chore(deps): update all minor dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update	Pending
axe-core (source)	4.7.2 -> 4.8.4					devDependencies	minor
black (changelog)	23.7.0 -> 23.12.1					test	minor
cachelib (changelog)	0.10.2 -> 0.12.0					dependencies	minor
cffi (source, changelog)	1.15.1 -> 1.16.0					dependencies	minor
cypress-axe	1.4.0 -> 1.5.0					dependencies	minor
flask-marshmallow	0.14.0 -> 0.15.0					dependencies	minor
freezegun (changelog)	1.2.2 -> 1.4.0					test	minor
iso8601	2.0.0 -> 2.1.0					dependencies	minor
isort (source, changelog)	5.12.0 -> 5.13.2					test	minor
locust	2.16.1 -> 2.23.1					test	minor	2.24.0
marshmallow (changelog)	3.20.2 -> 3.21.0					dependencies	minor	3.21.1
marshmallow-sqlalchemy (changelog)	0.29.0 -> 0.30.0					dependencies	minor
moto (changelog)	4.1.11 -> 4.2.14					test	minor
pytest-mock (changelog)	3.11.1 -> 3.12.0					test	minor
pytest-mock-resources	2.9.2 -> 2.10.0					test	minor
python	~3.10.9 -> ~3.12.0					dependencies	minor
tldextract	3.4.4 -> 3.5.0					dependencies	minor
typing-extensions (changelog)	4.7.1 -> 4.10.0					dependencies	minor

Review

• Updates have been tested and work
• If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

---

Release Notes

dequelabs/axe-core (axe-core)

v4.8.4: Release 4.8.4

Compare Source

This release should not result in different issue numbers. For TypeScript users, an error in type definitions has been corrected. This release could require a correction to how axe-core types are used. This release may change selectors on elements with the xmlns attribute, as the selectors axe-core prosed with those was invalid. Deduplication based on selectors between this and and prior versions of axe-core can fail because of this change.

Bug Fixes

• Add LICENSE-3RD-PARTY.txt file (#​4304) (139c553)
• avoid reading element-specific node properties of non-element node types (#​4317) (a2a6935), closes #​4316 #​4316
• d.ts: RawNodesResult issues (#​4229) (f105266)
• d.ts: RunOptions.reporter can be any string (#​4218) (80de793)
• utils/get-selector: ignore 'xmlns' attribute when generating a selector (#​4303) (8c68546)

v4.8.3

Compare Source

v4.8.2

Compare Source

v4.8.1

Compare Source

v4.8.0

Compare Source

Consistent Rule Impact

This release changes it so that a rule never changes what impact it reports. To facilitate this while without changing the impact on certain issues, some rules have been split. The following changes were involved:

• Deprecate impact on checks; use rules instead (#​4114) (2cc5547)
• add rule aria-deprecated-role (#​4074) (03f2771)
• add rule aria-conditional-attr (#​4094) (d417630)
• aria-input/toggle-field-name: set impact always to serious (#​4095) (e031d68)
• aria-prohibited-attr: add rule aria-prohibited-attr (#​4088) (7b115d3)
• impact: aria-roles / aria-valid-attr-value is always "critical" (#​4112) (5cc8041)
• impact: scope-attr-valid is always "moderate" (#​4113) (131f552)

Other Features

• deprecate & disable duplicate-id / duplicate-id-active (#​4071) (733c45e)
• duplicate-id-aria: set to review on fail and tag as wcag412 (#​4075) (9f1a3e3)
• add EN.301.549 tags to rules (#​4063) (de3da89)
• checks: enable help-same-as-label, but remove from rules (#​4096) (034038a)
• new-rule: aria-braille-equivalent finds incorrect uses of aria-braille attributes (#​4107) (6260a2f)
• page-no-duplicate-banner/contentinfo: deprecate options.nativeScopeFilter, take into ancestors with sectioning roles (#​4105) (c6e07be)

Type Fixes & Improvements

Various improvements were made to the types. Potentially the most impactful of which is that the target and ancestry property now return as UnlabelledFrameSelector instead of as string[], which is incorrect for selectors involving shadow DOM. This may create some issues during migration for any code that has been incorrectly assuming these two properties have the string[] type. For more details and other type changes, see the commit itself:

