Skip to content

chore(deps): bump the all-dependencies group with 4 updates#609

Merged
gijzelaerr merged 1 commit into
masterfrom
dependabot/uv/all-dependencies-26c3237657
Mar 18, 2026
Merged

chore(deps): bump the all-dependencies group with 4 updates#609
gijzelaerr merged 1 commit into
masterfrom
dependabot/uv/all-dependencies-26c3237657

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Mar 16, 2026
edited
Loading

Bumps the all-dependencies group with 4 updates: ruff, tox, tox-uv and uv.

Updates ruff from 0.15.5 to 0.15.6

Release notes

Sourced from ruff's releases.

0.15.6

Release Notes

Released on 2026-03-12.

Preview features

  • Add support for lazy import parsing (#23755)
  • Add support for star-unpacking of comprehensions (PEP 798) (#23788)
  • Reject semantic syntax errors for lazy imports (#23757)
  • Drop a few rules from the preview default set (#23879)
  • [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
  • [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
  • [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
  • [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
  • [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
  • [isort] Retain lazy keyword when sorting imports (#23762)
  • [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
  • [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
  • [ruff] Add os-path-commonprefix (RUF071) (#23814)
  • [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
  • [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
  • [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

  • Fix --add-noqa creating unwanted leading whitespace (#23773)
  • Fix --add-noqa breaking shebangs (#23577)
  • [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
  • [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
  • [formatter] Preserve type-expression parentheses in the formatter (#23867)
  • [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
  • [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
  • [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
  • [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
  • [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

  • [flake8-bandit] Flag S501 with requests.request (#23873)
  • [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
  • [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

  • Update docs for Markdown code block formatting (#23871)
  • [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.6

Released on 2026-03-12.

Preview features

  • Add support for lazy import parsing (#23755)
  • Add support for star-unpacking of comprehensions (PEP 798) (#23788)
  • Reject semantic syntax errors for lazy imports (#23757)
  • Drop a few rules from the preview default set (#23879)
  • [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
  • [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
  • [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
  • [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
  • [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
  • [isort] Retain lazy keyword when sorting imports (#23762)
  • [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
  • [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
  • [ruff] Add os-path-commonprefix (RUF071) (#23814)
  • [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
  • [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
  • [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

  • Fix --add-noqa creating unwanted leading whitespace (#23773)
  • Fix --add-noqa breaking shebangs (#23577)
  • [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
  • [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
  • [formatter] Preserve type-expression parentheses in the formatter (#23867)
  • [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
  • [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
  • [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
  • [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
  • [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

  • [flake8-bandit] Flag S501 with requests.request (#23873)
  • [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
  • [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

  • Update docs for Markdown code block formatting (#23871)
  • [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

... (truncated)

Commits
  • e4c7f35 Bump 0.15.6 (#23919)
  • edfe6c1 [ty] Narrow type context during collection literal inference (#23844)
  • dd16d68 Exclude broken symlink in ecosystem check (#23921)
  • 3f94c6a Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23...
  • 91fc7bd [ty] Fix false-positive diagnostics for PEP-604 union annotations on attribut...
  • 04229cf [ty] Initial test suite for PEP-728 TypedDict features (#23832)
  • 728b9d6 [pep8-naming] Check naming conventions in match pattern bindings (N806,...
  • 88d1eec [ty] Ensure a type[] type T is always considered assignable to a union th...
  • 37cdd61 Fix lambda body formatting for multiline calls and subscripts (#23866)
  • a25a4df [ty] Disambiguate duplicate-looking overloaded callables in union display (#2...
  • Additional commits viewable in compare view

Updates tox from 4.49.0 to 4.49.1

Release notes

Sourced from tox's releases.

v4.49.1

What's Changed

Full Changelog: tox-dev/tox@4.49.0...4.49.1

Changelog

Sourced from tox's changelog.

Bug fixes - 4.49.1

  • Break deadlock in execution interrupt chain that caused ~18 flaky timeout failures across 9 tests on Windows/macOS CI
    • by :user:gaborbernat. (:issue:3869)

v4.49.0 (2026-03-06)

Commits

Updates tox-uv from 1.33.1 to 1.33.4

Release notes

Sourced from tox-uv's releases.

1.33.4

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.3...1.33.4

1.33.3

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.2...1.33.3

1.33.2

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.1...1.33.2

Commits
  • e0b9d0f 🐛 fix(meta): remove tox_uv namespace conflict (#314)
  • 8cee50b 🐛 fix(venv): resolve env names with trailing digits correctly (#313)
  • ff811cb 🐛 fix(venv): reject non-Python env names as interpreter specs (#312)
  • ef8450c [pre-commit.ci] pre-commit autoupdate (#307)
  • 906a243 🐛 fix(venv): resolve Python spec from env name when tox passes fallback path ...
  • 37d1adb [pre-commit.ci] pre-commit autoupdate (#306)
  • See full diff in compare view

Updates uv from 0.10.9 to 0.10.10

Release notes

Sourced from uv's releases.

