Bump the pip-minor-and-patch group across 1 directory with 7 updates

[dependabot]

Bumps the pip-minor-and-patch group with 7 updates in the /src directory:

Package	From	To
azure-identity	1.19.0	1.20.0
azure-monitor-opentelemetry	1.6.4	1.6.5
bandit	1.8.2	1.8.3
cryptography	44.0.0	44.0.1
flake8	7.1.1	7.1.2
geoalchemy2	0.17.0	0.17.1
sentry-sdk	2.20.0	2.22.0

Updates azure-identity from 1.19.0 to 1.20.0

Release notes

Sourced from azure-identity's releases.

azure-identity_1.20.0

1.20.0 (2025-02-11)

Features Added

• Added subscription parameter to AzureCliCredential to specify the subscription to use when authenticating with the Azure CLI. (#37994)

Bugs Fixed

• A bug in the error handling for AzureCliCredentials and AzureDeveloperCliCredential which would result in the unexpected error 'NoneType' object has no attribute 'startswith' has been fixed (#39176)

Other Changes

• AzureCliCredential and AzureDeveloperCliCredential will now call their corresponding executables directly instead of going through the shell. (#38606)

Commits

• 42437f1 Add py3.13 (#39661)
• 1526d4e update release date (#39659)
• 1a9968d [Identity] Use full path for CLI executables (#38606)
• 1f1727f NO_CI Remove tracking pixels (#39592)
• 8cb96b3 Update github.io doc link (#39496)
• 0d2ac51 [Identity] Clarify subscription error in AZ CLI cred (#39501)
• 8c01872 NO_CI enable type_check_samples where passing
• ef224ca Azure Identity: AzureCliCredentials and AzureDeveloperCliCredential handle st...
• 2025f95 fix: handle URL-safe base64 decoding for JWT (#38991)
• 90da0a6 useless-disable (#39064)
• Additional commits viewable in compare view

Updates azure-monitor-opentelemetry from 1.6.4 to 1.6.5

Release notes

Sourced from azure-monitor-opentelemetry's releases.

azure-monitor-opentelemetry_1.6.5

1.6.5 (2025-02-14)

Features Added

• Add more diagnostic log options (#39701)
• Only add OpenTelemetry LoggingHandler if current logger does not have it (#38549)
• Distro to automatically configure event logger provider (#38543)
• Configure live metrics first in pipeline to detect statsbeat usage (#38556)
• Ignore backoff warning from distro if in functions environment (#38787)

Commits

• f5664b0 Distro release 1.6.5 (#39733)
• 750d192 More diagnostic logging options (#39701)
• 2b6e638 [AutoRelease] t2-monitor-2025-02-06-99514(can only be merged by SDK owner) (#...
• 1f1727f NO_CI Remove tracking pixels (#39592)
• d0161a0 Update pyproject.toml to enable type checking samples (#39541)
• 25ed17a Support stable http sem conv for dependency type telemetry (#39441)
• 93fd77c Support AAD in soverign clouds (#39379)
• 954a7ff Support stable http semconv - request telemetry (#39208)
• 21ff394 Fix next Pylint, add logger_name comments to logging samples (#39345)
• 91db5f4 fix: Loosen psutil version requirement (#39354)
• Additional commits viewable in compare view

Updates bandit from 1.8.2 to 1.8.3

Release notes

Sourced from bandit's releases.

1.8.3

What's Changed

• Bump docker/build-push-action from 6.10.0 to 6.11.0 by @​dependabot in PyCQA/bandit#1220
• Bump docker/build-push-action from 6.11.0 to 6.12.0 by @​dependabot in PyCQA/bandit#1221
• Bump docker/build-push-action from 6.12.0 to 6.13.0 by @​dependabot in PyCQA/bandit#1222
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1229
• Update bug template to include latest released versions by @​ericwb in PyCQA/bandit#1218
• Add markupsafe.Markup XSS plugin by @​Daverball in PyCQA/bandit#1225
• Warn not error on an nonexistant test given by @​ericwb in PyCQA/bandit#1230
• Bump sigstore/cosign-installer from 3.7.0 to 3.8.0 by @​dependabot in PyCQA/bandit#1233
• Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by @​dependabot in PyCQA/bandit#1234
• B107: Skip None values in hardcoded password detection by @​lukehinds in PyCQA/bandit#1232
• Pytorch fix by @​lukehinds in PyCQA/bandit#1231

New Contributors

• @​Daverball made their first contribution in PyCQA/bandit#1225

Full Changelog: PyCQA/bandit@1.8.2...1.8.3

Commits

• 8ff25e0 Pytorch fix (#1231)
• def123a B107: Skip None values in hardcoded password detection (#1232)
• 00b1e95 Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 (#1234)
• a324f42 Bump sigstore/cosign-installer from 3.7.0 to 3.8.0 (#1233)
• affd4fd Warn not error on an nonexistant test given (#1230)
• 5e3e694 Add markupsafe.Markup XSS plugin (#1225)
• 6133e08 Update bug template to include latest released versions (#1218)
• 7619cc4 [pre-commit.ci] pre-commit autoupdate (#1229)
• 3348781 Bump docker/build-push-action from 6.12.0 to 6.13.0 (#1222)
• ef0090f Bump docker/build-push-action from 6.11.0 to 6.12.0 (#1221)
• Additional commits viewable in compare view

Updates cryptography from 44.0.0 to 44.0.1

Changelog

Sourced from cryptography's changelog.

