Bump the pip group across 1 directory with 3 updates

[dependabot]

Bumps the pip group with 3 updates in the / directory: pydantic, pycryptodomex and setuptools.

Updates pydantic from 1.8.2 to 1.10.13

Release notes

Sourced from pydantic's releases.

V1.10.13 2023-09-27

What's Changed

• Update pip commands to install 1.10 by @​chbndrhnns in pydantic/pydantic#6930
• Make the v1 mypy plugin work with both v1 and v2 by @​dmontagu in pydantic/pydantic#6920
• [Backport] Add max length check to validate_email by @​hramezani in pydantic/pydantic#7673

Full Changelog: pydantic/pydantic@v1.10.12...v1.10.13

V1.10.12

What's Changed

• Deque's maxlen property dropped on V1 validation by @​maciekglowka in pydantic/pydantic#6586
• Prepare release 1.10.12 by @​hramezani in pydantic/pydantic#6825

New Contributors

• @​maciekglowka made their first contribution in pydantic/pydantic#6586

Full Changelog: pydantic/pydantic@v1.10.11...v1.10.12

V1.10.11

What's Changed

• Fix import of create_model in tools.py by @​SharathHuddar in pydantic/pydantic#6364
• Prepare for 1.10.11 by @​hramezani in pydantic/pydantic#6420

New Contributors

• @​SharathHuddar made their first contribution in pydantic/pydantic#6364

Full Changelog: pydantic/pydantic@v1.10.10...v1.10.11

V1.10.10

What's Changed

• Fix racy doctests by @​K900 in pydantic/pydantic#6103
• ✅ Update FastAPI test script by @​Kludex in pydantic/pydantic#6117
• add roadmap to annoucement by @​samuelcolvin in pydantic/pydantic#6120
• Fixed literal validator errors for unhashable values by @​markus1978 in pydantic/pydantic#6194
• Bug fix for forward refs in generics by @​mark-todd in pydantic/pydantic#6157
• Add Pydantic Json field support to settings management by @​hramezani in pydantic/pydantic#6250

New Contributors

• @​K900 made their first contribution in pydantic/pydantic#6103
• @​markus1978 made their first contribution in pydantic/pydantic#6194

Full Changelog: pydantic/pydantic@v1.10.9...v1.10.10

V1.10.9

What's Changed

• Add Pydantic classifier by @​hramezani in pydantic/pydantic#5847
• 📌 Use Cython < v3 by @​lig in pydantic/pydantic#5845
• [cherry-pick] Fix mypy plugin for 1.4.0 (#5927) by @​cdce8p in pydantic/pydantic#5928
• Add future and past date hypothesis strategies by @​bschoenmaeckers in pydantic/pydantic#5850

... (truncated)

Changelog

Sourced from pydantic's changelog.

v1.10.13 (2023-09-27)

• Fix: Add max length check to pydantic.validate_email, #7673 by @​hramezani
• Docs: Fix pip commands to install v1, #6930 by @​chbndrhnns

v1.10.12 (2023-07-24)

• Fixes the maxlen property being dropped on deque validation. Happened only if the deque item has been typed. Changes the _validate_sequence_like func, #6581 by @​maciekglowka

v1.10.11 (2023-07-04)

• Importing create_model in tools.py through relative path instead of absolute path - so that it doesn't import V2 code when copied over to V2 branch, #6361 by @​SharathHuddar

v1.10.10 (2023-06-30)

• Add Pydantic Json field support to settings management, #6250 by @​hramezani
• Fixed literal validator errors for unhashable values, #6188 by @​markus1978
• Fixed bug with generics receiving forward refs, #6130 by @​mark-todd
• Update install method of FastAPI for internal tests in CI, #6117 by @​Kludex

v1.10.9 (2023-06-07)

• Fix trailing zeros not ignored in Decimal validation, #5968 by @​hramezani
• Fix mypy plugin for v1.4.0, #5928 by @​cdce8p
• Add future and past date hypothesis strategies, #5850 by @​bschoenmaeckers
• Discourage usage of Cython 3 with Pydantic 1.x, #5845 by @​lig

v1.10.8 (2023-05-23)

• Fix a bug in Literal usage with typing-extension==4.6.0, #5826 by @​hramezani
• This solves the (closed) issue #3849 where aliased fields that use discriminated union fail to validate when the data contains the non-aliased field name, #5736 by @​benwah
• Update email-validator dependency to >=2.0.0post2, #5627 by @​adriangb
• update AnyClassMethod for changes in python/typeshed#9771, #5505 by @​ITProKyle

v1.10.7 (2023-03-22)

• Fix creating schema from model using ConstrainedStr with regex as dict key, #5223 by @​matejetz
• Address bug in mypy plugin caused by explicit_package_bases=True, #5191 by @​dmontagu
• Add implicit defaults in the mypy plugin for Field with no default argument, #5190 by @​dmontagu
• Fix schema generated for Enum values used as Literals in discriminated unions, #5188 by @​javibookline
• Fix mypy failures caused by the pydantic mypy plugin when users define from_orm in their own classes, #5187 by @​dmontagu
• Fix InitVar usage with pydantic dataclasses, mypy version 1.1.1 and the custom mypy plugin, #5162 by @​cdce8p

v1.10.6 (2023-03-08)

• Implement logic to support creating validators from non standard callables by using defaults to identify them and unwrapping functools.partial and functools.partialmethod when checking the signature, #5126 by @​JensHeinrich
• Fix mypy plugin for v1.1.1, and fix dataclass_transform decorator for pydantic dataclasses, #5111 by @​cdce8p
• Raise ValidationError, not ConfigError, when a discriminator value is unhashable, #4773 by @​kurtmckee

v1.10.5 (2023-02-15)

... (truncated)

Commits

• 8822578 Prepare release 1.10.13 (#7674)
• 59d8f38 [Backport] Add max length check to validate_email (#7673)
• 69b92b5 Make the v1 mypy plugin work with both v1 and v2 (#6920)
• 87bf417 Update pip commands to install 1.10 (#6930)
• d9c2af3 Prepare release 1.10.12 (#6825)
• 2aaddf6 Deque's maxlen property dropped on V1 validation (#6586)
• 15c82d9 Prepare for 1.10.11 (#6420)
• 8750c37 no longer tag docs release as latest
• 2c0e2a6 Fix import of create_model in tools.py (#6364)
• 0e8a387 Prepare for 1.10.10 (#6308)
• Additional commits viewable in compare view

Updates pycryptodomex from 3.9.9 to 3.19.1

Release notes

Sourced from pycryptodomex's releases.

v3.19.1 - Zeil

Resolved issues

• Fixed a side-channel leakage with OAEP decryption that could be exploited to carry out a Manger attack. Thanks to Hubert Kario.

v3.19.0 - Ulm

New features

• The update() methods of TupleHash128 and TupleHash256 objects can now hash multiple items (byte strings) at once. Thanks to Sylvain Pelissier.
• Added support for ECDH, with Crypto.Protocol.DH.

Resolved issues

• GH#754: due to a bug in cffi, do not use it on Windows with Python 3.12+.

v3.18.0 - Trier

New features

• Added support for DER BOOLEAN encodings.

• The library now compiles on Windows ARM64. Thanks to Niyas Sait.

  Resolved issues

---

• GH#722: nonce attribute was not correctly set for XChaCha20_Poly1305 ciphers. Thanks to Liam Haber.
• GH#728: Workaround for a possible x86 emulator bug in Windows for ARM64.
• GH#739: OID encoding for arc 2 didn't accept children larger than 39. Thanks to James.
• Correctly check that the scalar matches the point when importing an ECC private key.

v3.17.0 - Stuttgart

No release notes provided.

v3.16.0 - Ravensburg

New features

• Build wheels for musl Linux. Thanks to Ben Raz.

Resolved issues

• GH#639: ARC4 now also works with 'keys' as short as 8 bits.
• GH#669: fix segfaults when running in a manylinux2010 i686 image.

Changelog

Sourced from pycryptodomex's changelog.

3.19.1 (28 December 2023) ++++++++++++++++++++++++++

Resolved issues

• Fixed a side-channel leakage with OAEP decryption that could be exploited to carry out a Manger attack (CVE-2023-52323). Thanks to Hubert Kario.

3.19.0 (16 September 2023) ++++++++++++++++++++++++++

New features

• The update() methods of TupleHash128 and TupleHash256 objects can now hash multiple items (byte strings) at once. Thanks to Sylvain Pelissier.
• Added support for ECDH, with Crypto.Protocol.DH.

Resolved issues

• GH#754: due to a bug in cffi, do not use it on Windows with Python 3.12+.

3.18.0 (18 May 2023) ++++++++++++++++++++++++++

New features

• Added support for DER BOOLEAN encodings.
• The library now compiles on Windows ARM64. Thanks to Niyas Sait.

Resolved issues

• GH#722: nonce attribute was not correctly set for XChaCha20_Poly1305 ciphers. Thanks to Liam Haber.
• GH#728: Workaround for a possible x86 emulator bug in Windows for ARM64.
• GH#739: OID encoding for arc 2 didn't accept children larger than 39. Thanks to James.
• Correctly check that the scalar matches the point when importing an ECC private key.

3.17.0 (29 January 2023) ++++++++++++++++++++++++++

New features

• Added support for the Counter Mode KDF defined in SP 800-108 Rev 1.
• Reduce the minimum tag length for the EAX cipher to 2 bytes.
• An RSA object has 4 new properties for the CRT coefficients: dp, dq, invq and invq (invp is the same value as the existing u).

Resolved issues

... (truncated)

Commits

• ef270ab Update wheels action
• 3278edd Update changelog and version
• 10e8216 Update PSS verify signature code example.
• 4ec4b85 Bump version
• 0deea1b Use constant-time (faster) padding decoding also for OAEP
• 519e7ae Avoid changing signature of RSA._decrypt() method if possible
• 1aa9dca Update changelog and bump version
• afb5e27 Fix side-channel leakage in RSA decryption
• ee91c67 Update CMAC.py
• 43a466d Fix small "passes" typo.
• Additional commits viewable in compare view

Updates setuptools from 68.2.2 to 78.1.1

Changelog

Sourced from setuptools's changelog.

v78.1.1

Bugfixes

• More fully sanitized the filename in PackageIndex._download. (#4946)

v78.1.0

Features

• Restore access to _get_vc_env with a warning. (#4874)

v78.0.2

Bugfixes

• Postponed removals of deprecated dash-separated and uppercase fields in setup.cfg. All packages with deprecated configurations are advised to move before 2026. (#4911)

v78.0.1

Misc

• #4909

v78.0.0

Bugfixes

• Reverted distutils changes that broke the monkey patching of command classes. (#4902)

Deprecations and Removals

• Setuptools no longer accepts options containing uppercase or dash characters in setup.cfg.

... (truncated)

Commits

• 8e4868a Bump version: 78.1.0 → 78.1.1
• 100e9a6 Merge pull request #4951
• 8faf1d7 Add news fragment.
• 2ca4a9f Rely on re.sub to perform the decision in one expression.
• e409e80 Extract _sanitize method for sanitizing the filename.
• 250a6d1 Add a check to ensure the name resolves relative to the tmpdir.
• d8390fe Extract _resolve_download_filename with test.
• 4e1e893 Merge https://github.com/jaraco/skeleton
• 3a3144f Fix typo: pyproject.license -> project.license (#4931)
• d751068 Fix typo: pyproject.license -> project.license
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.