Bump pip from 22.3.1 to 23.1.2 in /.github/workflows

[dependabot[bot]]

Bumps pip from 22.3.1 to 23.1.2.

Changelog

Sourced from pip's changelog.

23.1.2 (2023-04-26)

Vendored Libraries

• Upgrade setuptools to 67.7.2

23.1.1 (2023-04-22)

Bug Fixes

• Revert [#11487](https://github.com/pypa/pip/issues/11487) <https://github.com/pypa/pip/pull/11487>, as it causes issues with virtualenvs created by the Windows Store distribution of Python. ([#11987](https://github.com/pypa/pip/issues/11987) <https://github.com/pypa/pip/issues/11987>)

Vendored Libraries

• Revert pkg_resources (via setuptools) back to 65.6.3

Improved Documentation

• Update documentation to reflect the new behavior of using the cache of locally built wheels in hash-checking mode. ([#11967](https://github.com/pypa/pip/issues/11967) <https://github.com/pypa/pip/issues/11967>_)

23.1 (2023-04-15)

Deprecations and Removals

• Remove support for the deprecated --install-options. ([#11358](https://github.com/pypa/pip/issues/11358) <https://github.com/pypa/pip/issues/11358>_)
• --no-binary does not imply setup.py install anymore. Instead a wheel will be built locally and installed. ([#11451](https://github.com/pypa/pip/issues/11451) <https://github.com/pypa/pip/issues/11451>_)
• --no-binary does not disable the cache of locally built wheels anymore. It only means "don't download wheels". ([#11453](https://github.com/pypa/pip/issues/11453) <https://github.com/pypa/pip/issues/11453>_)
• Deprecate --build-option and --global-option. Users are invited to switch to --config-settings. ([#11859](https://github.com/pypa/pip/issues/11859) <https://github.com/pypa/pip/issues/11859>_)
• Using --config-settings with projects that don't have a pyproject.toml now prints a deprecation warning. In the future the presence of config settings will automatically enable the default build backend for legacy projects and pass the setttings to it. ([#11915](https://github.com/pypa/pip/issues/11915) <https://github.com/pypa/pip/issues/11915>_)
• Remove setup.py install fallback when building a wheel failed for projects without pyproject.toml. ([#8368](https://github.com/pypa/pip/issues/8368) <https://github.com/pypa/pip/issues/8368>_)
• When the wheel package is not installed, pip now uses the default build backend instead of setup.py install and setup.py develop for project without pyproject.toml. ([#8559](https://github.com/pypa/pip/issues/8559) <https://github.com/pypa/pip/issues/8559>_)

... (truncated)

Commits

• 3fe7e54 Bump for release
• bc7621a Merge pull request #11997 from pfmoore/vendoring-setuptools
• cbc92fd Upgrade setuptools to 67.7.2
• 4428130 Suppress pkg_resources deprecation warning
• f1a7a6f Upgrade setuptools to 67.6.1
• 51afe45 Merge pull request #11992 from pfmoore/release/23.1.1
• 5cbf00c Bump for development
• ee40d71 Bump for release
• d5a779d Merge pull request #11987 from pfmoore/revert_56e5fa3
• b64e74d Add a news file
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)