chore(deps): update all dependencies

[renovate-bot]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
cryptography (changelog)	< 39.0.0 -> <41.0.8
google-auth	==2.11.0 -> ==2.25.2
google-cloud-compute (source)	==1.5.1 -> ==1.15.0
google-cloud-storage	==2.5.0 -> ==2.14.0
pytest (source, changelog)	==7.1.2 -> ==7.4.3

---

Release Notes

pyca/cryptography (cryptography)

v41.0.7

Compare Source

v41.0.6

Compare Source

v41.0.5

Compare Source

v41.0.4

Compare Source

v41.0.3

Compare Source

v41.0.2

Compare Source

v41.0.1

Compare Source

v41.0.0

Compare Source

v40.0.2

Compare Source

v40.0.1

Compare Source

v40.0.0

Compare Source

v39.0.2

Compare Source

v39.0.1

Compare Source

v39.0.0

Compare Source

googleapis/google-auth-library-python (google-auth)

v2.25.2

Compare Source

Bug Fixes

• Fix user cred universe domain issue (#​1436) (ae314a8)

v2.25.1

Compare Source

Bug Fixes

• Fix vm universe_domain bug (#​1433) (8683520)

v2.25.0

Compare Source

Features

• Add custom tls signer for ECP Provider. (39eb287)
• Add custom tls signer for ECP Provider. (#​1402) (39eb287)

Bug Fixes

• Add with_universe_domain (#​1408) (505910c)
• Fixes issue where Python37DeprecationWarning cannot be filtered (#​1428) (f22f767)
• Remove broken link in Python37DeprecationWarning (#​1430) (e2db602)

v2.24.0

Compare Source

Features

• Add support for Python 3.12 (#​1421) (307916c)
• Add universe domain support for VM cred (#​1409) (7ab0fce)
• Modify the token refresh window (#​1419) (c6af1d6)

Bug Fixes

• Add missing before request to async oauth2 credentials. (#​1420) (8eaa878)
• Auto create self signed jwt cred (#​1418) (6c610a5)
• Migrate datetime.utcnow for python 3.12 (#​1413) (e4d9c27)

Documentation

• Update user cred doc (#​1414) (3f426bc)

v2.23.4

Compare Source

Bug Fixes

• Export detect_gce_residency_linux function (#​1403) (809da13)

v2.23.3

Compare Source

Bug Fixes

• Serialize signer keys on getstate for pickling (#​1394) (8b783b9), closes #​1383

v2.23.2

Compare Source

Bug Fixes

• Support urllib3<2.0 versions (#​1390) (07c464a)

v2.23.1

Compare Source

Bug Fixes

• Less restrictive content-type header check for google authentication (ignores charset) (#​1382) (7039beb)
• Trust boundary meta header renaming and using the schema from backend team. (#​1384) (2503d4a)
• Update urllib3 to >= 2.0.5 (#​1389) (a99f3bb)

v2.23.0

Compare Source

Features

• Add get_bq_config_path() to _cloud_sdk.py (9f52f66)
• Add get_bq_config_path() to _cloud_sdk.py (#​1358) (9f52f66)

Bug Fixes

• Expose universe domain in credentials (#​1380) (8b8fce6)
• Make external_account resistant to string type 'expires_in' responses from non-compliant services (#​1379) (01d3770)
• Missing ssj for impersonate cred (#​1377) (7d453dc)
• Skip checking projectid on cred if env var is set (#​1349) (a4135a3)

v2.22.0

Compare Source

Features

• Adding meta header for trust boundary (#​1334) (908c8d1)
• Introduce compatibility with native namespace packages (#​1205) (2f75922)

Bug Fixes

• Deprecate UserAccessTokenCredentials (#​1344) (5f97fe9)

v2.21.0

Compare Source

Features

• Add framework for BYOID metrics headers (#​1332) (1a8f50c)

Bug Fixes

• Pypy unit test build (#​1335) (33e4263)

v2.20.0

Compare Source

Features

• Add public API load_credentials_from_dict (#​1326) (5467ad7)

Bug Fixes

• Expiry in compute_engine.IDTokenCredentials (#​1327) (56a6159), closes #​1323
• Expiry in impersonated_credentials.IDTokenCredentials (#​1330) (d1b887c)
• Invalid dev version identifiers in setup.py (#​1322) (a9b8f12), closes #​1321

v2.19.1

Compare Source

Bug Fixes

• Check id token error response (#​1315) (2a71f7b)
• Fix "AttributeError: 'str' object has no attribute 'get'" (dac7cc3)

Documentation

• Replacing abc.com with example.com (dac7cc3)

v2.19.0

Compare Source

Features

• Add metrics (part 1) (#​1298) (246dd07)
• Add metrics (part 2) (#​1303) (ebd5af7)
• Add metrics (part 3) (#​1305) (c7011b6)
• Expose universe_domain for external account creds (#​1296) (ee07053)
• Remove python 2.7 from setup.py and nox tests (#​1301) (8437490)

v2.18.1

Compare Source

Bug Fixes

• Self signed jwt token should be string type (#​1294) (17356fd)

v2.18.0

Compare Source

Features

• Add smbios check to detect GCE residency (#​1276) (22d241b)
• Universe domain support for service account (#​1286) (821c1b6)

v2.17.3

Compare Source

Bug Fixes

• Add useEmailAzp claim for id token iam flow (#​1270) (7a9c6f2)

v2.17.2

Compare Source

Bug Fixes

• Do not create new JWT credentials if they make the same claims as the existing. (#​1267) (eebb7b6)

v2.17.1

Compare Source

Bug Fixes

• Print out reauth plugin error and raise if challenge output is None (#​1265) (08d22fe)

v2.17.0

Compare Source

Features

• Experimental service account iam endpoint flow for id token (#​1258) (8ff0de5)

Bug Fixes

• Python: Remove aws url validation (#​1254) (20a966b)

v2.16.3

Compare Source

Bug Fixes

• Read both applicationId and relyingPartyId. (#​1246) (e125dfe)

v2.16.2

Compare Source

Bug Fixes

• Call gcloud config get project to get project for user cred (#​1243) (c078a13)
• Do not use hardcoded string 'python', when you mean sys.executable. (#​1233) (91ac8e6)
• Don't retry if error or error_description is not string (#​1241) (e2d263a)
• Improve ADC related errors and warnings (#​1237) (2dfa213)

v2.16.1

Compare Source

Bug Fixes

• Add support for python 3.11 (#​1212) (1fc95e3)
• Remove 3PI config url validation (#​1220) (8b95515)
• Update the docs generator interpreter to unblock documentation build (#​1218) (9d36c2f)

v2.16.0

Compare Source

Features

• AwsCredentials should not call metadata server if security creds and region are retrievable through the environment variables (#​1195) (5e27c8f)
• Wrap all python built-in exceptions into library excpetions (#​1191) (a83af39)

Bug Fixes

• Allow get_project_id to take a request (#​1203) (9a4d23a)
• Make OAUTH2.0 client resistant to string type 'expires_in' responses from non-compliant services (#​1208) (9fc7b1c)

v2.15.0

Compare Source

Features

• Add api_key credentials (#​1184) (370293e)
• Introduce a way to provide scopes granted by user (#​1189) (189f504)

Bug Fixes

• Allow mtls sts endpoint for external account token urls. (#​1185) (c86dd69)
• CI broken by removal of py.path (#​1194) (f719415)
• Ensure JWT segments have the right types (#​1162) (fc843cd)
• Updated the lower bound of interactive timeout and fix the kwarg… (#​1182) (50c0fd2)

v2.14.1

Compare Source

Bug Fixes

• Apply quota project for compute cred in adc (#​1177) (b9aa92a)
• Update minimum required version of cryptography in pyopenssl extra (#​1176) (e9e76d1)
• Validate url domain for aws metadata urls (#​1174) (f9d7d77)

v2.14.0

Compare Source

Features

• Add token_info_url to external account credentials (#​1168) (9adee75)
• Read Quota Project from Environment Variable (#​1163) (57b3e42)

Bug Fixes

• Adding more properties to external_account_authorized_user (#​1169) (a12b96d)

v2.13.0

Compare Source

Features

• Adds new external account authorized user credentials (#​1160) (523f811)
• Implement pluggable auth interactive mode (#​1131) (44a189f)
• Introduce the functionality to override token_uri in credentials (#​1159) (73bc7e9)

Bug Fixes

• Adding one more pattern to relax the regex check for sts and impersonation url endpoints (#​1158) (75326e3)

v2.12.0

Compare Source

Features

• Retry behavior (#​1113) (78d3790)

Bug Fixes

• Modify RefreshError exception to use gcloud ADC command. (#​1149) (059fd35)
• Revert "Update token refresh threshold from 20 seconds to 5 minutes". (186464b)

v2.11.1

Compare Source

Bug Fixes

• Fix socket leak in impersonated_credentials (#​1123) (b1eb467), closes #​1122
• Make pluggable auth tests work in all environments (#​1114) (bb5c979)
• Skip oauth2client adapter tests if oauth2client is not installed (#​1132) (d15092f)
• Update token refresh threshold from 20 seconds to 5 minutes (#​1146) (261a561)

Documentation

• samples: Add auth samples and tests (#​1102) (ac87520)

googleapis/google-cloud-python (google-cloud-compute)

v1.15.0: google-cloud-compute: v1.15.0

Compare Source

Features

• [google-cloud-compute] Update Compute Engine API to revision 2023111 (#​868) (#​12092) (51e1478)
• Add support for python 3.12 (b96013d)
• Introduce compatibility with native namespace packages (b96013d)

Bug Fixes

• Require proto-plus >= 1.22.3 (b96013d)
• Use retry_async instead of retry in async client (b96013d)

v1.12.1: google-cloud-workflows: v1.12.1

Documentation

• Minor formatting (77bf61a)

v1.11.0: google-cloud-billing: v1.11.0

Features

• added resource_reference for name in GetProjectBillingInfoRequest message (#​11409) (1ec86ce)

v1.9.0: google-cloud-artifact-registry: v1.9.0

Features

• add support for cleanup policies (b9fa436)
• add support for Docker immutable tags (b9fa436)
• add support for Go and KFP repositories (b9fa436)
• add support for Physical Zone Separation (b9fa436)
• add support for virtual and remote repositories (b9fa436)
• expose the size of the Repository resource (b9fa436)

Documentation

• mark the create_time and update_time in the Repository resource as output only fields (b9fa436)
• mark the repository_id and repository fields in the CreateRepository request as required fields (b9fa436)
• use code font for resource name references (b9fa436)

v1.8.0: google-cloud-service-usage: v1.8.0

Features

• added ConsumerQuotaLimit.supported_locations (be7f5e4)
• added ProducerQuotaPolicy message and QuotaBucket.producer_quota_policy field (be7f5e4)
• introduce resource class serviceusage.googleapis.com/Service (be7f5e4)

Documentation

• Minor formatting (025219f)

googleapis/python-storage (google-cloud-storage)

v2.14.0

Compare Source

Features

• Add support for Python 3.12 (#​1187) (ecf4150)
• Support object retention lock (#​1188) (a179337)

Bug Fixes

• Clarify error message and docstrings in Blob class method (#​1196) (92c20d3)
• Propagate timeout in BlobWriter (#​1186) (22f36da), closes #​1184
• Use native namespace to avoid pkg_resources warnings (#​1176) (2ed915e)

v2.13.0

Compare Source

Features

• Add Autoclass v2.1 support (#​1117) (d38adb6)
• Add support for custom headers (#​1121) (2f92c3a)

Bug Fixes

• Blob.from_string parse storage uri with regex (#​1170) (0a243fa)
• Bucket.delete(force=True) now works with version-enabled buckets (#​1172) (0de09d3)
• Fix typo in Bucket.clear_lifecycle_rules() (#​1169) (eae9ebe)

Documentation

• Fix exception field in tm reference docs (#​1164) (eac91cb)

v2.12.0

Compare Source

Features

• Add additional_blob_attributes to upload_many_from_filenames (#​1162) (c7229f2)
• Add crc32c_checksum argument to download_chunks_concurrently (#​1138) (fc92ad1)
• Add skip_if_exists to download_many (#​1161) (c5a983d)
• Launch transfer manager to GA (#​1159) (5c90563)

Bug Fixes

• Bump python-auth version to fix issue and remove workaround (#​1158) (28c02dd)
• Mark _deprecate_threads_param as a wrapper to unblock introspection and docs (#​1122) (69bd4a9)

Documentation

• Add snippets for upload_chunks_concurrently and add chunk_size (#​1135) (3a0f551)
• Update formatting and wording in transfer_manager docstrings (#​1163) (9e460d8)

v2.11.0

Compare Source

Features

• Add gccl-gcs-cmd field to X-Goog-API-Client header for Transfer Manager calls (#​1119) (14a1909)
• Add transfer_manager.upload_chunks_concurrently using the XML MPU API (#​1115) (56aeb87)
• Support configurable retries in upload_chunks_concurrently (#​1120) (1271686)

Bug Fixes

• Split retention period tests due to caching change (#​1068) (cc191b0)

Documentation

• Add Transfer Manager documentation in c.g.c (#​1109) (c1f8724)

v2.10.0

Compare Source

Features

• Add matchGlob parameter to list_blobs (#​1055) (d02098e)
• Allow exceptions to be included in batch responses (#​1043) (94a35ba)

Bug Fixes

• Extend wait for bucket metadata consistency in system tests (#​1053) (d78586c)

Documentation

• Add clarification to batch module (#​1045) (11f6024)

v2.9.0

Compare Source

Features

• Un-deprecate blob.download_to_file(), bucket.create(), and bucket.list_blobs() (#​1013) (aa4f282)

Bug Fixes

• Avoid pickling processed credentials (#​1016) (7935824)
• Improve test error message for missing credentials (#​1024) (892481a)

Documentation

• Add sample and sample test for transfer manager (#​1027) (4698799)
• Remove threads in transfer manager samples (#​1029) (30c5146)

v2.8.0

Compare Source

Features

• Add multiprocessing and chunked downloading to transfer manager (#​1002) (e65316b)

Bug Fixes

• Add trove classifier for python 3.11 (#​971) (7886376)
• Remove use of deprecated cgi module (#​1006) (3071832)

Documentation

• Add clarifications to read timeout (#​873) (8fb26f4)
• Fix c.g.c structure (#​982) (d5a2931)
• Update c.g.c docs and guides (#​994) (62b4a50)

v2.7.0

Compare Source

Features

• Add "transfer_manager" module for concurrent uploads and downloads, as a preview feature (#​943) (9998a5e)
• Add use_auth_w_custom_endpoint support (#​941) (5291c08)

Bug Fixes

• Implement closed property on fileio.py classes (#​907) (64406ca)

v2.6.0

Compare Source

Features

• Add Autoclass support and samples (#​791) (9ccdc5f), closes #​797
• Add predefined_acl to create_resumable_upload_session (#​878) (2b3e8f9)
• Enable delete_blobs() to preserve generation (#​840) (8fd4c37), closes #​814
• Make tests run against environments other than prod (#​883) (7dfeb62)

Bug Fixes

• Align bucket bound hostname url builder consistency (#​875) (8a24add)
• BlobWriter.close() will do nothing if already closed (#​887) (7707220)
• Remove client side validations (#​868) (928ebbc)

Documentation

• Update comments in list_blobs sample (#​866) (9469f5d)
• Clarify prefixes entity in list_blobs usage (#​837) (7101f47)
• Streamline docs for migration (#​876) (7c8a178)
• Update docstring for lifecycle_rules to match generator behavior (#​841) (36fb81b)

pytest-dev/pytest (pytest)

v7.4.3: pytest 7.4.3 (2023-10-24)

Compare Source

Bug Fixes

• #​10447: Markers are now considered in the reverse mro order to ensure base class markers are considered first -- this resolves a regression.

• #​11239: Fixed := in asserts impacting unrelated test cases.

• #​11439: Handled an edge case where :data:sys.stderr might already be closed when :ref:faulthandler is tearing down.

v7.4.2: pytest 7.4.2 (2023-09-07)

Compare Source

Bug Fixes

• #​11237: Fix doctest collection of functools.cached_property objects.

• #​11306: Fixed bug using --importmode=importlib which would cause package __init__.py files to be imported more than once in some cases.

• #​11367: Fixed bug where user_properties where not being saved in the JUnit XML file if a fixture failed during teardown.

• #​11394: Fixed crash when parsing long command line arguments that might be interpreted as files.

Improved Documentation

• #​11391: Improved disclaimer on pytest plugin reference page to better indicate this is an automated, non-curated listing.

v7.4.1: pytest 7.4.1 (2023-09-02)

Compare Source

Bug Fixes

• #​10337: Fixed bug where fake intermediate modules generated by --import-mode=importlib would not include the
  child modules as attributes of the parent modules.

• #​10702: Fixed error assertion handling in pytest.approx when None is an expected or received value when comparing dictionaries.

• #​10811: Fixed issue when using --import-mode=importlib together with `--do

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[parthea]

============================= test session starts ==============================
platform linux -- Python 3.7.17, pytest-7.4.3, pluggy-1.2.0
rootdir: /tmpfs/src/github/google-auth-library-python
plugins: asyncio-0.21.1, localserver-0.8.1, cov-4.1.0
asyncio: mode=strict
collected 1253 items / 1 error

==================================== ERRORS ====================================
_________ ERROR collecting tests/transport/test__custom_tls_signer.py __________
ImportError while importing test module '/tmpfs/src/github/google-auth-library-python/tests/transport/test__custom_tls_signer.py'.
Hint: make sure your test modules/packages have valid Python names.
Traceback:
/usr/local/lib/python3.7/importlib/__init__.py:127: in import_module
    return _bootstrap._gcd_import(name[level:], package, level)
tests/transport/test__custom_tls_signer.py:21: in 
    import urllib3.contrib.pyopenssl  # type: ignore
.nox/unit-3-7/lib/python3.7/site-packages/urllib3/contrib/pyopenssl.py:49: in 
    from cryptography.hazmat.backends.openssl.x509 import _Certificate
E   ModuleNotFoundError: No module named 'cryptography.hazmat.backends.openssl.x509'

[forking-renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.