Bump importlib-metadata from 1.4.0 to 3.5.0

[dependabot-preview]

Bumps importlib-metadata from 1.4.0 to 3.5.0.

Changelog

Sourced from importlib-metadata's changelog.

v3.5.0

• #280: entry_points now only returns entry points for unique distributions (by name).

v3.4.0

• #10: Project now declares itself as being typed.
• #272: Additional performance enhancements to distribution discovery.
• #111: For PyPA projects, add test ensuring that MetadataPathFinder._search_paths honors the needed interface. Method is still private.

v3.3.0

• #265: EntryPoint objects now expose a .dist object referencing the Distribution when constructed from a Distribution.

v3.2.0

• The object returned by metadata() now has a formally-defined protocol called PackageMetadata with declared support for the .get_all() method. Fixes #126.

v3.1.1

v2.1.1

• #261: Restored compatibility for package discovery for metadata without version in the name and for legacy eggs.

v3.1.0

• Merge with 2.1.0.

v2.1.0

• #253: When querying for package metadata, the lookup now honors package normalization rules.

v3.0.0

• Require Python 3.6 or later.

v2.0.0

• importlib_metadata no longer presents a __version__ attribute. Consumers wishing to resolve the version of the package should query it directly with importlib_metadata.version('importlib-metadata'). Closes #71.

... (truncated)

Commits

• 61a265c Fix perf tests
• c8d90a2 Merge pull request #279 from anntzer/cacheduncached
• f49df03 Merge branch 'main' into cacheduncached
• 67041f7 Merge pull request #281 from python/bugfix/280-unique-distributions
• 10c22f3 Merge branch 'bugfix/280-perf' into bugfix/280-unique-distributions
• 2b64fa2 Add performance test for entry_points
• 6cb27d3 Update changelog
• b74a776 Merge branch 'bugfix/280-test' into bugfix/280-unique-distributions
• 8935288 Add test capturing failed expectation. Ref #280.
• 35bc403 When resolving entry points globally, only expose entry points for unique dis...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #400.