Bump the python group in /tests with 4 updates

[dependabot]

Bumps the python group in /tests with 4 updates: cryptography, grpcio, grpcio-tools and jinja2.

Updates cryptography from 42.0.5 to 42.0.7

Changelog

Sourced from cryptography's changelog.

42.0.7 - 2024-05-06

* Restored Windows 7 compatibility for our pre-built wheels. Note that we do
  not test on Windows 7 and wheels for our next release will not support it.
  Microsoft no longer provides support for Windows 7 and users are encouraged
  to upgrade.
.. _v42-0-6:
42.0.6 - 2024-05-04

• Fixed compilation when using LibreSSL 3.9.1.

.. _v42-0-5:

Commits

• 0cc7fc3 Prepare for 42.0.7 release (#10949)
• cfad004 Prepare backports for 42.0.6 release (#10929)
• See full diff in compare view

Updates grpcio from 1.62.2 to 1.63.0

Release notes

Sourced from grpcio's releases.

Release v1.63.0

This is release 1.63.0 (giggle) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [Deps] Backport: Protobuf upgrade to v26.1. (#36353)
• [OTel C++] Add experimental optional locality label available to client per-attempt metrics. (#36254)
• [surface] Add an API to inject connected endpoints into servers. (#35957)
• [CMake] Add gRPC_USE_SYSTEMD option. (#34384)
• [OTel C++] Add API to set channel scope filter. (#36189)
• [Deps] Upgraded protobuf to v26.1. (#35796)
• [channel] canonify target and set channel arg in only one place. (#36134)
• [grpc][Gpr_To_Absl_Logging] Using absl from within gpr logging. (#36108)
• [BoringSSL] Update third_party/boringssl-with-bazel. (#36089)
• [EventEngine] Document RunAfter can return an invalid handle for immediate execution. (#36072)
• [EventEngine] Enable the EventEngine DNS Resolver on Posix. (#35573)
• [EventEngine] Support AF_UNIX for windows. (#34801)

C++

• [OTel C++] Add APIs to enable/disable metrics. (#36183)
• [EventEngine] Refactor ServerCallbackCall to use EventEngine::Run. (#36126)
• [OTel C++] Add CMake build support. (#36063)
• gRPC C++ upgraded Protobuf to v26.1. (#36323)

C#

• [csharp] Fix csharp doc comments. (#36000)
• C#: Grpc.Tools: Handle regex timeout when parsing protoc output. (#36185)

PHP

• Update min PHP testing version from PHP 7.4 to 8.1. (#35964)

Python

• [Python Version] Drop support for Python 3.7. (#34450)
• [Python Aio] Change aio Metadata inheritance. (#36214)
• [Documentation] fix asyncio Server and Channel stop() method documentation. (#35946)
• [Python O11y] Change public interface. (#36094)

... (truncated)

Commits

• ac14185 [Release] Bump version to 1.63.0 (on v1.63.x branch) (#36456)
• 7df7f92 [Release] Bump version to 1.63.0-pre2 (on v1.63.x branch) (#36377)
• cdbc13e [Gpr_To_Absl_Logging] Disable absl logging (#36378)
• 60c35ba [Python Dist] Fix grpc_distribtests_python (v1.63.x backport) (#36363)
• 81a913e [Deps] Backport: Protobuf upgrade to v26.1 (#36353)
• bc470e4 [release] Cherry-pick `grpc/grpc@e510ff89aa38d9c924...
• cfea053 [Release] Bump version to 1.63.0-pre1 (on v1.63.x branch) (#36338)
• c73c24a [experiments] Set call_status_override_on_cancellation default to false f...
• 0a7a85a [Release] Bump core version to 40.0.0 for upcoming release (#36293)
• b6989ff [interop] Add 1.63.2 release of grpc-go to interop matrix (#36305)
• Additional commits viewable in compare view

Updates grpcio-tools from 1.62.2 to 1.63.0

Release notes

Sourced from grpcio-tools's releases.

Release v1.63.0

This is release 1.63.0 (giggle) of gRPC Core.

For gRPC documentation, see grpc.io. For previous releases, see Releases.

This release contains refinements, improvements, and bug fixes, with highlights listed below.

Core

• [Deps] Backport: Protobuf upgrade to v26.1. (#36353)
• [OTel C++] Add experimental optional locality label available to client per-attempt metrics. (#36254)
• [surface] Add an API to inject connected endpoints into servers. (#35957)
• [CMake] Add gRPC_USE_SYSTEMD option. (#34384)
• [OTel C++] Add API to set channel scope filter. (#36189)
• [Deps] Upgraded protobuf to v26.1. (#35796)
• [channel] canonify target and set channel arg in only one place. (#36134)
• [grpc][Gpr_To_Absl_Logging] Using absl from within gpr logging. (#36108)
• [BoringSSL] Update third_party/boringssl-with-bazel. (#36089)
• [EventEngine] Document RunAfter can return an invalid handle for immediate execution. (#36072)
• [EventEngine] Enable the EventEngine DNS Resolver on Posix. (#35573)
• [EventEngine] Support AF_UNIX for windows. (#34801)

C++

• [OTel C++] Add APIs to enable/disable metrics. (#36183)
• [EventEngine] Refactor ServerCallbackCall to use EventEngine::Run. (#36126)
• [OTel C++] Add CMake build support. (#36063)
• gRPC C++ upgraded Protobuf to v26.1. (#36323)

C#

• [csharp] Fix csharp doc comments. (#36000)
• C#: Grpc.Tools: Handle regex timeout when parsing protoc output. (#36185)

PHP

• Update min PHP testing version from PHP 7.4 to 8.1. (#35964)

Python

• [Python Version] Drop support for Python 3.7. (#34450)
• [Python Aio] Change aio Metadata inheritance. (#36214)
• [Documentation] fix asyncio Server and Channel stop() method documentation. (#35946)
• [Python O11y] Change public interface. (#36094)

... (truncated)

Commits

• ac14185 [Release] Bump version to 1.63.0 (on v1.63.x branch) (#36456)
• 7df7f92 [Release] Bump version to 1.63.0-pre2 (on v1.63.x branch) (#36377)
• cdbc13e [Gpr_To_Absl_Logging] Disable absl logging (#36378)
• 60c35ba [Python Dist] Fix grpc_distribtests_python (v1.63.x backport) (#36363)
• 81a913e [Deps] Backport: Protobuf upgrade to v26.1 (#36353)
• bc470e4 [release] Cherry-pick `grpc/grpc@e510ff89aa38d9c924...
• cfea053 [Release] Bump version to 1.63.0-pre1 (on v1.63.x branch) (#36338)
• c73c24a [experiments] Set call_status_override_on_cancellation default to false f...
• 0a7a85a [Release] Bump core version to 40.0.0 for upcoming release (#36293)
• b6989ff [interop] Add 1.63.2 release of grpc-go to interop matrix (#36305)
• Additional commits viewable in compare view

Updates jinja2 from 3.1.3 to 3.1.4

Release notes

Sourced from jinja2's releases.

3.1.4

This is the Jinja 3.1.4 security release, which fixes security issues and bugs but does not otherwise change behavior and should not result in breaking changes.

PyPI: https://pypi.org/project/Jinja2/3.1.4/ Changes: https://jinja.palletsprojects.com/en/3.1.x/changes/#version-3-1-4

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. GHSA-h75v-3vvj-5mfj

Changelog

Sourced from jinja2's changelog.

Version 3.1.4

Released 2024-05-05

• The xmlattr filter does not allow keys with / solidus, > greater-than sign, or = equals sign, in addition to disallowing spaces. Regardless of any validation done by Jinja, user input should never be used as keys to this filter, or must be separately validated first. :ghsa:h75v-3vvj-5mfj

Commits

• dd4a8b5 release version 3.1.4
• 0668239 Merge pull request from GHSA-h75v-3vvj-5mfj
• d655030 disallow invalid characters in keys to xmlattr filter
• a7863ba add ghsa links
• b5c98e7 start version 3.1.4
• da3a9f0 update project files (#1968)
• 0ee5eb4 satisfy formatter, linter, and strict mypy
• 20477c6 update project files (#5457)
• e491223 update pyyaml dev dependency
• 36f9885 fix pr link
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[pdabelf5]

@dependabot rebase