From 27884e58b95a8d01dee00577e8de8ed4b6e0a8de Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 11 Feb 2024 21:59:20 +0100
Subject: [PATCH] chore(deps): Bump pip from 23.3.2 to 24.0 (#1698)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Bumps [pip](https://github.com/pypa/pip) from 23.3.2 to 24.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/pypa/pip/blob/main/NEWS.rst">pip's
changelog</a>.</em></p>
<blockquote>
<h1>24.0 (2024-02-03)</h1>
<h2>Features</h2>
<ul>
<li>Retry on HTTP status code 502
(<code>[#11843](https://github.com/pypa/pip/issues/11843)
&lt;https://github.com/pypa/pip/issues/11843&gt;</code>_)</li>
<li>Automatically use the setuptools PEP 517 build backend when
<code>--config-settings</code> is
used for projects without <code>pyproject.toml</code>.
(<code>[#11915](https://github.com/pypa/pip/issues/11915)
&lt;https://github.com/pypa/pip/issues/11915&gt;</code>_)</li>
<li>Make pip freeze and pip uninstall of legacy editable installs of
packages whose name
contains <code>_</code> compatible with
<code>setuptools&gt;=69.0.3</code>.
(<code>[#12477](https://github.com/pypa/pip/issues/12477)
&lt;https://github.com/pypa/pip/issues/12477&gt;</code>_)</li>
<li>Support per requirement <code>--config-settings</code> for editable
installs. (<code>[#12480](https://github.com/pypa/pip/issues/12480)
&lt;https://github.com/pypa/pip/issues/12480&gt;</code>_)</li>
</ul>
<h2>Bug Fixes</h2>
<ul>
<li>Optimized usage of <code>--find-links=&lt;path-to-dir&gt;</code>, by
only scanning the relevant directory once, only considering file names
that are valid wheel or sdist names, and only considering files in the
directory that are related to the install.
(<code>[#12327](https://github.com/pypa/pip/issues/12327)
&lt;https://github.com/pypa/pip/issues/12327&gt;</code>_)</li>
<li>Removed <code>wheel</code> from the
<code>[build-system].requires</code> list fallback
that is used when <code>pyproject.toml</code> is absent.
(<code>[#12449](https://github.com/pypa/pip/issues/12449)
&lt;https://github.com/pypa/pip/issues/12449&gt;</code>_)</li>
</ul>
<h2>Vendored Libraries</h2>
<ul>
<li>Upgrade distlib to 0.3.8</li>
</ul>
<h2>Improved Documentation</h2>
<ul>
<li>Fix explanation of how PIP_CONFIG_FILE works
(<code>[#11815](https://github.com/pypa/pip/issues/11815)
&lt;https://github.com/pypa/pip/issues/11815&gt;</code>_)</li>
<li>Fix outdated pip install argument description in documentation.
(<code>[#12417](https://github.com/pypa/pip/issues/12417)
&lt;https://github.com/pypa/pip/issues/12417&gt;</code>_)</li>
<li>Replace some links to PEPs with links to the canonical
specifications on the :doc:<code>pypug:index</code>
(<code>[#12434](https://github.com/pypa/pip/issues/12434)
&lt;https://github.com/pypa/pip/issues/12434&gt;</code>_)</li>
<li>Updated the <code>pyproject.toml</code> document to stop suggesting
to depend on <code>wheel</code> as a build dependency directly.
(<code>[#12449](https://github.com/pypa/pip/issues/12449)
&lt;https://github.com/pypa/pip/issues/12449&gt;</code>_)</li>
<li>Update supported interpreters in development docs
(<code>[#12475](https://github.com/pypa/pip/issues/12475)
&lt;https://github.com/pypa/pip/issues/12475&gt;</code>_)</li>
</ul>
<h2>Process</h2>
<ul>
<li>Most project metadata is now defined statically via pip's
<code>pyproject.toml</code> file.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/pypa/pip/commit/ef78c129b1a966dbbbdb8ebfffc43723e89110d1"><code>ef78c12</code></a>
Tweak NEWS.rst</li>
<li><a
href="https://github.com/pypa/pip/commit/6681c02710b81278adb874007286960108867768"><code>6681c02</code></a>
Bump for release</li>
<li><a
href="https://github.com/pypa/pip/commit/ef56d47f90eb3881dba5134241de94d504576f1b"><code>ef56d47</code></a>
Update AUTHORS.txt</li>
<li><a
href="https://github.com/pypa/pip/commit/53e5f192bab27cad793e9dbfd9849717c1ed3617"><code>53e5f19</code></a>
Tweak news before release</li>
<li><a
href="https://github.com/pypa/pip/commit/456db06c0312b6ce971d7c7a97806be8868b79b7"><code>456db06</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/12507">#12507</a> from
jeanas/mailmap</li>
<li><a
href="https://github.com/pypa/pip/commit/0b93dfc7c319449a71c50233c4fb344f9c24a668"><code>0b93dfc</code></a>
Add mailmap entry for <a
href="https://github.com/jeanas"><code>@​jeanas</code></a></li>
<li><a
href="https://github.com/pypa/pip/commit/c0801efcb5251d5704d67dd77dc77b5499d900c5"><code>c0801ef</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/12500">#12500</a> from
bdraco/add_502</li>
<li><a
href="https://github.com/pypa/pip/commit/aa930c49983e11c89d00d959c5d412a3211c2cbf"><code>aa930c4</code></a>
Update src/pip/_internal/network/session.py</li>
<li><a
href="https://github.com/pypa/pip/commit/99a82b7e49a1657d18c8453c42f7eff971ce1cb5"><code>99a82b7</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/12494">#12494</a> from
sbidoul/pass-config-settings-to-editable-in-re...</li>
<li><a
href="https://github.com/pypa/pip/commit/ff30ba86c1d04ade84843b02d251f97f1a2c3c2c"><code>ff30ba8</code></a>
Merge pull request <a
href="https://redirect.github.com/pypa/pip/issues/12501">#12501</a> from
VladimirFokow/fix-small-typo</li>
<li>Additional commits viewable in <a
href="https://github.com/pypa/pip/compare/23.3.2...24.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pip&package-manager=pip&previous-version=23.3.2&new-version=24.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 poetry.lock    | 8 ++++----
 pyproject.toml | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/poetry.lock b/poetry.lock
index 8e949a6d..27aa959e 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -1142,13 +1142,13 @@ ptyprocess = ">=0.5"
 
 [[package]]
 name = "pip"
-version = "23.3.2"
+version = "24.0"
 description = "The PyPA recommended tool for installing Python packages."
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "pip-23.3.2-py3-none-any.whl", hash = "sha256:5052d7889c1f9d05224cd41741acb7c5d6fa735ab34e339624a614eaaa7e7d76"},
-    {file = "pip-23.3.2.tar.gz", hash = "sha256:7fd9972f96db22c8077a1ee2691b172c8089b17a5652a44494a9ecb0d78f9149"},
+    {file = "pip-24.0-py3-none-any.whl", hash = "sha256:ba0d021a166865d2265246961bec0152ff124de910c5cc39f1156ce3fa7c69dc"},
+    {file = "pip-24.0.tar.gz", hash = "sha256:ea9bd1a847e8c5774a5777bb398c19e80bcd4e2aa16a4b301b718fe6f593aba2"},
 ]
 
 [[package]]
@@ -2269,4 +2269,4 @@ testing = ["big-O", "jaraco.functools", "jaraco.itertools", "more-itertools", "p
 [metadata]
 lock-version = "2.0"
 python-versions = "^3.8"
-content-hash = "8a68b4f510670b1793cece18832b404c94bfe2d4baec5de9693f95ebf02d385a"
+content-hash = "2a28494b68cbd45d6fca03d7dc9059b6cd0b419c653317f3d27339bee79c8a0e"
diff --git a/pyproject.toml b/pyproject.toml
index 081a8e68..f9032455 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -51,7 +51,7 @@ ruff = ">=0.0.269,<0.2.2"
 nox = {version = "^2023.4.22", python = "3.8"}
 poetry = {version = "^1.4.2", python = "3.8"}
 pipx = {version = "^1.2.0", python = "3.8"}
-pip = {version = "^23.1.2", python = "3.8"}
+pip = {version = ">=23.1.2,<25.0.0", python = "3.8"}
 
 [tool.coverage.paths]
 source = ["src"]