Bump the python group across 1 directory with 4 updates

[dependabot]

Bumps the python group with 4 updates in the / directory: bump-my-version, pylint, flit-core and flit.

Updates bump-my-version from 1.0.2 to 1.1.1

Release notes

Sourced from bump-my-version's releases.

1.1.1

Compare the full difference.

Fixes

• Fix fallback search pattern in files. 51ea69f

  Refactor _contains_change_pattern method by removing unused context parameter.

  Replace version config usage with DEFAULT_CONFIG to provide correct fallback logic.

  Minor test update to align with changes.

• Fixes lack of rendering in moveable tags. d201dff

1.1.0

Compare the full difference.

Fixes

• Refactor Mercurial SCM support and improve test coverage. acd94d1

  Revamped the Mercurial SCM implementation with new features including full tag retrieval, commit handling, and clean working directory assertion. Enhanced test suite with new Mercurial-specific tests for functionality and edge cases.

• Fixed the test_bump_nested_regex function to use utc time. 7d33dff

  Code in the test function used the machine local time instead of UTC time. This made the test fail if the user was not in UTC time, as the fixture tested against a bumped time using utcnow

  Added a recipe to justfile to run the tests and open the coverage report in a default web browser

• Fix caching in action. d3b9f76

New

• Added to the setup section in the contribution doc for the devenv.nix shell. f94cc27

• Added devenv.nix and justfile. 653d917

  Addition of devenv.nix allows developers to easily create hermetic environments in order to develop this package. This greatly simplifies the setup of the environment, and utilizes uv's tooling to create the virtual environment(s). Devenv.nix can also handle git-hooks, but that is already handled via the .pre-commit-config.yaml file.

  The justfile includes some helpful starter recipes. Additional recipes can be added, such as build and publishing of the package/Docker.

Other

• [pre-commit.ci] pre-commit autoupdate. a85b47f

... (truncated)

Changelog

Sourced from bump-my-version's changelog.

1.1.1 (2025-03-22)

Compare the full difference.

Fixes

• Fix fallback search pattern in files. 51ea69f

  Refactor _contains_change_pattern method by removing unused context parameter.

  Replace version config usage with DEFAULT_CONFIG to provide correct fallback logic.

  Minor test update to align with changes.

• Fixes lack of rendering in moveable tags. d201dff

1.1.0 (2025-03-22)

Compare the full difference.

Fixes

• Refactor Mercurial SCM support and improve test coverage. acd94d1

  Revamped the Mercurial SCM implementation with new features including full tag retrieval, commit handling, and clean working directory assertion. Enhanced test suite with new Mercurial-specific tests for functionality and edge cases.

• Fixed the test_bump_nested_regex function to use utc time. 7d33dff

  Code in the test function used the machine local time instead of UTC time. This made the test fail if the user was not in UTC time, as the fixture tested against a bumped time using utcnow

  Added a recipe to justfile to run the tests and open the coverage report in a default web browser

• Fix caching in action. d3b9f76

New

• Added to the setup section in the contribution doc for the devenv.nix shell. f94cc27

• Added devenv.nix and justfile. 653d917

  Addition of devenv.nix allows developers to easily create hermetic environments in order to develop this package. This greatly simplifies the setup of the environment, and utilizes uv's tooling to create the virtual environment(s). Devenv.nix can also handle git-hooks, but that is already handled via the .pre-commit-config.yaml file.

  The justfile includes some helpful starter recipes. Additional recipes can be added, such as build and publishing of the package/Docker.

Other

• [pre-commit.ci] pre-commit autoupdate. a85b47f

... (truncated)

Commits

• 3b031a0 Version updated from 1.1.0 to 1.1.1
• 62f2930 Merge pull request #326 from callowayproject/fix-moveable-tags
• de4438b Fix unit test !minor
• 51ea69f Fix fallback search pattern in files
• d201dff Fixes lack of rendering in moveable tags
• 65a9f4c Version updated from 1.0.2 to 1.1.0
• 9dc3e16 Merge pull request #325 from callowayproject/317-no-commit-on-mercurial-repos...
• 64da2d9 Fix subprocess warnings. !minor
• 650d781 Fixed unit test !minor
• e35eee1 Improved mercurial test coverage
• Additional commits viewable in compare view

Updates pylint from 3.3.4 to 3.3.6

Commits

• 7ac5a4d Bump pylint to 3.3.6, update changelog
• 32871c5 Move deprecated 'tool.setuptools.license-files', remove license classifier (#...
• 6455c45 Add pyproject.fmt to the pre-commit tooling (#10220)
• e394611 Bump types-setuptools from 75.8.2.20250305 to 76.0.0.20250313 (#10279)
• 544464a [used-before-assignment] Fix FP for inner function return type (#10275) (#10285)
• f28d768 Ref #10260 -- Add documentation for the github output format (#10272) (#10273)
• 6b68f91 Add additional permissions for backport workflow (#10269) (#10270)
• 819d606 Minor improvements to release workflow (#10267)
• aaab3cc Bump pylint to 3.3.5, update changelog (#10266)
• 1052bc8 Bump pylint to 3.3.5a0, update changelog
• Additional commits viewable in compare view

Updates flit-core from 3.11.0 to 3.12.0

Changelog

Sourced from flit-core's changelog.

Release history

Version 3.12

• Support for license expressions using the AND and OR operators (:ghpull:731).
• Recognise __version__: str = "0.1" annotated assignments when finding the version number (:ghpull:728).
• Clear error message when referring to a license file in a parent directory, which is not supported (:ghpull:725).

Version 3.11

• Support for SPDX license expressions and multiple license files, as detailed in :pep:639::

    license = "BSD-3-Clause"
    license-files = ["LICENSE"]
  

  For now, only a single license identifier is allowed. More complex expressions describing multiple licenses & expressions may be supported in a future version.

• The metadata format <https://packaging.python.org/en/latest/specifications/core-metadata/>_ in produced packages is now version 2.4, to support the expanded license information.

Version 3.10.1

• The sdist of flit_core now includes the corresponding tests (:ghpull:704). These were missing in 3.10.

Version 3.10

• flit publish can now use PyPI tokens stored in keyring (:ghpull:649), either project tokens with a 'username' like :samp:pypi_token:project:{project_name} (use the normalised form of the name <https://packaging.python.org/en/latest/specifications/name-normalization/>_) or user tokens (:samp:pypi_token:user:{username}).
• The --python option can now take the path of a virtualenv folder, as an alternative to a Python executable (:ghpull:667).
• Flit will work with current development versions of Pythona again (:ghpull:684).
• The flit command line package now requires Python 3.8 or above (:ghpulL:660). flit_core still works with Python 3.6 or above.
• The metadata in packages now has the names of optional dependency groups ("extras") normalised, complying with version 2.3 of the metadata standard (:ghpull:676, :ghpull:697).

... (truncated)

Commits

• 1c81417 Merge pull request #737 from pypa/changelog-3.12
• d9ce4c6 Bump version: 3.11.0 → 3.12.0
• 27ea098 Prepare release notes for 3.12
• 7a6e9b2 Merge pull request #731 from AA-Turner/compound-spdx
• 0b07d23 Reword error messages
• 38429c9 Add empty expression test case
• 4ab2335 Add brackets-only test case
• 78db7b5 Shorten error messages
• 20e1729 Handle mixed-case licence operators
• 9bd1477 Raise error on expressions with no operator
• Additional commits viewable in compare view

Updates flit from 3.11.0 to 3.12.0

Changelog

Sourced from flit's changelog.

Release history

Version 3.12

• Support for license expressions using the AND and OR operators (:ghpull:731).
• Recognise __version__: str = "0.1" annotated assignments when finding the version number (:ghpull:728).
• Clear error message when referring to a license file in a parent directory, which is not supported (:ghpull:725).

Version 3.11

• Support for SPDX license expressions and multiple license files, as detailed in :pep:639::

    license = "BSD-3-Clause"
    license-files = ["LICENSE"]
  

  For now, only a single license identifier is allowed. More complex expressions describing multiple licenses & expressions may be supported in a future version.

• The metadata format <https://packaging.python.org/en/latest/specifications/core-metadata/>_ in produced packages is now version 2.4, to support the expanded license information.

Version 3.10.1

• The sdist of flit_core now includes the corresponding tests (:ghpull:704). These were missing in 3.10.

Version 3.10

• flit publish can now use PyPI tokens stored in keyring (:ghpull:649), either project tokens with a 'username' like :samp:pypi_token:project:{project_name} (use the normalised form of the name <https://packaging.python.org/en/latest/specifications/name-normalization/>_) or user tokens (:samp:pypi_token:user:{username}).
• The --python option can now take the path of a virtualenv folder, as an alternative to a Python executable (:ghpull:667).
• Flit will work with current development versions of Pythona again (:ghpull:684).
• The flit command line package now requires Python 3.8 or above (:ghpulL:660). flit_core still works with Python 3.6 or above.
• The metadata in packages now has the names of optional dependency groups ("extras") normalised, complying with version 2.3 of the metadata standard (:ghpull:676, :ghpull:697).

... (truncated)

Commits

• 1c81417 Merge pull request #737 from pypa/changelog-3.12
• d9ce4c6 Bump version: 3.11.0 → 3.12.0
• 27ea098 Prepare release notes for 3.12
• 7a6e9b2 Merge pull request #731 from AA-Turner/compound-spdx
• 0b07d23 Reword error messages
• 38429c9 Add empty expression test case
• 4ab2335 Add brackets-only test case
• 78db7b5 Shorten error messages
• 20e1729 Handle mixed-case licence operators
• 9bd1477 Raise error on expressions with no operator
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @Zeitsperre.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[Zeitsperre]

@dependabot merge

[dependabot]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

Dependabot will still automatically merge this pull request if you amend it and your tests pass.