build(deps): bump mypy from 0.931 to 0.940

[dependabot]

Bumps mypy from 0.931 to 0.940.

Commits

• 48ff811 Bump version to 0.940
• 7390280 Trigger wheel builds
• 942395a Minor documentation updates (#12329)
• 5954bc9 Update copyright in LICENSE (#12330)
• 8650f5c stubgen: fix non default keyword-only argument positioning (#12303)
• 226661f Exhaustiveness checking for match statements (#12267)
• fce1b54 CI: Do not run mypy_primer on stubtest/stubgen PRs (#12295)
• c7a8162 stubtest: ignore more dunder positional-only errors (#12294)
• b3752a6 Revert "stubtest pos-only differences in dunders (#12184)" (#12293)
• 4d99f7c teststubtest: further fix tests (#12287)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[duckontheweb]

The failing CI for 3.11 is coming from the maturin build of orjson. maturin tries to import tomli and falls back to importing tomllib if that is unavailable. However, maturin only lists tomli as a dependency for python_version<'3.11' here so neither dependency is available at build time. I will open an issue on maturin to address this, but since 3.11 support is experimental, I am approving this PR.

[duckontheweb]

cc: @gadomski

[gadomski]

Could we install tomli as a workaround to get it passing? Either in CI for the 3.11 build only, or in requirements-dev.txt?

[duckontheweb]

Could we install tomli as a workaround to get it passing? Either in CI for the 3.11 build only, or in requirements-dev.txt?

I opened PyO3/maturin#850 to address this and then almost immediately afterwards came across PEP 680, which adds tomllib to Python 3.11. It seems like this has not yet been implemented in the alpha releases, which is why we are seeing this failure. My preference would be to not patch this so that we know when this install starts to succeed in Python 3.11. @gadomski what do you think?

[duckontheweb]

It looks like maturin changed their build system dependencies about 6 days ago in v0.12.10, which is probably why we're just seeing this.

[duckontheweb]

tomllib has been integrated into CPython on the main branch but won't be in an alpha release until the next scheduled release on Apr. 5 according to pylint-dev/pylint#5920.

Since the changes have been merged and there is a pretty short timeline to the next release I would be okay with patching this by installing tomli for now and then removing that install when we upgrade the 3.11 prerelease version in the CI.

[codecov-commenter]

Codecov Report

❗ No coverage uploaded for pull request base (main@bcdf2e7). Click here to learn what that means.
The diff coverage is n/a.

❗ Current head 47f77eb differs from pull request most recent head ad4bd63. Consider uploading reports for the commit ad4bd63 to get more accurate results

@@           Coverage Diff           @@
##             main     #765   +/-   ##
=======================================
  Coverage        ?   94.55%           
=======================================
  Files           ?       79           
  Lines           ?    11622           
  Branches        ?     1370           
=======================================
  Hits            ?    10989           
  Misses          ?      455           
  Partials        ?      178           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update bcdf2e7...ad4bd63. Read the comment docs.

[dependabot]

A newer version of mypy exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

[duckontheweb]

PEP 680

@gadomski Since setuptools creates an isolated build environment, it didn't work to install tomli prior to installing orjson. Similarly, I don't think it will work to install an older version of maturin that avoids the issue because it will also be installed outside of the build environment. I'm inclined to not spend any more time on this and just accept the failures until the next Python 3.11 alpha release is out unless you have another angle you want to try.

[gadomski]

Yeah, I think it's fine to carry on, that's the whole point of the non-required CI checks eh?