chore(deps): bump the runtime-dependencies group with 2 updates

[dependabot]

Bumps the runtime-dependencies group with 2 updates: importlib-resources and simplejson.

Updates importlib-resources from 6.4.0 to 6.4.3

Changelog

Sourced from importlib-resources's changelog.

v6.4.3

Bugfixes

• When inferring the caller in files()python/cpython#123085

v6.4.2

Bugfixes

• Merged fix for UTF-16 BOM handling in functional tests. (#312)

v6.4.1

Bugfixes

• python/cpython#121735

Commits

• d021417 Finalize
• 0ecbc3b Merge pull request #314 from python/gh-123085/inferred-compiled
• 79fa62f Add docstring and reference to the issue.
• 90c0e42 Rely on resources.__name__ for easier portability.
• d618902 Add news fragment.
• ebc5b97 Extract the filename from the topmost frame of the stack.
• 4ea81bf Extract a function for computing 'this filename' once.
• cba8dce Adapt changes for new fixtures.
• 198adec gh-121735: Fix inferring caller when resolving importlib.resources.files()
• 21afd61 Merge changes to syncronize the 6.4 release with downstream CPython changes.
• Additional commits viewable in compare view

Updates simplejson from 3.19.2 to 3.19.3

Release notes

Sourced from simplejson's releases.

v3.19.3

Version 3.19.3 released 2024-08-14

• Updated test & build matrix to include Python 3.13. Dropped wheel support for Python 2.7 on macOS. simplejson/simplejson#326

Changelog

Sourced from simplejson's changelog.

Version 3.19.3 released 2024-08-14

• Updated test & build matrix to include Python 3.13. Dropped wheel support for Python 2.7 on macOS. simplejson/simplejson#326

Version 3.19.2 released 2023-10-05

• Updated test & build matrix to include Python 3.12 and use GitHub Actions as a Trusted Publisher (OIDC) simplejson/simplejson#317

Version 3.19.1 released 2023-04-06

• This release contains security hardening measures based on recommendations by a security audit sponsored by OSTIF and conducted by X41 D-Sec GmbH. Several of these measures include changing defaults to be more strict, by default simplejson will now only consume and produce compliant JSON, but the flags still exist for any backwards compatibility needs. No high priority issues were discovered, the reference count leak is thought to be unreachable since the digits of the float are checked before PyOS_string_to_double is called. A link to the public version of this report will be included in a future release of simplejson. The following fixes were implemented in one PR: simplejson/simplejson#313
• Fix invalid handling of unicode escape sequences in the pure Python implementation of the decoder (SJ-PT-23-01)
• Fix missing reference count decrease if PyOS_string_to_double raises an exception in Python 2.x; was probably unreachable (SJ-PT-23-02)
• Backport the integer string length limitation from Python 3.11 to limit quadratic number parsing (SJ-PT-23-03)
• Fix inconsistencies with error messages between the C and Python implementations (SJ-PT-23-100)
• Remove unused unichr import from encoder (SJ-PT-23-101)
• Remove unused namedtuple_as_object and tuple_as_array arguments from simplejson.load (SJ-PT-23-102)
• Remove vestigial _one_shot code from iterencode (SJ-PT-23-103)
• Change default of allow_nan from True to False and add allow_nan to decoder (SJ-PT-23-107)

Version 3.18.4 released 2023-03-14

• Test the sdist to prevent future regressions simplejson/simplejson#311
• Enable ppc64le wheels simplejson/simplejson#312

Version 3.18.3 released 2023-02-05

• Fix regression in sdist archive

... (truncated)

Commits

• 6932004 v3.19.3
• c96227a Merge pull request #326 from edgarrmondragon/cp313
• 6900b4b Build 2.7 wheels only for Linux
• 0e1c842 Updated test & build matrix to include Python 3.13
• 2d759f4 Merge pull request #319 from SmartHypercube-fork/master
• 728c010 Remove the note mentioning YAML
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

📚 Documentation preview 📚: https://meltano-sdk--2608.org.readthedocs.build/en/2608/

[codspeed-hq]

CodSpeed Performance Report

Merging #2608 will not alter performance

_{Comparing dependabot/pip/runtime-dependencies-c00e454328 (1bacd3a) with main (b6fa56a)}

Summary

✅ 6 untouched benchmarks

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 89.70%. Comparing base (3be5d97) to head (1bacd3a).
Report is 116 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2608      +/-   ##
==========================================
- Coverage   89.74%   89.70%   -0.05%     
==========================================
  Files          58       58              
  Lines        4848     4848              
  Branches      947      947              
==========================================
- Hits         4351     4349       -2     
- Misses        347      349       +2     
  Partials      150      150              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.