Skip to content

build(deps): bump the patches group across 1 directory with 8 updates#76

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/patches-bff599e0a6
Closed

build(deps): bump the patches group across 1 directory with 8 updates#76
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/patches-bff599e0a6

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 12, 2026

Copy link
Copy Markdown
Contributor

Bumps the patches group with 8 updates in the / directory:

Package From To
boto3 1.43.2 1.43.29
ruff 0.15.12 0.15.17
pip-audit 2.10.0 2.10.1
boto3-stubs 1.43.5 1.43.28
zensical 0.0.40 0.0.45
mkdocstrings-python 2.0.3 2.0.4
botocore 1.43.24 1.43.29
cryptography 48.0.0 48.0.1

Updates boto3 from 1.43.2 to 1.43.29

Commits

Updates ruff from 0.15.12 to 0.15.17

Release notes

Sourced from ruff's releases.

0.15.17

Release Notes

Released on 2026-06-11.

Preview features

  • Allow human-readable names in suppression comments (#25614)
  • Fix handling of ignore comments within a disable/enable pair (#25845)
  • Prioritize human-readable names in CLI output (#25869)
  • Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
  • [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
  • [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
  • [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
  • [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

  • Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
  • [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

  • [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
  • [numpy] Drop autofix for np.in1d (NPY201) (#25612)
  • [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

  • Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

  • Preserve whitespace for Quarto cell option comments (#25641)

CLI

  • Allow rule names in ruff rule (#25640)

Other changes

  • Fix playground diagnostics scrollbars (#25642)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.17

Released on 2026-06-11.

Preview features

  • Allow human-readable names in suppression comments (#25614)
  • Fix handling of ignore comments within a disable/enable pair (#25845)
  • Prioritize human-readable names in CLI output (#25869)
  • Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
  • [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
  • [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
  • [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
  • [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

  • Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
  • [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

  • [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
  • [numpy] Drop autofix for np.in1d (NPY201) (#25612)
  • [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

  • Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

  • Preserve whitespace for Quarto cell option comments (#25641)

CLI

  • Allow rule names in ruff rule (#25640)

Other changes

  • Fix playground diagnostics scrollbars (#25642)

Contributors

... (truncated)

Commits
  • 7c645a9 Bump 0.15.17 (#25872)
  • f381eb1 Prioritize human-readable names in CLI output (#25869)
  • b9b4546 Minor workflow simplification (#25870)
  • 1e77ba0 [ty] Move PreformattedBlockScanner to format-agnostic location. (#25856)
  • 6f2b772 [ty] Preserve nominal type of enum.property instances (#25849)
  • be4777c [ty] Fix site-package error when multiple versions of pythons are installed i...
  • 53f6ff7 Allow human-readable names in suppression comments (#25614)
  • 6740325 [ty] Restrict uncached raw signature access (#25866)
  • 970b1bf Auto-update snapshots when syncing typeshed (#25841)
  • 0785793 Fix handling of ignore comments within a disable/enable pair (#25845)
  • Additional commits viewable in compare view

Updates pip-audit from 2.10.0 to 2.10.1

Release notes

Sourced from pip-audit's releases.

v2.10.1

Fixed

  • Fixed a KeyError crash when an OSV vulnerability record contains an affected entry that omits the optional ranges field (#1046)
Changelog

Sourced from pip-audit's changelog.

[2.10.1]

Fixed

  • Fixed a KeyError crash when an OSV vulnerability record contains an affected entry that omits the optional ranges field (#1046)
Commits
  • 8894eb8 Merge pull request #1056 from pypa/copilot/release-2101
  • 1c625b7 Update version in README.md to 2.10.1
  • fd2094b Prep 2.10.1 release
  • 58d2488 build(deps): bump github/codeql-action from 4.35.2 to 4.36.1 (#1052)
  • 8df9420 build(deps): bump zizmorcore/zizmor-action from 0.5.3 to 0.5.6 (#1044)
  • 3f618d3 build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1053)
  • 4849132 Restrict OIDC token to publish job (#1050)
  • c1eb69a Fix KeyError when OSV affected entry omits optional ranges field (#1046)
  • 68de07f Merge pull request #1054 from pypa/fix/1047
  • ef31c9e Formatting fixes
  • Additional commits viewable in compare view

Updates boto3-stubs from 1.43.5 to 1.43.28

Release notes

Sourced from boto3-stubs's releases.

8.8.0 - Python 3.8 runtime is back

Changed

  • [services] install_requires section is calculated based on dependencies in use, so typing-extensions version is set properly
  • [all] Replaced typing imports with collections.abc with a fallback to typing for Python <3.9
  • [all] Added aliases for builtins.list, builtins.set, builtins.dict, and builtins.type, so Python 3.8 runtime should work as expected again (reported by @​YHallouard in #340 and @​Omri-Ben-Yair in #336)
  • [all] Unions use the same type annotations as the rest of the structures due to proper fallbacks

Fixed

  • [services] Universal input/output shapes were not replaced properly in service subresources
  • [docs] Simplified doc links rendering for services
  • [services] Cleaned up unnecessary imports in client.pyi
  • [builder] Import records with fallback are always rendered
Commits

Updates zensical from 0.0.40 to 0.0.45

Release notes

Sourced from zensical's releases.

0.0.45

Summary

This version reverts a behavior change in link validation that was introduced in 0.0.44 which is causing false positives.

Changelog

Bug fixes

  • 8d9536a compat – revert "fix: brackets in indented code recognized as unresolved references (#700)" (#735)

0.0.44

Summary

This version fixes several bugs related to link validation and macros, and ensures that dotfiles are not removed from the site directory during generation.

Changelog

Bug fixes

  • eb72115 compat – ignore Markdown comments [//]: ... during link validation
  • c40f649 compat – brackets in indented code blocks recognized as unresolved link references (#700)
  • 93cc869 compat – snippet markers recognized as unresolved link references (#700)
  • a212c59 zensical – don't remove dotfiles from site dir (#728)
  • db1f19c compat – provide conf attribute in macros' env object
  • 9b452cb zensical – improve error message when missing icon is used (#708)
  • d7ccbe6 zensical, compat – anchors with escaped chars not matched during link validation (#703)
  • 8b7e29e compat – empty footnote ref classified as link ref (#702)

0.0.43

Summary

This version fixes further edge cases in link validation, and adds support for UTF-8 encoding with byte-order-marks.

Changelog

Bug fixes

  • 1e873a3 compat – ignore links in code after literal dollar during link validation (#691)
  • 62a0feb zensical – report path.md/#anchor as invalid during link validation (#690)
  • 7be40c6 compat – ignore GitHub-style callouts during link validation (#688)
  • 85c3b1e compat – ignore [TOC] marker during link validation (#686)
  • daafc8b zensical – filter out icons folder when watching theme directories (#693)
  • 913fd61 zensical – strip Byte-Order-Mark (BOM) from Markdown files (#687)

0.0.42

Summary

This version includes a number of bug fixes and refactorings to improve the stability and accuracy of link validation, and fixes a reload loop when the custom_dir, which is auto-watched, is explicitly added to watch. Moreover, GLightbox is now only downloaded when needed, which fixes an issue when using Zensical in air-gapped environments.

... (truncated)

Commits
  • 4cd38f3 chore: release v0.0.45
  • 8318158 chore: workflow cleanup
  • 8d9536a fix: revert "fix: brackets in indented code blocks recognized as unresolved l...
  • 35ff260 chore: update dependencies (#733)
  • c7fe3e7 chore: release v0.0.44
  • 033da3c Merge pull request #731 from zensical/fix/validation
  • fe04446 chore: make ruff happy
  • eb72115 fix: ignore Markdown comments [//]: ... during link validation
  • a4866d0 chore: make ruff happy
  • c40f649 fix: brackets in indented code blocks recognized as unresolved link reference...
  • Additional commits viewable in compare view

Updates mkdocstrings-python from 2.0.3 to 2.0.4

Release notes

Sourced from mkdocstrings-python's releases.

