chore: Bump the ci group in /.github/workflows with 2 updates

[dependabot]

Bumps the ci group in /.github/workflows with 2 updates: meltano and tox.

Updates meltano from 4.0.8 to 4.0.9

Release notes

Sourced from meltano's releases.

v4.0.9 (2026-01-19)

🐛 Fixes

• #9744 Handle python attribute when present in plugin YAML added with meltano add <name> --from-ref ...
• #9734 Filter out Alembic logs of level INFO and below
• #9732 Bump virtualenv from 20.35.4 to 20.36.1

⚙️ Under the Hood

• #9710 Enable Ruff EXE, FA, FLY, FURB and SLOT rules
• #9698 Add more type-safety to settings management
• #9697 Use explicit package names to load resource files (e.g. initialize.yml) instead of unreliable __package__

📚 Documentation Improvements

• #9729 Lock file maintenance
• #9717 Update docs mentioning how to publish a custom plugin to Meltano Hub
• #9707 Fix meltano config <plugin> examples to use the correct syntax meltano config print <plugin>

📦 Packaging changes

• #9711 Removed license classifier made redundant by PEP 639

Changelog

Sourced from meltano's changelog.

v4.0.9 (2026-01-19)

🐛 Fixes

• #9744 Handle python attribute when present in plugin YAML added with meltano add <name> --from-ref ...
• #9734 Filter out Alembic logs of level INFO and below
• #9732 Bump virtualenv from 20.35.4 to 20.36.1

⚙️ Under the Hood

• #9710 Enable Ruff EXE, FA, FLY, FURB and SLOT rules
• #9698 Add more type-safety to settings management
• #9697 Use explicit package names to load resource files (e.g. initialize.yml) instead of unreliable __package__

📚 Documentation Improvements

• #9729 Lock file maintenance
• #9717 Update docs mentioning how to publish a custom plugin to Meltano Hub
• #9707 Fix meltano config <plugin> examples to use the correct syntax meltano config print <plugin>

📦 Packaging changes

• #9711 Removed license classifier made redundant by PEP 639

Commits

• 7af721e chore: Release v4.0.9 (#9747)
• fe73ade chore: Lock file maintenance
• 8db8af5 chore(deps): Bump the runtime-dependencies group with 2 updates (#9746)
• 48ccd67 chore(deps-dev): Bump ty from 0.0.10 to 0.0.11 in the development-dependencie...
• 2e1401d fix: Handle python attribute when present in plugin YAML added with `meltan...
• ee94d32 chore(deps): Bump the runtime-dependencies group with 6 updates (#9743)
• 86cbce3 chore(deps-dev): Bump the development-dependencies group with 3 updates (#9742)
• 3486fcf ci: Bump astral-sh/setup-uv from 7.1.6 to 7.2.0 in the actions group (#9741)
• 0494370 chore(deps): Bump aiohttp from 3.13.2 to 3.13.3 (#9738)
• b9a8995 chore(deps): Bump werkzeug from 3.1.4 to 3.1.5 (#9736)
• Additional commits viewable in compare view

Updates tox from 4.32.0 to 4.34.1

Release notes

Sourced from tox's releases.

4.34.1

What's Changed

• fix: wheel corruption when running parallel tox processes by @​gaborbernat in tox-dev/tox#3667

Full Changelog: tox-dev/tox@4.34.0...4.34.1

4.34.0

What's Changed

• feat: Support depenedcy groups with self references by @​Czaki in tox-dev/tox#3666

Full Changelog: tox-dev/tox@4.33.0...4.34.0

4.33.0

What's Changed

• Pass LOCALAPPDATA by default on Windows (#3639) by @​clint-lawrence in tox-dev/tox#3640
• Docs: Add caution about ranges like py{39-314} by @​ferdnyc in tox-dev/tox#3652
• CLI Parser: Drop epilog message for Sphinx help by @​ferdnyc in tox-dev/tox#3653
• 📚 Integrate sphinx-issues extension by @​webknjaz in tox-dev/tox#3655
• Fix sphinx doc build by @​gaborbernat in tox-dev/tox#3662
• feat: add conditional set_env support via PEP-496 markers by @​gaborbernat in tox-dev/tox#3663

New Contributors

• @​clint-lawrence made their first contribution in tox-dev/tox#3640
• @​ferdnyc made their first contribution in tox-dev/tox#3652

Full Changelog: tox-dev/tox@4.32.0...4.33.0

Changelog

Sourced from tox's changelog.

v4.34.1 (2026-01-09)

Bugfixes - 4.34.1

- Fix wheel corruption errors when the build backend updates the file in place - by :user:`gaborbernat`. (:issue:`3667`)
v4.34.0 (2026-01-08)
Features - 4.34.0

• Support installing extras from the current project in dependency groups. -- by :user:czaki. (:issue:3561)

v4.33.0 (2026-01-02)

Features - 4.33.0

- Add support for conditional ``set_env`` using PEP-496 environment markers. In INI format use
  ``VAR=value; marker`` syntax, in TOML format use ``set_env.VAR = { value = "...", marker = "..." }``
  -- by :user:`gaborbernat`. (:issue:`3663`)
Bugfixes - 4.33.0

• Added 'LocalAppData' to the default passed environment variables on Windows. (:issue:3639)

Improved Documentation - 4.33.0

- Sphinx is now set up to use :pypi:`sphinx-issues` for referencing
  GitHub issues and pull requests in the docs -- by :user:`webknjaz`. (:issue:`3202`)

Commits

• abd774e release 4.34.1
• 96658e0 fix: use copy instead of hard link for session package views (#3667)
• 078a0f8 release 4.34.0
• e8a7c03 feat: Support depenedcy groups with self references (#3666)
• 8a69efd Update weekly.yaml
• 9c5fe79 release 4.33.0
• c569868 feat: add conditional set_env support via PEP-508 markers (#3663)
• 7b9610e fix: update for Sphinx 9.1 compatibility (#3662)
• fa51801 [pre-commit.ci] pre-commit autoupdate (#3661)
• 29cdaab [pre-commit.ci] pre-commit autoupdate (#3659)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions