Skip to content

Bump the development-dependencies group with 4 updates#956

Merged
github-actions[bot] merged 1 commit intodevelopfrom
dependabot/pip/development-dependencies-ce7e04c5fd
Jul 20, 2025
Merged

Bump the development-dependencies group with 4 updates#956
github-actions[bot] merged 1 commit intodevelopfrom
dependabot/pip/development-dependencies-ce7e04c5fd

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Jul 20, 2025
edited
Loading

Bumps the development-dependencies group with 4 updates: hypothesis, mypy, ruff and myst-nb.

Updates hypothesis from 6.135.29 to 6.136.0

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.136.0

When a failure found by an alternative backend does not reproduce under the Hypothesis backend, we now raise "FlakyBackendFailure" instead of an internal "FlakyReplay" exception.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.135.33

Speculative fix for a thread-safety issue in calculating strategy labels.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.135.32

Improve the thread-safety of strategy validation.

Before this release, Hypothesis did not require that "super().init()" be called in "SearchStrategy" subclasses. Subclassing "SearchStrategy" is not supported or part of the public API, but if you are subclassing it anyway, you will need to make sure to call "super().init()" after this release.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.135.31

Fix a remaining thread-safety issue with the deprecation warning for use of the global random instance (see v6.135.24).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.135.30

Fix a remaining thread-safety issue with the recursion limit warning Hypothesis issues when an outside caller sets "sys.setrecursionlimit" (see 6.135.23 - 2025-07-02).

The canonical version of these notes (with links) is on readthedocs.

Commits
  • 73157b9 Bump hypothesis-python version to 6.136.0 and update changelog
  • 2d78ce2 Merge pull request #4470 from tybug/backend-deadline-flaky
  • f891867 address review
  • bc4c62d Merge branch 'master' into backend-deadline-flaky
  • 96fca94 Bump hypothesis-python version to 6.135.33 and update changelog
  • 31f86c2 Merge pull request #4476 from tybug/free-threading-label
  • 7623a74 speculative fix for strategy.label thread safety
  • de1e531 add a further covering test
  • a787d70 refactor / lower default engine test settings
  • 18532d3 add covering test
  • Additional commits viewable in compare view

Updates mypy from 1.16.1 to 1.17.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next Release

Mypy 1.17

We’ve just uploaded mypy 1.17 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Optionally Check That Match Is Exhaustive

Mypy can now optionally generate an error if a match statement does not match exhaustively, without having to use assert_never(...). Enable this by using --enable-error-code exhaustive-match.

Example:

# mypy: enable-error-code=exhaustive-match
import enum
class Color(enum.Enum):
RED = 1
BLUE = 2
def show_color(val: Color) -> None:
# error: Unhandled case for values of type "Literal[Color.BLUE]"
match val:
case Color.RED:
print("red")

This feature was contributed by Donal Burns (PR 19144).

Further Improvements to Attribute Resolution

This release includes additional improvements to how attribute types and kinds are resolved. These fix many bugs and overall improve consistency.

  • Handle corner case: protocol/class variable/descriptor (Ivan Levkivskyi, PR 19277)
  • Fix a few inconsistencies in protocol/type object interactions (Ivan Levkivskyi, PR 19267)
  • Refactor/unify access to static attributes (Ivan Levkivskyi, PR 19254)
  • Remove inconsistencies in operator handling (Ivan Levkivskyi, PR 19250)
  • Make protocol subtyping more consistent (Ivan Levkivskyi, PR 18943)

... (truncated)

Commits
  • 0260991 Update version string
  • 3901aa2 Updates to 1.17 changelog (#19436)
  • 7d13396 Initial changelog for 1.17 release (#19427)
  • a182dec Combine the revealed types of multiple iteration steps in a more robust manne...
  • ab4fd57 Improve the handling of "iteration dependent" errors and notes in finally cla...
  • 09ba1f6 [mypyc] Fix exception swallowing in async try/finally blocks with await (#19353)
  • 5c65e33 [mypyc] Fix AttributeError in async try/finally with mixed return paths (#19361)
  • 934ec50 Lessen dmypy suggest path limitations for Windows machines (#19337)
  • a4801f9 Type ignore comments erroneously marked as unused by dmypy (#15043)
  • c3bfa0d Handle corner case: protocol vs classvar vs descriptor (#19277)
  • Additional commits viewable in compare view

Updates ruff from 0.12.3 to 0.12.4

Release notes

Sourced from ruff's releases.

0.12.4

Release Notes

Preview features

  • [flake8-type-checking, pyupgrade, ruff] Add from __future__ import annotations when it would allow new fixes (TC001, TC002, TC003, UP037, RUF013) (#19100)
  • [flake8-use-pathlib] Add autofix for PTH109 (#19245)
  • [pylint] Detect indirect pathlib.Path usages for unspecified-encoding (PLW1514) (#19304)

Bug fixes

  • [flake8-bugbear] Fix B017 false negatives for keyword exception arguments (#19217)
  • [flake8-use-pathlib] Fix false negative on direct Path() instantiation (PTH210) (#19388)
  • [flake8-django] Fix DJ008 false positive for abstract models with type-annotated abstract field (#19221)
  • [isort] Fix I002 import insertion after docstring with multiple string statements (#19222)
  • [isort] Treat form feed as valid whitespace before a semicolon (#19343)
  • [pydoclint] Fix SyntaxError from fixes with line continuations (D201, D202) (#19246)
  • [refurb] FURB164 fix should validate arguments and should usually be marked unsafe (#19136)

