Bump scrapy from 2.5.1 to 2.10.1

[dependabot]

Bumps scrapy from 2.5.1 to 2.10.1.

Release notes

Sourced from scrapy's releases.

2.10.1

Marked Twisted >= 23.8.0 as unsupported.

2.10.0

• Added Python 3.12 support, dropped Python 3.7 support.
• The new add-ons framework simplifies configuring 3rd-party components that support it.
• Exceptions to retry can now be configured.
• Many fixes and improvements for feed exports.

See the full changelog.

2.9.0

• Per-domain download settings.
• Compatibility with new cryptography and new parsel.
• JMESPath selectors from the new parsel.
• Bug fixes.

See the full changelog.

2.8.0

This is a maintenance release, with minor features, bug fixes, and cleanups.

See the full changelog.

2.7.1

• Relaxed the restriction introduced in 2.6.2 so that the Proxy-Authentication header can again be set explicitly in certain cases, restoring compatibility with scrapy-zyte-smartproxy 2.1.0 and older
• Bug fixes

See the full changelog

2.7.0

• Added Python 3.11 support, dropped Python 3.6 support
• Improved support for asynchronous callbacks
• Asyncio support is enabled by default on new projects
• Output names of item fields can now be arbitrary strings
• Centralized request fingerprinting configuration is now possible

See the full changelog

2.6.3

Makes pip install Scrapy work again.

It required making changes to support pyOpenSSL 22.1.0. We had to drop support for SSLv3 as a result.

We also upgraded the minimum versions of some dependencies.

See the changelog.

2.6.2

... (truncated)

Changelog

Sourced from scrapy's changelog.

Scrapy 2.10.1 (2023-08-30)

Marked Twisted >= 23.8.0 as unsupported. (:issue:6024, :issue:6026)

.. _release-2.10.0:

Scrapy 2.10.0 (2023-08-04)

Highlights:

• Added Python 3.12 support, dropped Python 3.7 support.

• The new add-ons framework simplifies configuring 3rd-party components that support it.

• Exceptions to retry can now be configured.

• Many fixes and improvements for feed exports.

Modified requirements

-   Dropped support for Python 3.7. (:issue:`5953`)


Added support for the upcoming Python 3.12. (:issue:5984)


Minimum versions increased for these dependencies:


lxml_: 4.3.0 → 4.4.1


cryptography_: 3.4.6 → 36.0.0




pkg_resources is no longer used. (:issue:5956, :issue:5958)


boto3_ is now recommended instead of botocore_ for exporting to S3.
(:issue:5833).


Backward-incompatible changes

• The value of the :setting:FEED_STORE_EMPTY setting is now True instead of False. In earlier Scrapy versions empty files were created even when this setting was False (which was a bug that is now fixed), so the new default should keep the old behavior. (:issue:872, :issue:5847)

Deprecation removals

</tr></table> 

... (truncated)

Commits

• a320e5f Bump version: 2.10.0 → 2.10.1
• 99c826c Merge pull request #6027 from wRAR/relnotes-2.10.1
• 3fc7726 Merge pull request #6026 from wRAR/restrict-twisted
• f8f5501 Release notes for 2.10.1.
• 9a72a25 Forbid Twisted 23.8.0+.
• 88327c7 Bump version: 2.9.0 → 2.10.0
• 4d288c8 Merge pull request #6001 from scrapy/relnotes-2.10
• 022ef0f Apply suggestions from code review
• 7fe4c0c Update docs/news.rst
• c14a0a9 Add release notes for 2.10.0.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.