• d.ts: improve axe.d.ts types (#​4081) (7c5f991), closes #​3966

Bug Fixes

• access-name: get name from header elements (#​4097) (fbe99bf)
• add element semantics (#​4115) (637bf6c)
• aria-allowed-attr: pass aria-expanded on checkbox & switch (#​4110) (fcf76e0), closes #​3339
• aria-allowed-role: Add doc-glossary to allowed roles for aside element (#​4083) (6ca38f6)
• aria-allowed-role: add meter to allowed roles for named img (#​4055) (173f29d), closes #​4054
• aria-required-childen: test visibility of grandchildren (#​4091) (a202b69)
• aria-text: typo in rule description (#​4131) (85a0e9c)
• aria-valid-attr-value: allow empty value on aria-braille* & aria-valuetext (#​4109) (c4c3e65)
• avoid memory issues by doing better cleanup (#​4059) (16c5cfa)
• avoid problems from element IDs that exist on object prototype (#​4060) (8d135dd)
• color-contrast: correctly handle flex and position (#​4086) (9d5f496)
• color-contrast: get text stoke from offset shadows (#​4079) (13acffe)
• color-contrast: ignore format unicode characters (#​4102) (049522e)
• color-contrast: ignore zero width characters (#​4103) (4deb0a0)
• color-contrast: process non-rgb color functions (#​4092) (9634282)
• commons/dom/createGrid: only add the visible, non-overflow areas of an element to the grid (#​4101) (d77f47b)
• ensure reporter errors can propagate (#​4111) (080cc1b)
• ignore stylesheets fetching style tag in jsdom (#​4138) (d7c16a4)
• jsdom: allow axe.setup() without a global window (#​4116) (33b0314)
• target-size: correctly calculate bounding box (#​4125) (1494b4c)
• target-size: update to match new spacing requirements (#​4117) (49eaa0e)
• Use correct copyright year (#​4098) (cab6a2b)
• utils/clone: don't try to clone elements from different window context (#​4072) (55000d0)

4.7.2 (2023-05-25)

Bug Fixes

• aria-allowed-attr: Add 'aria-required' to switch role (#​4029) (cb51be4), closes #​4027
• aria-allowed-attr: allow aria-required on role=slider (#​4035) (bb2bf60)
• aria-required-children: set related nodes for invalid children (#​4033) (377f72b)
• tags: Add / correct several TTv5 tags (#​4031) (25859dd)

4.7.1 (2023-05-15)

Bug Fixes

• aria-allowed-attr: no inconsistent aria-checked on HTML checkboxes (#​3895) (704043e)
• aria-allowed-attrs: add aria-expanded to allowed attrs for menuitemcheckbox and menuitemradio (#​3994) (0f405c6)
• aria-required-children: trigger reviewEmpty with hidden children (#​4012) (a19b6cb)
• color-contrast: support CSS 4 color spaces (#​4020) (65621c3)
• link-in-text-block: set links with pseudo-content for review (#​4005) (949f4f8)

psf/black (black)

v23.12.1

Compare Source

Packaging

• Fixed a bug that included dependencies from the d extra by default (#​4108)

v23.12.0

Compare Source

Highlights

It's almost 2024, which means it's time for a new edition of Black's stable style!
Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft
2024 stable style, which we'll finalize in the January release. Please try it out and
share your feedback.

This release (23.12.0) will still produce the 2023 style. Most but not all of the
changes in --preview mode will be in the 2024 stable style.

Stable style

• Fix bug where # fmt: off automatically dedents when used with the --line-ranges
  option, even when it is not within the specified line range. (#​4084)
• Fix feature detection for parenthesized context managers (#​4104)

Preview style

• Prefer more equal signs before a break when splitting chained assignments (#​4010)
• Standalone form feed characters at the module level are no longer removed (#​4021)
• Additional cases of immediately nested tuples, lists, and dictionaries are now
  indented less (#​4012)
• Allow empty lines at the beginning of all blocks, except immediately before a
  docstring (#​4060)
• Fix crash in preview mode when using a short --line-length (#​4086)
• Keep suites consisting of only an ellipsis on their own lines if they are not
  functions or class definitions (#​4066) (#​4103)

Configuration

• --line-ranges now skips Black's internal stability check in --safe mode. This
  avoids a crash on rare inputs that have many unformatted same-content lines. (#​4034)

Packaging

• Upgrade to mypy 1.7.1 (#​4049) (#​4069)
• Faster compiled wheels are now available for CPython 3.12 (#​4070)

Integrations

• Enable 3.12 CI (#​4035)
• Build docker images in parallel (#​4054)
• Build docker images with 3.12 (#​4055)

v23.11.0

Compare Source

Highlights

• Support formatting ranges of lines with the new --line-ranges command-line option
  (#​4020)

Stable style

• Fix crash on formatting bytes strings that look like docstrings (#​4003)
• Fix crash when whitespace followed a backslash before newline in a docstring (#​4008)
• Fix standalone comments inside complex blocks crashing Black (#​4016)
• Fix crash on formatting code like await (a ** b) (#​3994)
• No longer treat leading f-strings as docstrings. This matches Python's behaviour and
  fixes a crash (#​4019)

Preview style

• Multiline dicts and lists that are the sole argument to a function are now indented
  less (#​3964)
• Multiline unpacked dicts and lists as the sole argument to a function are now also
  indented less (#​3992)
• In f-string debug expressions, quote types that are visible in the final string are
  now preserved (#​4005)
• Fix a bug where long case blocks were not split into multiple lines. Also enable
  general trailing comma rules on case blocks (#​4024)
• Keep requiring two empty lines between module-level docstring and first function or
  class definition (#​4028)
• Add support for single-line format skip with other comments on the same line (#​3959)

Configuration

• Consistently apply force exclusion logic before resolving symlinks (#​4015)
• Fix a bug in the matching of absolute path names in --include (#​3976)

Performance

• Fix mypyc builds on arm64 on macOS (#​4017)

Integrations

• Black's pre-commit integration will now run only on git hooks appropriate for a code
  formatter (#​3940)

v23.10.1

Compare Source

Highlights

• Maintenance release to get a fix out for GitHub Action edge case (#​3957)

Preview style

• Fix merging implicit multiline strings that have inline comments (#​3956)
• Allow empty first line after block open before a comment or compound statement (#​3967)

Packaging

• Change Dockerfile to hatch + compile black (#​3965)

Integrations

• The summary output for GitHub workflows is now suppressible using the summary
  parameter. (#​3958)
• Fix the action failing when Black check doesn't pass (#​3957)

Documentation

• It is known Windows documentation CI is broken
  https://github.com/psf/black/issues/39683968

v23.10.0

Compare Source

Stable style

• Fix comments getting removed from inside parenthesized strings (#​3909)

Preview style

• Fix long lines with power operators getting split before the line length (#​3942)
• Long type hints are now wrapped in parentheses and properly indented when split across
  multiple lines (#​3899)
• Magic trailing commas are now respected in return types. (#​3916)
• Require one empty line after module-level docstrings. (#​3932)
• Treat raw triple-quoted strings as docstrings (#​3947)

Configuration

• Fix cache versioning logic when BLACK_CACHE_DIR is set (#​3937)

Parser

• Fix bug where attributes named type were not acccepted inside match statements
  (#​3950)
• Add support for PEP 695 type aliases containing lambdas and other unusual expressions
  (#​3949)

Output

• Black no longer attempts to provide special errors for attempting to format Python 2
  code (#​3933)
• Black will more consistently print stacktraces on internal errors in verbose mode
  (#​3938)

Integrations

• The action output displayed in the job summary is now wrapped in Markdown (#​3914)

v23.9.1

Compare Source

Due to various issues, the previous release (23.9.0) did not include compiled mypyc
wheels, which make Black significantly faster. These issues have now been fixed, and
this release should come with compiled wheels once again.

There will be no wheels for Python 3.12 due to a bug in mypyc. We will provide 3.12
wheels in a future release as soon as the mypyc bug is fixed.

Packaging

• Upgrade to mypy 1.5.1 (#​3864)

Performance

• Store raw tuples instead of NamedTuples in Black's cache, improving performance and
  decreasing the size of the cache (#​3877)

v23.9.0

Compare Source

Preview style

• More concise formatting for dummy implementations (#​3796)
• In stub files, add a blank line between a statement with a body (e.g an
  if sys.version_info > (3, x):) and a function definition on the same level (#​3862)
• Fix a bug whereby spaces were removed from walrus operators within subscript(#​3823)

Configuration

• Black now applies exclusion and ignore logic before resolving symlinks (#​3846)

Performance

• Avoid importing IPython if notebook cells do not contain magics (#​3782)
• Improve caching by comparing file hashes as fallback for mtime and size (#​3821)

Blackd

• Fix an issue in blackd with single character input (#​3558)

