Bump pip from 25.1 to 25.1.1 (PR #9029)

Bumps [pip](https://github.com/pypa/pip) from 25.1 to 25.1.1.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/pypa/pip/blob/main/NEWS.rst">pip's changelog</a>.</em></p>
<blockquote>
<h1>25.1.1 (2025-05-02)</h1>
<h2>Bug Fixes</h2>
<ul>
<li>Fix <code>req.source_dir</code> AssertionError when using the legacy resolver. (<code>[#13353](pypa/pip#13353) &lt;https://github.com/pypa/pip/issues/13353&gt;</code>_)</li>
<li>Fix crash on Python 3.9.6 and lower when pip failed to compile a Python module
during installation. (<code>[#13364](pypa/pip#13364) &lt;https://github.com/pypa/pip/issues/13364&gt;</code>_)</li>
<li>Names in dependency group includes are now normalized before lookup, which
fixes incorrect <code>Dependency group '...' not found</code> errors. (<code>[#13372](pypa/pip#13372) &lt;https://github.com/pypa/pip/issues/13372&gt;</code>_)</li>
</ul>
<h2>Vendored Libraries</h2>
<ul>
<li>Fix issues with using tomllib from the stdlib if available, rather than tomli</li>
<li>Upgrade dependency-groups to 1.3.1</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/pypa/pip/commit/01857ef79f59a98db592bacb6e7b48f354528c80"><code>01857ef</code></a> Bump for release</li>
<li><a href="https://github.com/pypa/pip/commit/08d8bb91e2c7734f98f828e28215aba15784012a"><code>08d8bb9</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13374">#13374</a> from pfmoore/fixups</li>
<li><a href="https://github.com/pypa/pip/commit/2bff84e495a3d31008088c168c5ab9bfa633a172"><code>2bff84e</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13363">#13363</a> from sbidoul/fix-source_dir-assert</li>
<li><a href="https://github.com/pypa/pip/commit/644e71d6e339035836dce0adbf59f881b334e186"><code>644e71d</code></a> News file fixups</li>
<li><a href="https://github.com/pypa/pip/commit/426856f496a8f84f1e36fded83b3d5e74968a786"><code>426856f</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13364">#13364</a> from ichard26/bugfix/python39</li>
<li><a href="https://github.com/pypa/pip/commit/b7e3aead483baf42ca00e29b9758338ad19c130b"><code>b7e3aea</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13356">#13356</a> from eli-schwartz/tomllib</li>
<li><a href="https://github.com/pypa/pip/commit/8c678fe85daaf11d8dd6a43b7835088513944655"><code>8c678fe</code></a> Merge pull request <a href="https://redirect.github.com/pypa/pip/issues/13373">#13373</a> from sirosen/update-vendored-dependency-groups</li>
<li><a href="https://github.com/pypa/pip/commit/7d006399c0d0d38e55d56a6b0732e959bf75f796"><code>7d00639</code></a> Update newsfiles for dependency-groups patch</li>
<li><a href="https://github.com/pypa/pip/commit/6d28bbf065a292f67d3d66d8f47fba15a1a2d512"><code>6d28bbf</code></a> Update version of <code>dependency-groups</code> to v1.3.1</li>
<li><a href="https://github.com/pypa/pip/commit/94bd66d615d5f9036c53196f4f2acb7c71d5010c"><code>94bd66d</code></a> Revert StreamWrapper removal to restore Python 3.9.{0,6} compat</li>
<li>Additional commits viewable in <a href="https://github.com/pypa/pip/compare/25.1...25.1.1">compare view</a></li>
</ul>
</details>
<br />

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=pip&package-manager=pip&previous-version=25.1&new-version=25.1.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

Author: dependabot[bot]

changelogs/unreleased/9029-dependabot.yml

@@ -0,0 +1,5 @@
+change-type: patch
+description: Bump pip from 25.1 to 25.1.1
+destination-branches:
+- master
+sections: {}

requirements.txt

@@ -24,7 +24,7 @@ myst-parser==4.0.1
 openapi_spec_validator==0.7.1
 opentelemetry-instrumentation-asyncpg==0.53b0
 packaging==25.0
-pip==25.1
+pip==25.1.1
 pip2pi==0.8.2
 ply==3.11
 psutil==7.0.0