Bump ruff from 0.9.2 to 0.9.3

[dependabot]

Bumps ruff from 0.9.2 to 0.9.3.

Release notes

Sourced from ruff's releases.

0.9.3

Release Notes

Preview features

• [airflow] Argument fail_stop in DAG has been renamed as fail_fast (AIR302) (#15633)
• [airflow] Extend AIR303 with more symbols (#15611)
• [flake8-bandit] Report all references to suspicious functions (S3) (#15541)
• [flake8-pytest-style] Do not emit diagnostics for empty for loops (PT012, PT031) (#15542)
• [flake8-simplify] Avoid double negations (SIM103) (#15562)
• [pyflakes] Fix infinite loop with unused local import in __init__.py (F401) (#15517)
• [pylint] Do not report methods with only one EM101-compatible raise (PLR6301) (#15507)
• [pylint] Implement redefined-slots-in-subclass (W0244) (#9640)
• [pyupgrade] Add rules to use PEP 695 generics in classes and functions (UP046, UP047) (#15565, #15659)
• [refurb] Implement for-loop-writes (FURB122) (#10630)
• [ruff] Implement needless-else clause (RUF047) (#15051)
• [ruff] Implement starmap-zip (RUF058) (#15483)

Rule changes

• [flake8-bugbear] Do not raise error if keyword argument is present and target-python version is less or equals than 3.9 (B903) (#15549)
• [flake8-comprehensions] strip parentheses around generators in unnecessary-generator-set (C401) (#15553)
• [flake8-pytest-style] Rewrite references to .exception (PT027) (#15680)
• [flake8-simplify] Mark fixes as unsafe (SIM201, SIM202) (#15626)
• [flake8-type-checking] Fix some safe fixes being labeled unsafe (TC006,TC008) (#15638)
• [isort] Omit trailing whitespace in unsorted-imports (I001) (#15518)
• [pydoclint] Allow ignoring one line docstrings for DOC rules (#13302)
• [pyflakes] Apply redefinition fixes by source code order (F811) (#15575)
• [pyflakes] Avoid removing too many imports in redefined-while-unused (F811) (#15585)
• [pyflakes] Group redefinition fixes by source statement (F811) (#15574)
• [pylint] Include name of base class in message for redefined-slots-in-subclass (W0244) (#15559)
• [ruff] Update fix for RUF055 to use var == value (#15605)

Formatter

• Fix bracket spacing for single-element tuples in f-string expressions (#15537)
• Fix unstable f-string formatting for expressions containing a trailing comma (#15545)

Performance

• Avoid quadratic membership check in import fixes (#15576)

Server

• Allow unsafe-fixes settings for code actions (#15666)

Bug fixes

• [flake8-bandit] Add missing single-line/dotall regex flag (S608) (#15654)
• [flake8-import-conventions] Fix infinite loop between ICN001 and I002 (ICN001) (#15480)

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.3

Preview features

• [airflow] Argument fail_stop in DAG has been renamed as fail_fast (AIR302) (#15633)
• [airflow] Extend AIR303 with more symbols (#15611)
• [flake8-bandit] Report all references to suspicious functions (S3) (#15541)
• [flake8-pytest-style] Do not emit diagnostics for empty for loops (PT012, PT031) (#15542)
• [flake8-simplify] Avoid double negations (SIM103) (#15562)
• [pyflakes] Fix infinite loop with unused local import in __init__.py (F401) (#15517)
• [pylint] Do not report methods with only one EM101-compatible raise (PLR6301) (#15507)
• [pylint] Implement redefined-slots-in-subclass (W0244) (#9640)
• [pyupgrade] Add rules to use PEP 695 generics in classes and functions (UP046, UP047) (#15565, #15659)
• [refurb] Implement for-loop-writes (FURB122) (#10630)
• [ruff] Implement needless-else clause (RUF047) (#15051)
• [ruff] Implement starmap-zip (RUF058) (#15483)

Rule changes

• [flake8-bugbear] Do not raise error if keyword argument is present and target-python version is less or equals than 3.9 (B903) (#15549)
• [flake8-comprehensions] strip parentheses around generators in unnecessary-generator-set (C401) (#15553)
• [flake8-pytest-style] Rewrite references to .exception (PT027) (#15680)
• [flake8-simplify] Mark fixes as unsafe (SIM201, SIM202) (#15626)
• [flake8-type-checking] Fix some safe fixes being labeled unsafe (TC006,TC008) (#15638)
• [isort] Omit trailing whitespace in unsorted-imports (I001) (#15518)
• [pydoclint] Allow ignoring one line docstrings for DOC rules (#13302)
• [pyflakes] Apply redefinition fixes by source code order (F811) (#15575)
• [pyflakes] Avoid removing too many imports in redefined-while-unused (F811) (#15585)
• [pyflakes] Group redefinition fixes by source statement (F811) (#15574)
• [pylint] Include name of base class in message for redefined-slots-in-subclass (W0244) (#15559)
• [ruff] Update fix for RUF055 to use var == value (#15605)

Formatter

• Fix bracket spacing for single-element tuples in f-string expressions (#15537)
• Fix unstable f-string formatting for expressions containing a trailing comma (#15545)

Performance

• Avoid quadratic membership check in import fixes (#15576)

Server

• Allow unsafe-fixes settings for code actions (#15666)

Bug fixes

• [flake8-bandit] Add missing single-line/dotall regex flag (S608) (#15654)
• [flake8-import-conventions] Fix infinite loop between ICN001 and I002 (ICN001) (#15480)
• [flake8-simplify] Do not emit diagnostics for expressions inside string type annotations (SIM222, SIM223) (#15405)

... (truncated)

Commits

• 9058937 Fix grep for version number in docker build (#15699)
• b5ffb40 Bump version to 0.9.3 (#15698)
• cffd186 Preserve raw string prefix and escapes (#15694)
• 569060f [flake8-pytest-style] Rewrite references to .exception (PT027) (#15680)
• 15394a8 [red-knot] MDTests: Do not depend on precise public-symbol type inference (#1...
• fc2ebea [red-knot] Make infer.rs unit tests independent of public symbol inference ...
• 43160b4 Tidy knot CLI tests (#15685)
• 0173738 [red-knot] Port comprehension tests to Markdown (#15688)
• 05ea77b Create Unknown rule diagnostics with a source range (#15648)
• 1e790d3 [red-knot] Port 'deferred annotations' unit tests to Markdown (#15686)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (d079515) to head (44d66a7).
Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff            @@
##              main      #696   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files            8         8           
  Lines          151       151           
  Branches        15        15           
=========================================
  Hits           151       151           

Flag	Coverage Δ
python-3.10	100.00% <ø> (ø)
python-3.11	100.00% <ø> (ø)
python-3.12	100.00% <ø> (ø)
python-3.13	100.00% <ø> (ø)
python-3.9	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[github-actions]

Test Results

  5 files  ±0    5 suites  ±0   5s ⏱️ ±0s
 36 tests ±0   36 ✅ ±0  0 💤 ±0  0 ❌ ±0 
180 runs  ±0  180 ✅ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit 44d66a7. ± Comparison against base commit d079515.

♻️ This comment has been updated with latest results.

[github-actions]

🔍 Vulnerabilities of jkreileder/cf-ips-to-hcloud-fw:pr-696

📦 Image Reference jkreileder/cf-ips-to-hcloud-fw:pr-696

digest	sha256:c42461797e68eed3b8157ab1c1d77bc379f11829cd442f933d9a7ef4d4483cc5
vulnerabilities
platform	linux/amd64
size	26 MB
packages	62

📦 Base Image python:3-alpine3.20

also known as	3.13-alpine3.20 3.13.1-alpine3.20 alpine3.20
digest	sha256:85dcfa1f8890d92ce84a5bcf1e571e9ab00e84c414d8998ac49bd6c6183188d9
vulnerabilities

[github-actions]

Recommended fixes for image jkreileder/cf-ips-to-hcloud-fw:pr-696

Base image is python:3-alpine3.20

Name	3.13.1-alpine3.20
Digest	sha256:85dcfa1f8890d92ce84a5bcf1e571e9ab00e84c414d8998ac49bd6c6183188d9
Vulnerabilities
Pushed	1 month ago
Size	16 MB
Packages	41
Flavor	alpine
OS	3.20
Runtime	3.13.1

The base image is also available under the supported tag(s): 3.13-alpine3.20, 3.13.1-alpine3.20, alpine3.20

Refresh base image

Rebuild the image using a newer base image version. Updating this may result in breaking changes.

✅ This image version is up to date.

Change base image

Tag	Details	Pushed	Vulnerabilities
3-alpine Tag is preferred tag Also known as: alpine alpine3.21 3.13.1-alpine 3.13.1-alpine3.21 3.13-alpine 3.13-alpine3.21 3-alpine3.21	Benefits: Same OS detected Minor runtime version update Minor OS version update Tag is preferred tag Tag was pushed more recently Image has similar size Image has same number of vulnerabilities Image contains similar number of packages 3-alpine was pulled 51K times last month Image details: Size: 17 MB Flavor: alpine OS: 3.21 Runtime: 3.13.1	1 month ago

[github-actions]

Overview

Image reference	jkreileder/cf-ips-to-hcloud-fw:1	quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-696
- digest	dd18d18ca96b	c42461797e68
- tag	1	pr-696
- provenance	5387efd	5045267
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	24 MB	26 MB (+1.3 MB)
- packages	62	62
Base Image	python:3-alpine also known as: • 3-alpine3.20 • 3.13-alpine • 3.13-alpine3.20 • 3.13.1-alpine • 3.13.1-alpine3.20 • alpine • alpine3.20	python:3-alpine3.20 also known as: • 3.13-alpine3.20 • 3.13.1-alpine3.20 • alpine3.20
- vulnerabilities

Labels (3 changes)

• ± 3 changed
• 5 unchanged

-org.opencontainers.image.created=2024-12-22T13:10:48.667Z
+org.opencontainers.image.created=2025-01-24T14:29:24.499Z
 org.opencontainers.image.description=Update Hetzner Cloud firewall rules with current Cloudflare IP ranges
 org.opencontainers.image.licenses=MIT
-org.opencontainers.image.revision=5387efdaf829ded112cb2acdde1ab4916839a5ee
+org.opencontainers.image.revision=504526785b2df7f4ec0515f308aa6181a50ef58d
 org.opencontainers.image.source=https://github.com/jkreileder/cf-ips-to-hcloud-fw
 org.opencontainers.image.title=cf-ips-to-hcloud-fw
 org.opencontainers.image.url=https://github.com/jkreileder/cf-ips-to-hcloud-fw
-org.opencontainers.image.version=1.0.15
+org.opencontainers.image.version=pr-696

Policies (0 improved, 1 worsened, 2 missing data)

Policy Name	jkreileder/cf-ips-to-hcloud-fw:1	quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-696	Change	Standing
Default non-root user	✅	✅		No Change
No AGPL v3 licenses	✅	✅		No Change
No fixable critical or high vulnerabilities	✅	✅		No Change
No high-profile vulnerabilities	✅	✅		No Change
No outdated base images	✅	❓ No data
No unapproved base images	✅	❓ No data
Supply chain attestations	✅	⚠️ 2	+2	Worsened

Packages and Vulnerabilities (11 package changes and 0 vulnerability changes)

• ♾️ 11 packages changed
• 51 packages unchanged

Changes for packages of type apk (4 changes)

	Package	Version jkreileder/cf-ips-to-hcloud-fw:1	Version quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-696
♾️	.python-rundeps	20241205.142133	20250110.083055
♾️	apk-tools	2.14.4-r0	2.14.4-r1
♾️	ca-certificates	20240705-r0	20241121-r1
♾️	ca-certificates-bundle	20240705-r0	20241121-r1

Changes for packages of type pypi (7 changes)

	Package	Version jkreileder/cf-ips-to-hcloud-fw:1	Version quay.io/jkreileder/cf-ips-to-hcloud-fw:pr-696
♾️	anyio	4.7.0	4.8.0
♾️	cf-ips-to-hcloud-fw	1.0.15	1.0.16.dev0
♾️	charset-normalizer	3.4.0	3.4.1
♾️	cloudflare	3.1.1	4.0.0
♾️	httpx	0.27.2	0.28.1
♾️	pydantic	2.9.2	2.10.5
♾️	pydantic-core	2.23.4	2.27.2