Integrations

• Black now has an
  official pre-commit mirror. Swapping
  https://github.com/psf/black to https://github.com/psf/black-pre-commit-mirror in
  your .pre-commit-config.yaml will make Black about 2x faster (#​3828)
• The .black.env folder specified by ENV_PATH will now be removed on the completion
  of the GitHub Action (#​3759)

pallets-eco/cachelib (cachelib)

v0.12.0

Compare Source

Released 2024-02-11

• RedisCache now supports callables as keys
• Added MongoDB as a cache backend

v0.11.0

Compare Source

Released 2024-02-10

• Drop python 3.7 support
• Add python 3.11 support

python-cffi/cffi (cffi)

v1.16.0

Compare Source

• Add support for Python 3.12. With the removal of distutils from Python 3.12, projects
  using CFFI features that depend on distutils at runtime must add a dependency on
  setuptools to function under Python 3.12+. CFFI does not declare a runtime setuptools
  requirement to avoid an unnecessary dependency for projects that do not require it.
• Drop support for end-of-life Python versions (2.7, 3.6, 3.7).
• Add support for PEP517 builds; setuptools is now a required build dependency.
• Declare python_requires metadata for Python 3.8+. This allows unsupported Pythons
  to continue using previously released sdists and wheels.
• Move project source under src/; a more standard layout that also enables CI to more easily
  catch packaging errors.

component-driven/cypress-axe (cypress-axe)

v1.5.0

Compare Source

Features

• support Cypress 13 (#​166) (73bbfc0), closes #​165

spulec/freezegun (freezegun)

v1.4.0

Compare Source

• asyncio-support from 1.3.x introduced quite a few bugs, so that functionality is now hidden behind a flag:
  with freeze_time('1970-01-02', real_asyncio=True):

v1.3.1

Compare Source

• Fixed the release number in the build

v1.3.0

Compare Source

• Fixed asyncio support to avoid await asyncio.sleep(1) hanging forever.

• Added support for Python 3.12

micktwomey/pyiso8601 (iso8601)

v2.1.0

Compare Source

Fixed

• Use ruff for linting
• Fixed CHANGELOG version links

Added

• Add readthedocs configuration

pycqa/isort (isort)

v5.13.2

Compare Source

• Apply the bracket fix from issue #​471 only for use_parentheses=True (#​2184) @​bp72
  • Confine pre-commit to stages (#​2213) @​davidculley
  • Fixed colors extras (#​2212) @​staticdev

v5.13.1

Compare Source

• Fixed integration tests (#​2208) @​bp72
  • Fixed normalizing imports from more than one level of parent modules (issue/2152) (#​2191) @​bp72
  • Remove optional dependencies without extras (#​2207) @​staticdev

v5.13.0

Compare Source

• Cleanup deprecated extras (#​2089) @​staticdev
  • Fixed #​1989: settings lookup when working in stream based mode
  • Fixed 80 line length for wemake linter (#​2183) @​skatromb
  • Add support for Python 3.12 (#​2175) @​hugovk
  • Fixed: add newest version to pre-commit docs (#​2190) @​AzulGarza
  • Fixed assertions in test_git_hook (#​2196) @​mgorny
  • Removed check for include_trailing_comma for the Hanging Indent wrap mode (#​2192) @​bp72
  • Use the standard library tomllib on sufficiently new python (#​2202) @​eli-schwartz
  • Update pre-commit.md version number (#​2197) @​nicobako
  • doc: Update black_compatibility.md (#​2177) @​JSS95
  • Fixed safety sept 2023 (#​2178) @​staticdev
  • docs: fix black profile documentation (#​2163) @​nijel
  • Fixed typo: indended -> indented (#​2161) @​vadimkerr
  • Docs(configuration/options.md): fix missing trailing spaces for hard linebreak (#​2157) @​JoeyTeng
  • Update pre-commit.md (#​2148) @​godiard
  • chore: move configurations to pyproject.toml (#​2115) @​SauravMaheshkar
  • Fixed typo in README (#​2112) @​stefmolin
  • Update version in pre-commit setup to avoid installation issue with poetry (#​2103) @​stefmolin
  • Skip .pytype directory by default. (#​2098) @​manueljacob
  • Fixed a tip block styling in the Config Files section (#​2097) @​Klavionik
  • Do not cache configuration files (#​1995) @​kaste
  • Derive settings_path from --filename (#​1992) @​kaste
  • Fixed year of version 5.12.0 in CHANGELOG.md (#​2082) @​DjLegolas

locustio/locust (locust)

v2.23.1

Compare Source

Full Changelog

Fixed bugs:

• Modern UI: Average Response Time and 95th percentile have the same color #​2598

Closed issues:

• Modern UI: Add exception message column on the Exception Statistics #​2597

Merged pull requests:

