chore(deps): bump python-liquid from 2.1.0 to 2.2.1 in /packages/opentelemetry-instrumentation-alephalpha

[dependabot]

Bumps python-liquid from 2.1.0 to 2.2.1.

Release notes

Sourced from python-liquid's releases.

Version 2.2.1

Fixed {% case %} tags with no associated {% when %} or {% else %} tags, and no closing {% endcase %} tag. Previously a template such as {% case x %} would cause the parser to hang in an infinite loop.

Version 2.2.0

• Fixed FileSystemLoader and CachingFileSystemLoader to reject absolute paths.
• Added the reject_symlinks keyword argument to FileSystemLoader and CachingFileSystemLoader. When True, symlinks pointing to files outside the search path will be rejected. reject_symlinks defaults to False.
• Added the squish filter. {{ x | squish }} is equivalent to {{ x | strip | split | join }}. See #195.
• Added BoundTemplate.comments() and BoundTemplate.docs() for statically retrieving {% comment %}, {% # inline comment %} and {% doc %} nodes.
• Added an experimental {% snippet %} tag. Shopify/liquid released then quickly removed {% snippet %}. We're calling it "experimental" and keeping it disabled by default, pending more activity from Shopify/liquid. See #191 and #193.
• Improved static analysis of partial templates. Previously we would visit a partial template only once, regardless of how many times it is rendered with {% render %}. Now we visit partial templates once for each distinct set of arguments passed to {% render %}, potentially reporting "global" variables that we'd previously missed.
• Changed the string_filter decorator to coerce None to an empty string instead of "None". This is what Shopify/liquid does with nil.to_s.

Changelog

Sourced from python-liquid's changelog.

Version 2.2.1

Fixed {% case %} tags with no associated {% when %} or {% else %} tags, and no closing {% endcase %} tag. Previously a template such as {% case x %} would cause the parser to hang in an infinite loop.

Version 2.2.0

• Fixed FileSystemLoader and CachingFileSystemLoader to reject absolute paths.
• Added the reject_symlinks keyword argument to FileSystemLoader and CachingFileSystemLoader. When True, symlinks pointing to files outside the search path will be rejected. reject_symlinks defaults to False.
• Added the squish filter. {{ x | squish }} is equivalent to {{ x | strip | split | join }}. See #195.
• Added BoundTemplate.comments() and BoundTemplate.docs() for statically retrieving {% comment %}, {% # inline comment %} and {% doc %} nodes.
• Added an experimental {% snippet %} tag. Shopify/liquid released then quickly removed {% snippet %}. We're calling it "experimental" and keeping it disabled by default, pending more activity from Shopify/liquid. See #191 and #193.
• Improved static analysis of partial templates. Previously we would visit a partial template only once, regardless of how many times it is rendered with {% render %}. Now we visit partial templates once for each distinct set of arguments passed to {% render %}, potentially reporting "global" variables that we'd previously missed.
• Changed the string_filter decorator to coerce None to an empty string instead of "None". This is what Shopify/liquid does with nil.to_s.

Commits

• 1b91591 Release version 2.2.1 [skip ci]
• 9ef9d07 Merge commit from fork
• 26db893 Fix case tag
• e390178 Release version 2.2.0 [skip ci]
• b9413b3 Merge commit from fork
• f351620 Fix caching loader constructor and update doc comments
• e17b1f9 Add is_file check and optionally reject symlinks
• 1d9eeed Fix absolute paths escpae loader template root
• 011d2bd Merge pull request #200 from jg-rp/static-comment-helpers
• fb9c582 Add static comment helpers
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.