Build(deps): Bump the python-packages group with 3 updates

[dependabot]

Bumps the python-packages group with 3 updates: lxml, pontos and black.

Updates lxml from 4.9.3 to 5.0.1

Changelog

Sourced from lxml's changelog.

5.0.1 (2024-01-05)

Bugs fixed

• LP#2046208: Parsing non-BMP Python Unicode strings could fail on macOS.

• LP#2044225: When incrementally parsing broken HTML, reporting start events on missing structural tags failed and could lead to subsequent exceptions.

• LP#2045435: Some (not all) issues with stricter C compilers were resolved.

• The binary wheels in the 5.0.0 release did not validate cleanly (but installed ok).

.. _latest_release:

5.0.0 (2023-12-29)

Features added

• Character escaping in C14N2 serialisation now uses a single pass over the text instead of searching for each unescaped character separately.

• Early support for Python 3.13a2 was added.

Bugs fixed

• LP#1976304: The Element.addnext() method previously inserted the new element before existing tail text. The tail text of both sibling elements now stays on the respective elements.

• LP#1980767, GH#379: TreeBuilder.close() could fail with a TypeError after parsing incorrect input. Original patch by Enrico Minack.

• Element.itertext(with_tail=False) returned the tail text of comments and processing instructions, despite the explicit option.

• GH#370: A crash with recent libxml2 2.11.x versions was resolved. Patch by Michael Schlenker.

• A compile problem with recent libxml2 2.12.x versions was resolved.

• The internal exception handling in C callbacks was improved for Cython 3.0.

• The exception declarations of xmlInputReadCallback, xmlInputCloseCallback,

... (truncated)

Commits

• eb5cd98 Prepare release of 5.0.1.
• c1e9e6f Fix test in narrow Py2 unicode builds.
• be24db7 Py2 fixes.
• 22eff9f Update changelog.
• d83c37d Make Python UCS-4 string parsing work more reliably on macOS.
• 7f07559 Update changelog.
• 663041a Add casts to silence C compiler warnings with older libxml2 versions that don...
• 0d30cec Update changelog.
• 28b416f Intern the HTML tag names in reported SAX start events since they may not alw...
• 576b8e9 Remove dead code and avoid reading an uninitialised variable.
• Additional commits viewable in compare view

Updates pontos from 23.12.3 to 24.1.0

Release notes

Sourced from pontos's releases.

pontos 24.1.0

24.1.0 - 2024-01-03

Added

• New "CVE CISA KEV Update" event (#953) d6db54e

Bug Fixes

• Find Copyright headers with old company (#927) 5634916

Dependencies

• Bump the actions group with 2 updates 21e2212
• Bump the python-packages group with 7 updates 24c3542

pontos 23.12.4

23.12.4 - 2023-12-19

Added

• Make CPE hashable 74d6ee1
• Add repository topics script (#947) f280e08

Dependencies

• Bump the actions group with 1 update cab9d1f
• Bump the python-packages group with 5 updates 4717b61

Commits

• 0c62932 Automatic release to 24.1.0
• d6db54e Add: New "CVE CISA KEV Update" event (#953)
• 21e2212 Deps: Bump the actions group with 2 updates
• 24c3542 Deps: Bump the python-packages group with 7 updates
• 64d761e Update Copyright header for all files
• 5634916 Fix: Find Copyright headers with old company (#927)
• 34b451c Automatic adjustments after release
• 6277504 Automatic release to 23.12.4
• 74d6ee1 Add: Make CPE hashable
• f280e08 Add: Add repository topics script (#947)
• Additional commits viewable in compare view

Updates black from 23.12.0 to 23.12.1

Release notes

Sourced from black's releases.

23.12.1

Fixed a bug that included dependencies from the d extra by default (#4108)

Changelog

Sourced from black's changelog.

23.12.1

Packaging

• Fixed a bug that included dependencies from the d extra by default (#4108)

Commits

• ec91a2b Prepare release 23.12.1 (#4124)
• 8fec1c3 Adds paren to deps for hidden extra constraint (#4108)
• 35ce37d Add new changelog template
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions