From 15978192f587f3a9bad92b92c4c80ffd8ff57868 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 28 Jul 2022 20:17:43 +0200
Subject: [PATCH] Bump pip from 22.2 to 22.2.1 (PR #4609)
Bumps [pip](https://github.com/pypa/pip) from 22.2 to 22.2.1.
Changelog
Sourced from pip's changelog.
22.2.1 (2022-07-27)
Bug Fixes
- Send the pip upgrade prompt to stderr. (
[#11282](https://github.com/pypa/pip/issues/11282) <https://github.com/pypa/pip/issues/11282>_)
- Ensure that things work correctly in environments where setuptools-injected
distutils is available by default. This is done by cooperating with
setuptools' injection logic to ensure that pip uses the distutils from the
Python standard library instead. ([#11298](https://github.com/pypa/pip/issues/11298) <https://github.com/pypa/pip/issues/11298>_)
- Clarify that
pip cache's wheels-related output is about locally built wheels only. ([#11300](https://github.com/pypa/pip/issues/11300) <https://github.com/pypa/pip/issues/11300>_)
Commits
61bdbe0 Bump for releasefcb0c84 Merge pull request #11298 from pradyunsg/remove-distutils-shima14f141 :newspaper:b728bda Remove the setuptools-provided distutils hack, if using distutils0231a1d Merge pull request #11303 from vanschelven/clarify-pip-cache-output80c3b96 Textual: "locally built" rather than "built"d57c5dd Fixed the testsf2c49cd Add news article906b877 Clarify pip cache outputc4606b3 Merge pull request #11283 from pfmoore/classifier_311- Additional commits viewable in compare view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
---
changelogs/unreleased/4609-dependabot.yml | 5 +++++
requirements.txt | 2 +-
2 files changed, 6 insertions(+), 1 deletion(-)
create mode 100644 changelogs/unreleased/4609-dependabot.yml
diff --git a/changelogs/unreleased/4609-dependabot.yml b/changelogs/unreleased/4609-dependabot.yml
new file mode 100644
index 0000000000..21cbee8a11
--- /dev/null
+++ b/changelogs/unreleased/4609-dependabot.yml
@@ -0,0 +1,5 @@
+change-type: patch
+description: Bump pip from 22.2 to 22.2.1
+destination-branches:
+- iso5
+sections: {}
diff --git a/requirements.txt b/requirements.txt
index 732ea6a216..a55e218f4f 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -13,7 +13,7 @@ jinja2==3.1.2
more-itertools==8.13.0
netifaces==0.11.0
packaging==21.3
-pip==22.2
+pip==22.2.1
ply==3.11
pydantic==1.9.1
pyformance==0.4