From c733e4b35e1bbdb361120bbc03bb5f5e2c5f3f5e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 May 2026 16:30:45 +0000
Subject: [PATCH 1/2] Bump propcache from 0.4.1 to 0.5.2 (#12502)

Bumps [propcache](https://github.com/aio-libs/propcache) from 0.4.1 to
0.5.2.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/aio-libs/propcache/releases">propcache's
releases</a>.</em></p>
<blockquote>
<h2>0.5.2</h2>
<p>0.5.0 and 0.5.1 were tagged earlier today but never reached PyPI:
0.5.0's deploy failed at cibuildwheel's post-build pytest on
free-threaded armv7l musllinux (SIGBUS under QEMU emulation while
importing the C extension), and 0.5.1's deploy hit a transient sigstore
Rekor 502 during the attestation step. 0.5.2 is the first of the three
to actually publish.</p>
<h2>Features</h2>
<ul>
<li>
<p>Added support for newer type hints and remove <code>Optional</code>
and <code>Union</code> from all annotations
-- by :user:<code>Vizonex</code></p>
<p><em>Related issues and pull requests on GitHub:</em>
<a
href="https://redirect.github.com/aio-libs/propcache/issues/193">#193</a>.</p>
</li>
</ul>
<h2>Removals and backward incompatible breaking changes</h2>
<ul>
<li>
<p>Dropped support for Python 3.9 as it has reached end of life.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a
href="https://redirect.github.com/aio-libs/propcache/issues/216">#216</a>.</p>
</li>
</ul>
<h2>Packaging updates and notes for downstreams</h2>
<ul>
<li>
<p>Changed the Cython build dependency from <code>~= 3.1.0</code> to
<code>&gt;= 3.2.0</code>,
removing the upper version bound to avoid conflicts for downstream
packagers
-- by :user:<code>jameshilliard</code> and
:user:<code>gundalow</code>.</p>
<p>The upstream Cython version is pinned to 3.2.4 in the CI/CD
environment.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a
href="https://redirect.github.com/aio-libs/propcache/issues/184">#184</a>,
<a
href="https://redirect.github.com/aio-libs/propcache/issues/188">#188</a>,
<a
href="https://redirect.github.com/aio-libs/propcache/issues/214">#214</a>.</p>
</li>
<li>
<p>Start building and shipping riscv64 wheels
-- by :user:<code>justeph</code>.</p>
<p><em>Related issues and pull requests on GitHub:</em>
<a
href="https://redirect.github.com/aio-libs/propcache/issues/194">#194</a>.</p>
</li>
<li>
<p>The :pep:<code>517</code> build backend now supports a new
<code>build-inplace</code>
config setting (and <code>PROPCACHE_BUILD_INPLACE</code> environment
variable)
for controlling whether to build the project in-tree or in a
temporary directory. It only affects wheels and is set up to build
in a temporary directory by default. It does not affect editable
wheel builds; they will keep being built in-tree regardless.</p>
<p>Here's an example of using this setting:</p>
<p>.. code-block:: console</p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/aio-libs/propcache/blob/master/CHANGES.rst">propcache's
changelog</a>.</em></p>
<blockquote>
<h1>0.5.2</h1>
<p><em>(2026-05-08)</em></p>
<p>No significant changes.</p>
<hr />
<h1>0.5.1</h1>
<p><em>(2026-05-08)</em></p>
<p>No significant changes.</p>
<hr />
<h1>0.5.0</h1>
<p><em>(2026-05-08)</em></p>
<h2>Features</h2>
<ul>
<li>
<p>Added support for newer type hints and remove <code>Optional</code>
and <code>Union</code> from all annotations
-- by :user:<code>Vizonex</code></p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>193</code>.</p>
</li>
</ul>
<h2>Removals and backward incompatible breaking changes</h2>
<ul>
<li>
<p>Dropped support for Python 3.9 as it has reached end of life.</p>
<p><em>Related issues and pull requests on GitHub:</em>
:issue:<code>216</code>.</p>
</li>
</ul>
<p>Packaging updates and notes for downstreams</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/aio-libs/propcache/commit/041f7afe0dff07f3baa77ff444dd735433290940"><code>041f7af</code></a>
Release 0.5.2 (<a
href="https://redirect.github.com/aio-libs/propcache/issues/222">#222</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/9c374aa535fc054676ed84b4e709b8a29cb9a60c"><code>9c374aa</code></a>
