deps(python): bump iniconfig from 2.0.0 to 2.3.0 in /backend

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps iniconfig from 2.0.0 to 2.3.0.

Release notes

Sourced from iniconfig's releases.

Version 2.3.0

What's Changed

• Add IniConfig.parse() with inline comment stripping and Unicode whitespace handling by @​RonnyPfannschmidt in pytest-dev/iniconfig#70

Full Changelog: pytest-dev/iniconfig@v2.2.0...v2.3.0

Version 2.2.0

No release notes provided.

v2.1.0

What's Changed

• fix #26 - list individuals in license file by @​RonnyPfannschmidt in pytest-dev/iniconfig#52
• Run tests in CI by @​nicoddemus in pytest-dev/iniconfig#53
• Use pypa/gh-action-pypi-publish@release/v1 @ GHA by @​webknjaz in pytest-dev/iniconfig#54
• Add support for Python 3.12-3.13 and drop EOL 3.7 by @​hugovk in pytest-dev/iniconfig#56

New Contributors

• @​nicoddemus made their first contribution in pytest-dev/iniconfig#53
• @​webknjaz made their first contribution in pytest-dev/iniconfig#54

Full Changelog: pytest-dev/iniconfig@v2.0.0...v2.1.0

Changelog

Sourced from iniconfig's changelog.

2.3.0

• add IniConfig.parse() classmethod with strip_inline_comments parameter (fixes #55)
  • by default (strip_inline_comments=True), inline comments are properly stripped from values
  • set strip_inline_comments=False to preserve old behavior if needed
• IniConfig() constructor maintains backward compatibility (does not strip inline comments)
• users should migrate to IniConfig.parse() for correct comment handling
• add strip_section_whitespace parameter to IniConfig.parse() (regarding #4)
  • opt-in parameter to strip Unicode whitespace from section names
  • when True, strips Unicode whitespace (U+00A0, U+2000, U+3000, etc.) from section names
  • when False (default), preserves existing behavior for backward compatibility
• clarify Unicode whitespace handling (regarding #4)
  • since iniconfig 2.0.0 (Python 3 only), all strings are Unicode by default
  • Python 3's str.strip() has handled Unicode whitespace since Python 3.0 (2008)
  • iniconfig automatically benefits from this in all supported versions (Python >= 3.10)
  • key names and values have Unicode whitespace properly stripped using Python's built-in methods

2.2.0

• drop Python 3.8 and 3.9 support (now requires Python >= 3.10)
• add Python 3.14 classifier
• migrate from hatchling to setuptools 77 with setuptools_scm
• adopt PEP 639 license specifiers and PEP 740 build attestations
• migrate from black + pyupgrade to ruff
• migrate CI to uv and unified test workflow
• automate GitHub releases and PyPI publishing via Trusted Publishing
• include tests in sdist
• modernize code for Python 3.10+ (remove future annotations, TYPE_CHECKING guards)
• rename _ParsedLine to ParsedLine

2.1.0

• fix artifact building - pin minimal version of hatch
• drop eol python 3.8
• add python 3.12 and 3.13

Commits

• 7faed13 Merge pull request #70 from RonnyPfannschmidt/comments
• 58c0869 Refactor: Simplify IniConfig constructor and parse() method
• 6d0af45 Add strip_section_whitespace parameter to address issue #4
• e2d89f5 Add IniConfig.parse() classmethod to fix inline comment handling
• 57b7ed9 Merge pull request #66 from killiandesse/pep639
• 27ac49f Merge pull request #69 from RonnyPfannschmidt/limit-attestation
• 3402322 Disable build attestations for PRs from forks
• 27e6a7b Merge branch 'main' into pep639
• 6522881 Merge pull request #68 from pytest-dev/fix-build
• 8b2bccb Update CHANGELOG and automate releases
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Summary by cubic

Bump iniconfig in backend dev dependencies from 2.0.0 to 2.3.0 to modernize INI parsing and align with Python 3.10+ support.

• Dependencies

  • Updated iniconfig to 2.3.0 (pyproject.toml, uv.lock).
  • New IniConfig.parse() adds inline comment stripping and Unicode whitespace handling.

• Migration

  • Requires Python 3.10+ in CI and local dev.
  • If we parse INI files directly, prefer IniConfig.parse() for correct comment handling.

^{Written for commit a371d81. Summary will update on new commits.}

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[cubic-dev-ai]

No issues found across 2 files

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.