44.0.1 - 2025-02-11

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.4.1.
* We now build ``armv7l`` ``manylinux`` wheels and publish them to PyPI.
* We now build ``manylinux_2_34`` wheels and publish them to PyPI.
.. _v44-0-0:

Commits

• adaaaed Bump for 44.0.1 release (#12441)
• ccc61da [backport] test and build on armv7l (#12420) (#12431)
• See full diff in compare view

Updates flake8 from 7.1.1 to 7.1.2

Commits

• fffee8b Release 7.1.2
• 19001f7 Merge pull request #1966 from PyCQA/limit-procs-to-file-count
• f35737a avoid starting unnecessary processes when file count is limited
• See full diff in compare view

Updates geoalchemy2 from 0.17.0 to 0.17.1

Release notes

Sourced from geoalchemy2's releases.

0.17.1

What's Changed

• Chore: Fix stubs for TableRowElement by @​adrien-berchet in geoalchemy/geoalchemy2#534
• Fix: Pass through keyword args for create_geospatial_table(). Fixes: #532 by @​jurgispods in geoalchemy/geoalchemy2#533
• Release: 0.17.1 by @​adrien-berchet in geoalchemy/geoalchemy2#535

New Contributors

• @​jurgispods made their first contribution in geoalchemy/geoalchemy2#533

Full Changelog: geoalchemy/geoalchemy2@0.17.0...0.17.1

Changelog

Sourced from geoalchemy2's changelog.

0.17.1

• Fix: Pass through keyword args for alembic_helpers.create_geospatial_table() @​jurgispods (#533)
• Chore: Fix stubs for TableRowElement @​adrien-berchet (#534)

Commits

• 3cb2bdd Release: 0.17.1 (#535)
• 66b2028 Fix: Pass through keyword args for alembic_helpers.create_geospatial_table() ...
• f5355b7 Chore: Fix stubs for TableRowElement (#534)
• See full diff in compare view

Updates sentry-sdk from 2.20.0 to 2.22.0

Release notes

Sourced from sentry-sdk's releases.

2.22.0

Various fixes & improvements

• New integration: Add Statsig integration (#4022) by @​aliu39

  For more information, see the documentation for the StatsigIntegration.

• Profiling: Continuous profiling lifecycle (#4017) by @​Zylphrex

• Fix: Revert "feat(tracing): Add propagate_traces deprecation warning (#3899)" (#4055) by @​cmanallen

• Tests: Generate Web 1 group tox entries by toxgen script (#3980) by @​sentrivana

• Tests: Generate Web 2 group tox entries by toxgen script (#3981) by @​sentrivana

• Tests: Generate Tasks group tox entries by toxgen script (#3976) by @​sentrivana

• Tests: Generate AI group tox entries by toxgen script (#3977) by @​sentrivana

• Tests: Generate DB group tox entries by toxgen script (#3978) by @​sentrivana

• Tests: Generate Misc group tox entries by toxgen script (#3982) by @​sentrivana

• Tests: Generate Flags group tox entries by toxgen script (#3974) by @​sentrivana

• Tests: Generate gRPC tox entries by toxgen script (#3979) by @​sentrivana

• Tests: Remove toxgen cutoff, add statsig (#4048) by @​sentrivana

• Tests: Reduce continuous profiling test flakiness (#4052) by @​Zylphrex

• Tests: Fix Clickhouse test (#4053) by @​sentrivana

• Tests: Fix flaky HTTPS test (#4057) by @​Zylphrex

• Update sample rate in DSC (#4018) by @​sentrivana

• Move the GraphQL group over to the tox gen script (#3975) by @​sentrivana

• Update changelog with profile_session_sample_rate (#4046) by @​sentrivana

2.21.0

Various fixes & improvements

• Fix incompatibility with new Strawberry version (#4026) by @​sentrivana

• Add failed_request_status_codes to Litestar (#4021) by @​vrslev

  See https://docs.sentry.io/platforms/python/integrations/litestar/ for details.

• Deprecate enable_tracing option (#3935) by @​antonpirker

  The enable_tracing option is now deprecated. Please use traces_sample_rate instead. See https://docs.sentry.io/platforms/python/configuration/options/#traces_sample_rate for more information.

• Explicitly use None default when checking metadata (#4039) by @​mpurnell1

• Fix bug where concurrent accesses to the flags property could raise a RuntimeError (#4034) by @​cmanallen

• Add more min versions of frameworks (#3973) by @​sentrivana

• Set level based on status code for HTTP client breadcrumbs (#4004) by @​sentrivana

• Don't set transaction status to error on sys.exit(0) (#4025) by @​sentrivana

• Continuous profiling sample rate (#4002) by @​Zylphrex

  Set profile_session_sample_rate=1.0 in your init() to collect continuous profiles for 100% of profile sessions. See https://docs.sentry.io/platforms/python/profiling/#enable-continuous-profiling for more information.

• Track and report spans that were dropped (#4005) by @​constantinius

• Change continuous profile buffer size (#3987) by @​Zylphrex

• Handle MultiPartParserError to avoid internal sentry crash (#4001) by @​orhanhenrik

• Handle None lineno in get_source_context (#3925) by @​sentrivana

• Add support for Python 3.12 and 3.13 to AWS Lambda integration (#3965) by @​antonpirker

• Add propagate_traces deprecation warning (#3899) by @​mgaligniana

• Check that __module__ is str (#3942) by @​szokeasaurusrex

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.22.0

Various fixes & improvements

• New integration: Add Statsig integration (#4022) by @​aliu39

  For more information, see the documentation for the StatsigIntegration.

• Profiling: Continuous profiling lifecycle (#4017) by @​Zylphrex

• Fix: Revert "feat(tracing): Add propagate_traces deprecation warning (#3899)" (#4055) by @​cmanallen

• Tests: Generate Web 1 group tox entries by toxgen script (#3980) by @​sentrivana

• Tests: Generate Web 2 group tox entries by toxgen script (#3981) by @​sentrivana

• Tests: Generate Tasks group tox entries by toxgen script (#3976) by @​sentrivana

• Tests: Generate AI group tox entries by toxgen script (#3977) by @​sentrivana

• Tests: Generate DB group tox entries by toxgen script (#3978) by @​sentrivana

• Tests: Generate Misc group tox entries by toxgen script (#3982) by @​sentrivana

• Tests: Generate Flags group tox entries by toxgen script (#3974) by @​sentrivana

• Tests: Generate gRPC tox entries by toxgen script (#3979) by @​sentrivana

• Tests: Remove toxgen cutoff, add statsig (#4048) by @​sentrivana

• Tests: Reduce continuous profiling test flakiness (#4052) by @​Zylphrex

• Tests: Fix Clickhouse test (#4053) by @​sentrivana

• Tests: Fix flaky HTTPS test (#4057) by @​Zylphrex

• Update sample rate in DSC (#4018) by @​sentrivana

• Move the GraphQL group over to the tox gen script (#3975) by @​sentrivana

• Update changelog with profile_session_sample_rate (#4046) by @​sentrivana

2.21.0

Various fixes & improvements

• Fix incompatibility with new Strawberry version (#4026) by @​sentrivana

• Add failed_request_status_codes to Litestar (#4021) by @​vrslev

  See https://docs.sentry.io/platforms/python/integrations/litestar/ for details.

• Deprecate enable_tracing option (#3935) by @​antonpirker

  The enable_tracing option is now deprecated. Please use traces_sample_rate instead. See https://docs.sentry.io/platforms/python/configuration/options/#traces_sample_rate for more information.

• Explicitly use None default when checking metadata (#4039) by @​mpurnell1

• Fix bug where concurrent accesses to the flags property could raise a RuntimeError (#4034) by @​cmanallen

• Add more min versions of frameworks (#3973) by @​sentrivana

• Set level based on status code for HTTP client breadcrumbs (#4004) by @​sentrivana

• Don't set transaction status to error on sys.exit(0) (#4025) by @​sentrivana

• Continuous profiling sample rate (#4002) by @​Zylphrex

  Set profile_session_sample_rate=1.0 in your init() to collect continuous profiles for 100% of profile sessions. See https://docs.sentry.io/platforms/python/profiling/#enable-continuous-profiling for more information.

• Track and report spans that were dropped (#4005) by @​constantinius

• Change continuous profile buffer size (#3987) by @​Zylphrex

• Handle MultiPartParserError to avoid internal sentry crash (#4001) by @​orhanhenrik

• Handle None lineno in get_source_context (#3925) by @​sentrivana

• Add support for Python 3.12 and 3.13 to AWS Lambda integration (#3965) by @​antonpirker

... (truncated)

Commits

• 1fcd364 Updated Changelog.md
• 1abad47 release: 2.22.0
• 6a1b7d4 tests(httplib): Fix flakey https test (#4057)
• ae68d85 Revert "feat(tracing): Add propagate_traces deprecation warning (#3899)" (#...
• 7b5904a tests: Generate tox entries for grpc via script (#3979)
• 24afdb3 tests: Generate some of the Web 2 tox entries by toxgen (#3981)
• 8f22def tests: Generate part of the Tasks tox entries by a script (#3976)
• 25ddbca tests: Generate some of the AI tox entries by toxgen (#3977)
• 85879b4 tests: Generate some of the Web 1 tox entries with toxgen (#3980)
• feb642b tests: Generate DB group by toxgen script (#3978)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.