Release 0.5.1 (<a
href="https://redirect.github.com/aio-libs/propcache/issues/221">#221</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/c4e2b787766b8fd3c0eb7a1f947c7ab8c05cf6f4"><code>c4e2b78</code></a>
Skip cibuildwheel test on free threaded armv7l musllinux (<a
href="https://redirect.github.com/aio-libs/propcache/issues/220">#220</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/e60bdedb748d995e47358d34b81930f85a979c00"><code>e60bded</code></a>
Release 0.5.0 (<a
href="https://redirect.github.com/aio-libs/propcache/issues/219">#219</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/b88f846f78f8816df48cb8c593d216d235bec87f"><code>b88f846</code></a>
Make wheel builds reproducible (<a
href="https://redirect.github.com/aio-libs/propcache/issues/218">#218</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/fdacd6cd20833a2049793c20997ee0215d1dedda"><code>fdacd6c</code></a>
Update Typehint annotations (<a
href="https://redirect.github.com/aio-libs/propcache/issues/193">#193</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/483e9d36431d6470b6622c6057afa6c404ec8c6c"><code>483e9d3</code></a>
[pre-commit.ci] pre-commit autoupdate (<a
href="https://redirect.github.com/aio-libs/propcache/issues/204">#204</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/d0d45e182ab5d580effa7ee4bf562ae14397a67d"><code>d0d45e1</code></a>
Drop Python 3.9 support (<a
href="https://redirect.github.com/aio-libs/propcache/issues/216">#216</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/c0bacf5846a3f168a3868751f6f3ed42564693c4"><code>c0bacf5</code></a>
Update pytest-cov requirement from &gt;=2.3.1 to &gt;=7.1.0 (<a
href="https://redirect.github.com/aio-libs/propcache/issues/210">#210</a>)</li>
<li><a
href="https://github.com/aio-libs/propcache/commit/9bfb3e4f32dc4bed06e153b0a2b377ef18524d69"><code>9bfb3e4</code></a>
Bump pytest-codspeed from 4.3.0 to 4.5.0 (<a
href="https://redirect.github.com/aio-libs/propcache/issues/211">#211</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/aio-libs/propcache/compare/v0.4.1...v0.5.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=propcache&package-manager=pip&previous-version=0.4.1&new-version=0.5.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/base-ft.txt      | 2 +-
 requirements/base.txt         | 2 +-
 requirements/constraints.txt  | 2 +-
 requirements/dev.txt          | 2 +-
 requirements/lint.txt         | 2 +-
 requirements/runtime-deps.txt | 2 +-
 requirements/test-ft.txt      | 2 +-
 requirements/test.txt         | 2 +-
 8 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/requirements/base-ft.txt b/requirements/base-ft.txt
index f1e4c3d4acc..2834ebfb7ca 100644
--- a/requirements/base-ft.txt
+++ b/requirements/base-ft.txt
@@ -32,7 +32,7 @@ multidict==6.7.1
     #   yarl
 packaging==26.2
     # via gunicorn
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/base.txt b/requirements/base.txt
index 7d733bde1cb..7f639a1a99b 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -32,7 +32,7 @@ multidict==6.7.1
     #   yarl
 packaging==26.2
     # via gunicorn
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index d9f3bf4051e..97f87cc5a86 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -163,7 +163,7 @@ pluggy==1.6.0
     #   pytest-cov
 pre-commit==4.6.0
     # via -r requirements/lint.in
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   aiohttp
diff --git a/requirements/dev.txt b/requirements/dev.txt
index 7bbccc6e139..af14998b66b 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -160,7 +160,7 @@ pluggy==1.6.0
     #   pytest-cov
 pre-commit==4.6.0
     # via -r requirements/lint.in
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   aiohttp
diff --git a/requirements/lint.txt b/requirements/lint.txt
index b8eb0c7d394..4eb12185474 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -93,7 +93,7 @@ pluggy==1.6.0
     # via pytest
 pre-commit==4.6.0
     # via -r requirements/lint.in
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   aiohttp
     #   yarl
diff --git a/requirements/runtime-deps.txt b/requirements/runtime-deps.txt
index 9193a03b08a..8d0850c963f 100644
--- a/requirements/runtime-deps.txt
+++ b/requirements/runtime-deps.txt
@@ -28,7 +28,7 @@ multidict==6.7.1
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   yarl
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 9d153f5aa1f..4aea2b079d0 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -97,7 +97,7 @@ pluggy==1.6.0
     # via
     #   pytest
     #   pytest-cov
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   aiohttp
diff --git a/requirements/test.txt b/requirements/test.txt
index e330060e3e7..96bbbe6ed9b 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -97,7 +97,7 @@ pluggy==1.6.0
     # via
     #   pytest
     #   pytest-cov
-propcache==0.4.1
+propcache==0.5.2
     # via
     #   -r requirements/runtime-deps.in
     #   aiohttp

From 9bc498b1d77a45e9253ae0a77a3b300abc0d875a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 May 2026 17:02:23 +0000
Subject: [PATCH 2/2] Bump librt from 0.10.0 to 0.11.0 (#12504)

Bumps [librt](https://github.com/mypyc/librt) from 0.10.0 to 0.11.0.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/mypyc/librt/commit/862679a0492f4433a286b2d53965ec2603623be1"><code>862679a</code></a>
Sync mypy and bump version to 0.11.0 (<a
href="https://redirect.github.com/mypyc/librt/issues/40">#40</a>)</li>
<li>See full diff in <a
href="https://github.com/mypyc/librt/compare/v0.10.0...v0.11.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=librt&package-manager=pip&previous-version=0.10.0&new-version=0.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 requirements/constraints.txt | 2 +-
 requirements/dev.txt         | 2 +-
 requirements/lint.txt        | 2 +-
 requirements/test-common.txt | 2 +-
 requirements/test-ft.txt     | 2 +-
 requirements/test.txt        | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/requirements/constraints.txt b/requirements/constraints.txt
index 97f87cc5a86..a6808a413a0 100644
--- a/requirements/constraints.txt
+++ b/requirements/constraints.txt
@@ -118,7 +118,7 @@ jinja2==3.1.6
     # via
     #   sphinx
     #   towncrier
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich
diff --git a/requirements/dev.txt b/requirements/dev.txt
index af14998b66b..60b94c1f7e3 100644
--- a/requirements/dev.txt
+++ b/requirements/dev.txt
@@ -116,7 +116,7 @@ jinja2==3.1.6
     # via
     #   sphinx
     #   towncrier
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich
diff --git a/requirements/lint.txt b/requirements/lint.txt
index 4eb12185474..8a0112164a7 100644
--- a/requirements/lint.txt
+++ b/requirements/lint.txt
@@ -65,7 +65,7 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2
     # via -r requirements/lint.in
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich
diff --git a/requirements/test-common.txt b/requirements/test-common.txt
index de9d62a88a3..c84a5e8c041 100644
--- a/requirements/test-common.txt
+++ b/requirements/test-common.txt
@@ -54,7 +54,7 @@ iniconfig==2.3.0
     # via pytest
 isal==1.8.0 ; python_version < "3.14"
     # via -r requirements/test-common.in
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich
diff --git a/requirements/test-ft.txt b/requirements/test-ft.txt
index 4aea2b079d0..25a70841aab 100644
--- a/requirements/test-ft.txt
+++ b/requirements/test-ft.txt
@@ -70,7 +70,7 @@ iniconfig==2.3.0
     # via pytest
 isal==1.8.0 ; python_version < "3.14"
     # via -r requirements/test-common.in
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich
diff --git a/requirements/test.txt b/requirements/test.txt
index 96bbbe6ed9b..e97f60eefca 100644
--- a/requirements/test.txt
+++ b/requirements/test.txt
@@ -70,7 +70,7 @@ iniconfig==2.3.0
     # via pytest
 isal==1.7.2 ; python_version < "3.14"
     # via -r requirements/test-common.in
-librt==0.10.0
+librt==0.11.0
     # via mypy
 markdown-it-py==4.2.0
     # via rich