Bump the pip-minor group across 1 directory with 4 updates

[dependabot]

Bumps the pip-minor group with 4 updates in the / directory: sqlalchemy, cloud-sql-python-connector, flask-oidc and mypy.

Updates sqlalchemy from 2.0.30 to 2.0.31

Release notes

Sourced from sqlalchemy's releases.

2.0.31

Released: June 18, 2024

general

• [general] [bug] Set up full Python 3.13 support to the extent currently possible, repairing issues within internal language helpers as well as the serializer extension module.

  References: #11417

orm

• [orm] [usecase] Added missing parameter _orm.with_polymorphic.name that allows specifying the name of returned _orm.AliasedClass.

  References: #11361

• [orm] [bug] Fixed issue where a MetaData collection would not be serializable, if an Enum or Boolean datatype were present which had been adapted. This specific scenario in turn could occur when using the Enum or Boolean within ORM Annotated Declarative form where type objects frequently get copied.

  References: #11365

• [orm] [bug] Fixed issue where the _orm.selectinload() and _orm.subqueryload() loader options would fail to take effect when made against an inherited subclass that itself included a subclass-specific _orm.Mapper.with_polymorphic setting.

  References: #11446

• [orm] [bug] Fixed very old issue involving the _orm.joinedload.innerjoin parameter where making use of this parameter mixed into a query that also included joined eager loads along a self-referential or other cyclical relationship, along with complicating factors like inner joins added for secondary tables and such, would have the chance of splicing a particular inner join to the wrong part of the query. Additional state has been added to the internal method that does this splice to make a better decision as to where splicing should proceed.

  References: #11449

• [orm] [bug] [regression] Fixed bug in ORM Declarative where the __table__ directive could not be declared as a class function with _orm.declared_attr() on a superclass, including an __abstract__ class as well as coming from the

... (truncated)

Commits

• See full diff in compare view

Updates cloud-sql-python-connector from 1.9.2 to 1.10.0

Release notes

Sourced from cloud-sql-python-connector's releases.

v1.10.0

1.10.0 (2024-06-11)

Features

• add support for lazy refresh strategy (#1093) (b9526bb)
• validate driver with database engine (#1108) (a7c7861)

Changelog

Sourced from cloud-sql-python-connector's changelog.

1.10.0 (2024-06-11)

Features

• add support for lazy refresh strategy (#1093) (b9526bb)
• validate driver with database engine (#1108) (a7c7861)

Commits

• 148d30d chore(main): release 1.10.0 (#1094)
• 9957ae3 chore(deps): update python-nonmajor (#1112)
• c294850 chore(deps): Update github/codeql-action action to v3.25.8 (#1111)
• 5712e9e chore: lazy init keys with lazy refresh (#1110)
• deb732e refactor: move all enums to enum.py (#1109)
• a7c7861 feat: validate driver with database engine (#1108)
• 821cef8 feat: add standardized debug logging (#1097)
• 5766f8a chore: update system tests (#1105)
• 3e58322 chore(deps): Update google-github-actions/get-secretmanager-secrets action to...
• d39724f chore(deps): Update github/codeql-action action to v3.25.7 (#1096)
• Additional commits viewable in compare view

Updates flask-oidc from 2.1.1 to 2.2.0

Changelog

Sourced from flask-oidc's changelog.

2.2.0 (2024-06-11)

Added

• Add a user model to flask.g with convenience properties (5bf8808)
• Add signals to hook into the login and logout process (68351b6)

Changed

• Ship the licenses files in the sdist (3e37982)
• Update dependencies (a122e22, a581fdf, d51d24b, 0db631e, c5cd54d, 2134e46)

Fixed

• Correct typo in example in index.rst (b21e87b)
• Give the github release step access to the changelog (7bc785d)

Commits

• 2033ae2 Version 2.2.0
• 968b8e6 Update dependency reuse to v3
• 68351b6 Add signals to hook into the login and logout process
• 5bf8808 Add a user model to flask.g with convenience properties
• 7bc785d Give the github release step access to the changelog
• 2134e46 Update dependency pytest to v8
• c5cd54d Update all non-major dependencies
• ac7f3db Update pre-commit hook fsfe/reuse-tool to v3
• edd7888 Update pre-commit hook psf/black to v24
• 0db631e Update dependencies in lockfile
• Additional commits viewable in compare view

Updates mypy from 1.10.0 to 1.10.1

Changelog

Sourced from mypy's changelog.

Mypy 1.10.1

• Fix error reporting on cached run after uninstallation of third party library (Shantanu, PR 17420)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Alex Waygood
• Ali Hamdan
• Edward Paget
• Evgeniy Slobodkin
• Hashem
• hesam
• Hugo van Kemenade
• Ihor
• James Braza
• Jelle Zijlstra
• jhance
• Jukka Lehtosalo
• Loïc Simon
• Marc Mueller
• Matthieu Devlin
• Michael R. Crusoe
• Nikita Sobolev
• Oskari Lehto
• Riccardo Di Maio
• Richard Si
• roberfi
• Roman Solomatin
• Sam Xifaras
• Shantanu
• Spencer Brown
• Srinivas Lade
• Tamir Duberstein
• youkaichao

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.9

We’ve just uploaded mypy 1.9 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Breaking Changes

Because the version of typeshed we use in mypy 1.9 doesn't support 3.7, neither does mypy 1.9. (Jared Hance, PR 16883)

... (truncated)

Commits

• c28b525 [1.10 backport] Fix error reporting on cached run after uninstallation of thi...
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.