Update Python dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
anyio (changelog)	==4.6.2.post1 -> ==4.7.0
black (changelog)	24.8.0 -> 24.10.0
httpx (changelog)	==0.27.2 -> ==0.28.1
lightkube	0.15.5 -> 0.15.7
lightkube	==0.15.5 -> ==0.15.7
pyOpenSSL (source)	24.2.1 -> 24.3.0
pytest (changelog)	8.3.3 -> 8.3.4

---

Release Notes

agronholm/anyio (anyio)

v4.7.0

Compare Source

• Updated TaskGroup to work with asyncio's eager task factories (#​764)
• Added the wait_readable() and wait_writable() functions which will accept an object with a .fileno() method or an integer handle, and deprecated their now obsolete versions (wait_socket_readable() and wait_socket_writable()) (PR by @​davidbrochart)
• Changed EventAdapter (an Event with no bound async backend) to allow set() to work even before an async backend is bound to it (#​819)
• Added support for wait_readable() and wait_writable() on ProactorEventLoop (used on asyncio + Windows by default)
• Fixed a misleading ValueError in the context of DNS failures (#​815; PR by @​graingert)
• Fixed the return type annotations of readinto() and readinto1() methods in the anyio.AsyncFile class (#​825)
• Fixed TaskInfo.has_pending_cancellation() on asyncio returning false positives in cleanup code on Python >= 3.11 (#​832; PR by @​gschaffner)
• Fixed cancelled cancel scopes on asyncio calling asyncio.Task.uncancel when propagating a CancelledError on exit to a cancelled parent scope (#​790; PR by @​gschaffner)

psf/black (black)

v24.10.0

Compare Source

Highlights

• Black is now officially tested with Python 3.13 and provides Python 3.13
  mypyc-compiled wheels. (#​4436) (#​4449)
• Black will issue an error when used with Python 3.12.5, due to an upstream memory
  safety issue in Python 3.12.5 that can cause Black's AST safety checks to fail. Please
  use Python 3.12.6 or Python 3.12.4 instead. (#​4447)
• Black no longer supports running with Python 3.8 (#​4452)

Stable style

• Fix crashes involving comments in parenthesised return types or X | Y style unions.
  (#​4453)
• Fix skipping Jupyter cells with unknown %% magic (#​4462)

Preview style

• Fix type annotation spacing between * and more complex type variable tuple (i.e. def fn(*args: *tuple[*Ts, T]) -> None: pass) (#​4440)

Caching

• Fix bug where the cache was shared between runs with and without --unstable (#​4466)

Packaging

• Upgrade version of mypyc used to 1.12 beta (#​4450) (#​4449)
• blackd now requires a newer version of aiohttp. (#​4451)

Output

• Added Python target version information on parse error (#​4378)
• Add information about Black version to internal error messages (#​4457)

encode/httpx (httpx)

v0.28.1

Compare Source

• Fix SSL case where verify=False together with client side certificates.

v0.28.0

Compare Source

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

• The verify argument as a string argument is now deprecated and will raise warnings.
• The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

• The deprecated proxies argument has now been removed.
• The deprecated app argument has now been removed.
• JSON request bodies use a compact representation. (#​3363)
• Review URL percent escape sets, based on WHATWG spec. (#​3371, #​3373)
• Ensure certifi and httpcore are only imported if required. (#​3377)
• Treat socks5h as a valid proxy scheme. (#​3178)
• Cleanup Request() method signature in line with client.request() and httpx.request(). (#​3378)

gtsystem/lightkube (lightkube)

v0.15.7

Compare Source

v0.15.6

Compare Source

pyca/pyopenssl (pyOpenSSL)

v24.3.0

Compare Source

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Removed the deprecated OpenSSL.crypto.CRL, OpenSSL.crypto.Revoked, OpenSSL.crypto.dump_crl, and OpenSSL.crypto.load_crl. cryptography.x509's CRL functionality should be used instead.
• Removed the deprecated OpenSSL.crypto.sign and OpenSSL.crypto.verify. cryptography.hazmat.primitives.asymmetric's signature APIs should be used instead.

Deprecations:
^^^^^^^^^^^^^

• Deprecated OpenSSL.rand - callers should use os.urandom() instead.
• Deprecated add_extensions and get_extensions on OpenSSL.crypto.X509Req and OpenSSL.crypto.X509. These should have been deprecated at the same time X509Extension was. Users should use pyca/cryptography's X.509 APIs instead.
• Deprecated OpenSSL.crypto.get_elliptic_curves and OpenSSL.crypto.get_elliptic_curve, as well as passing the reult of them to OpenSSL.SSL.Context.set_tmp_ecdh, users should instead pass curves from cryptography.
• Deprecated passing X509 objects to OpenSSL.SSL.Context.use_certificate, OpenSSL.SSL.Connection.use_certificate, OpenSSL.SSL.Context.add_extra_chain_cert, and OpenSSL.SSL.Context.add_client_ca, users should instead pass cryptography.x509.Certificate instances. This is in preparation for deprecating pyOpenSSL's X509 entirely.
• Deprecated passing PKey objects to OpenSSL.SSL.Context.use_privatekey and OpenSSL.SSL.Connection.use_privatekey, users should instead pass cryptography priate key instances. This is in preparation for deprecating pyOpenSSL's PKey entirely.

Changes:
^^^^^^^^

• cryptography maximum version has been increased to 44.0.x.
• OpenSSL.SSL.Connection.get_certificate, OpenSSL.SSL.Connection.get_peer_certificate, OpenSSL.SSL.Connection.get_peer_cert_chain, and OpenSSL.SSL.Connection.get_verified_chain now take an as_cryptography keyword-argument. When True is passed then cryptography.x509.Certificate are returned, instead of OpenSSL.crypto.X509. In the future, passing False (the default) will be deprecated.

pytest-dev/pytest (pytest)

v8.3.4

Compare Source

pytest 8.3.4 (2024-12-01)

Bug fixes

• #​12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

• #​12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

• #​12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

• #​9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

• #​10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

• #​10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

• #​12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

• #​12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

• #​12497: Fixed two failing pdb-related tests on Python 3.13.

---

Configuration

📅 Schedule: Branch creation - "after 1am and before 2am on saturday" in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.