Skip to content

Bump the python group with 3 updates#3635

Merged
mergify[bot] merged 1 commit intomainfrom
dependabot/pip/python-a6eabbd821
Mar 9, 2026
Merged

Bump the python group with 3 updates#3635
mergify[bot] merged 1 commit intomainfrom
dependabot/pip/python-a6eabbd821

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 9, 2026

Bumps the python group with 3 updates: ruff, boto3 and uv.

Updates ruff from 0.15.4 to 0.15.5

Release notes

Sourced from ruff's releases.

0.15.5

Release Notes

Released on 2026-03-05.

Preview features

  • Discover Markdown files by default in preview mode (#23434)
  • [perflint] Extend PERF102 to comprehensions and generators (#23473)
  • [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
  • [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
  • [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

  • [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
  • [pydocstyle] Fix numpy section ordering (D420) (#23685)
  • [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
  • [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

  • Document extension mapping for Markdown code formatting (#23574)
  • Update default Python version examples (#23605)

Other changes

  • Publish releases to Astral mirror (#23616)

Contributors

Install ruff 0.15.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.15.5/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.5

Released on 2026-03-05.

Preview features

  • Discover Markdown files by default in preview mode (#23434)
  • [perflint] Extend PERF102 to comprehensions and generators (#23473)
  • [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
  • [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
  • [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

  • [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
  • [pydocstyle] Fix numpy section ordering (D420) (#23685)
  • [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
  • [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

  • Document extension mapping for Markdown code formatting (#23574)
  • Update default Python version examples (#23605)

Other changes

  • Publish releases to Astral mirror (#23616)

Contributors

Commits
  • 5e4a3d9 Bump 0.15.5 (#23743)
  • 69c23cc [ty] Render all changed diagnostics in conformance.py (#23613)
  • 4926bd5 [ty] Split deferred checks out of types/infer/builder.rs (#23740)
  • 9a70f5e Discover markdown files by default in preview mode (#23434)
  • 3dc78b0 [ty] Use HasOptionalDefinition for except handlers (#23739)
  • a6a5e8d [ty] Fix precedence of all selector in TOML configurations (#23723)
  • 2a5384b [ty] Make all selector case sensitive (#23713)
  • db77d7b [ty] Add a diagnostic if a TypeVar is used to specialize a ParamSpec, or ...
  • db28490 [ty] Override home directory in ty tests (#23724)
  • 5f0fd91 [ty] More type-variable default validation (#23639)
  • Additional commits viewable in compare view

Updates boto3 from 1.42.59 to 1.42.63

Commits
  • 5e8adc5 Merge branch 'release-1.42.63'
  • ab9feea Bumping version to 1.42.63
  • ea37886 Add changelog entries from botocore
  • 1e80b23 Merge branch 'release-1.42.62'
  • e36ca90 Merge branch 'release-1.42.62' into develop
  • 88f3b53 Bumping version to 1.42.62
  • 00f0105 Add changelog entries from botocore
  • a1aeb0e Merge branch 'release-1.42.61'
  • 474af48 Merge branch 'release-1.42.61' into develop
  • 8a2c5ef Bumping version to 1.42.61
  • Additional commits viewable in compare view

Updates uv from 0.10.7 to 0.10.9

Release notes

Sourced from uv's releases.

0.10.9

Release Notes

Released on 2026-03-06.

Enhancements

  • Add fbgemm-gpu, fbgemm-gpu-genai, torchrec, and torchtune to the PyTorch list (#18338)
  • Add torchcodec to PyTorch List (#18336)
  • Log the duration we took before erroring (#18231)
  • Warn when using uv_build settings without uv_build (#15750)
  • Add fallback to /usr/lib/os-release on Linux system lookup failure (#18349)
  • Use cargo auditable to include SBOM in uv builds (#18276)

Configuration

  • Add an environment variable for UV_VENV_RELOCATABLE (#18331)

Performance

  • Avoid toml Document overhead (#18306)
  • Use a single global workspace cache (#18307)

Bug fixes

  • Continue on trampoline job assignment failures (#18291)
  • Handle the hard link limit gracefully instead of failing (#17699)
  • Respect build constraints for workspace members (#18350)
  • Revalidate editables and other dependencies in scripts (#18328)
  • Support Python 3.13+ on Android (#18301)
  • Support cp3-none-any (#17064)
  • Skip tool environments with broken links to Python on Windows (#17176)

Documentation

  • Add documentation for common marker values (#18327)
  • Improve documentation on virtual dependencies (#18346)

Install uv 0.10.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/uv/releases/download/0.10.9/uv-installer.sh | sh

Install prebuilt binaries via powershell script

</tr></table>

... (truncated)

Changelog

Sourced from uv's changelog.

0.10.9

Released on 2026-03-06.

Enhancements

  • Add fbgemm-gpu, fbgemm-gpu-genai, torchrec, and torchtune to the PyTorch list (#18338)
  • Add torchcodec to PyTorch List (#18336)
  • Log the duration we took before erroring (#18231)
  • Warn when using uv_build settings without uv_build (#15750)
  • Add fallback to /usr/lib/os-release on Linux system lookup failure (#18349)
  • Use cargo auditable to include SBOM in uv builds (#18276)

Configuration

  • Add an environment variable for UV_VENV_RELOCATABLE (#18331)

Performance

  • Avoid toml Document overhead (#18306)
  • Use a single global workspace cache (#18307)

Bug fixes

  • Continue on trampoline job assignment failures (#18291)
  • Handle the hard link limit gracefully instead of failing (#17699)
  • Respect build constraints for workspace members (#18350)
  • Revalidate editables and other dependencies in scripts (#18328)
  • Support Python 3.13+ on Android (#18301)
  • Support cp3-none-any (#17064)
  • Skip tool environments with broken links to Python on Windows (#17176)

Documentation

  • Add documentation for common marker values (#18327)
  • Improve documentation on virtual dependencies (#18346)

0.10.8

Released on 2026-03-03.

Python

  • Add CPython 3.10.20
  • Add CPython 3.11.15
  • Add CPython 3.12.13

Enhancements

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the python group with 3 updates
01428a9 
Bumps the python group with 3 updates: [ruff](https://github.com/astral-sh/ruff), [boto3](https://github.com/boto/boto3) and [uv](https://github.com/astral-sh/uv).


Updates `ruff` from 0.15.4 to 0.15.5
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.4...0.15.5)

Updates `boto3` from 1.42.59 to 1.42.63
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.42.59...1.42.63)

Updates `uv` from 0.10.7 to 0.10.9
- [Release notes](https://github.com/astral-sh/uv/releases)
- [Changelog](https://github.com/astral-sh/uv/blob/main/CHANGELOG.md)
- [Commits](astral-sh/uv@0.10.7...0.10.9)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.15.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: boto3
  dependency-version: 1.42.63
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
- dependency-name: uv
  dependency-version: 0.10.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 9, 2026
@mergify mergify bot merged commit a07410a into main Mar 9, 2026
32 checks passed
@mergify mergify bot deleted the dependabot/pip/python-a6eabbd821 branch March 9, 2026 12:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mergify mergify[bot] mergify[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants