Bump pyinstaller from 4.2 to 4.3

[dependabot-preview]

Bumps pyinstaller from 4.2 to 4.3.

Release notes

Sourced from pyinstaller's releases.

v4.3

Please see the changelog if you wish to see a full list of changes.

Changelog

Sourced from pyinstaller's changelog.

4.3 (2021-04-16)

Features

• Provide basic implementation for FrozenImporter.get_source() that allows reading source from .py files that are collected by hooks as data files. (#5697)
• Raise the maximum allowed size of CArchive (and consequently onefile executables) from 2 GiB to 4 GiB. (#3939)
• The unbuffered stdio mode (the u option) now sets the Py_UnbufferedStdioFlag flag to enable unbuffered stdio mode in Python library. (#1441)
• Windows: Set EXE checksums. Reduces false-positive detection from antiviral software. (#5579)
• Add new command-line options that map to collect functions from hookutils: --collect-submodules, --collect-data, --collect-binaries, --collect-all, and --copy-metadata. (#5391)
• Add new hook utility ~PyInstaller.utils.hooks.collect_entry_point for collecting plugins defined through setuptools entry points. (#5734)

Bugfix

• (macOS) Fix Bad CPU type in executable error in helper-spawned python processes when running under arm64-only flavor of Python on Apple M1. (#5640)
• (OSX) Suppress missing library error messages for system libraries as those are never collected by PyInstaller and starting with Big Sur, they are hidden by the OS. (#5107)
• (Windows) Change default cache directory to LOCALAPPDATA (from the original APPDATA). This is to make sure that cached data doesn't get synced with the roaming profile. For this and future versions AppData\Roaming\pyinstaller might be safely deleted. (#5537)
• (Windows) Fix onefile builds not having manifest embedded when icon is disabled via --icon NONE. (#5625)
• (Windows) Fix the frozen program crashing immediately with Failed to execute script pyiboot01_bootstrap message when built in noconsole mode and with import logging enabled (either via --debug imports or --debug all command-line switch). (#4213)
• CArchiveReader now performs full back-to-front file search for MAGIC, allowing pyi-archive_viewer to open binaries with extra appended data after embedded package (e.g., digital signature). (#2372)
• Fix MERGE() to properly set references to nested resources with their full shared-package-relative path instead of just basename. (#5606)
• Fix onefile builds failing to extract files when the full target path exceeds 260 characters. (#5617)
• Fix a crash in pyi-archive_viewer when quitting the application or moving up a level. (#5554)
• Fix extraction of nested files in onefile builds created in MSYS environments. (#5569)
• Fix installation issues stemming from unicode characters in file paths. (#5678)
• Fix the build-time error under python 3.7 and earlier when ctypes is manually added to hiddenimports. (#3825)
• Fix the return code if the frozen script fails due to unhandled exception. The return code 1 is used instead of -1, to keep the behavior consistent with that of the python interpreter. (#5480)
• Linux: Fix binary dependency scanner to support changes to ldconfig introduced in glibc 2.33. (#5540)
• Prevent MERGE (multipackage) from creating self-references for duplicated TOC entries. (#5652)
• PyInstaller-frozen onefile programs are now compatible with staticx even if the bootloader is built as position-independent executable (PIE). (#5330)
• Remove dependence on a private function removed in matplotlib 3.4.0rc1. (#5568)
• Strip absolute paths from .pyc modules collected into base_library.zip to enable reproducible builds that are invariant to Python install location. (#5563)
• (OSX) Fix issues with pycryptodomex on macOS. (#5583)
• Allow compiled modules to be collected into base_library.zip. (#5730)
• Fix a build error triggered by scanning ctypes.CDLL('libc.so') on certain Linux C compiler combinations. (#5734)
• Improve performance and reduce stack usage of module scanning. (#5698)

Hooks

• Add support for Conda Forge's distribution of NumPy. (#5168)
• Add support for package content listing via pkg_resources. The implementation enables querying/listing resources in a frozen package (both PYZ-embedded and on-filesystem, in that order of precedence) via pkg_resources.resource_exists(), resource_isdir(), and resource_listdir(). (#5284)
• Hooks: Import correct typelib for GtkosxApplication. (#5475)
• Prevent matplotlib hook from collecting current working directory when it fails to determine the path to matplotlib's data directory. (#5629)
• Update pandas hook for compatibility with version 1.2.0 and later. (#5630)
• Update hook for distutils.sysconfig to be compatible with pyenv-virtualenv. (#5218)
• Update hook for sqlalchemy to support version 1.4.0 and above. (#5679)
• Update hook for sysconfig to be compatible with pyenv-virtualenv. (#5018)

... (truncated)

Commits

• e20e74c release 4.3
• 4a08839 rebuild man pages
• 8090d56 Update readme version (for PyPI page)
• 4529c65 Update credits
• 9bc8dd7 Prepare for release 4.3
• aeff9cf add readthedocs config
• 419f349 Add hook utility for collecting setuptools entrypoints.
• 5c2dda9 building: collect built-in extensions into lib-dynload sub-directory (#5604)
• 577e755 Analysis: ctypes: Guard against errors triggered by find_library(). (#5734)
• 745f03c Bootloader: waf: Support cross-compile for FreeBSD. [skip-ci]
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)