Update kafka-python requirement from <2.3 to <2.4 in /data

[dependabot]

Updates the requirements on kafka-python to permit the latest version.

Changelog

Sourced from kafka-python's changelog.

2.3.0 (Nov 20, 2025) ####################

CLI

• python -m cli interfaces for kafka.admin, kafka.consumer, kafka.producer (#2650)

Producer

• KIP-654: Abort transaction with pending data with TransactionAbortedError (#2662)
• KafkaProducer: Handle UnknownProducerIdError (#2663)
• KIP-467: Augment ProduceResponse error messaging for specific culprit records (#2661)
• Add transactional_id to KafkaProducer Keyword Arguments docstring

Consumer

• KIP-345: Consumer group static membership (#2625)
• KIP-207: Add ListOffsetsRequest v5 / handle OffsetNotAvailableError (#2657)
• Fetcher: Add missing argument in debug log (#2665)

AdminClient

• KIP-430: Return Authorized Operations in Describe Responses (#2656)
• Add send_request() and send_requests() to KafkaAdminClient (#2649)

Maintenance

• Remove old/unused kafka.protocol.pickle (#2653)
• Switch protocol code to getattr/setattr from dict (#2654)
• Drop unused imports (#2651)

Project Infra

• Bump github/codeql-action from 3 to 4 (#2678)
• Bump actions/setup-python from 5 to 6 (#2674)
• Bump actions/setup-java from 4 to 5 (#2673)
• Bump actions/checkout from 4 to 5 (#2669)
• Bump actions/checkout from 5 to 6 (#2694)
• NixOS helpers

2.2.18 (Nov 20, 2025) #####################

Fixes

• Add ProducerBatch.lt for heapq (#2698)

2.2.17 (Nov 20, 2025)

... (truncated)

Commits

• 63d9634 Release 2.3.0
• 1569334 Add ProducerBatch.lt for heapq (#2698)
• 5904e5d minor api docs formatting cleanups
• 84d1394 Add cli modules to docs/; add top level kafka.main with help message
• dc470da Update changelog
• c75f97c SOCKS5: support looking up names remotely (#2666)
• 4197302 Add internal poll to consumer.position() (#2696)
• 8d38aa7 Initiate Coordinator Reconnect w/ Backoff from Heartbeat Thread (#2695)
• 7e38cf2 Bump actions/checkout from 5 to 6 (#2694)
• 38a105b Changelog updates
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}