Bump the minor-python group in /shared_requirements with 6 updates

[dependabot]

Bumps the minor-python group in /shared_requirements with 6 updates:

Package	From	To
grpcio-status	1.65.5	1.66.0
grpcio	1.65.5	1.66.0
importlib-metadata	8.2.0	8.4.0
numpy	2.0.1	2.1.0
pyparsing	3.1.2	3.1.4
werkzeug	3.0.3	3.0.4

Updates grpcio-status from 1.65.5 to 1.66.0

Updates grpcio from 1.65.5 to 1.66.0

Release notes

Sourced from grpcio's releases.

Release v1.66.0

This is release 1.66.0 (gladiator) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [Python Otel] Manage call tracer life cycle use call arena. (v1.66.x backport). (#37479)
• [BoringSSL] Update third_party/boringssl-with-bazel. (#37223)
• [Dep] Upgrading Protobuf to v27.2. (#36753)
• [Gpr_To_Absl_Logging] Fixing bugs . (#36961)
• [chttp2] don't access endpoint in transport ops if it's already been destroyed. (#36921)

C++

• [OTel C++] Fix race when adding and removing callbacks (#37485). (#37508)
• [RlsLB] Fix Deadlock (#37459). (#37502)

Python

• [Python Distrib] Change warning to RuntimeError for version incompatibility (v1.66.x backport). (#37477)
• Fix issues/36613. (#37022)
• [fix] updated invocation_metadata return type hint. (#36894)
• [Release] Add warning about PyPi latest version not necessarily matching Github latest version. (#36965)

Ruby

• [ruby] Update google-protobuf dep to allow 3.x and 4.x versions. (#36982)
• [ruby] improve the way completion queue pluck operations handle signals and process shutdown. (#36903)

Release v1.66.0-pre5

This is a prerelease of gRPC Core 1.66.0 (gladiator).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

Release v1.66.0-pre4

This is a prerelease of gRPC Core 1.66.0 (gladiator).

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This prerelease contains refinements, improvements, and bug fixes.

... (truncated)

Commits

• 13cecab [Release] Bump version to 1.66.0 (on v1.66.x branch) (#37554)
• 56a8122 [Release] Bump version to 1.66.0-pre5 (on v1.66.x branch) (#37517)
• c0f06b9 [OTel C++] Fix race when adding and removing callbacks (#37485) (#37508)
• e53a314 [RlsLB] Fix Deadlock (#37459) (#37502)
• bee26a7 [Release] Bump version to 1.66.0-pre4 (on v1.66.x branch) (#37501)
• e9c0c1a [secure endpoint] backport fix from #37482 to 1.66.x (#37500)
• 4a15da4 [Python Otel] Manage call tracer life cycle use call arena. (v1.66.x backport...
• 87f9724 [Python Distrib] Change warning to RuntimeError for version incompatibility (...
• 0ef0d1c [backport] fix memory leak in secure endpoint (#37475)
• d378d34 Add psm-dualstack.cfg for cpp and python (v1.66.x backport) (#37446)
• Additional commits viewable in compare view

Updates importlib-metadata from 8.2.0 to 8.4.0

Changelog

Sourced from importlib-metadata's changelog.

v8.4.0

Features

• Deferred import of inspect for import performance. (#499)

v8.3.0

Features

• Disallow passing of 'dist' to EntryPoints.select.

Commits

• 1616cb3 Finalize
• 71b4678 Add news fragment.
• ebcdcfd Remove workaround for python/typeshed#10328.
• 2c43cfe Merge pull request #499 from danielhollas/defer-inspect
• a7aaf72 Use third-person imperative voice and link to issue in comment.
• e99c105 Restore single-expression logic.
• debb516 Don't use global var
• 3c8e1ec Finalize
• 5035755 Merge pull request #498 from python/feature/entry-points-disallow-dist-match
• 6d9b766 Remove MetadataPathFinder regardless of its position.
• Additional commits viewable in compare view

Updates numpy from 2.0.1 to 2.1.0

Release notes

Sourced from numpy's releases.

2.1.0 (Aug 18, 2024)

NumPy 2.1.0 Release Notes

NumPy 2.1.0 provides support for the upcoming Python 3.13 release and drops support for Python 3.9. In addition to the usual bug fixes and updated Python support, it helps get us back into our usual release cycle after the extended development of 2.0. The highlights for this release are:

• Support for the array-api 2023.12 standard.
• Support for Python 3.13.
• Preliminary support for free threaded Python 3.13.

Python versions 3.10-3.13 are supported in this release.

New functions

New function numpy.unstack

A new function np.unstack(array, axis=...) was added, which splits an array into a tuple of arrays along an axis. It serves as the inverse of [numpy.stack]{.title-ref}.

(gh-26579)

Deprecations

• The fix_imports keyword argument in numpy.save is deprecated. Since NumPy 1.17, numpy.save uses a pickle protocol that no longer supports Python 2, and ignored fix_imports keyword. This keyword is kept only for backward compatibility. It is now deprecated.

  (gh-26452)

• Passing non-integer inputs as the first argument of [bincount]{.title-ref} is now deprecated, because such inputs are silently cast to integers with no warning about loss of precision.

  (gh-27076)

Expired deprecations

• Scalars and 0D arrays are disallowed for numpy.nonzero and numpy.ndarray.nonzero.

  (gh-26268)

• set_string_function internal function was removed and PyArray_SetStringFunction was stubbed out.

... (truncated)

Commits

• 2f7fe64 Merge pull request #27236 from charris/prepare-2.1.0
• b6f434f REL: Prepare for the NumPy 2.1.0 release [wheel build]
• 3cf9394 Merge pull request #27234 from charris/backport-25984
• 7443dcc Merge pull request #27233 from charris/backport-27223
• 85b1cab BUG: Allow fitting of degree zero polynomials with Polynomial.fit
• 395a81d DOC: reword discussion about shared arrays to hopefully be clearer
• 5af2e96 Move NUMUSERTYPES thread safety discussion to legacy DType API docs
• d902c24 DOC: add docs on thread safety in NumPy
• c080180 Merge pull request #27229 from charris/backport-27226
• 44ce7e8 BUG: Fix PyArray_ZeroContiguousBuffer (resize) with struct dtypes
• Additional commits viewable in compare view

Updates pyparsing from 3.1.2 to 3.1.4

Changelog

Sourced from pyparsing's changelog.

Version 3.1.4 - August, 2024

• Fixed a regression introduced in pyparsing 3.1.3, addition of a type annotation that referenced re.Pattern. Since this type was introduced in Python 3.7, using this type definition broke Python 3.6 installs of pyparsing 3.1.3. PR submitted by Felix Fontein, nice work!

Version 3.1.3 - August, 2024

• Added new Tag ParserElement, for inserting metadata into the parsed results. This allows a parser to add metadata or annotations to the parsed tokens. The Tag element also accepts an optional value parameter, defaulting to True. See the new tag_metadata.py example in the examples directory.

  Example:

    # add tag indicating mood
    end_punc = "." | ("!" + Tag("enthusiastic")))
    greeting = "Hello" + Word(alphas) + end_punc
  result = greeting.parse_string("Hello World.")
  print(result.dump())
  result = greeting.parse_string("Hello World!")
  print(result.dump())
  

  prints:

    ['Hello', 'World', '.']
  ['Hello', 'World', '!']
  
  enthusiastic: True
  

Added example mongodb_query_expression.py, to convert human-readable infix query expressions (such as a==100 and b>=200) and transform them into the equivalent query argument for the pymongo package ({'$and': [{'a': 100}, {'b': {'$gte': 200}}]}). Supports many equality and inequality operators - see the docstring for the transform_query function for more examples.

Fixed issue where PEP8 compatibility names for ParserElement static methods were not themselves defined as staticmethods. When called using a ParserElement instance, this resulted in a TypeError exception. Reported by eylenburg (#548).

To address a compatibility issue in RDFLib, added a property setter for the ParserElement.name property, to call ParserElement.set_name.

Modified ParserElement.set_name() to accept a None value, to clear the defined name and corresponding error message for a ParserElement.

... (truncated)

Commits

• b846e4a Prep for 3.1.4 release
• 9bd2356 Add Python 3.6 to CI (#566)
• ee50a19 Add Tag notes to HowToUsePyparsing.rst
• 3ffc3ef Fix typo
• e5e97f7 Add mongodb_query_expression.py to examples; updated 0README.html and test_ex...
• 10cef98 Add Tag ParserElement class
• cf41d90 Prep for 3.1.3 release
• d7c163c Some minor code changes in chemical_formulas.py
• eb56030 Various code cleanups
• a9e7d47 Added name property setter, and enhanced set_name() to accept a None value to...
• Additional commits viewable in compare view

Updates werkzeug from 3.0.3 to 3.0.4

Release notes

Sourced from werkzeug's releases.

3.0.4

This is the Werkzeug 3.0.4 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Werkzeug/3.0.4/ Changes: https://werkzeug.palletsprojects.com/en/3.0.x/changes/#version-3-0-4 Milestone: https://github.com/pallets/werkzeug/milestone/36?closed=1

• Restore behavior where parsing multipart/x-www-form-urlencoded data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. #2930
• Improve parse_options_header performance when parsing unterminated quoted string values. #2904
• Debugger pin auth is synchronized across threads/processes when tracking failed entries. #2916
• Dev server handles unexpected SSLEOFError due to issue in Python < 3.13. #2926
• Debugger pin auth works when the URL already contains a query string. #2918

Changelog

Sourced from werkzeug's changelog.

Version 3.0.4

Released 2024-08-21

• Restore behavior where parsing multipart/x-www-form-urlencoded data with invalid UTF-8 bytes in the body results in no form data parsed rather than a 413 error. :issue:2930
• Improve parse_options_header performance when parsing unterminated quoted string values. :issue:2904
• Debugger pin auth is synchronized across threads/processes when tracking failed entries. :issue:2916
• Dev server handles unexpected SSLEOFError due to issue in Python < 3.13. :issue:2926
• Debugger pin auth works when the URL already contains a query string. :issue:2918

Commits

• b933ccb release version 3.0.4
• c09de73 debugger works on urls with query string (#2942)
• 1d1d987 debugger works on urls with query string
• 32a77a0 treat SSLEOFError as dropped connection (#2941)
• cf18d03 treat SSLEOFError as dropped connection
• a1db120 synchronize failed pin entry (#2940)
• 6504819 synchronize failed pin entry
• 7abec4b improve parse_options_header performance (#2939)
• 3a893d2 improve parse_options_header performance
• 3a52597 restore invalid bytes behavior for form parser (#2938)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions