Bumps [pip](https://github.com/pypa/pip) from 26.1.1 to 26.1.2. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/pypa/pip/blob/main/NEWS.rst">pip's changelog</a>.</em></p> <blockquote> <h1>26.1.2 (2026-05-31)</h1> <h2>Bug Fixes</h2> <ul> <li>Reject <code>console_scripts</code> and <code>gui_scripts</code> entry points whose name would install a script outside the scripts directory. (<code>[#14000](pypa/pip#14000) <https://github.com/pypa/pip/issues/14000></code>_)</li> <li>Fix installation incorrectly failing when the target path contains a doubled slash, such as with <code>pip install --root //...</code>. (<code>[#14001](pypa/pip#14001) <https://github.com/pypa/pip/issues/14001></code>_)</li> <li>Send a consistent <code>Accept-Encoding</code> header to avoid a spurious <code>Cache entry deserialization failed</code> warning. (<code>[#14012](pypa/pip#14012) <https://github.com/pypa/pip/issues/14012></code>_)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/pypa/pip/commit/31d7d168953668aad85154d6121879d07fbeac27"><code>31d7d16</code></a> Bump for release</li> <li><a href="https://github.com/pypa/pip/commit/79f348c86a149adec5a9852788dcc13114b29d3c"><code>79f348c</code></a> Update AUTHORS.txt</li> <li><a href="https://github.com/pypa/pip/commit/237a9258813636b7b1ead05e2cb0d509b44f67ee"><code>237a925</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/14001">#14001</a> from notatallshaw/fix-is-within-directory</li> <li><a href="https://github.com/pypa/pip/commit/34d0285d548bbd644bfabfede2dfabed23c240db"><code>34d0285</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/14006">#14006</a> from laymonage/fix-requirements_from_scripts-space-...</li> <li><a href="https://github.com/pypa/pip/commit/09d3e07066c56e20b4ab2b3133e29f02f19be5e9"><code>09d3e07</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/14012">#14012</a> from notatallshaw/stable-accept-encoding</li> <li><a href="https://github.com/pypa/pip/commit/fa7854f6b37113a2c4698cdde902e1fcc9bebdd5"><code>fa7854f</code></a> Use is_within_directory for entry point check</li> <li><a href="https://github.com/pypa/pip/commit/d01b46c273e08bf4299feb81899c9bd0b3e7029b"><code>d01b46c</code></a> NEWS ENTRY</li> <li><a href="https://github.com/pypa/pip/commit/7ff8bdd81ec5edca2bebf78ad8506dda710d6af5"><code>7ff8bdd</code></a> Fix is_within_directory for doubled-slash roots</li> <li><a href="https://github.com/pypa/pip/commit/7ea3466fb51ccc729e67ea85809df5a4dda1987b"><code>7ea3466</code></a> NEWS ENTRY</li> <li><a href="https://github.com/pypa/pip/commit/85673eaa109f343658f9904f4045ff009378ae08"><code>85673ea</code></a> Fix Accept-Encoding to gzip, deflate</li> <li>Additional commits viewable in <a href="https://github.com/pypa/pip/compare/26.1.1...26.1.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pip&package-manager=uv&previous-version=26.1.1&new-version=26.1.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>