Avoid rewriting invalid type expressions in unnecessary-type-union (PYI055) (#14660)
• [flake8-type-checking] Avoid syntax errors and type checking problem for quoted annotations autofix (TC003, TC006) (#14634)
• [pylint] Do not wrap function calls in parentheses in the fix for unnecessary-dunder-call (PLC2801) (#14601)
• [ruff] Handle attrs's auto_attribs correctly (RUF009) (#14520)

0.8.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

See also, the "Remapped rules" section which may result in disabled rules.

• Default to Python 3.9

... (truncated)

Commits

• b3b2c98 Update CHANGELOG.md with the new commits for 0.8.1 (#14664)
• abb3c6e [flake8-pyi] Avoid rewriting invalid type expressions in `unnecessary-type-...
• 224fe75 [ruff] Implement unnecessary-regular-expression (RUF055) (#14659)
• dc29f52 [flake8-pyi, ruff] Fix traversal of nested literals and unions (PYI016,...
• d9cbf2f Avoids unnecessary overhead for TC004, when TC001-003 are disabled (#14657)
• 3f6c65e [red-knot] Fix merged type after if-else without explicit else branch (#14621)
• 976c37a Bump version to 0.8.1 (#14655)
• a378ff3 [red-knot] Fix Boolean flags in mdtests (#14654)
• d8bca0d Fix bug where methods defined using lambdas were flagged by FURB118 (#14639)
• 6f1cf5b [red-knot] Minor fix in MRO tests (#14652)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions