Bump the python-packages group across 1 directory with 10 updates

[dependabot]

Bumps the python-packages group with 10 updates in the / directory:

Package	From	To
cryptography	42.0.7	43.0.3
fastapi[all]	0.111.0	0.115.4
psycopg2	2.9.9	2.9.10
pyjwt	2.8.0	2.9.0
sqlalchemy	2.0.30	2.0.36
uvicorn	0.30.1	0.32.0
ruff	0.4.8	0.7.1
mypy	1.10.0	1.13.0
types-requests	2.32.0.20240602	2.32.0.20241016
pytest	8.2.1	8.3.3

Updates cryptography from 42.0.7 to 43.0.3

Changelog

Sourced from cryptography's changelog.

43.0.3 - 2024-10-18

* Fixed release metadata for ``cryptography-vectors``
.. _v43-0-2:
43.0.2 - 2024-10-18

• Fixed compilation when using LibreSSL 4.0.0.

.. _v43-0-1:

43.0.1 - 2024-09-03

* Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.2.
.. _v43-0-0:
43.0.0 - 2024-07-20

• BACKWARDS INCOMPATIBLE: Support for OpenSSL less than 1.1.1e has been removed. Users on older version of OpenSSL will need to upgrade.
• BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 3.8.
• Updated Windows, macOS, and Linux wheels to be compiled with OpenSSL 3.3.1.
• Updated the minimum supported Rust version (MSRV) to 1.65.0, from 1.63.0.
• :func:~cryptography.hazmat.primitives.asymmetric.rsa.generate_private_key now enforces a minimum RSA key size of 1024-bit. Note that 1024-bit is still considered insecure, users should generally use a key size of 2048-bits.
• :func:~cryptography.hazmat.primitives.serialization.pkcs7.serialize_certificates now emits ASN.1 that more closely follows the recommendations in :rfc:2315.
• Added new :doc:/hazmat/decrepit/index module which contains outdated and insecure cryptographic primitives. :class:~cryptography.hazmat.primitives.ciphers.algorithms.CAST5, :class:~cryptography.hazmat.primitives.ciphers.algorithms.SEED, :class:~cryptography.hazmat.primitives.ciphers.algorithms.IDEA, and :class:~cryptography.hazmat.primitives.ciphers.algorithms.Blowfish, which were deprecated in 37.0.0, have been added to this module. They will be removed from the cipher module in 45.0.0.
• Moved :class:~cryptography.hazmat.primitives.ciphers.algorithms.TripleDES and :class:~cryptography.hazmat.primitives.ciphers.algorithms.ARC4 into :doc:/hazmat/decrepit/index and deprecated them in the cipher module. They will be removed from the cipher module in 48.0.0.
• Added support for deterministic :class:~cryptography.hazmat.primitives.asymmetric.ec.ECDSA (:rfc:6979)
• Added support for client certificate verification to the :mod:X.509 path validation <cryptography.x509.verification> APIs in the

... (truncated)

Commits

• c2afb4f Backport metadata fix for vectors (#11797)
• 9a3cdb5 43.0.2 release: fix libressl 4.0.0 (#11796)
• a773387 bump for 43.0.1 (#11533)
• 0393fef Backport setuptools version ban (#11526)
• 6687bab Bump openssl from 0.10.65 to 0.10.66 in /src/rust (#11320) (#11324)
• ebf14f2 bump for 43.0.0 and update changelog (#11311)
• 42788a0 Fix exchange with keys that had Q automatically computed (#11309)
• 2dbdfb8 don't assign unused name (#11310)
• ccc66e6 Bump openssl from 0.10.64 to 0.10.65 in /src/rust (#11308)
• 4310c87 Bump sphinxcontrib-qthelp from 1.0.7 to 1.0.8 (#11307)
• Additional commits viewable in compare view

Updates fastapi[all] from 0.111.0 to 0.115.4

Release notes

Sourced from fastapi[all]'s releases.

0.115.4

Refactors

• ♻️ Update logic to import and check python-multipart for compatibility with newer version. PR #12627 by @​tiangolo.

Docs

• 📝 Update includes in docs/fr/docs/tutorial/body.md. PR #12596 by @​kantandane.
• 📝 Update includes in docs/fr/docs/tutorial/debugging.md. PR #12595 by @​kantandane.
• 📝 Update includes in docs/fr/docs/tutorial/query-params-str-validations.md. PR #12591 by @​kantandane.
• 📝 Update includes in docs/fr/docs/tutorial/query-params.md. PR #12589 by @​kantandane.
• 📝 Update includes in docs/en/tutorial/body-fields.md. PR #12588 by @​lucaromagnoli.
• 📝 Update includes in docs/de/docs/tutorial/response-status-code.md. PR #12585 by @​abejaranoh.
• 📝 Update includes in docs/en/docs/tutorial/body.md. PR #12586 by @​lucaromagnoli.
• 📝 Update includes in docs/en/docs/advanced/behind-a-proxy.md. PR #12583 by @​imjuanleonard.
• 📝 Update includes syntax for docs/pl/docs/tutorial/first-steps.md. PR #12584 by @​sebkozlo.
• 📝 Update includes in docs/en/docs/advanced/middleware.md. PR #12582 by @​montanarograziano.
• 📝 Update includes in docs/en/docs/advanced/additional-status-codes.md. PR #12577 by @​krishnamadhavan.
• 📝 Update includes in docs/en/docs/advanced/advanced-dependencies.md. PR #12578 by @​krishnamadhavan.
• 📝 Update includes in docs/en/docs/advanced/additional-responses.md. PR #12576 by @​krishnamadhavan.
• 📝 Update includes in docs/en/docs/tutorial/static-files.md. PR #12575 by @​lucaromagnoli.
• 📝 Update includes in docs/en/docs/advanced/async-tests.md. PR #12568 by @​krishnamadhavan.
• 📝 Update includes in docs/pt/docs/advanced/behind-a-proxy.md. PR #12563 by @​asmioglou.
• 📝 Update includes in docs/de/docs/advanced/security/http-basic-auth.md. PR #12561 by @​Nimitha-jagadeesha.
• 📝 Update includes in docs/en/docs/tutorial/background-tasks.md. PR #12559 by @​FarhanAliRaza.
• 📝 Update includes in docs/fr/docs/python-types.md. PR #12558 by @​Ismailtlem.
• 📝 Update includes in docs/en/docs/how-to/graphql.md. PR #12564 by @​philipokiokio.
• 📝 Update includes in docs/en/docs/how-to/extending-openapi.md. PR #12562 by @​philipokiokio.
• 📝 Update includes for docs/en/docs/how-to/configure-swagger-ui.md. PR #12556 by @​tiangolo.
• 📝 Update includes for docs/en/docs/how-to/separate-openapi-schemas.md. PR #12555 by @​tiangolo.
• 📝 Update includes for docs/en/docs/advanced/security/http-basic-auth.md. PR #12553 by @​tiangolo.
• 📝 Update includes in docs/en/docs/tutorial/first-steps.md. PR #12552 by @​tiangolo.
• 📝 Update includes in docs/en/docs/python-types.md. PR #12551 by @​tiangolo.
• 📝 Fix link in OAuth2 docs. PR #12550 by @​tiangolo.
• 📝 Add External Link: FastAPI do Zero. PR #12533 by @​rennerocha.
• 📝 Fix minor typos. PR #12516 by @​kkirsche.
• 🌐 Fix rendering issue in translations. PR #12509 by @​alejsdev.

