Skip to content

chore(deps): bump the all-dependencies group with 8 updates#675

Merged
gijzelaerr merged 1 commit into
masterfrom
dependabot/uv/all-dependencies-52a5df7b07
Apr 14, 2026
Merged

chore(deps): bump the all-dependencies group with 8 updates#675
gijzelaerr merged 1 commit into
masterfrom
dependabot/uv/all-dependencies-52a5df7b07

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 13, 2026

Bumps the all-dependencies group with 8 updates:

Package From To
pytest 9.0.2 9.0.3
hypothesis 6.151.11 6.151.13
mypy 1.20.0 1.20.1
types-setuptools 82.0.0.20260402 82.0.0.20260408
ruff 0.15.9 0.15.10
tox 4.52.0 4.52.1
tox-uv 1.34.0 1.35.1
rich 14.3.3 15.0.0

Updates pytest from 9.0.2 to 9.0.3

Release notes

Sourced from pytest's releases.

9.0.3

pytest 9.0.3 (2026-04-07)

Bug fixes

  • #12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.

  • #13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.

    Previously this resulted in an internal assertion failure during plugin loading.

    Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.

  • #13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.

  • #14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.

  • #14343: Fixed use of insecure temporary directory (CVE-2025-71176).

Improved documentation

  • #13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
  • #13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
  • #14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
  • #14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes

  • #12689: The test reports are now published to Codecov from GitHub Actions. The test statistics is visible on the web interface.

    -- by aleguy02

Commits

Updates hypothesis from 6.151.11 to 6.151.13

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.151.13

This patch removes some newly unnecessary "# type: ignore" comments.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.151.12

This release improves "Phase.explain" output by excluding pytest- related syrupy files as a possible source of variation.

The canonical version of these notes (with links) is on readthedocs.

Commits
  • 4939dab Bump hypothesis-python version to 6.151.13 and update changelog
  • e3dab36 Merge pull request #4693 from HypothesisWorks/create-pull-request/patch
  • 4b5e745 fix rare test issue
  • b2f6737 changelog
  • 4839630 update type hints
  • b8dd6e9 Update pinned dependencies
  • 2b1de22 Bump hypothesis-python version to 6.151.12 and update changelog
  • 0016ad0 Merge pull request #4695 from HypothesisWorks/DRMacIver/syrupy
  • c43f475 Remove extra blank line in conftest.py
  • acbfebb Refactor test layout in response to code review
  • Additional commits viewable in compare view

Updates mypy from 1.20.0 to 1.20.1

Changelog

Sourced from mypy's changelog.

Mypy 1.20.1

  • Always disable sync in SQLite cache (Ivan Levkivskyi, PR 21184)
  • Temporarily skip few base64 tests (Ivan Levkivskyi, PR 21193)
  • Revert dict.__or__ typeshed change (Ivan Levkivskyi, PR 21186)
  • Fix narrowing for match case with variadic tuples (Shantanu, PR 21192)
  • Avoid narrowing type[T] in type calls (Shantanu, PR 21174)
  • Fix regression for catching empty tuple in except (Shantanu, PR 21153)
  • Fix reachability for frozenset and dict view narrowing (Shantanu, PR 21151)
  • Fix narrowing with chained comparison (Shantanu, PR 21150)
  • Avoid narrowing to unreachable at module level (Shantanu, PR 21144)
  • Allow dangerous identity comparisons to Any typed variables (Shantanu, PR 21142)
  • --warn-unused-config should not be a strict flag (Ivan Levkivskyi, PR 21139)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • A5rocks
  • Aaron Wieczorek
  • Adam Turner
  • Ali Hamdan
  • asce
  • BobTheBuidler
  • Brent Westbrook
  • Brian Schubert
  • bzoracler
  • Chris Burroughs
  • Christoph Tyralla
  • Colin Watson
  • Donghoon Nam
  • E. M. Bray
  • Emma Smith
  • Ethan Sarp
  • George Ogden
  • getzze
  • grayjk
  • Gregor Riepl
  • Ivan Levkivskyi
  • James Hilliard
  • James Le Cuirot
  • Jeremy Nimmer
  • Joren Hammudoglu
  • Kai (Kazuya Ito)
  • kaushal trivedi
  • Kevin Kannammalil
  • Lukas Geiger
  • Łukasz Langa
  • Marc Mueller
  • Michael R. Crusoe
  • michaelm-openai

... (truncated)

Commits

Updates types-setuptools from 82.0.0.20260402 to 82.0.0.20260408

Commits

Updates ruff from 0.15.9 to 0.15.10

Release notes

Sourced from ruff's releases.

0.15.10

Release Notes

Released on 2026-04-09.

Preview features

  • [flake8-logging] Allow closures in except handlers (LOG004) (#24464)
  • [flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
  • [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

  • Avoid emitting multi-line f-string elements before Python 3.12 (#24377)
  • Avoid syntax error from E502 fixes in f-strings and t-strings (#24410)
  • Strip form feeds from indent passed to dedent_to (#24381)
  • [pyupgrade] Fix panic caused by handling of octals (UP012) (#24390)
  • Reject multi-line f-string elements before Python 3.12 (#24355)

Rule changes

  • [ruff] Treat f-string interpolation as potential side effect (RUF019) (#24426)

Server

  • Add support for custom file extensions (#24463)

Documentation

  • Document adding fixes in CONTRIBUTING.md (#24393)
  • Fix JSON typo in settings example (#24517)

Contributors

Install ruff 0.15.10

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.10/ruff-installer.sh | sh

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.10

Released on 2026-04-09.

Preview features

  • [flake8-logging] Allow closures in except handlers (LOG004) (#24464)
  • [flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
  • [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

  • Avoid emitting multi-line f-string elements before Python 3.12 (#24377)
  • Avoid syntax error from E502 fixes in f-strings and t-strings (#24410)
  • Strip form feeds from indent passed to dedent_to (#24381)
  • [pyupgrade] Fix panic caused by handling of octals (UP012) (#24390)
  • Reject multi-line f-string elements before Python 3.12 (#24355)

Rule changes

  • [ruff] Treat f-string interpolation as potential side effect (RUF019) (#24426)

Server

  • Add support for custom file extensions (#24463)

Documentation

  • Document adding fixes in CONTRIBUTING.md (#24393)
  • Fix JSON typo in settings example (#24517)

Contributors

Commits
  • 252f761 Bump 0.15.10 (#24519)
  • 37a1ec8 [ty] Fix assignability of intersections with bounded typevars (#24502)
  • f518cc9 [ty] Allow partially stringified type[…] annotations (#24518)
  • 16c4090 docs: fix JSON typo in settings example (#24517)
  • 99d97bd [ty] Tighten up a few edge cases in Concatenate type-expression parsing (#2...
  • 2714e34 [ty] Enable pull-diagnostics by default in E2E tests (#24516)
  • d8bc700 LSP: Add support for custom extensions (#24463)
  • a45f96d [ty] stop special-casing str constructor (#24514)
  • 87a0f01 [ruff] Treat f-string interpolation as potential side effect in RUF019 (#24426)
  • e9ba848 [ty] Fix excess subscript argument inference for non-generic types (#24354)
  • Additional commits viewable in compare view

Updates tox from 4.52.0 to 4.52.1

Release notes

Sourced from tox's releases.

v4.52.1

What's Changed

Full Changelog: tox-dev/tox@4.52.0...4.52.1

Changelog

Sourced from tox's changelog.

Bug fixes - 4.52.1

  • Changing a resolution-affecting environment variable via set_env (e.g. PIP_INDEX_URL) now invalidates the install cache and triggers a reinstall, rather than incorrectly reusing the cached environment - by :user:gaborbernat. (:issue:3917)
  • Use normalize_isa from python-discovery for architecture factor matching, supporting aliases like i686x86 and aarch64arm64 - by :user:rahuldevikar. (:issue:3919)

v4.52.0 (2026-03-30)

Commits
  • 71ef9bf release 4.52.1
  • d15c8fa 🐛 fix(pip): invalidate install cache on resolution env var changes (#3921)
  • c1add25 build(deps): bump pypa/gh-action-pypi-publish from 1.13.0 to 1.14.0 (#3920)
  • 1866b9d use normalize_isa for architecture factor matching (#3919)
  • ec77d9f [pre-commit.ci] pre-commit autoupdate (#3918)
  • e7052a6 build(deps): bump astral-sh/setup-uv from 7.6.0 to 8.0.0 (#3915)
  • See full diff in compare view

Updates tox-uv from 1.34.0 to 1.35.1

Release notes

Sourced from tox-uv's releases.

1.35.1

What's Changed

New Contributors

Full Changelog: tox-dev/tox-uv@1.35.0...1.35.1

1.35.0

What's Changed

New Contributors

Full Changelog: tox-dev/tox-uv@1.34.0...1.35.0

Commits
  • 8b0497e fix(lock-runner): respect UV_FROZEN env var and --frozen in uv_sync_flags (#327)
  • ad30d57 build(deps): bump pypa/gh-action-pypi-publish from 1.13.0 to 1.14.0 (#324)
  • 9fc7741 🐛 fix(installer): invalidate install cache on UV_* env var changes (#325)
  • 928cd46 [pre-commit.ci] pre-commit autoupdate (#323)
  • 84997a5 build(deps): bump astral-sh/setup-uv from 7.6.0 to 8.0.0 (#322)
  • 8072144 Add machine and architecture handling to version spec (#321)
  • See full diff in compare view

Updates rich from 14.3.3 to 15.0.0

Release notes

Sourced from rich's releases.

The So Long 3.8 Release

A few fixes. The major version bump is to honor the passing of 3.8 support which reached its EOL in October 7, 2024

[15.0.0] - 2026-04-12

Changed

  • Breaking change: Dropped support for Python3.8

Fixed

The Faster Startup Release

No new features in this release, but there should be improved startup time for Rich apps, and potentially improved runtime if you have a lot of links.

[14.3.4] - 2026-04-11

Changed

Changelog

Sourced from rich's changelog.

[15.0.0] - 2026-04-12

Changed

  • Breaking change: Dropped support for Python3.8

Fixed

[14.3.4] - 2026-04-11

Changed

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the all-dependencies group with 8 updates
ef480d0 
Bumps the all-dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [pytest](https://github.com/pytest-dev/pytest) | `9.0.2` | `9.0.3` |
| [hypothesis](https://github.com/HypothesisWorks/hypothesis) | `6.151.11` | `6.151.13` |
| [mypy](https://github.com/python/mypy) | `1.20.0` | `1.20.1` |
| [types-setuptools](https://github.com/python/typeshed) | `82.0.0.20260402` | `82.0.0.20260408` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.9` | `0.15.10` |
| [tox](https://github.com/tox-dev/tox) | `4.52.0` | `4.52.1` |
| [tox-uv](https://github.com/tox-dev/tox-uv) | `1.34.0` | `1.35.1` |
| [rich](https://github.com/Textualize/rich) | `14.3.3` | `15.0.0` |


Updates `pytest` from 9.0.2 to 9.0.3
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@9.0.2...9.0.3)

Updates `hypothesis` from 6.151.11 to 6.151.13
- [Release notes](https://github.com/HypothesisWorks/hypothesis/releases)
- [Commits](HypothesisWorks/hypothesis@hypothesis-python-6.151.11...hypothesis-python-6.151.13)

Updates `mypy` from 1.20.0 to 1.20.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.20.0...v1.20.1)

Updates `types-setuptools` from 82.0.0.20260402 to 82.0.0.20260408
- [Commits](https://github.com/python/typeshed/commits)

Updates `ruff` from 0.15.9 to 0.15.10
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.9...0.15.10)

Updates `tox` from 4.52.0 to 4.52.1
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.52.0...4.52.1)

Updates `tox-uv` from 1.34.0 to 1.35.1
- [Release notes](https://github.com/tox-dev/tox-uv/releases)
- [Commits](tox-dev/tox-uv@1.34.0...1.35.1)

Updates `rich` from 14.3.3 to 15.0.0
- [Release notes](https://github.com/Textualize/rich/releases)
- [Changelog](https://github.com/Textualize/rich/blob/master/CHANGELOG.md)
- [Commits](Textualize/rich@v14.3.3...v15.0.0)

---
updated-dependencies:
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: hypothesis
  dependency-version: 6.151.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: mypy
  dependency-version: 1.20.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: types-setuptools
  dependency-version: 82.0.0.20260408
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: ruff
  dependency-version: 0.15.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: tox
  dependency-version: 4.52.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: tox-uv
  dependency-version: 1.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-dependencies
- dependency-name: rich
  dependency-version: 15.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Apr 13, 2026
@gijzelaerr gijzelaerr merged commit 5f3aff6 into master Apr 14, 2026
36 checks passed
@dependabot dependabot Bot deleted the dependabot/uv/all-dependencies-52a5df7b07 branch April 14, 2026 08:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@gijzelaerr