Bump fiona from 1.8.22 to 1.9.5 in /docker/sedona-spark-jupyterlab

[dependabot]

Bumps fiona from 1.8.22 to 1.9.5.

Release notes

Sourced from fiona's releases.

1.9.5

Bug fixes

• Expand keys in schema mismatch exception, resolving #1278.
• Preserve the null properties and geometry of a Feature when serializing (#1276).

Packaging

• The distribution name is now officially "fiona", not "Fiona". The import name remains fiona.
• Builds now require Cython >= 3.0.2 (#1276).
• PyPI wheels include GDAL 3.6.4, PROJ 9.0.1, and GEOS 3.11.2.
• PyPI wheels include curl 8.4.0, addressing CVE-2023-38545 and CVE-38546.
• PyPI wheels are now available for Python 3.12.

1.9.4.post1

Extraneous files were unintentionally packaged in the 1.9.4 wheels. This post1 release excludes them so that wheel contents are as in version 1.9.3.

1.9.4

Version 1.9.4 has important bug fixes and improvements and, in the PyPI wheels, updates GDAL to 3.6.4.

• The performance of Feature.from_dict() has been improved (#1267).
• Several sources of meaningless log messages from fiona._geometry about NULL geometries are avoided (#1264).
• The Parquet driver has been added to the list of supported drivers and will be available if your system's GDAL library links libarrow. Note that fiona wheels on PyPI do not include libarrow as it is rather large.
• Ensure that fiona._vendor modules are found and included.
• Bytes type feature properties are now hex encoded when serializing to GeoJSON (#1263).
• Docstrings for listdir and listlayers have been clarified and harmonized.
• Nose style test cases have been converted to unittest.TestCase (#1256).
• The munch package used by fio-filter and fio-calc is now vendored and patched to remove usage of the deprecated pkg_resources module (#1255).

1.9.3

Version 1.9.3 has a handful of important bug fixes and, in the PyPI wheels, upgrades GEOS to 3.11.2.

• Rasterio CRS objects are compatible with the Collection constructor and are now accepted (#1248).
• Append mode for fio-load has been enabled (#1237).
• Reading a GeoJSON with an empty array property can result in a segmentation fault since version 1.9.0. This has been fixed (#1228).

1.9.2

Version 1.9.2 has a handful of important bug fixes.

• The fio CLI now gets its command entry points using importlib.metadata (#1220). The project has no more runtime dependency on setuptools.
• Instead of warning, transform_geom() raises an exception when some points can't be reprojected unless the caller opts in to partial reprojection. This restores the behavior of version 1.8.22.
• Add support for open options to all CLI commands that call fiona.open (#1215).
• Fix a memory leak that can occur when iterating over a dataset using strides (#1205).
• ZipMemoryFile now supports zipped GDB data (#1203).

1.9.1

The 1.9.0 release revealed a few bugs. Here are the ones we felt should be squished immediately.

• Log a warning message when identically named fields are encountered (#1201).
• Avoid dependence on listdir order in tests (#1193).

... (truncated)

Changelog

Sourced from fiona's changelog.

1.9.5 (2023-10-11)

Bug fixes:

• Expand keys in schema mismatch exception, resolving #1278.
• Preserve the null properties and geometry of a Feature when serializing (#1276).

Packaging:

• Builds now require Cython >= 3.0.2 (#1276).
• PyPI wheels include GDAL 3.6.4, PROJ 9.0.1, and GEOS 3.11.2.
• PyPI wheels include curl 8.4.0, addressing CVE-2023-38545 and CVE-38546.
• PyPI wheels are now available for Python 3.12.

1.9.4.post1 (2023-05-23)

Extraneous files were unintentionally packaged in the 1.9.4 wheels. This post1 release excludes them so that wheel contents are as in version 1.9.3.

1.9.4 (2023-05-16)

• The performance of Feature.from_dict() has been improved (#1267).
• Several sources of meaningless log messages from fiona._geometry about NULL geometries are avoided (#1264).
• The Parquet driver has been added to the list of supported drivers and will be available if your system's GDAL library links libarrow. Note that fiona wheels on PyPI do not include libarrow as it is rather large.
• Ensure that fiona._vendor modules are found and included.
• Bytes type feature properties are now hex encoded when serializing to GeoJSON (#1263).
• Docstrings for listdir and listlayers have been clarified and harmonized.
• Nose style test cases have been converted to unittest.TestCase (#1256).
• The munch package used by fio-filter and fio-calc is now vendored and patched to remove usage of the deprecated pkg_resources module (#1255).

1.9.3 (2023-04-10)

• Rasterio CRS objects are compatible with the Collection constructor and are now accepted (#1248).
• Enable append mode for fio-load (#1237).
• Reading a GeoJSON with an empty array property can result in a segmentation fault since version 1.9.0. This has been fixed (#1228).

1.9.2 (2023-03-20)

... (truncated)

Commits

• 2cab3df Require setuptools explicitly
• 9828b22 Update citation file
• eccb204 Fix version
• 7115ea3 This is 1.9.5
• ca2fe82 Resolves #1278 (#1302)
• 46e8cf3 Preserve the null properties and geometry of a Feature (#1276)
• 25fc510 CI: upgrade actions/checkout@v3 -> v4; move GHA to .yml suffix (#1293)
• e698980 Update to version 2 ReadTheDocs configuration file (#1291)
• f0deb38 update encoding warning (#1288)
• ea46bbe Use America/Denver instead of US/Mountain to fix pytz.exceptions.UnknownTimeZ...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.