chore(deps) Update dependency virtualenv to v20.26.6 [SECURITY]

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
virtualenv	20.25.0 -> 20.26.6

GitHub Vulnerability Alerts

CVE-2024-53899

virtualenv before 20.26.6 allows command injection through the activation scripts for a virtual environment. Magic template strings are not quoted correctly when replacing. NOTE: this is not the same as CVE-2024-9287.

---

Release Notes

pypa/virtualenv (virtualenv)

v20.26.6

Compare Source

v20.26.5

Compare Source

v20.26.4

Compare Source

What's Changed

• release 20.26.3 by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2742
• Fix whitespace around backticks in changelog by @​edmorley in https://github.com/pypa/virtualenv/pull/2751
• Test latest Python 3.13 by @​hugovk in https://github.com/pypa/virtualenv/pull/2752
• Fix typo in Nushell activation script by @​edmorley in https://github.com/pypa/virtualenv/pull/2754
• GitHub Actions: Replace deprecated macos-12 with macos-13 by @​hugovk in https://github.com/pypa/virtualenv/pull/2756
• Fix #​2728: Activating venv create unwanted console output by @​ShootGan in https://github.com/pypa/virtualenv/pull/2748
• Upgrade bundled wheels by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2760

New Contributors

• @​ShootGan made their first contribution in https://github.com/pypa/virtualenv/pull/2748

Full Changelog: pypa/virtualenv@20.26.3...20.26.4

v20.26.3

Compare Source

What's Changed

• release 20.26.2 by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2724
• Bump embeded wheels by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2741

Full Changelog: pypa/virtualenv@20.26.2...20.26.3

v20.26.2

Compare Source

v20.26.1

Compare Source

v20.26.0

Compare Source

What's Changed

• release 20.25.3 by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2704
• Fixed a case when template variable is WindowsPath by @​NtWriteCode in https://github.com/pypa/virtualenv/pull/2707
• Allow builtin interpreter discovery to find specific Python versions given a general spec by @​flying-sheep in https://github.com/pypa/virtualenv/pull/2709

New Contributors

• @​NtWriteCode made their first contribution in https://github.com/pypa/virtualenv/pull/2707
• @​flying-sheep made their first contribution in https://github.com/pypa/virtualenv/pull/2709

Full Changelog: pypa/virtualenv@20.25.3...20.26.0

v20.25.3

Compare Source

What's Changed

• release 20.25.2 by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2703
• Fix for tests: Python 3.13.0a6 renamed pathmod to parser by @​befeleme in https://github.com/pypa/virtualenv/pull/2702

New Contributors

• @​befeleme made their first contribution in https://github.com/pypa/virtualenv/pull/2702

Full Changelog: pypa/virtualenv@20.25.2...20.25.3

v20.25.2

Compare Source

What's Changed

• release 20.25.1 by @​gaborbernat in https://github.com/pypa/virtualenv/pull/2692
• Fix windows utf8 encoding issue by @​PzaThief in https://github.com/pypa/virtualenv/pull/2687
• Update changelog.rst by @​Callek in https://github.com/pypa/virtualenv/pull/2701
• Fix indentation in activate.fish by @​junzh0u in https://github.com/pypa/virtualenv/pull/2700

New Contributors

• @​PzaThief made their first contribution in https://github.com/pypa/virtualenv/pull/2687
• @​Callek made their first contribution in https://github.com/pypa/virtualenv/pull/2701
• @​junzh0u made their first contribution in https://github.com/pypa/virtualenv/pull/2700

Full Changelog: pypa/virtualenv@20.25.1...20.25.2

v20.25.1

Compare Source

---

Configuration

📅 Schedule: Branch creation - "" in timezone America/Chicago, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.