• Modern UI: Add exception message column on the Exception Table #​2601 (andrewbaldwin44)
• Modern UI: Wrong chart's legend for overridden percentiles values #​2600 (andrewbaldwin44)
• Change download-from-master to use temp file dir #​2599 (cyberw)

v2.23.0

Compare Source

Full Changelog

Closed issues:

• Modern UI: ability to sort tables by column specific column #​2593
• Modern UI - User class picker - add option to enable/disable everything. #​2585
• [LocustLineChart] Implement an option/configuration for users to customize the color of the LocustLineChart. #​2578

Merged pull requests:

• Tables are Sortable by Default #​2596 (andrewbaldwin44)
• Allow getting locust files from http urls #​2595 (DennisKrone)
• Fixed typos in documentation #​2592 (dorin131)
• Remove no longer relevant documentation and (already not working?) checks for not loading locustfiles named locust.py #​2591 (cyberw)
• Add Select All / None Checkbox to User Class Picker #​2590 (andrewbaldwin44)
• Add New Colors for the Locust Charts #​2589 (andrewbaldwin44)
• Work around issue with locustfiles named "locust.py" #​2587 (cyberw)
• Update writing-a-locustfile.rst #​2584 (KaushikPathak90)
• Locustfile distribution from master to worker #​2583 (cyberw)
• Gh actions: Run tests on MacOS #​2580 (cyberw)
• Use defaultdict:s for stats dictionaries instead of setdefault #​2579 (cyberw)
• DeprecationWarning: the load_module() method is deprecated and slated for removal in Python 3.12; use exec_module() instead #​2576 (mgor)
• docs(running-distributed): cores -> logical cores #​2570 (tdadela)

v2.22.0

Compare Source

Full Changelog

Fixed bugs:

• Modern UI - new test modal not scrollable #​2574

Merged pull requests:

• Fix Modern UI - new test modal not scrollable #​2577 (andrewbaldwin44)
• Fix Spawning State Never Updates to Running #​2573 (andrewbaldwin44)
• Update README.md Screenshots for Modern UI #​2572 (andrewbaldwin44)
• Use Modern UI by default #​2569 (andrewbaldwin44)
• GH Actions: Run tests on windows #​2567 (cyberw)

v2.21.0

Full Changelog

Fixed bugs:

• 95th percentile line chart does not display correctly on the Response Times (ms) graph #​2540
• ValueError: greenlet.greenlet size changed, may indicate binary incompatibility. Expected 152 from C header, got 40 from PyObject #​2539
• TaskSet missing _cp_last_run attribute #​2532
• Modern UI "forgets" the selected user count and ramp up rate when starting a new test or editing a running one #​2531
• Update dependency or remove support for Basic Auth for the Web UI #​2517

Closed issues:

• Unifying percentile displays in Locust's statistics screens #​2546
• Improve the Class Picker #​2545
• Add response.ok support to FastHttpUser's FastResponse, ala HttpUser/requests #​2520

Merged pull requests:

• Optimize memory usage when using --processes #​2564 (cyberw)
• docs: update developing-locust.rst (black, flake8) -> ruff #​2562 (tdadela)
• Allow User weight adjustment (and task selection) in UI when running with --class-picker, or on command line with --config-users argument #​2559 (andrewbaldwin44)
• Ruff enable isort (with custom sections) #​2556 (tdadela)
• update readthedocs-sphinx-search #​2553 (cyberw)
• Fix pedantic typo in the index.html template #​2552 (marcelofern)
• Ruff set python version and enable more rules #​2551 (tdadela)
• Customization Feature for Percentile Display on Statistics Page #​2550 (FooQoo)
• Use ruff instead of flake8 and black for linting and formatting #​2549 (cyberw)
• Fix mypy configuration & upgrade typing #​2548 (tdadela)
• Fix Web UI Chart History #​2544 (andrewbaldwin44)
• Web UI Modern Auth #​2538 (andrewbaldwin44)
• Modern UI: Fix Default Values for Edit / Start New Test #​2537 (andrewbaldwin44)
• Added response.ok support to FastHttpUser's FastResponse class similar to HttpUser's Response #​2535 (PankajKhanwani)
• Update shape class' runner when Web UI picker is used #​2534 (wiatrak2)
• setting initial _cp_last_run on TaskSet in order to allow constant_pacing wait time strategy #​2533 (ionutab)

v2.20.1

Compare Source

Full Changelog

Fixed bugs:

• Vite-version needs to be updated #​2528
• Issue of 100% CPU usage when closing WebSocket connections. [#​2516](https://togithub.com/locustio/locust/iss

---

Configuration

📅 Schedule: Branch creation - "every weekend" in timezone America/Montreal, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.