Translations

• 📝 Update includes in docs/de/docs/advanced/async-tests.md. PR #12567 by @​imjuanleonard.
• 🌐 Add Portuguese translation for docs/pt/docs/tutorial/sql-databases.md. PR #12530 by @​ilacftemp.
• 🌐 Add Korean translation for docs/ko/docs/benchmarks.md. PR #12540 by @​Limsunoh.
• 🌐 Add Portuguese translation for docs/pt/docs/how-to/separate-openapi-schemas.md. PR #12518 by @​ilacftemp.
• 🌐 Update Traditional Chinese translation for docs/zh-hant/docs/deployment/index.md. PR #12521 by @​codingjenny.
• 🌐 Update Traditional Chinese translation for docs/zh-hant/docs/deployment/cloud.md. PR #12522 by @​codingjenny.
• 🌐 Update Traditional Chinese translation for docs/zh-hant/docs/how-to/index.md. PR #12523 by @​codingjenny.
• 🌐 Update Traditional Chinese translation for docs/zh-hant/docs/tutorial/index.md. PR #12524 by @​codingjenny.
• 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/how-to/index.md. PR #12468 by @​codingjenny.
• 🌐 Add Traditional Chinese translation for docs/zh-hant/docs/tutorial/index.md. PR #12466 by @​codingjenny.

... (truncated)

Commits

• 31887b1 🔖 Release version 0.115.4
• b270ff1 📝 Update release notes
• b31cbbf ♻️ Update logic to import and check python-multipart for compatibility with...
• aee7674 📝 Update release notes
• 4e6b1ac 📝 Update includes in docs/fr/docs/tutorial/body.md (#12596)
• 9b1e5f2 📝 Update release notes
• 60aba02 📝 Update includes in docs/fr/docs/tutorial/debugging.md (#12595)
• 2a4cf17 📝 Update release notes
• 453f559 📝 Update includes in docs/fr/docs/tutorial/query-params-str-validations.md ...
• af269cd 📝 Update release notes
• Additional commits viewable in compare view

Updates psycopg2 from 2.9.9 to 2.9.10

Changelog

Sourced from psycopg2's changelog.

Current release

What's new in psycopg 2.9.10 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.13.
• Receive notifications on commit (:ticket:[#1728](https://github.com/psycopg/psycopg2/issues/1728)).
• ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 17.
• Drop support for Python 3.7.

What's new in psycopg 2.9.9 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.12.
• Drop support for Python 3.6.

What's new in psycopg 2.9.8 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Wheel package bundled with PostgreSQL 16 libpq in order to add support for recent features, such as sslcertmode.

What's new in psycopg 2.9.7 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Fix propagation of exceptions raised during module initialization (:ticket:[#1598](https://github.com/psycopg/psycopg2/issues/1598)).
• Fix building when pg_config returns an empty string (:ticket:[#1599](https://github.com/psycopg/psycopg2/issues/1599)).
• Wheel package bundled with OpenSSL 1.1.1v.

What's new in psycopg 2.9.6 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Package manylinux 2014 for aarch64 and ppc64le platforms, in order to include libpq 15 in the binary package (:ticket:[#1396](https://github.com/psycopg/psycopg2/issues/1396)).
• Wheel package bundled with OpenSSL 1.1.1t.

What's new in psycopg 2.9.5 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.11.
• Add support for rowcount in MERGE statements in binary packages (:ticket:[#1497](https://github.com/psycopg/psycopg2/issues/1497)).

... (truncated)

Commits

• See full diff in compare view

Updates pyjwt from 2.8.0 to 2.9.0

Release notes

Sourced from pyjwt's releases.

2.9.0

What's Changed

• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#905
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#909
• Add support for Python 3.12 by @​hugovk in jpadilla/pyjwt#910
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#911
• Fix an unnecessary str concat by @​sirosen in jpadilla/pyjwt#904
• Update jwt-api to accept either a string or list of strings for issuer validation by @​mattpollak in jpadilla/pyjwt#913
• Bump actions/checkout from 3 to 4 by @​dependabot in jpadilla/pyjwt#916
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#917
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#922
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#926
• Bump actions/setup-python from 4 to 5 by @​dependabot in jpadilla/pyjwt#931
• Bump hynek/build-and-inspect-python-package from 1 to 2 by @​dependabot in jpadilla/pyjwt#935
• docs/api: document strict_aud on decode_complete by @​woodruffw in jpadilla/pyjwt#923
• chore: fix docs step by @​jpadilla in jpadilla/pyjwt#950
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#953
• Add coverage and improve performance of is_ssh_key by @​bdraco in jpadilla/pyjwt#940
• Decode with PyJWK by @​luhn in jpadilla/pyjwt#886
• Remove an unused variable from an example code block by @​kenkoooo in jpadilla/pyjwt#958
• Handle load_pem_public_key ValueError by @​CollinEMac in jpadilla/pyjwt#952
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#960
• Raise exception when required cryptography dependency is missing by @​tobloef in jpadilla/pyjwt#963
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in jpadilla/pyjwt#965
• Add 2.9.0 changelog. Fixes #949 by @​benvdh in jpadilla/pyjwt#967

New Contributors

• @​mattpollak made their first contribution in jpadilla/pyjwt#913
• @​bdraco made their first contribution in jpadilla/pyjwt#940
• @​luhn made their first contribution in jpadilla/pyjwt#886
• @​kenkoooo made their first contribution in jpadilla/pyjwt#958
• @​CollinEMac made their first contribution in jpadilla/pyjwt#952
• @​tobloef made their first contribution in jpadilla/pyjwt#963
• @​benvdh made their first contribution in jpadilla/pyjwt#967

Full Changelog: jpadilla/pyjwt@2.8.0...2.9.0

Changelog

Sourced from pyjwt's changelog.

v2.9.0 <https://github.com/jpadilla/pyjwt/compare/2.8.0...2.9.0>__

Changed

- Drop support for Python 3.7 (EOL) by @hugovk in `[#910](https://github.com/jpadilla/pyjwt/issues/910) <https://github.com/jpadilla/pyjwt/pull/910>`__
- Allow JWT issuer claim validation to accept a list of strings too by @mattpollak in `[#913](https://github.com/jpadilla/pyjwt/issues/913) <https://github.com/jpadilla/pyjwt/pull/913>`__
Fixed

- Fix unnecessary string concatenation by @sirosen in `[#904](https://github.com/jpadilla/pyjwt/issues/904) &lt;https://github.com/jpadilla/pyjwt/pull/904&gt;`__
- Fix docs for ``jwt.decode_complete`` to include ``strict_aud`` option by @woodruffw in `[#923](https://github.com/jpadilla/pyjwt/issues/923) &lt;https://github.com/jpadilla/pyjwt/pull/923&gt;`__
- Fix docs step by @jpadilla in `[#950](https://github.com/jpadilla/pyjwt/issues/950) &lt;https://github.com/jpadilla/pyjwt/pull/950&gt;`__
- Fix: Remove an unused variable from example code block by @kenkoooo in `[#958](https://github.com/jpadilla/pyjwt/issues/958) &lt;https://github.com/jpadilla/pyjwt/pull/958&gt;`__
Added



Add support for Python 3.12 by @​hugovk in [#910](https://github.com/jpadilla/pyjwt/issues/910) &lt;https://github.com/jpadilla/pyjwt/pull/910&gt;__
Improve performance of is_ssh_key + add unit test by @​bdraco in [#940](https://github.com/jpadilla/pyjwt/issues/940) &lt;https://github.com/jpadilla/pyjwt/pull/940&gt;__
Allow jwt.decode() to accept a PyJWK object by @​luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Make algorithm_name attribute available on PyJWK by @​luhn in [#886](https://github.com/jpadilla/pyjwt/issues/886) &lt;https://github.com/jpadilla/pyjwt/pull/886&gt;__
Raise InvalidKeyError on invalid PEM keys to be compatible with cryptography 42.x.x by @​CollinEMac in [#952](https://github.com/jpadilla/pyjwt/issues/952) &lt;https://github.com/jpadilla/pyjwt/pull/952&gt;__
Raise an exception when required cryptography dependency is missing by @​tobloef in &lt;https://github.com/jpadilla/pyjwt/pull/963&gt;__

Commits

• 868cf4a Add 2.9.0 changelog. Fixes #949 (#967)
• 304a3df [pre-commit.ci] pre-commit autoupdate (#965)
• 527fec2 Raise exception when required cryptography dependency is missing (#963)
• 18a50be [pre-commit.ci] pre-commit autoupdate (#960)
• 4703f87 Handle load_pem_public_key ValueError (#952)
• 9dc732f Update usage.rst (#958)
• ab8176a Decode with PyJWK (#886)
• c0a071d chore: update actions/download-artifact
• 2afbe32 Add coverage and improve performance of is_ssh_key (#940)
• 97345a7 [pre-commit.ci] pre-commit autoupdate (#953)
• Additional commits viewable in compare view

Updates sqlalchemy from 2.0.30 to 2.0.36

Release notes

Sourced from sqlalchemy's releases.

2.0.36

Released: October 15, 2024

orm

• [orm] [usecase] Added new parameter _orm.mapped_column.hash to ORM constructs such as _orm.mapped_column(), _orm.relationship(), etc., which is interpreted for ORM Native Dataclasses in the same way as other dataclass-specific field parameters.

  References: #11923

• [orm] [bug] Fixed bug in ORM bulk update/delete where using RETURNING with bulk update/delete in combination with populate_existing would fail to accommodate the populate_existing option.

  References: #11912

• [orm] [bug] Continuing from #11912, columns marked with mapped_column.onupdate, mapped_column.server_onupdate, or Computed are now refreshed in ORM instances when running an ORM enabled UPDATE with WHERE criteria, even if the statement does not use RETURNING or populate_existing.

  References: #11917

• [orm] [bug] Fixed regression caused by fixes to joined eager loading in #11449 released in 2.0.31, where a particular joinedload case could not be asserted correctly. We now have an example of that case so the assertion has been repaired to allow for it.

  References: #11965

• [orm] [bug] Improved the error message emitted when trying to map as dataclass a class while also manually providing the __table__ attribute. This usage is currently not supported.

  References: #11973

• [orm] [bug] Refined the check which the ORM lazy loader uses to detect "this would be loading by primary key and the primary key is NULL, skip loading" to take into account the current setting for the orm.Mapper.allow_partial_pks parameter. If this parameter is False, then a composite PK value that has partial NULL elements should also be skipped. This can apply to some composite overlapping foreign key configurations.

... (truncated)

Commits

• See full diff in compare view

Updates uvicorn from 0.30.1 to 0.32.0

Release notes

Sourced from uvicorn's releases.

Version 0.32.0

Added

• Officially support Python 3.13 (#2482)
• Warn when max_request_limit is exceeded (#2430)

---

Full Changelog: encode/uvicorn@0.31.1...0.32.0

Version 0.31.1

Fixed

• Support WebSockets 0.13.1 #2471
• Restore support for [*] in trusted hosts #2480
• Add PathLike[str] type hint for ssl_keyfile #2481

---

Full Changelog: encode/uvicorn@0.31.0...0.31.1

Version 0.31.0

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow specifying IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/Kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

---

Full Changelog: encode/uvicorn@0.30.6...0.31.0

Version 0.30.6

Fixed

• Don't warn when upgrade is not WebSocket and depedencies are installed (#2360)

---

Full Changelog: encode/uvicorn@0.30.5...0.30.6

Version 0.30.5

Fixed

• Don't close connection before receiving body on H11 (#2408)

... (truncated)

Changelog

Sourced from uvicorn's changelog.

0.32.0 (2024-10-15)

Added

• Officially support Python 3.13 (#2482)
• Warn when max_request_limit is exceeded (#2430)

0.31.1 (2024-10-09)

Fixed

• Support WebSockets 0.13.1 (#2471)
• Restore support for [*] in trusted hosts (#2480)
• Add PathLike[str] type hint for ssl_keyfile (#2481)

0.31.0 (2024-09-27)

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow to specify IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

0.30.6 (2024-08-13)

Fixed

• Don't warn when upgrade is not WebSocket and depedencies are installed (#2360)

0.30.5 (2024-08-02)

Fixed

• Don't close connection before receiving body on H11 (#2408)

0.30.4 (2024-07-31)

Fixed

• Close connection when h11 sets client state to MUST_CLOSE (#2375)

0.30.3 (2024-07-20)

Fixed

• Suppress KeyboardInterrupt from CLI and programmatic usage (#2384)

... (truncated)

Commits

• fe39100 Version 0.32.0 (#2485)
• 967a2dc Support Python 3.13 (#2482)
• 079f07a feat(server): log warning when max request limit is exceeded (#2430)
• 137f88e Version 0.31.1 (#2483)
• 27d976a Add PathLike[str] type hint for ssl_keyfile (#2481)
• 1ddd250 Bump the python-packages group with 10 updates (#2478)
• 108b1c9 docs: fix configuration option for trusting forwarded IPs (#2479)
• a1783d8 Add support for [*] in trusted hosts (#2480)
• 6ffaaf7 Update link to Hypercorn project (#2474)
• c7668ce Upgrade websockets to 0.13.1 (#2471)
• Additional commits viewable in compare view

Updates ruff from 0.4.8 to 0.7.1

Release notes

Sourced from ruff's releases.

0.7.1

Release Notes

Preview features

• Fix E221 and E222 to flag missing or extra whitespace around == operator (#13890)
• Formatter: Alternate quotes for strings inside f-strings in preview (#13860)
• Formatter: Join implicit concatenated strings when they fit on a line (#13663)
• [pylint] Restrict iteration-over-set to only work on sets of literals (PLC0208) (#13731)

Rule changes

• [flake8-type-checking] Support auto-quoting when annotations contain quotes (#11811)

Server

• Avoid indexing the workspace for single-file mode (#13770)

Bug fixes

• Make ARG002 compatible with EM101 when raising NotImplementedError (#13714)

Other changes

• Introduce more Docker tags for Ruff (similar to uv) (#13274)

Contributors

• @​Aditya-PS-05
• @​AlexWaygood
• @​Glyphack
• @​Lexxxzy
• @​MichaReiser
• @​TomerBin
• @​Watercycle
• @​cake-monotone
• @​carljm
• @​dhruvmanila
• @​diceroll123
• @​mihaic
• @​ndmitchell
• @​pilleye
• @​renovate
• @​rtpg
• @​samypr100
• @​sharkdp

Install ruff 0.7.1

Install prebuilt binaries via shell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.1

Preview features

• Fix E221 and E222 to flag missing or extra whitespace around == operator (#13890)
• Formatter: Alternate quotes for strings inside f-strings in preview (#13860)
• Formatter: Join implicit concatenated strings when they fit on a line (#13663)
• [pylint] Restrict iteration-over-set to only work on sets of literals (PLC0208) (#13731)

Rule changes

• [flake8-type-checking] Support auto-quoting when annotations contain quotes (#11811)

Server

• Avoid indexing the workspace for single-file mode (#13770)

Bug fixes

• Make ARG002 compatible with EM101 when raising NotImplementedError (#13714)

Other changes

• Introduce more Docker tags for Ruff (similar to uv) (#13274)

0.7.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

• The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.
• The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.
• The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

• Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

• [refurb] implement hardcoded-string-charset (FURB156) (#13530)
• [refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

... (truncated)

Commits

• 337af83 Bump version to 0.7.1 (#13913)
• 113ce84 Fix normalize arguments when fstring_formatting is disabled (#13910)
• 7272f83 Fix preview style name in can_omit_parentheses to is_f_string_formatting_en...
• 3eb4546 [red-knot] Format mdtest Python snippets more concisely (#13905)
• 77ae0cc [red-knot] Infer subscript expression types for bytes literals (#13901)
• 73ee72b Join implicit concatenated strings when they fit on a line (#13663)
• e402e27 Use referencial equality in traversal helper methods (#13895)
• de4181d Remove "default" remark from ruff check (#13900)
• 2c57c2d [red-knot] Type narrowing for isinstance checks (#13894)
• 72c18c8 Fix E221 and E222 to flag missing or extra whitespace around == operator (#...
• Additional commits viewable in compare view

Updates mypy from 1.10.0 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Note that unlike typical releases, Mypy 1.13 does not have any changes to type checking semantics from 1.12.1.

Improved performance

Mypy 1.13 contains several performance improvements. Users can expect mypy to be 5-20% faster. In environments with long search paths (such as environments using many editable installs), mypy can be significantly faster, e.g. 2.2x faster in the use case targeted by these improvements.

Mypy 1.13 allows use of the orjson library for handling the cache instead of the stdlib json, for improved performance. You can ensure the presence of orjson using the faster-cache extra:

python3 -m pip install -U mypy[faster-cache]

Mypy may depend on orjson by default in the future.

These improvements were contributed by Shantanu.

List of changes:

• Significantly speed up file handling error paths (Shantanu, PR 17920)
• Use fast path in modulefinder more often (Shantanu, PR 17950)
• Let mypyc optimise os.path.join (Shantanu, PR 17949)
• Make is_sub_path faster (Shantanu, PR 17962)
• Speed up stubs suggestions (Shantanu, PR 17965)
• Use sha1 for hashing (Shantanu, PR 17953)
• Use orjson instead of json, when available (Shantanu, PR 17955)
• Add faster-cache extra, test in CI (Shantanu, PR 17978)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Shantanu Jain
• Jukka Lehtosalo

Mypy 1.12

We’ve just uploaded mypy 1.12 to the Python Package Index (PyPI). Mypy is a static type

... (truncated)

Commits

• eb31034 Bump version to 1.13.0
• 2eeb588 Update changelog for 1.12.1 (#17999)
• bc0386b Changelog for 1.13 (#18000)
• 5c4d2db Add faster-cache extra, test in CI (#17978)
• 854ad18 Make is_sub_path faster (#17962)
• 50aa4ca Speed up stubs suggestions (#17965)
• 7c27808 Use orjson instead of json, when available (#17955)
• 2cd2406 Use fast path in modulefinder more often (#17950)
• e20aaee Let mypyc optimise os.path.join (#17949)
• 159974c Use sha1 for hashing (#17953)
• Additional commits viewable in compare view

Updates types-requests from 2.32.0.20240602 to 2.32.0.20241016

Commits

• See full diff in compare view

Updates pytest from 8.2.1 to 8.3.3

Release notes

Sourced from pytest's releases.

8.3.3

pytest 8.3.3 (2024-09-09)

Bug fixes

• #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by asottile{.interpreted-text role="user"}

• #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1.

• #12667: Fixed a regression where type change in [ExceptionInfo.errisinstance]{.title-ref} caused [mypy]{.title-ref} to fail.

• #12744: Fixed typing compatibility with Python 3.9 or less -- replaced [typing.Self]{.title-ref} with [typing_extensions.Self]{.title-ref} -- by Avasam{.interpreted-text role="user"}

• #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments.

• #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg).

• #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option.

  -- by GTowers1{.interpreted-text role="user"}

Improved documentation

• #12663: Clarify that the [pytest_deselected]{.title-ref} hook should be called from [pytest_collection_modifyitems]{.title-ref} hook implementations when items are deselected.
• #12678: Remove erroneous quotes from [tmp_path_retention_policy]{.title-ref} example in docs.

Miscellaneous internal changes

• #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks.

8.3.2

pytest 8.3.2 (2024-07-24)

Bug fixes

• #12652: Resolve regression [conda]{.title-ref} environments where no longer being automatically detected.

  -- by RonnyPfannschmidt{.interpreted-text role="user"}

8.3.1

pytest 8.3.1 (2024-07-20)

The 8.3.0 release failed to include the change notes and docs for the release. This patch release remedies this. There are no other changes.

... (truncated)

Commits

• d0f136f build(deps): Bump pypa/gh-action-pypi-publish from 1.10.0 to 1.10.1 (#12790)
• 972f307 Prepare release version 8.3.3
• 0dabdcf Include co-authors in release announcement (#12795) (#12797)
• a9910a4 Do not discover properties when iterating fixtures (#12781) (#12788)
• 0f10b6b Fix issue with slashes being turned into backslashes on Windows (#12760) (#12...
• 300d13d Merge pull request #12785 from pytest-dev/patchback/backports/8.3.x/57cccf7f4...
• e5d32c7 Merge pull request #12784 from svenevs/fix/docs-example-parametrize-minor-typo
• bc913d1 Streamline checks for verbose option (#12706) (