Bump the dependencies group in /.config with 2 updates

[dependabot]

Bumps the dependencies group in /.config with 2 updates: pillow and pygments.

Updates pillow from 11.0.0 to 11.1.0

Release notes

Sourced from pillow's releases.

11.1.0

https://pillow.readthedocs.io/en/stable/releasenotes/11.1.0.html

Documentation

• Added release notes for writing XMP bytes to JPEG and MPO #8627 [@​radarhere]
• Added release notes for using zlib-ng instead of zlib #8599 [@​radarhere]
• Replace python-pillow.org with python-pillow.github.io #8586 [@​hugovk]
• ImageFile tile is never None #8582 [@​radarhere]
• Only use start year in copyright, remove end years #8577 [@​hugovk]
• Python 3.12 is tested on MinGW #8575 [@​radarhere]
• Use brew formula to install libraqm #8574 [@​radarhere]
• Added link to GitHub releases in CHANGES #8571 [@​radarhere]
• Release drafter: move removals, deprecations, documentation up, and uncategorised changes last #8570 [@​hugovk]
• Updated macOS tested Pillow versions #8538 [@​radarhere]
• Use test image filename #8534 [@​radarhere]
• Update Windows 11 Arm64 tested versions #8523 [@​nulano]
• Move MPO into "Fully supported formats" #8504 [@​radarhere]
• Update license to MIT-CMU #8490 [@​radarhere]

Dependencies

• Update dependency mypy to v1.14.1 #8643 [@​renovate]
• Update dependency mypy to v1.14.0 #8613 [@​renovate]
• Updated libwebp to 1.5.0 #8612 [@​radarhere]
• Updated libXau to 1.0.12 #8598 [@​radarhere]
• Updated libjpeg-turbo to 3.1.0 #8595 [@​radarhere]
• Updated harfbuzz to 10.1.0 #8533 [@​radarhere]
• Updated openjpeg to 2.5.3 #8591 [@​radarhere]
• Update dependency cibuildwheel to v2.22.0 #8580 [@​renovate]
• Update codecov/codecov-action action to v5 #8557 [@​renovate]
• Migrate renovate config #8527 [@​renovate]
• Update dependency mypy to v1.13.0 #8491 [@​renovate]
• Update dependency mypy to v1.12.1 #8487 [@​renovate]

Testing

• Added CentOS Stream 10 #8646 [@​radarhere]
• Use monkeypatch #8628 [@​radarhere]
• Pass file handle to ContainerIO #8625 [@​radarhere]
• Use register_handler #8499 [@​radarhere]
• Use monkeypatch #8626 [@​radarhere]
• Test libjpeg-turbo on macOS #8596 [@​radarhere]
• Test 3.13t (free-threaded) from Quansight-Labs/setup-python on Linux and macOS #8565 [@​hugovk]
• Run gcc problem matcher on Python 3.13 #8541 [@​radarhere]
• Add trove-classifiers>=2024.10.12 to 'tests' extra and use for Windows CI #8514 [@​hugovk]
• Apply security fixes to GitHub Actions #8526 [@​hugovk]
• Remove unused gcov: true for codecov-action@v4 #8521 [@​hugovk]
• Added Fedora 41 #8520 [@​radarhere]
• Do not repeatedly save to the same path #8512 [@​radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

11.1.0 and newer

See GitHub Releases:

• https://github.com/python-pillow/Pillow/releases

Commits

• 4c1aed8 11.1.0 version bump
• dfb368a Merge pull request #8651 from radarhere/blp
• 5d998d3 Improved coverage
• 6b75e06 Do not reread start of header in decoder
• b89cc09 Corrected BLP1 alpha depth handling
• aa0f412 Merge pull request #8646 from radarhere/centos
• e344271 Added CentOS Stream 10
• 17f09f3 Merge pull request #8644 from radarhere/c99
• d42f22b Added release notes
• c7026d9 Merge pull request #8642 from radarhere/bigtiff
• Additional commits viewable in compare view

Updates pygments from 2.18.0 to 2.19.0

Release notes

Sourced from pygments's releases.

2.19.0

• New lexers:

  • CodeQL (#2819)
  • Debian Sources (#2788, #2747)
  • Gleam (#2662)
  • GoogleSQL (#2820, #2814)
  • JSON5 (#2734, #1880)
  • Maple (#2763, #2548)
  • NumbaIR (#2433)
  • PDDL (#2799, #2616)
  • Rego (#2794)
  • TableGen (#2751)
  • Vue.js (#2832)

• Updated lexers:

  • BQN: Various improvements (#2789)
  • C#: Fix number highlighting (#986, #2727), add file keyword (#2726, #2805, #2806), add various other keywords (#2745, #2770)
  • CSS: Add revert (#2766, #2775)
  • Debian control: Add Change-By field (#2757)
  • Elip: Improve punctuation handling (#2651)
  • Igor: Add int (#2801)
  • Ini: Fix quoted strings with embedded comment characters (#2767, #2720)
  • Java: Support functions returning types containing a question mark (#2737)
  • JavaScript: Support private identiiers (#2729, #2671)
  • LLVM: Add splat, improve floating-point number parsing (#2755)
  • Lua: Improve variable detection, add built-in functions (#2829)
  • Macaulay2: Update to 1.24.11 (#2800)
  • PostgreSQL: Add more EXPLAIN keywords (#2785), handle / (#2774)
  • S-Lexer: Fix keywords (#2082, #2750)
  • TransactSQL: Fix single-line comments (#2717)
  • Turtle: Fix triple quoted strings (#2744, #2758)
  • Typst: Various improvements (#2724)
  • Various: Add ^ as an operator to Matlab, Octave and Scilab (#2798)
  • Vyper: Add staticcall and extcall (#2719)

• Mark file extensions for HTML/XML+Evoque as aliases (#2743)
• Add a color for Operator.Word to the rrt style (#2709)
• Fix broken link in the documentation (#2803, #2804)
• Drop executable bit where not needed (#2781)
• Reduce Mojo priority relative to Python in ``analyze_text´` (#2771, #2772)
• Fix documentation builds (#2712)
• Match example file names to the lexer's name (#2713, #2715)
• Ensure lexer metadata is present (#2714)
• Search more directories on macOS for fonts (#2809)
• Improve test robustness (#2812)

Changelog

Sourced from pygments's changelog.

Version 2.19.0

(released January 5th, 2025)

• New lexers:

  • CodeQL (#2819)
  • Debian Sources (#2788, #2747)
  • Gleam (#2662)
  • GoogleSQL (#2820, #2814)
  • JSON5 (#2734, #1880)
  • Maple (#2763, #2548)
  • NumbaIR (#2433)
  • PDDL (#2799, #2616)
  • Rego (#2794)
  • TableGen (#2751)
  • Vue.js (#2832)

• Updated lexers:

  • BQN: Various improvements (#2789)
  • C#: Fix number highlighting (#986, #2727), add file keyword (#2726, #2805, #2806), add various other keywords (#2745, #2770)
  • CSS: Add revert (#2766, #2775)
  • Debian control: Add Change-By field (#2757)
  • Elip: Improve punctuation handling (#2651)
  • Igor: Add int (#2801)
  • Ini: Fix quoted strings with embedded comment characters (#2767, #2720)
  • Java: Support functions returning types containing a question mark (#2737)
  • JavaScript: Support private identiiers (#2729, #2671)
  • LLVM: Add splat, improve floating-point number parsing (#2755)
  • Lua: Improve variable detection, add built-in functions (#2829)
  • Macaulay2: Update to 1.24.11 (#2800)
  • PostgreSQL: Add more EXPLAIN keywords (#2785), handle / (#2774)
  • S-Lexer: Fix keywords (#2082, #2750)
  • TransactSQL: Fix single-line comments (#2717)
  • Turtle: Fix triple quoted strings (#2744, #2758)
  • Typst: Various improvements (#2724)
  • Various: Add ^ as an operator to Matlab, Octave and Scilab (#2798)
  • Vyper: Add staticcall and extcall (#2719)

• Mark file extensions for HTML/XML+Evoque as aliases (#2743)
• Add a color for Operator.Word to the rrt style (#2709)
• Fix broken link in the documentation (#2803, #2804)
• Drop executable bit where not needed (#2781)
• Reduce Mojo priority relative to Python in ``analyze_text´` (#2771, #2772)
• Fix documentation builds (#2712)
• Match example file names to the lexer's name (#2713, #2715)
• Ensure lexer metadata is present (#2714)
• Search more directories on macOS for fonts (#2809)
• Improve test robustness (#2812)

Commits

• 62dff31 Prepare 2.19 release.
• 0ee47fb It's 2025.
• 3f79c5d Check fixes.
• ed13988 Small fixes for Maple lexer.
• a522163 Merge pull request #2763 from Randl/master
• 69216f7 Small fixes for Numba IR.
• 08b8a96 Merge pull request #2433 from Matt711/numbair
• 9ac75ea Small fixups for CodeQL.
• ef4f5e9 Merge pull request #2819 from DarkaMaul/dm/add-codeql-lexer
• 2dc2c3f Merge branch 'master' into dm/add-codeql-lexer
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependabot-deps-updates.