Skip to content

Bump the python group across 1 directory with 6 updates#217

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/python-fb1ce2c167
Open

Bump the python group across 1 directory with 6 updates#217
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/python-fb1ce2c167

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 13, 2026

Bumps the python group with 6 updates in the / directory:

Package From To
prek 0.3.4 0.3.5
ruff 0.15.5 0.15.6
ty 0.0.21 0.0.23
zensical 0.0.24 0.0.26
tox 4.48.1 4.49.1
tox-uv 1.33.1 1.33.4

Updates prek from 0.3.4 to 0.3.5

Release notes

Sourced from prek's releases.

0.3.5

Release Notes

Released on 2026-03-09.

Enhancements

  • Add automatic Ruby download support using rv binaries (#1668)
  • Adjust open file limit on process startup (#1705)
  • Allow parallel gem retry (#1732)
  • Enable system-proxy feature on reqwest (#1738)
  • Expose --git-dir to force hook installation target (#1723)
  • Pass --quiet, --verbose, and --no-progress through prek install into generated hook scripts (#1753)
  • Respect core.sharedRepository for hook permissions (#1755)
  • Support legacy mode hook script (#1706)
  • rust: support cli: git dependency 4th segment package disambiguation (#1747)

Bug fixes

  • Fix Python __main__.py entry (#1741)
  • python: strip UV_SYSTEM_PYTHON from uv venv and pip install commands (#1756)

Other changes

  • Sync latest identify tags (#1733)

Contributors

Install prek 0.3.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/j178/prek/releases/download/v0.3.5/prek-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/j178/prek/releases/download/v0.3.5/prek-installer.ps1 | iex"

Install prebuilt binaries via Homebrew

... (truncated)

Changelog

Sourced from prek's changelog.

0.3.5

Released on 2026-03-09.

Enhancements

  • Add automatic Ruby download support using rv binaries (#1668)
  • Adjust open file limit on process startup (#1705)
  • Allow parallel gem retry (#1732)
  • Enable system-proxy feature on reqwest (#1738)
  • Expose --git-dir to force hook installation target (#1723)
  • Pass --quiet, --verbose, and --no-progress through prek install into generated hook scripts (#1753)
  • Respect core.sharedRepository for hook permissions (#1755)
  • Support legacy mode hook script (#1706)
  • rust: support cli: git dependency 4th segment package disambiguation (#1747)

Bug fixes

  • Fix Python __main__.py entry (#1741)
  • python: strip UV_SYSTEM_PYTHON from uv venv and pip install commands (#1756)

Other changes

  • Sync latest identify tags (#1733)

Contributors

Commits

Updates ruff from 0.15.5 to 0.15.6

Release notes

Sourced from ruff's releases.

0.15.6

Release Notes

Released on 2026-03-12.

Preview features

  • Add support for lazy import parsing (#23755)
  • Add support for star-unpacking of comprehensions (PEP 798) (#23788)
  • Reject semantic syntax errors for lazy imports (#23757)
  • Drop a few rules from the preview default set (#23879)
  • [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
  • [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
  • [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
  • [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
  • [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
  • [isort] Retain lazy keyword when sorting imports (#23762)
  • [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
  • [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
  • [ruff] Add os-path-commonprefix (RUF071) (#23814)
  • [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
  • [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
  • [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

  • Fix --add-noqa creating unwanted leading whitespace (#23773)
  • Fix --add-noqa breaking shebangs (#23577)
  • [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
  • [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
  • [formatter] Preserve type-expression parentheses in the formatter (#23867)
  • [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
  • [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
  • [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
  • [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
  • [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

  • [flake8-bandit] Flag S501 with requests.request (#23873)
  • [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
  • [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

  • Update docs for Markdown code block formatting (#23871)
  • [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.6

Released on 2026-03-12.

Preview features

  • Add support for lazy import parsing (#23755)
  • Add support for star-unpacking of comprehensions (PEP 798) (#23788)
  • Reject semantic syntax errors for lazy imports (#23757)
  • Drop a few rules from the preview default set (#23879)
  • [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
  • [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
  • [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
  • [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
  • [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
  • [isort] Retain lazy keyword when sorting imports (#23762)
  • [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
  • [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
  • [ruff] Add os-path-commonprefix (RUF071) (#23814)
  • [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
  • [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
  • [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

  • Fix --add-noqa creating unwanted leading whitespace (#23773)
  • Fix --add-noqa breaking shebangs (#23577)
  • [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
  • [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
  • [formatter] Preserve type-expression parentheses in the formatter (#23867)
  • [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
  • [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
  • [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
  • [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
  • [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

  • [flake8-bandit] Flag S501 with requests.request (#23873)
  • [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
  • [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

  • Update docs for Markdown code block formatting (#23871)
  • [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

... (truncated)

Commits
  • e4c7f35 Bump 0.15.6 (#23919)
  • edfe6c1 [ty] Narrow type context during collection literal inference (#23844)
  • dd16d68 Exclude broken symlink in ecosystem check (#23921)
  • 3f94c6a Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23...
  • 91fc7bd [ty] Fix false-positive diagnostics for PEP-604 union annotations on attribut...
  • 04229cf [ty] Initial test suite for PEP-728 TypedDict features (#23832)
  • 728b9d6 [pep8-naming] Check naming conventions in match pattern bindings (N806,...
  • 88d1eec [ty] Ensure a type[] type T is always considered assignable to a union th...
  • 37cdd61 Fix lambda body formatting for multiline calls and subscripts (#23866)
  • a25a4df [ty] Disambiguate duplicate-looking overloaded callables in union display (#2...
  • Additional commits viewable in compare view

Updates ty from 0.0.21 to 0.0.23

Release notes

Sourced from ty's releases.

0.0.23

Release Notes

Released on 2026-03-13.

Bug fixes

  • Fix false-positive diagnostics for PEP-604 union annotations on attribute targets on Python 3.9 when from __future__ import annotations is active (#23915)
  • dataclass_transform: Respect kw_only overwrites in dataclasses (#23930)
  • Fix too-many-cycle panics when inferring loop variables with Literal types (#23875)

Server

Core type checking

  • Split errors for possibly missing submodules into a new possibly-missing-submodule error code (enabled by default), and make possibly-missing-attribute ignored by default (#23918)
  • Improve handling of bidirectional inference when (#23844)
  • Fix inference of conditionally defined properties (#23925)

Improvements to diagnostics

  • Clarify in diagnostics that from __future__ import annotations only stringifies type annotations (#23928)

Performance improvements

  • Avoid duplicated work during multi-inference (#23923)

Contributors

Install ty 0.0.23

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ty/releases/download/0.0.23/ty-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ty's changelog.

0.0.23

Released on 2026-03-13.

Bug fixes

  • Fix false-positive diagnostics for PEP-604 union annotations on attribute targets on Python 3.9 when from __future__ import annotations is active (#23915)
  • dataclass_transform: Respect kw_only overwrites in dataclasses (#23930)
  • Fix too-many-cycle panics when inferring loop variables with Literal types (#23875)

Server

Core type checking

  • Split errors for possibly missing submodules into a new possibly-missing-submodule error code (enabled by default), and make possibly-missing-attribute ignored by default (#23918)
  • Improve handling of bidirectional inference when (#23844)
  • Fix inference of conditionally defined properties (#23925)

Improvements to diagnostics

  • Clarify in diagnostics that from __future__ import annotations only stringifies type annotations (#23928)

Performance improvements

  • Avoid duplicated work during multi-inference (#23923)

Contributors

0.0.22

Released on 2026-03-12.

Bug fixes

  • Fix issue where variables could be inferred as Divergent if they were assigned using tuple unpacking in loops (#23812)
  • Allow error = "all" in a root pyproject.toml file to be overridden using tool.ty.overrides in a subdirectory's pyproject.toml file (#23712)
  • Only unsoundly upcast type[] types to their constructor Callable type during assignability checks, not during redundancy/subtyping checks (#23834, #23901)
  • Fix stack overflow that could occur with certain recursive protocols (#23870)

... (truncated)

Commits

Updates zensical from 0.0.24 to 0.0.26

Release notes

Sourced from zensical's releases.

0.0.26

Summary

This version fixes a regression introduced in 0.0.25 where the wheels built for manylinux x86 would be based on Python 3.8 instead of Python 3.10, making Zensical unusable on those architectures. This is related to a recent bug in our upstream dependency maturin, which was introduced in version 1.12.5. Additionally, it fixes a deprecation warning on Python 3.14 when using the emoji extension.

Changelog

Bug fixes

  • 66ca0e7 – missing wheels for CPython 3.10 manylinux x86 (#425)
  • 7514e32 compat – replace codecs.open, deprecated in Python 3.14 (#429)

0.0.25

Summary

This version updates the user interface to v0.0.9, which improves on accessibility and fixes some minor rendering issues. Additionally, it fixes some bugs related to configuration parsing and plugin handling in zensical serve, ensuring a smoother development experience.

Highlights

  • zensical serve now keeps running on configuration parsing errors
  • Auto-appended pymdownx.snippets files are now watched for changes
  • Search highlighting now works with keyboard navigation

Changelog

Bug fixes

  • 657c685 ui – update ui to v0.0.9
  • b5c8767 zensical – config parse errors shouldn't terminate zensical serve (#403)
  • 6c911ca zensical, compat – watch auto-appended pymdownx.snippets files for changes (#148)
  • bf930dd zensical, compat – hash plugins config to trigger page rebuilds (#387)
  • b93d630 compat – clarify examples in bootstrapped zensical.toml (#394)
Commits
  • 824410c chore: release v0.0.26
  • 66ca0e7 fix: missing wheels for CPython 3.10 manylinux x86 (#425)
  • 7514e32 fix: replace codecs.open, deprecated in Python 3.14 (#429)
  • 88caefa chore: release v0.0.25
  • 657c685 fix: update ui to v0.0.9
  • b5c8767 fix: config parse errors shouldn't terminate zensical serve (#403)
  • 6c911ca fix: watch auto-appended pymdownx.snippets files for changes (#148)
  • ea57e0b chore: fix typos in zensical.toml
  • bf930dd fix: hash plugins config to trigger page rebuilds (#387)
  • b93d630 fix: clarify examples in bootstrapped zensical.toml (#394)
  • See full diff in compare view

Updates tox from 4.48.1 to 4.49.1

Release notes

Sourced from tox's releases.

v4.49.1

What's Changed

Full Changelog: tox-dev/tox@4.49.0...4.49.1

v4.49.0

What's Changed

New Contributors

Full Changelog: tox-dev/tox@4.48.1...4.49.0

Changelog

Sourced from tox's changelog.

Bug fixes - 4.49.1

  • Break deadlock in execution interrupt chain that caused ~18 flaky timeout failures across 9 tests on Windows/macOS CI
    • by :user:gaborbernat. (:issue:3869)

v4.49.0 (2026-03-06)

Features - 4.49.0

  • Add {factor:label} substitution for TOML configs -- factor groups in product matrices and env_base factors can now be labeled with single-key dicts (e.g., {ecosystem = ["oci", "python"]}), enabling {factor:ecosystem} in any string value (descriptions, commands, etc.) to resolve to the active factor. Plain lists automatically get positional labels ({factor:0}, {factor:1}, ...) - by :user:gaborbernat. (:issue:3860) (:issue:3860)

Bug fixes - 4.49.0

  • Fix --showconfig and --help-ini legacy flags raising AttributeError after config format options were added
    • by :user:rares985 (:issue:3866)

v4.48.1 (2026-03-06)

Commits

Updates tox-uv from 1.33.1 to 1.33.4

Release notes

Sourced from tox-uv's releases.

1.33.4

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.3...1.33.4

1.33.3

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.2...1.33.3

1.33.2

What's Changed

Full Changelog: tox-dev/tox-uv@1.33.1...1.33.2

Commits
  • e0b9d0f 🐛 fix(meta): remove tox_uv namespace conflict (#314)
  • 8cee50b 🐛 fix(venv): resolve env names with trailing digits correctly (#313)
  • ff811cb 🐛 fix(venv): reject non-Python env names as interpreter specs (#312)
  • ef8450c [pre-commit.ci] pre-commit autoupdate (#307)
  • 906a243 🐛 fix(venv): resolve Python spec from env name when tox passes fallback path ...
  • 37d1adb [pre-commit.ci] pre-commit autoupdate (#306)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python group across 1 directory with 6 updates
e37bdc4 
Bumps the python group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [prek](https://github.com/j178/prek) | `0.3.4` | `0.3.5` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.5` | `0.15.6` |
| [ty](https://github.com/astral-sh/ty) | `0.0.21` | `0.0.23` |
| [zensical](https://github.com/zensical/zensical) | `0.0.24` | `0.0.26` |
| [tox](https://github.com/tox-dev/tox) | `4.48.1` | `4.49.1` |
| [tox-uv](https://github.com/tox-dev/tox-uv) | `1.33.1` | `1.33.4` |



Updates `prek` from 0.3.4 to 0.3.5
- [Release notes](https://github.com/j178/prek/releases)
- [Changelog](https://github.com/j178/prek/blob/master/CHANGELOG.md)
- [Commits](j178/prek@v0.3.4...v0.3.5)

Updates `ruff` from 0.15.5 to 0.15.6
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.5...0.15.6)

Updates `ty` from 0.0.21 to 0.0.23
- [Release notes](https://github.com/astral-sh/ty/releases)
- [Changelog](https://github.com/astral-sh/ty/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ty@0.0.21...0.0.23)

Updates `zensical` from 0.0.24 to 0.0.26
- [Release notes](https://github.com/zensical/zensical/releases)
- [Commits](zensical/zensical@v0.0.24...v0.0.26)

Updates `tox` from 4.48.1 to 4.49.1
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.48.1...4.49.1)

Updates `tox-uv` from 1.33.1 to 1.33.4
- [Release notes](https://github.com/tox-dev/tox-uv/releases)
- [Commits](tox-dev/tox-uv@1.33.1...1.33.4)

---
updated-dependencies:
- dependency-name: prek
  dependency-version: 0.3.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: ruff
  dependency-version: 0.15.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: ty
  dependency-version: 0.0.23
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: zensical
  dependency-version: 0.0.26
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: tox
  dependency-version: 4.49.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: python
- dependency-name: tox-uv
  dependency-version: 1.33.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Mar 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants