build(deps): bump debugpy from 1.8.16 to 1.8.19

[dependabot]

Bumps debugpy from 1.8.16 to 1.8.19.

Release notes

Sourced from debugpy's releases.

debugpy v1.8.19

More fixes for microsoft/debugpy#1980. Spaces in python files are handled now too.

debugpy v1.8.18

Fixes:

• Spaces in python interpreter cause debug launch failure

debugpy v1.8.17

Fixes:

• Debug attach for 3.14

Commits

• 698499e Add support for space in the python file (#1982)
• e5017d7 Fix arq quoting to work in runInTerminal (#1981)
• 1e3fd91 fix the link to Python extension in CONTRIBUTING.md (#1934)
• 378339a Update team rotation list in round-robin workflow (#1978)
• 93d93f2 Update CODEOWNERS to remove a reviewer (#1979)
• 8f13145 Add pyrx-admins as code owners (#1976)
• 275caca Add gcc flags (#1947)
• 82e409e include py.typed in the distributed package (#1960)
• 6cbdf87 update testing for python 3.14 (#1955)
• 2eb3afe Check if os.__file__ is available before using it (#1944)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
pip/debugpy	1.8.19	🟢 7.3	Details Check Score Reason Security-Policy 🟢 10 security policy file detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Code-Review 🟢 9 Found 29/30 approved changesets -- score normalized to 9 Packaging ⚠️ -1 packaging workflow not detected Token-Permissions 🟢 8 detected GitHub workflow tokens with excessive permissions Maintained 🟢 6 7 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 6 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 9 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection 🟢 8 branch protection is not maximal on development and all release branches Binary-Artifacts 🟢 7 binaries present in source code Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Vulnerabilities 🟢 10 0 existing vulnerabilities detected SAST 🟢 10 SAST tool is run on all commits

Scanned Files

• pyproject.toml