Bump the python-requirements group in /requirements with 2 updates

[dependabot]

Bumps the python-requirements group in /requirements with 2 updates: bandit and sphinx-tabs.

Updates bandit from 1.7.6 to 1.7.7

Release notes

Sourced from bandit's releases.

1.7.7

What's Changed

• Add the new release to bandit versions of bug template by @​ericwb in PyCQA/bandit#1075
• Bump actions/setup-python from 4 to 5 by @​dependabot in PyCQA/bandit#1076
• Handle variant in how policy is passed in paramiko by @​ericwb in PyCQA/bandit#1078
• Flag str.replace as possible sql injection by @​costaparas in PyCQA/bandit#1044
• defusedxml: Show correct module name by @​kajinamit in PyCQA/bandit#1081
• Add tidelift to the sponsor funding list by @​ericwb in PyCQA/bandit#1089
• Create a security policy by @​ericwb in PyCQA/bandit#1091
• Fix up issues found running Bandit on itself by @​ericwb in PyCQA/bandit#1093
• Add random.randbytes to blacklist calls by @​ericwb in PyCQA/bandit#1096
• Prepend ./ for files specified as CLI args by @​ericwb in PyCQA/bandit#1094
• Rework GitPython dependency to be an extra for bandit-baseline by @​ericwb in PyCQA/bandit#1099
• Bump actions/dependency-review-action from 3 to 4 by @​dependabot in PyCQA/bandit#1101
• Introduce Official Bandit Images by @​lukehinds in PyCQA/bandit#1088
• Remove markdown formatting in reStructuredText formatted README by @​ericwb in PyCQA/bandit#1103
• Downsize the org:repo name by @​lukehinds in PyCQA/bandit#1104

New Contributors

• @​kajinamit made their first contribution in PyCQA/bandit#1081

Full Changelog: PyCQA/bandit@1.7.6...1.7.7

Commits

• 4c5b3c8 Downsize the org:repo name (#1104)
• 3f86e84 Remove markdown formatting in reStructuredText formatted README (#1103)
• ff7ed4b Introduce Official Bandit Images (#1088)
• 99ddf6b Bump actions/dependency-review-action from 3 to 4 (#1101)
• 22c75a8 Rework GitPython dependency to be an extra for bandit-baseline (#1099)
• 12e14f6 Prepend ./ for files specified as CLI args (#1094)
• 0779eb0 Add random.randbytes to blacklist calls (#1096)
• 7129108 Fix up issues found running Bandit on itself (#1093)
• c2bd6d6 Create a security policy (#1091)
• a78cafe Add tidelift to the sponsor funding list (#1089)
• Additional commits viewable in compare view

Updates sphinx-tabs from 3.4.4 to 3.4.5

Release notes

Sourced from sphinx-tabs's releases.

Version 3.4.5

What's Changed

• FIX: unpin docutils by @​agoose77 in executablebooks/sphinx-tabs#186

New Contributors

• @​agoose77 made their first contribution in executablebooks/sphinx-tabs#186

Full Changelog: executablebooks/sphinx-tabs@v3.4.4...v3.4.5

Changelog

Sourced from sphinx-tabs's changelog.

3.4.5 - 2024-01-21

Removed

• docutils version pin

3.4.2 - 2023-19-22

Added

• Testing for Python 3.11 and 3.12

Removed

• Dependency on unsupported sphinx_testing package

3.4.2 - 2023-19-22

Fixed

• tests for sphinx 7.2
• slice assignment in update_context(), which was removing JS scripts from other sphinx extensions/themes on pages where tabs were not used

Added

• Note in docs to clarify that include directive can't be used within a code-tab

3.4.1 - 2022-07-02

Added

• Weekly scheduled testing, to catch breaking changes in unpinned dependencies

Changed

• docutils version pin to allow use of verison 0.18.x

Removed

• sphinx version pinning - only the latest version of sphinx will now be fully supported, but previous versions will work if sphinx dependencies (i.e. jinja2) are managed correctly. This is inline with the approach at sphinx
• tests that were specific to older versions of sphinx and pygments
• jinja2 version pinning, as this is now pinned in latest version of sphinx

3.4.0 - 2022-06-26

Added

• Testing for sphinx 5
• Tesing for python 3.10

Fixed

• Fixed parsing of MyST content, where first line was being stripped

... (truncated)

Commits

• b8666a5 Fix numbering in CHANGELOG.md
• 8cceb66 Bump version number
• e6a00ac Update CHANGELOG.md
• 0632f4b FIX: unpin docutils (#186)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.