fix(deps): update all patch dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
MarkupSafe (changelog)	2.1.3 -> 2.1.4
SQLAlchemy (changelog)	1.4.49 -> 1.4.51
celery (source, changelog)	5.3.1 -> 5.3.6
cypress (source)	12.17.3 -> 12.17.4
gevent	23.9.0 -> 23.9.1
jsonwebtoken	9.0.1 -> 9.0.2
mailparser	3.6.5 -> 3.6.6
marshmallow (changelog)	3.20.1 -> 3.20.2
nodemailer (source)	6.9.3 -> 6.9.8
psycopg2-binary (source, changelog)	2.9.7 -> 2.9.9
pytest (source, changelog)	7.4.0 -> 7.4.4
pytest-mock-resources	2.9.1 -> 2.9.2
python-dotenv	1.0.0 -> 1.0.1
sqlalchemy2-stubs	0.0.2a35 -> 0.0.2a38
types-python-dateutil (changelog)	2.8.19.14 -> 2.8.19.20240106
types-redis (changelog)	4.6.0.5 -> 4.6.0.20240106
types-requests (changelog)	2.31.0.2 -> 2.31.0.20240106
unidecode	1.3.6 -> 1.3.8

Review

• Updates have been tested and work
• If updates are AWS related, versions match the infrastructure (e.g. Lambda runtime, database, etc.)

---

Release Notes

celery/celery (celery)

v5.3.6

Compare Source

=====

:release-date: 2023-11-22 9:15 P.M GMT+6
:release-by: Asif Saif Uddin

This release is focused mainly to fix AWS SQS new feature comatibility issue and old regressions.
The code changes are mostly fix for regressions. More details can be found below.

v5.3.5

Compare Source

=====

:release-date: 2023-11-10 7:15 P.M GMT+6
:release-by: Asif Saif Uddin

v5.3.4

Compare Source

=====

:release-date: 2023-09-03 10:10 P.M GMT+2
:release-by: Tomer Nosrati

.. warning::
This version has reverted the breaking changes introduced in 5.3.2 and 5.3.3:

• Revert "store children with database backend" (#​8475)

• Revert "Fix eager tasks does not populate name field" (#​8476)

• Bugfix: Removed unecessary stamping code from _chord.run() (#​8339)

• User guide fix (hotfix for #​1755) (#​8342)

• store children with database backend (#​8338)

• Stamping bugfix with group/chord header errback linking (#​8347)

• Use argsrepr and kwargsrepr in LOG_RECEIVED (#​8301)

• Fixing minor typo in code example in calling.rst (#​8366)

• add documents for timeout settings (#​8373)

• fix: copyright year (#​8380)

• setup.py: enable include_package_data (#​8379)

• Fix eager tasks does not populate name field (#​8383)

• Update test.txt dependencies (#​8389)

• Update auth.txt deps (#​8392)

• Fix backend.get_task_meta ignores the result_extended config parameter in mongodb backend (#​8391)

• Support preload options for shell and purge commands (#​8374)

• Implement safer ArangoDB queries (#​8351)

• integration test: cleanup worker after test case (#​8361)

• Added "Tomer Nosrati" to CONTRIBUTORS.txt (#​8400)

• Update README.rst (#​8404)

• Update README.rst (#​8408)

• fix(canvas): add group index when unrolling tasks (#​8427)

• fix(beat): debug statement should only log AsyncResult.id if it exists (#​8428)

• Lint fixes & pre-commit autoupdate (#​8414)

• Update auth.txt (#​8435)

• Update mypy on test.txt (#​8438)

• added missing kwargs arguments in some cli cmd (#​8049)

• Fix #​8431: Set format_date to False when calling _get_result_meta on mongo backend (#​8432)

• Docs: rewrite out-of-date code (#​8441)

• Limit redis client to 4.x since 5.x fails the test suite (#​8442)

• Limit tox to < 4.9 (#​8443)

• Fixed issue: Flags broker_connection_retry_on_startup & broker_connection_retry aren’t reliable (#​8446)

• doc update from #​7651 (#​8451)

• Remove tox version limit (#​8464)

• Fixed AttributeError: 'str' object has no attribute (#​8463)

• Upgraded Kombu from 5.3.1 -> 5.3.2 (#​8468)

• Document need for CELERY_ prefix on CLI env vars (#​8469)

• Use string value for CELERY_SKIP_CHECKS envvar (#​8462)

• Revert "store children with database backend" (#​8475)

• Revert "Fix eager tasks does not populate name field" (#​8476)

• Update Changelog (#​8474)

• Remove as it seems to be buggy. (#​8340)

• Revert "Add Semgrep to CI" (#​8477)

• Revert "Revert "Add Semgrep to CI"" (#​8478)

.. _version-5.3.3:

cypress-io/cypress (cypress)

v12.17.4

Compare Source

Changelog: https://docs.cypress.io/guides/references/changelog#12-17-4

auth0/node-jsonwebtoken (jsonwebtoken)

v9.0.2

Compare Source

• security: updating semver to 7.5.4 to resolve CVE-2022-25883, closes #​921.
• refactor: reduce library size by using lodash specific dependencies, closes #​878.

nodemailer/mailparser (mailparser)

v3.6.6

Compare Source

Bug Fixes

• deploy: added auto-deployment (d6eb56f)
• Fix produced text address list string according to rfc 2822 (#​340) (6bae600)
• test: updated test matrix (18, 20, 21) (a2ba9c2)

marshmallow-code/marshmallow (marshmallow)

v3.20.2

Compare Source

nodemailer/nodemailer (nodemailer)

v6.9.8

Compare Source

Bug Fixes

• punycode: do not use native punycode module (b4d0e0c)

v6.9.7

Compare Source

Bug Fixes

• customAuth: Do not require user and pass to be set for custom authentication schemes (fixes #​1584) (41d482c)

v6.9.6

Compare Source

Bug Fixes

• inline: Use 'inline' as the default Content Dispostion value for embedded images (db32c93)
• tests: Removed Node v12 from test matrix as it is not compatible with the test framework anymore (7fe0a60)

v6.9.5

Compare Source

Bug Fixes

• license: Updated license year (da4744e)

v6.9.4

Compare Source

• Renamed SendinBlue to Brevo

psycopg/psycopg2 (psycopg2-binary)

v2.9.9

Compare Source

v2.9.8

Compare Source

pytest-dev/pytest (pytest)

v7.4.4

Compare Source

v7.4.3: pytest 7.4.3 (2023-10-24)

Compare Source

Bug Fixes

• #​10447: Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression.

• #​11239: Fixed := in asserts impacting unrelated test cases.

• #​11439: Handled an edge case where :data:sys.stderr might already be closed when :ref:faulthandler is tearing down.

v7.4.2: pytest 7.4.2 (2023-09-07)

Compare Source

Bug Fixes

• #​11237: Fix doctest collection of functools.cached_property objects.

• #​11306: Fixed bug using --importmode=importlib which would cause package __init__.py files to be imported more than once in some cases.

• #​11367: Fixed bug where user_properties where not being saved in the JUnit XML file if a fixture failed during teardown.

• #​11394: Fixed crash when parsing long command line arguments that might be interpreted as files.

Improved Documentation

• #​11391: Improved disclaimer on pytest plugin reference page to better indicate this is an automated, non-curated listing.

v7.4.1: pytest 7.4.1 (2023-09-02)

Compare Source

Bug Fixes

• #​10337: Fixed bug where fake intermediate modules generated by --import-mode=importlib would not include the
  child modules as attributes of the parent modules.

• #​10702: Fixed error assertion handling in pytest.approx when None is an expected or received value when comparing dictionaries.

• #​10811: Fixed issue when using --import-mode=importlib together with --doctest-modules that caused modules
  to be imported more than once, causing problems with modules that have import side effects.

schireson/pytest-mock-resources (pytest-mock-resources)

v2.9.2

Compare Source

What's Changed

• fix: Yield config rather than the container. by @​DanCardin in https://github.com/schireson/pytest-mock-resources/pull/196
• fix: Ensure base model compatibility with DeclarativeBase subclasses. by @​DanCardin in https://github.com/schireson/pytest-mock-resources/pull/197

Full Changelog: schireson/pytest-mock-resources@v2.9.1...v2.9.2

theskumar/python-dotenv (python-dotenv)

v1.0.1

Compare Source

Fixed

• Gracefully handle code which has been imported from a zipfile ([#​456] by [@​samwyma])
• Allow modules using load_dotenv to be reloaded when launched in a separate thread ([#​497] by [@​freddyaboulton])
• Fix file not closed after deletion, handle error in the rewrite function ([#​469] by [@​Qwerty-133])

Misc

• Use pathlib.Path in tests ([#​466] by [@​eumiro])
• Fix year in release date in changelog.md ([#​454] by [@​jankislinger])
• Use https in README links ([#​474] by [@​Nicals])

---

Configuration

📅 Schedule: Branch creation - "every weekend" in timezone America/Montreal, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[renovate]

⚠ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: poetry.lock

Updating dependencies
Resolving dependencies...

Creating virtualenv notification-api-Nm9E1q_n-py3.10 in /home/ubuntu/.cache/pypoetry/virtualenvs

Because notifications-utils (52.0.18) @ git+https://github.com/cds-snc/notifier-utils.git@69b6eee0c715fa4c3fe9ac48e4ccd6e3d4c1e239 depends on both markupsafe (2.1.3) and markupsafe (2.1.3), markupsafe is required.
So, because notification-api depends on MarkupSafe (2.1.4), version solving failed.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠ Warning: custom changes will be lost.