2.0.4

2.0.4 - 2026-06-05

Compare with 2.0.3

Bug Fixes

  • Display Methods instead of Functions for category headings inside classes (7bf8b98 by Timothée Mazzucotelli). Issue-330
Changelog

Sourced from mkdocstrings-python's changelog.

2.0.4 - 2026-06-05

Compare with 2.0.3

Bug Fixes

  • Display Methods instead of Functions for category headings inside classes (7bf8b98 by Timothée Mazzucotelli). Issue-330
Commits
  • dc6aa93 chore: Prepare release 2.0.4
  • 7bf8b98 fix: Display Methods instead of Functions for category headings inside classes
  • See full diff in compare view

Updates botocore from 1.43.24 to 1.43.29

Commits

Updates cryptography from 48.0.0 to 48.0.1

Changelog

Sourced from cryptography's changelog.

48.0.1 - 2026-06-09


* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 4.0.1.

.. _v48-0-0:

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the patches group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.43.2` | `1.43.29` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.12` | `0.15.17` |
| [pip-audit](https://github.com/pypa/pip-audit) | `2.10.0` | `2.10.1` |
| [boto3-stubs](https://github.com/youtype/mypy_boto3_builder) | `1.43.5` | `1.43.28` |
| [zensical](https://github.com/zensical/zensical) | `0.0.40` | `0.0.45` |
| [mkdocstrings-python](https://github.com/mkdocstrings/python) | `2.0.3` | `2.0.4` |
| [botocore](https://github.com/boto/botocore) | `1.43.24` | `1.43.29` |
| [cryptography](https://github.com/pyca/cryptography) | `48.0.0` | `48.0.1` |



Updates `boto3` from 1.43.2 to 1.43.29
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.43.2...1.43.29)

Updates `ruff` from 0.15.12 to 0.15.17
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.12...0.15.17)

Updates `pip-audit` from 2.10.0 to 2.10.1
- [Release notes](https://github.com/pypa/pip-audit/releases)
- [Changelog](https://github.com/pypa/pip-audit/blob/main/CHANGELOG.md)
- [Commits](pypa/pip-audit@v2.10.0...v2.10.1)

Updates `boto3-stubs` from 1.43.5 to 1.43.28
- [Release notes](https://github.com/youtype/mypy_boto3_builder/releases)
- [Commits](https://github.com/youtype/mypy_boto3_builder/commits)

Updates `zensical` from 0.0.40 to 0.0.45
- [Release notes](https://github.com/zensical/zensical/releases)
- [Commits](zensical/zensical@v0.0.40...v0.0.45)

Updates `mkdocstrings-python` from 2.0.3 to 2.0.4
- [Release notes](https://github.com/mkdocstrings/python/releases)
- [Changelog](https://github.com/mkdocstrings/python/blob/main/CHANGELOG.md)
- [Commits](mkdocstrings/python@2.0.3...2.0.4)

Updates `botocore` from 1.43.24 to 1.43.29
- [Commits](boto/botocore@1.43.24...1.43.29)

Updates `cryptography` from 48.0.0 to 48.0.1
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](pyca/cryptography@48.0.0...48.0.1)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.43.29
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: ruff
  dependency-version: 0.15.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: pip-audit
  dependency-version: 2.10.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: boto3-stubs
  dependency-version: 1.43.28
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: zensical
  dependency-version: 0.0.45
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: mkdocstrings-python
  dependency-version: 2.0.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: botocore
  dependency-version: 1.43.29
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: cryptography
  dependency-version: 48.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patches
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 12, 2026
@github-actions github-actions Bot enabled auto-merge (squash) June 12, 2026 19:43
@dependabot @github

dependabot Bot commented on behalf of github Jun 13, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 13, 2026
auto-merge was automatically disabled June 13, 2026 01:14

Pull request was closed

@dependabot dependabot Bot deleted the dependabot/pip/patches-bff599e0a6 branch June 13, 2026 01:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants