Bump lxml from 5.2.2 to 5.3.1

[dependabot]

Bumps lxml from 5.2.2 to 5.3.1.

Changelog

Sourced from lxml's changelog.

5.3.1 (2025-02-09)

Bugs fixed

• GH#440: Some tests were adapted for libxml2 2.14.0. Patch by Nick Wellnhofer.

• LP#2097175: DTD(external_id="…") erroneously required a byte string as ID value.

• GH#450: iterparse() internally triggered the `DeprecationWarning`` added in lxml 5.3.0 when parsing HTML.

Other changes

• GH#442: Binary wheels for macOS no longer use the linker flag -flat_namespace.

5.3.0 (2024-08-10)

Features added

• GH#421: Nested CDATA sections are no longer rejected but split on output to represent ]]> correctly. Patch by Gertjan Klein.

Bugs fixed

• LP#2060160: Attribute values serialised differently in xmlfile.element() and xmlfile.write().

• LP#2058177: The ISO-Schematron implementation could fail on unknown prefixes. Patch by David Lakin.

Other changes

• LP#2067707: The strip_cdata option in HTMLParser() turned out to be useless and is now deprecated.

• Binary wheels use the library versions libxml2 2.12.9 and libxslt 1.1.42.

• Windows binary wheels use the library versions libxml2 2.11.8 and libxslt 1.1.39.

• Built with Cython 3.0.11.

Commits

• 1dd5001 Update changelog.
• 7b177e4 CI: Fix dependency issues.
• 088c9e5 CI: Use older Ubuntu image to fix builds.
• 58af8b3 CI: Try to get legacy jobs working again.
• 37cdbb5 Prepare release of lxml 5.3.1.
• 64ac58f Build/CI: Update cache action from deprecated version.
• 6b654c9 Buld: Downgrade Ubuntu build image to fix dependency issues.
• 71fda3f Update changelog.
• 306041e iterparse: ignore "strip_cdata" when parsing HTML (GH-450)
• e73c466 Fix DTD(external_id="...") option.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

[ccostino]

@dependabot rebase

[ccostino]

Approving.