0.10.10

Release Notes

Released on 2026-03-13.

Python

  • Add CPython 3.15.0a7 (#18403)

Enhancements

  • Add --outdated flag to uv tool list (#18318)
  • Add riscv64 musl target to build-release-binaries workflow (#18228)
  • Fetch Ruff from an Astral mirror (#18286)
  • Improve error handling for platform detection in Python downloads (#18453)
  • Warn if --project directory does not exist (#17714)
  • Warn when workspace member scripts are skipped due to missing build system (#18389)
  • Update build backend versions used in uv init (#18417)
  • Log explicit config file path in verbose output (#18353)
  • Make uv cache clear an alias of uv cache clean (#18420)
  • Reject invalid classifiers, warn on license classifiers in uv_build (#18419)

Preview features

  • Add links to uv audit output (#18392)
  • Output/report formatting for uv audit (#18193)
  • Switch to batched OSV queries for uv audit (#18394)

Bug fixes

  • Avoid sharing version metadata across indexes (#18373)
  • Bump zlib-rs to 0.6.2 to fix panic on decompression of large wheels on Windows (#18362)
  • Filter out unsupported environment wheels (#18445)
  • Preserve absolute/relative paths in lockfiles (#18176)
  • Recreate Python environments under uv tool install --force (#18399)
  • Respect timestamp and other cache keys in cached environments (#18396)
  • Simplify selected extra markers in uv export (#18433)
  • Send pyx mint-token requests with a proper Content-Type (#18334)
  • Fix Windows operating system and version reporting (#18383)

Documentation

  • Update the platform support policy with a tier 3 section including freebsd and 32-bit windows (#18345)

Install uv 0.10.10

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/uv/releases/download/0.10.10/uv-installer.sh | sh
</tr></table>

... (truncated)

Changelog

Sourced from uv's changelog.

0.10.10

Released on 2026-03-13.

Python

  • Add CPython 3.15.0a7 (#18403)

Enhancements

  • Add --outdated flag to uv tool list (#18318)
  • Add riscv64 musl target to build-release-binaries workflow (#18228)
  • Fetch Ruff from an Astral mirror (#18286)
  • Improve error handling for platform detection in Python downloads (#18453)
  • Warn if --project directory does not exist (#17714)
  • Warn when workspace member scripts are skipped due to missing build system (#18389)
  • Update build backend versions used in uv init (#18417)
  • Log explicit config file path in verbose output (#18353)
  • Make uv cache clear an alias of uv cache clean (#18420)
  • Reject invalid classifiers, warn on license classifiers in uv_build (#18419)

Preview features

  • Add links to uv audit output (#18392)
  • Output/report formatting for uv audit (#18193)
  • Switch to batched OSV queries for uv audit (#18394)

Bug fixes

  • Avoid sharing version metadata across indexes (#18373)
  • Bump zlib-rs to 0.6.2 to fix panic on decompression of large wheels on Windows (#18362)
  • Filter out unsupported environment wheels (#18445)
  • Preserve absolute/relative paths in lockfiles (#18176)
  • Recreate Python environments under uv tool install --force (#18399)
  • Respect timestamp and other cache keys in cached environments (#18396)
  • Simplify selected extra markers in uv export (#18433)
  • Send pyx mint-token requests with a proper Content-Type (#18334)
  • Fix Windows operating system and version reporting (#18383)

Documentation

  • Update the platform support policy with a tier 3 section including freebsd and 32-bit windows (#18345)
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all-dependencies group with 4 updates
7c40215 
Bumps the all-dependencies group with 4 updates: [ruff](https://github.com/astral-sh/ruff), [tox](https://github.com/tox-dev/tox), [tox-uv](https://github.com/tox-dev/tox-uv) and [uv](https://github.com/astral-sh/uv).


Updates `ruff` from 0.15.5 to 0.15.6
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.5...0.15.6)

Updates `tox` from 4.49.0 to 4.49.1
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.49.0...4.49.1)

Updates `tox-uv` from 1.33.1 to 1.33.4
- [Release notes](https://github.com/tox-dev/tox-uv/releases)
- [Commits](tox-dev/tox-uv@1.33.1...1.33.4)

Updates `uv` from 0.10.9 to 0.10.10
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.10.9...0.10.10)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.15.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: tox
  dependency-version: 4.49.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: tox-uv
  dependency-version: 1.33.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: uv
  dependency-version: 0.10.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 16, 2026
@gijzelaerr gijzelaerr modified the milestones: 3.1, 3.0 Mar 18, 2026
@gijzelaerr gijzelaerr merged commit d7556ff into master Mar 18, 2026
35 checks passed
@dependabot dependabot Bot deleted the dependabot/uv/all-dependencies-26c3237657 branch March 18, 2026 07:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

3.0

Development

Successfully merging this pull request may close these issues.

1 participant

@gijzelaerr