Bump the pypi group in /requirements with 2 updates

[dependabot]

Bumps the pypi group in /requirements with 2 updates: coverage and lxml.

Updates coverage from 7.4.4 to 7.5.0

Changelog

Sourced from coverage's changelog.

Version 7.5.0 — 2024-04-23

• Added initial support for function and class reporting in the HTML report. There are now three index pages which link to each other: files, functions, and classes. Other reports don't yet have this information, but it will be added in the future where it makes sense. Feedback gladly accepted! Finishes issue 780_.

• Other HTML report improvements:

  • There is now a "hide covered" checkbox to filter out 100% files, finishing issue 1384_.

  • The index page is always sorted by one of its columns, with clearer indications of the sorting.

  • The "previous file" shortcut key didn't work on the index page, but now it does, fixing issue 1765_.

• The debug output showing which configuration files were tried now shows absolute paths to help diagnose problems where settings aren't taking effect, and is renamed from "attempted_config_files" to the more logical "config_files_attempted."

• Python 3.13.0a6 is supported.

.. _issue 780: nedbat/coveragepy#780 .. _issue 1384: nedbat/coveragepy#1384 .. _issue 1765: nedbat/coveragepy#1765

.. _changes_7-4-4:

Commits

• 5f4e034 docs: sample HTML for 7.5.0
• ed97cfb docs: prep for 7.5.0
• 41e01d3 build: use macos 13 for 3.8 and 3.9 while GitHub rolls out macos 14
• 583f0c0 test: add a test for skipping covered functions
• b115ed3 refactor: keep Analysis private
• 40a052e docs: document CodeRegion and its plugin methods
• 2ff9933 docs: remove comment that now explains nothing.
• a6ba1c8 fix: html report pages fully validate
• 74c87a8 fix: previous page shortcut works in index page. #1765
• e016967 feat: main index page links to other index pages
• Additional commits viewable in compare view

Updates lxml from 5.1.0 to 5.2.1

Changelog

Sourced from lxml's changelog.

5.2.1 (2024-04-02)

Bugs fixed

• LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to "core2", but with SSE 4.2 enabled.

• LP#2059977: Element.iterfind("//absolute_path") failed with a SyntaxError where it should have issued a warning.

• GH#416: The documentation build was using the non-standard which command. Patch by Michał Górny.

5.2.0 (2024-03-30)

Other changes

• LP#1958539: The lxml.html.clean implementation suffered from several (only if used) security issues in the past and was now extracted into a separate library:

  https://github.com/fedora-python/lxml_html_clean

  Projects that use lxml without "lxml.html.clean" will not notice any difference, except that they won't have potentially vulnerable code installed. The module is available as an "extra" setuptools dependency "lxml[html_clean]", so that Projects that need "lxml.html.clean" will need to switch their requirements from "lxml" to "lxml[html_clean]", or install the new library themselves.

• The minimum CPU architecture for the Linux x86 binary wheels was upgraded to "sandybridge" (launched 2011), and glibc 2.28 / gcc 12 (manylinux_2_28) wheels were added.

• Built with Cython 3.0.10.

5.1.2 (2024-??-??)

Bugs fixed

• LP#2059977: Element.iterfind("//absolute_path") failed with a SyntaxError where it should have issued a warning.

5.1.1 (2024-03-28)

... (truncated)

Commits

• 47f94ff Update changelog.
• 932a41e Update macOS build isntructions.
• 888153a Merge branch 'lxml-5.1'
• fcf00fb Update changelog.
• 76fd4f9 Fix SyntaxError in Element.iterfind() that should have been a warning.
• 4faebe3 Fix test.
• 9b8e36d Fix SyntaxError in Element.iterfind() that should have been a warning.
• 175c66a Build: Reduce the number of build jobs by disabling some old targets.
• 06ad31c Prepare release of 5.2.1.
• 24dafd3 Build: Fix Makefile to work on systems without which(1) (GH-416)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions