Bump the development-dependencies group with 4 updates

[dependabot]

Bumps the development-dependencies group with 4 updates: hypothesis, jupyterlab, pre-commit and ruff.

Updates hypothesis from 6.148.0 to 6.148.2

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.148.2

Document "fuzz_one_input()".

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.148.1

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy.

The canonical version of these notes (with links) is on readthedocs.

Commits

• 98a8d2c Bump hypothesis-python version to 6.148.2 and update changelog
• adbf6cf Merge pull request #4590 from Liam-DeVoe/external-fuzzer-howto
• e371d89 not just native code
• 1befd21 update intro
• 3bf32ca Merge pull request #4604 from neutrinoceros/dep/bump_requires-python
• 5286ec6 Bump project.requires-python from >=3.10 to >=3.10.2
• 3f32b14 formatting
• df6dd11 Merge branch 'master' into external-fuzzer-howto
• e46bf28 tweak ext-fuzzer introduction
• 185dba4 add live-docs task
• Additional commits viewable in compare view

Updates jupyterlab from 4.4.10 to 4.5.0

Release notes

Sourced from jupyterlab's releases.

v4.5.0

4.5.0

(Full Changelog)

New features added

• Add terminal search functionality #17691 (@​ianthomas23)

Enhancements made

• Fix kernel status display in status bar #18047 (@​Darshan808)
• Introduce DebuggerDisplayRegistry to provide context-aware display names for debugger panels #18043 (@​arjxn-py)
• Introduce new token for the default IContentProvider #18027 (@​martinRenou)
• Update Show more outputs button design #18021 (@​andrii-i)
• Optimize content-visibility application #18013 (@​Meriem-BenIsmail)
• Show execution count in breakpoints, callstack, and sources panels while debugging in console #18003 (@​arjxn-py)
• Keep debugger state though kernel restarts #17972 (@​gjmooney)
• Make DocumentManager dialogs customizable #17961 (@​Darshan808)
• Systematise how base URL is obtained to allow swapping it more easily #17952 (@​krassowski)
• Export the ContentProviderRegistry #17940 (@​martinRenou)
• Make filebrowser breadcrumbs configurable #17932 (@​Darshan808)
• Switch the default windowing mode to contentVisibility #17926 (@​Meriem-BenIsmail)
• Pass context down in attachments resolver #17924 (@​krassowski)
• Allow swapping the empty markdown cell placeholder (and translate it) #17920 (@​krassowski)
• Enable the minimap for all windowing modes #17904 (@​Meriem-BenIsmail)
• Debugger: Differentiate selected breakpoints with specific style #17893 (@​HaudinFlorence)
• Use console for debugger evaluation #17892 (@​gjmooney)
• Debugger: Visual indicator when debugger is paused #17891 (@​arjxn-py)
• Add IUserAPIClient to make swapping UserManager easier #17884 (@​krassowski)
• Provide context about the tag and attribute to the URL resolver #17882 (@​krassowski)
• Debugger: Show cell execution count in breakpoint/call stack/source panel #17881 (@​arjxn-py)
• Add file browser menu for creating new Python/R/Julia files #17848 (@​martinRenou)
• Allow configuring toSkip for the SettingsEditor #17834 (@​jtpio)
• Use content-visibility to render notebook cells more efficiently #17822 (@​Meriem-BenIsmail)
• Use toolbar registry for log console #17814 (@​gjmooney)
• Add a new addExtraLineOnCellMerge setting #17806 (@​jtpio)
• Update to mermaid 11.10, marked 16.2 #17800 (@​bollwyvl)
• Allow opening notebooks without starting a kernel #17798 (@​jtpio)
• Allow to swap the URL resolver #17784 (@​krassowski)
• Add the "Show Workspace Indicator" command to the palette #17780 (@​jtpio)
• Auto-switch between light and dark mode when "Synchronize with System Settings" is enabled #17733 (@​MUFFANUJ)
• Keep cell id when the user changes cell type #17731 (@​afshin)
• Discover the app directory relative to the installed module #17721 (@​zanieb)
• Show checkbox and buttons of Dialog component on separate lines #17696 (@​MUFFANUJ)
• Add types for interrupt messages, and move them from shell to control channel #17684 (@​krassowski)
• Add fold/unfold commands to menu and command palette #17677 (@​Darshan808)
• Add a new allowFileUploads setting to the file browser #17676 (@​jtpio)

... (truncated)

Commits

• 791aecc [ci skip] Publish 4.5.0
• 05df0d2 Drop altair installation in release test; migrate from deprecated `vega_dat...
• 6e6744c Update JupyterLab pre-release version to 4.5.0rc1 (#18111)
• 885b296 [ci skip] Publish 4.5.0rc1
• f1675bd Update lumino to v2025.11.13 (#18108)
• 99dee73 Clean up references to Gitpod (#18107)
• 19d0f28 Fix layout trashing when navigating notebook cell-by-cell (#18080)
• 9a86e53 Update example for disabling buildAvailable (#18075)
• 6f68830 Use IntersectionObserver to disable containment for on-screen cells (#18091)
• c4826af Convert documentation to Markdown (#18044)
• Additional commits viewable in compare view

Updates pre-commit from 4.4.0 to 4.5.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.5.0

Features

• Add pre-commit hazmat.
  • #3585 PR by @​asottile.

Changelog

Sourced from pre-commit's changelog.

4.5.0 - 2025-11-22

Features

• Add pre-commit hazmat.
  • #3585 PR by @​asottile.

Commits

• 1af6c8f v4.5.0
• 3358a3b Merge pull request #3585 from pre-commit/hazmat
• bdf6879 add pre-commit hazmat
• e436690 Merge pull request #3584 from pre-commit/exitstack
• 8d34f95 use ExitStack instead of start + stop
• 9c7ea88 Merge pull request #3583 from pre-commit/forward-compat-map-manifest
• 844dacc add forward-compat error message
• 6a1d543 Merge pull request #3582 from pre-commit/move-gc-back
• 66278a9 move logic for gc back to commands.gc
• 1b32c50 Merge pull request #3579 from pre-commit/pre-commit-ci-update-config
• Additional commits viewable in compare view

Updates ruff from 0.14.5 to 0.14.6

Release notes

Sourced from ruff's releases.

0.14.6

Release Notes

Released on 2025-11-21.

Preview features

• [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

• Adjust own-line comment placement between branches (#21185)
• Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
• Fix panic when formatting comments in unary expressions (#21501)
• Respect fmt: skip for compound statements on a single line (#20633)
• [refurb] Fix FURB103 autofix (#21454)
• [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

• [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

• Render hyperlinks for lint errors (#21514)
• Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

• Limit eglot-format hook to eglot-managed Python buffers (#21459)
• Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

• @​ntBre
• @​dylwil3
• @​gauthsvenkat
• @​MichaReiser
• @​thamer
• @​Ruchir28
• @​thejcannon
• @​danparizher
• @​chirizxc

Install ruff 0.14.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.14.6/ruff-installer.sh | sh
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.6

Released on 2025-11-21.

Preview features

• [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

• Adjust own-line comment placement between branches (#21185)
• Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
• Fix panic when formatting comments in unary expressions (#21501)
• Respect fmt: skip for compound statements on a single line (#20633)
• [refurb] Fix FURB103 autofix (#21454)
• [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

• [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

• Render hyperlinks for lint errors (#21514)
• Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

• Limit eglot-format hook to eglot-managed Python buffers (#21459)
• Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

• @​ntBre
• @​dylwil3
• @​gauthsvenkat
• @​MichaReiser
• @​thamer
• @​Ruchir28
• @​thejcannon
• @​danparizher
• @​chirizxc

Commits

• 59c6cb5 Bump 0.14.6 (#21558)
• 54dba15 [ty] Improve debug messages when imports fail (#21555)
• 1af3185 [ty] Add support for relative import completions
• 553e568 [ty] Refactor detection of import statements for completions
• cdef3f5 [ty] Use dedicated collector for completions
• 6178822 [ty] Attach subdiagnostics to unresolved-import errors for relative imports...
• 6b7adb0 [ty] support PEP 613 type aliases (#21394)
• 06941c1 [ty] More low-hanging fruit for inlay hint goto-definition (#21548)
• eb7c098 [ty] implement TypedDict structural assignment (#21467)
• 1b28fc1 [ty] Add more random TypeDetails and tests (#21546)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions