build(deps): bump the minor-and-patch group with 7 updates

[dependabot]

Bumps the minor-and-patch group with 7 updates:

Package	From	To
stac-validator	3.4.0	3.5.0
pygments	2.19.0	2.19.1
marshmallow	3.23.3	3.25.1
orjson	3.10.13	3.10.14
ruamel-yaml	0.18.9	0.18.10
setuptools	75.7.0	75.8.0
watchfiles	1.0.3	1.0.4

Updates stac-validator from 3.4.0 to 3.5.0

Release notes

Sourced from stac-validator's releases.

v3.5.0

What's Changed

• Publish to PyPI via gh actions by @​jonhealy1 in stac-utils/stac-validator#236
• Configure whether to open URLs when validating assets by @​vprivat-ads in stac-utils/stac-validator#238
• Test with Python 3.12, 3.13 by @​vprivat-ads in stac-utils/stac-validator#240
• Allow to provide HTTP headers by @​vprivat-ads in stac-utils/stac-validator#239
• Use referencing library by @​jonhealy1 in stac-utils/stac-validator#241
• 3.5.0 release by @​jonhealy1 in stac-utils/stac-validator#242

New Contributors

• @​vprivat-ads made their first contribution in stac-utils/stac-validator#238

Full Changelog: stac-utils/stac-validator@v3.4.0...v3.5.0

Changelog

Sourced from stac-validator's changelog.

[v3.5.0] - 2025-01-10

Added

• Added publish.yml to automatically publish new releases to PyPI #236
• Configure whether to open URLs when validating assets #238
• Allow to provide HTTP headers #239

Changed

• Switched to the referencing library for dynamic JSON schema validation and reference resolution #241

Commits

• 265ebd6 3.5.0 release (#242)
• a656fa3 Use referencing library (#241)
• 7983a81 Merge pull request #239 from vprivat-ads/http_headers
• 7d333f4 Merge branch 'main' into http_headers
• c79fadb Merge pull request #240 from vprivat-ads/update-python
• 61fe54a Test with Python 3.12, 3.13
• 334acdb Allow to provide HTTP headers
• 492547b Merge pull request #238 from vprivat-ads/optional-link-href-urlopen
• 6422e57 Configure whether to open URLs when validating assets
• 6c2b6ae Merge pull request #236 from stac-utils/publish-pypi
• Additional commits viewable in compare view

Updates pygments from 2.19.0 to 2.19.1

Release notes

Sourced from pygments's releases.

2.19.1

• Updated lexers:

  • Ini: Fix quoted string regression introduced in 2.19.0
  • Lua: Fix a regression introduced in 2.19.0

Changelog

Sourced from pygments's changelog.

Version 2.19.1

(released January 6th, 2025)

• Updated lexers:

  • Ini: Fix quoted string regression introduced in 2.19.0
  • Lua: Fix a regression introduced in 2.19.0

Commits

• b583de4 Prepare 2.19.1 release.
• c13f3f1 Prepare 2.19.1 release.
• cdbcd43 Add regression test for .ini issue, update CHANGES.
• 5792a21 Update CHANGES.
• a985866 Merge pull request #2835 from kartben/fix_ini_double_quotes
• 5822fd1 Fix Lua regressions.
• 673d824 Fix quoted string handling
• 43bf86f Improve example regex in the docs.
• 452ac62 Move on past 2.19.0.
• See full diff in compare view

Updates marshmallow from 3.23.3 to 3.25.1

Changelog

Sourced from marshmallow's changelog.

3.25.1 (2025-01-11)

---

Bug fixes:

• Typing: Fix type annotations for Tuple <marshmallow.fields.Tuple>, Boolean <marshmallow.fields.Boolean>, and Pluck <marshmallow.fields.Pluck> constructors (:pr:2756).
• Typing: Fix overload for marshmallow.class_registry.get_class (:pr:2756).

Documentation:

• Various documentation improvements (:pr:2746, :pr:2747, :pr:2748, :pr:2749, :pr:2750, :pr:2751).

3.25.0 (2025-01-09)

---

Features:

• Typing: Improve type annotations for SchemaMeta.get_declared_fields (:pr:2742).

Bug fixes:

• Typing: Relax type annotation for Schema.opts to allow subclasses to define their own options classes (:pr:2744).

Other changes:

• Restore marshmallow.base.SchemaABC for backwards-compatibility (:issue:2743). Note that this class is deprecated and will be removed in marshmallow 4. Use marshmallow.schema.Schema as a base class for type-checking instead.

3.24.2 (2025-01-08)

---

Changes:

• Don't override __new__ to avoid breaking usages of inspect.signature with Field <marshmallow.fields.Field> classes. This allows marshmallow-sqlalchemy users to upgrade marshmallow without upgrading to marshmallow-sqlalchemy>=1.1.1.

Documentation:

• Add top-level API back to docs (:issue:2739). Thanks :user:llucax for reporting.

3.24.1 (2025-01-06)

---

... (truncated)

Commits

• 8f3d0e7 Bump version and update changelog
• 10332c5 Fix a few type annotations in fields and class_registry (#2756)
• f907ced Use Validator type (#2754)
• 2c0c75f Add config for view button (#2753)
• a21e451 Update changelog
• fe53fd0 More documentation improvements (#2751)
• 57cdc74 Update copy for upgrading guide
• 05cdf8c Document base field deprecations in API docs (#2750)
• 1e03e2c Fix heading underlines in changelog to be consistent (#2749)
• 1d086ff Migrate docs theme to furo (#2748)
• Additional commits viewable in compare view

Updates orjson from 3.10.13 to 3.10.14

Release notes

Sourced from orjson's releases.

3.10.14

Changed

• Specify build system dependency on maturin>=1,<2 again.
• Allocate memory using PyMem_Malloc() and similar APIs for integration with pymalloc, mimalloc, and tracemalloc.
• Source distribution does not ship compressed test documents and relevant tests skip if fixtures are not present.
• Build now depends on Rust 1.82 or later instead of 1.72.

Changelog

Sourced from orjson's changelog.

3.10.14

Changed

• Specify build system dependency on maturin>=1,<2 again.
• Allocate memory using PyMem_Malloc() and similar APIs for integration with pymalloc, mimalloc, and tracemalloc.
• Source distribution does not ship compressed test documents and relevant tests skip if fixtures are not present.
• Build now depends on Rust 1.82 or later instead of 1.72.

Commits

• 1534f8c 3.10.14
• 3964617 Fix CI to use python3.13t interpreter
• d231af6 alloc using PyMem functions
• a817c91 ABI compatibility with free-threading builds
• 0c3ca67 build maintenance, edition 2024 compatibility
• See full diff in compare view

Updates ruamel-yaml from 0.18.9 to 0.18.10

Updates setuptools from 75.7.0 to 75.8.0

Changelog

Sourced from setuptools's changelog.

v75.8.0

Features

• Implemented Dynamic field for core metadata (as introduced in PEP 643). The existing implementation is currently experimental and the exact approach may change in future releases. (#4698)

Commits

• 5c9d980 Bump version: 75.7.0 → 75.8.0
• 72c4222 Avoid using Any in function
• 1c61d47 Add news fragments for PEP 643
• f285d01 Implement PEP 643 (Dynamic field for core metadata) (#4698)
• a50f6e2 Fix _static.Dict.ior for Python 3.8
• b055895 Add extra tests for static/dynamic metadata
• 770b4fc Remove test workaround for unmarked static values from pyproject.toml
• 8b22d73 Mark values from pyproject.toml as static
• f699fd8 Fix spelling error
• 8b4c8a3 Add tests for static 'attr' directive
• Additional commits viewable in compare view

Updates watchfiles from 1.0.3 to 1.0.4

Release notes

Sourced from watchfiles's releases.

v1.0.4 2025-01-10

What's Changed

• Fix badge for CI by @​ofek in samuelcolvin/watchfiles#323
• Fix data loss issue by ensuring proper locking and clearing of changes by @​koseki2580 in samuelcolvin/watchfiles#314
• Bump jinja2 from 3.1.4 to 3.1.5 in /requirements by @​dependabot in samuelcolvin/watchfiles#321
• Use notify 7.0.0 instead of a fork of 6.1.1 by @​musicinmybrain in samuelcolvin/watchfiles#322
• switch to uv by @​samuelcolvin in samuelcolvin/watchfiles#324
• uprev to 1.0.4 by @​samuelcolvin in samuelcolvin/watchfiles#325
• try testing with 3.13 free threading by @​samuelcolvin in samuelcolvin/watchfiles#326

New Contributors

• @​ofek made their first contribution in samuelcolvin/watchfiles#323
• @​musicinmybrain made their first contribution in samuelcolvin/watchfiles#322

Full Changelog: samuelcolvin/watchfiles@v1.0.3...v1.0.4

Commits

• 47f20c1 try testing with 3.13 free threading (#326)
• 5ac8c96 uprev to 1.0.4 (#325)
• 0f93ff8 switch to uv (#324)
• 65713ea Use notify 7.0.0 instead of a fork of 6.1.1 (#322)
• 4d178b3 Bump jinja2 from 3.1.4 to 3.1.5 in /requirements (#321)
• fa1c853 Fix data loss issue by ensuring proper locking and clearing of changes (#314)
• 8d89bde Fix badge for CI (#323)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions