chore(deps): update dependency python-gitlab to v4.5.0

This MR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
python-gitlab (changelog)	==4.4.0 -> ==4.5.0

---

Release Notes

python-gitlab/python-gitlab

v4.5.0

Compare Source

Build

• build: Add "--no-cache-dir" to pip commands in Dockerfile

This would not leave cache files in the built docker image.

Additionally, also only build the wheel in the build phase.

On my machine, before this MR, size is 7484539; after this MR, size is 7261771. (4ef94c8)

Chore

• chore(deps): update all non-major dependencies (4f338ae)

• chore(deps): update gitlab/gitlab-ee docker tag to v16.11.2-ee.0 (9be48f0)

• chore(deps): update dependency myst-parser to v3 (9289189)

• chore(deps): update all non-major dependencies (65d0e65)

• chore(deps): update dependency jinja2 to v3.1.4 [security] (8ea10c3)

• chore(deps): update all non-major dependencies (1f0343c)

• chore(deps): update gitlab/gitlab-ee docker tag to v16.11.1-ee.0 (1ed8d6c)

• chore(deps): update all non-major dependencies (0e9f4da)

• chore(deps): update gitlab/gitlab-ee docker tag to v16 (ea8c4c2)

• chore(deps): update all non-major dependencies (d5b5fb0)

• chore(deps): update dependency pytest-cov to v5 (db32000)

• chore: update mypy to 1.9.0 and resolve one issue

mypy 1.9.0 flagged one issue in the code. Resolve the issue. Current unit tests already check that a None value returns text/plain. So function is still working as expected. (dd00bfc)

• chore(deps): update dependency black to v24.3.0 [security] (f6e8692)

• chore(deps): update all non-major dependencies (14a3ffe)

• chore(deps): update all non-major dependencies (3c4dcca)

• chore(deps): update all non-major dependencies (04c569a)

• chore: add tox labels to enable running groups of environments

tox now has a feature of labels which allows running groups of environments using the command tox -m LABEL_NAME. For example tox -m lint which has been setup to run the linters.

Bumped the minimum required version of tox to be 4.0, which was released over a year ago. (d7235c7)

• chore: add py312 & py313 to tox environment list

Even though there isn't a Python 3.13 at this time, this is done for the future. tox is already configured to just warn about missing Python versions, but not fail if they don't exist. (679ddc7)

• chore(deps): update python-semantic-release/python-semantic-release action to v9 (e11d889)

• chore(deps): update all non-major dependencies (3c4b27e)

• chore(deps): update dependency furo to v2024 (f6fd02d)

• chore(deps): update dependency pytest to v8 (253babb)

• chore(deps): update dependency pytest-docker to v3 (35d2aec)

• chore: update version of black for pre-commit

The version of black needs to be updated to be in sync with what is in requirements-lint.txt (3501716)

• chore(deps): update all non-major dependencies (7dc2fa6)

• chore(deps): update codecov/codecov-action action to v4 (d2be1f7)

• chore: adapt style for black v24 (4e68d32)

• chore(deps): update dependency black to v24 (f59aee3)

• chore(deps): update all non-major dependencies (48726fd)

Documentation

• docs: add FAQ about conflicting parameters

We have received multiple issues lately about this. Add it to the FAQ. (683ce72)

• docs(README): tweak GitLab CI usage docs (d9aaa99)

• docs: how to run smoke tests

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> (2d1f487)

• docs(objects): minor rst formatting typo

To correctly format a code block have to use :: (57dfd17)

• docs: correct rotate token example

Rotate token returns a dict. Change example to print the entire dict.

Closes: #​2836 (c53e695)

• docs: Note how to use the Docker image from within GitLab CI

Ref: #​2823 (6d4bffb)

• docs(artifacts): Fix argument indentation (c631eeb)

Feature

• feat(job_token_scope): support Groups in job token allowlist API (#​2816)

• feat(job_token_scope): support job token access allowlist API

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> l.dwp.gov.uk> Co-authored-by: Nejc Habjan <nejc.habjan@siemens.com> (2d1b749)

• feat(cli): allow skipping initial auth calls (001e596)

• feat(api): allow updating protected branches (#​2771)

• feat(api): allow updating protected branches

Closes #​2390 (a867c48)

Fix

• fix: Consider scope an ArrayAttribute in PipelineJobManager

List query params like 'scope' were not being handled correctly for pipeline/jobs endpoint. This change ensures multiple values are appended with '[]', resulting in the correct URL structure.

Signed-off-by: Guilherme Gallo <guilherme.gallo@collabora.com>

---

Background: If one queries for pipeline jobs with scope=[&#​34;failed&#​34;, &#​34;success&#​34;]

One gets: GET /api/v4/projects/176/pipelines/1113028/jobs?scope=success&scope=failed

But it is supposed to get: GET /api/v4/projects/176/pipelines/1113028/jobs?scope[]=success&scope[]=failed

The current version only considers the last element of the list argument.

Signed-off-by: Guilherme Gallo <guilherme.gallo@collabora.com> (c5d0404)

• fix(test): use different ids for merge request, approval rule, project

The original bug was that the merge request identifier was used instead of the approval rule identifier. The test didn't notice that because it used 1 for all identifiers. Make these identifiers different so that a mixup will become apparent. (c23e6bd)

• fix(api): fix saving merge request approval rules

Closes #​2548 (b8b3849)

• fix: user.warn() to show correct filename of issue

Previously would only go to the 2nd level of the stack for determining the offending filename and line number. When it should be showing the first filename outside of the python-gitlab source code. As we want it to show the warning for the user of the libraries code.

Update test to show it works as expected. (529f1fa)

• fix(api): update manual job status when playing it (9440a32)

• fix(cli): allow exclusive arguments as optional (#​2770)

• fix(cli): allow exclusive arguments as optional

The CLI takes its arguments from the RequiredOptional, which has three fields: required, optional, and exclusive. In practice, the exclusive options are not defined as either required or optional, and would not be allowed in the CLI. This changes that, so that exclusive options are also added to the argument parser.

• fix(cli): inform argument parser that options are mutually exclusive

• fix(cli): use correct exclusive options, add unit test

Closes #​2769 (7ec3189)

Test

• test: remove approve step

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> (48a6705)

• test: tidy up functional tests

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> (06266ea)

• test: update api tests for GL 16.10

• Make sure we're testing python-gitlab functionality, make sure we're not awaiting on Gitlab Async functions
• Decouple and improve test stability

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> (4bef473)

• test(functional): enable bulk import feature flag before test (b81da2e)

• test: don't use weak passwords

Newer versions of GitLab will refuse to create a user with a weak password. In order for us to move to a newer GitLab version in testing use a stronger password for the tests that create a user. (c64d126)

• test: update tests for gitlab 16.8 functionality

• use programmatic dates for expires_at in tokens tests
• set PAT for 16.8 into tests

Signed-off-by: Tim Knight <tim.knight1@​engineering.digital.dwp.gov.uk> (f8283ae)

• test(smoke): normalize all dist titles for smoke tests (ee013fe)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this MR and you won't be reminded about this update again.

---

• If you want to rebase/retry this MR, check this box

---

This MR has been generated by Renovate Bot.