Rule changes

  • [flake8-use-pathlib] Skip single dots for invalid-pathlib-with-suffix (PTH210) on versions >= 3.14 (#19331)
  • [pep8_naming] Avoid false positives on standard library functions with uppercase names (N802) (#18907)
  • [pycodestyle] Handle brace escapes for t-strings in logical lines (#19358)
  • [pylint] Extend invalid string character rules to include t-strings (#19355)
  • [ruff] Allow strict kwarg when checking for starmap-zip (RUF058) in Python 3.14+ (#19333)

Documentation

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.4

Preview features

  • [flake8-type-checking, pyupgrade, ruff] Add from __future__ import annotations when it would allow new fixes (TC001, TC002, TC003, UP037, RUF013) (#19100)
  • [flake8-use-pathlib] Add autofix for PTH109 (#19245)
  • [pylint] Detect indirect pathlib.Path usages for unspecified-encoding (PLW1514) (#19304)

Bug fixes

  • [flake8-bugbear] Fix B017 false negatives for keyword exception arguments (#19217)
  • [flake8-use-pathlib] Fix false negative on direct Path() instantiation (PTH210) (#19388)
  • [flake8-django] Fix DJ008 false positive for abstract models with type-annotated abstract field (#19221)
  • [isort] Fix I002 import insertion after docstring with multiple string statements (#19222)
  • [isort] Treat form feed as valid whitespace before a semicolon (#19343)
  • [pydoclint] Fix SyntaxError from fixes with line continuations (D201, D202) (#19246)
  • [refurb] FURB164 fix should validate arguments and should usually be marked unsafe (#19136)

Rule changes

  • [flake8-use-pathlib] Skip single dots for invalid-pathlib-with-suffix (PTH210) on versions >= 3.14 (#19331)
  • [pep8_naming] Avoid false positives on standard library functions with uppercase names (N802) (#18907)
  • [pycodestyle] Handle brace escapes for t-strings in logical lines (#19358)
  • [pylint] Extend invalid string character rules to include t-strings (#19355)
  • [ruff] Allow strict kwarg when checking for starmap-zip (RUF058) in Python 3.14+ (#19333)

Documentation

Commits
  • ee2759b Bump 0.12.4 (#19406)
  • 35f33d9 [ty] publish settings diagnostics (#19335)
  • 5d78b31 [flake8-use-pathlib] Add autofix for PTH109 (#19245)
  • c2a05b4 [ty] Use bitflags for resolved client capabilities (#19393)
  • fae0b5c [ty] Initial implementation of declaration and definition providers. (#19371)
  • cbe94b0 [ty] Support empty function bodies in if TYPE_CHECKING blocks (#19372)
  • 029de78 [flake8-use-pathlib] Fix false negative on direct Path() instantiation (`...
  • ff94fe7 Treat form feed as valid whitespace before a semicolon (#19343)
  • b2501b4 [pylint] Detect indirect pathlib.Path usages for unspecified-encoding (...
  • 291699b [refurb] FURB164 fix should validate arguments and should usually be mark...
  • Additional commits viewable in compare view

Updates myst-nb from 1.2.0 to 1.3.0

Release notes

Sourced from myst-nb's releases.

v1.3.0

What's Changed

New Contributors

Full Changelog: executablebooks/MyST-NB@v1.2.0...v1.3.0

Changelog

Sourced from myst-nb's changelog.

v1.3.0 - 2025-07-13

(full changelog)

What's Changed

Enhancements made

Maintenance and upkeep improvements

New Contributors

Commits
  • 6bb973c Preparing for release v1.3
  • 23b2d62 And one more bot to ignore
  • ff699ca Adding more bots to ignore
  • 1e2d1a4 docs: nicer types in docs (#688)
  • 4020e26 MAINT: limit ipython in tox job, too (#687)
  • b7387d5 ENH: Add handling of image based PendingGlueReference in `generate_any_node...
  • 29d6e15 [pre-commit.ci] pre-commit autoupdate (#685)
  • 1ddc3a5 Add scroll_outputs configuration (#683)
  • 9fe8848 build(deps): bump codecov/codecov-action in the actions group (#676)
  • fc73430 Improve output cells in dark mode (#679)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Jul 20, 2025
@github-actions github-actions bot enabled auto-merge July 20, 2025 02:54
@dependabot
Bump the development-dependencies group with 4 updates
293232e 
Bumps the development-dependencies group with 4 updates: [hypothesis](https://github.com/HypothesisWorks/hypothesis), [mypy](https://github.com/python/mypy), [ruff](https://github.com/astral-sh/ruff) and [myst-nb](https://github.com/executablebooks/myst-nb).


Updates `hypothesis` from 6.135.29 to 6.136.0
- [Release notes](https://github.com/HypothesisWorks/hypothesis/releases)
- [Commits](HypothesisWorks/hypothesis@hypothesis-python-6.135.29...hypothesis-python-6.136.0)

Updates `mypy` from 1.16.1 to 1.17.0
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.16.1...v1.17.0)

Updates `ruff` from 0.12.3 to 0.12.4
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.12.3...0.12.4)

Updates `myst-nb` from 1.2.0 to 1.3.0
- [Release notes](https://github.com/executablebooks/myst-nb/releases)
- [Changelog](https://github.com/executablebooks/MyST-NB/blob/main/CHANGELOG.md)
- [Commits](executablebooks/MyST-NB@v1.2.0...v1.3.0)

---
updated-dependencies:
- dependency-name: hypothesis
  dependency-version: 6.136.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: mypy
  dependency-version: 1.17.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: ruff
  dependency-version: 0.12.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: myst-nb
  dependency-version: 1.3.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/pip/development-dependencies-ce7e04c5fd branch from 6335db8 to 293232e Compare July 20, 2025 03:06
@github-actions github-actions bot merged commit 8d73110 into develop Jul 20, 2025
16 checks passed
@dependabot dependabot bot deleted the dependabot/pip/development-dependencies-ce7e04c5fd branch July 20, 2025 03:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants