Bump coverage from 7.13.2 to 7.13.4

[dependabot]

Bumps coverage from 7.13.2 to 7.13.4.

Changelog

Sourced from coverage's changelog.

Version 7.13.4 — 2026-02-09

• Fix: the third-party code fix in 7.13.3 required examining the parent directories where coverage was run. In the unusual situation that one of the parent directories is unreadable, a PermissionError would occur, as described in issue 2129_. This is now fixed.

• Fix: in test suites that change sys.path, coverage.py could fail with "RuntimeError: Set changed size during iteration" as described and fixed in pull 2130_. Thanks, Noah Fatsi.

• We now publish ppc64le wheels, thanks to Pankhudi Jain <pull 2121_>_.

.. _pull 2121: coveragepy/coveragepy#2121 .. _issue 2129: coveragepy/coveragepy#2129 .. _pull 2130: coveragepy/coveragepy#2130

.. _changes_7-13-3:

Version 7.13.3 — 2026-02-03

• Fix: in some situations, third-party code was measured when it shouldn't have been, slowing down test execution. This happened with layered virtual environments such as uv sometimes makes. The problem is fixed, closing issue 2082_. Now any directory on sys.path that is inside a virtualenv is considered third-party code.

.. _issue 2082: coveragepy/coveragepy#2082

.. _changes_7-13-2:

Commits

• 4f78d57 build: no need to publish status.json
• f8616ff docs: sample HTML for 7.13.4
• fcf8c68 docs: prep for 7.13.4
• 189ecfd docs: thanks Pankhudi Jain for ppc64le wheels #2121
• 58aade0 build: add support for ppc64le architecture (#2121)
• 8ea42c8 chore: bump actions/attest-build-provenance (#2131)
• c09595f docs: Janine put a lot of effort into debugging issue #2128
• 8ee1760 docs: Greg wrote a great issue: #2129
• 76ba043 docs: thanks, Noah Fatsi
• 371fcc5 fix: set fixed paths_list in TreeMatcher init (#2130)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[senzingdevops]

Automated: approving this pull request because it includes a patch update

[github-actions]

🤖 Claude Code Review

PR Code Review

Summary: This PR bumps the coverage package from 7.13.2 → 7.13.4 for Python > 3.11 in two dependency groups (development and test) in pyproject.toml.

---

Code Quality

• ✅ Style guide - Simple version bump in a TOML config file; no style concerns.
• ✅ No commented-out code - None present.
• ✅ Meaningful variable names - N/A for config file.
• ✅ DRY principle - The version is updated consistently in both development and test groups, as expected (both groups independently declare coverage).
• ✅ Defects - No logic errors. The version constraint (python_version > '3.11') is unchanged and consistent between both groups. The Python ≤ 3.11 pin (7.10.7) is left untouched, which is correct behavior.
• ✅ CLAUDE.md - No issues; config is general-purpose.

Testing

• ✅ Unit/integration tests - No new code requiring tests. This is a dependency bump only.
• ✅ Test coverage - N/A; coverage itself is the test instrumentation tool being bumped.

Documentation

• ✅ README - No update needed for a transitive dev-dependency bump.
• ✅ API docs - N/A.
• ✅ Inline comments - N/A.
• ✅ CHANGELOG.md - Dependency bumps of this nature (automated patch-level) typically don't require a changelog entry; no concern here.
• ✅ Markdown formatting - No markdown files changed.

Security

• ✅ No hardcoded credentials - None.
• ✅ Input validation - N/A.
• ✅ Error handling - N/A.
• ✅ No sensitive data in logs - N/A.
• ✅ No license files - No .lic files or AQAAAD-prefixed strings present.

---

Overall Assessment

Approved. This is a clean, automated patch-level dependency bump. Both occurrences of coverage==7.13.2 are updated to coverage==7.13.4 consistently. No issues found.

Automated code review analyzing defects and coding standards