Skip to content

Bump the pip-deps group across 1 directory with 7 updates#3077

Open
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/pip-deps-d786e416ae
Open

Bump the pip-deps group across 1 directory with 7 updates#3077
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/pip/pip-deps-d786e416ae

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 14, 2026

Bumps the pip-deps group with 7 updates in the / directory:

Package From To
boto3 1.42.79 1.42.89
asf-search 12.0.6 12.0.7
jsonschema 4.24.0 4.26.0
openapi-core 0.23.0 0.23.1
ruff 0.15.8 0.15.10
mypy 1.19.1 1.20.1
cfn-lint 1.44.0 1.48.1

Updates boto3 from 1.42.79 to 1.42.89

Commits
  • 54a9dc1 Merge branch 'release-1.42.89'
  • 730d84c Bumping version to 1.42.89
  • 6b65768 Add changelog entries from botocore
  • f92a06c Merge branch 'release-1.42.88'
  • 5da0f6a Merge branch 'release-1.42.88' into develop
  • 9bdec29 Bumping version to 1.42.88
  • d880788 Add changelog entries from botocore
  • 39a4122 chore: add additional text to CONTRIBUTING.rst (#4749)
  • 8d65320 Merge branch 'release-1.42.87'
  • fdcbb88 Merge branch 'release-1.42.87' into develop
  • Additional commits viewable in compare view

Updates asf-search from 12.0.6 to 12.0.7

Release notes

Sourced from asf-search's releases.

v12.0.7

v12.0.7

Added

Changelog

Sourced from asf-search's changelog.

v12.0.7

Added

Commits
  • 1705b0b Merge pull request #442 from asfadmin/feat-list-wildcard-support
  • 6f8bedd chore: update changelog
  • 2af33a2 feat: add support for ? in granule list queries, add test cases
  • b8666c3 fix: drop unused variable
  • 0735f76 chore: update CHANGELOG
  • 8d281e0 feat: add wildcard granule list support, test cases. Ruff formatting
  • See full diff in compare view

Updates jsonschema from 4.24.0 to 4.26.0

Release notes

Sourced from jsonschema's releases.

v4.26.0

What's Changed

New Contributors

Full Changelog: python-jsonschema/jsonschema@v4.25.1...v4.26.0

v4.25.1

What's Changed

... (truncated)

Changelog

Sourced from jsonschema's changelog.

v4.26.0

  • Decrease import time by delaying importing of urllib.request (#1416).

v4.25.1

  • Fix an incorrect required argument in the Validator protocol's type annotations (#1396).

v4.25.0

  • Add support for the iri and iri-reference formats to the format-nongpl extra via the MIT-licensed rfc3987-syntax. They were alread supported by the format extra. (#1388).

v4.24.1

  • Properly escape segments in ValidationError.json_path (#139).
Commits
  • a727743 Add a changelog entry for 4.26.
  • 6d28c13 Update the lockfile.
  • 739499e Update pre-commit hooks.
  • cb2d779 Merge pull request #1443 from python-jsonschema/pre-commit-ci-update-config
  • e6bbbb7 [pre-commit.ci] pre-commit autoupdate
  • d56037a Merge pull request #1442 from python-jsonschema/dependabot/github_actions/ast...
  • e54ce13 Bump astral-sh/setup-uv from 7.1.4 to 7.1.6
  • 1f7c9fb Partially update docs requirements.
  • 241aec9 Merge pull request #1441 from python-jsonschema/pre-commit-ci-update-config
  • 2818efb Apache-2.0 -> nongpl
  • Additional commits viewable in compare view

Updates openapi-core from 0.23.0 to 0.23.1

Release notes

Sourced from openapi-core's releases.

0.23.1

Features

  • Add Starlette 1.x support #1151

Fixes

  • Array parameter default regression with SchemaPath #1158
  • Fix unstable error message for additional properties #1159
Commits
  • 21f62ce Version 0.23.1
  • 0948a04 Merge pull request #1151 from python-openapi/dependabot/pip/starlette-1.0.0
  • 703b1b7 Add Starlette 1.x support
  • e650512 Merge pull request #1159 from python-openapi/fix/stable-error-messages-additi...
  • d394926 Fix unstable error message for additional properties
  • 8028f14 Merge pull request #1156 from python-openapi/dependabot/pip/aiohttp-3.13.4
  • 988c6b8 Merge pull request #1155 from python-openapi/dependabot/github_actions/codeco...
  • 18fc9f7 Merge pull request #1153 from python-openapi/dependabot/pip/requests-2.33.0
  • cd43c6f Merge pull request #1149 from python-openapi/dependabot/pip/mkdocs-material-9...
  • 7230104 Merge pull request #1158 from python-openapi/fix/array-default-schemapath
  • Additional commits viewable in compare view

Updates ruff from 0.15.8 to 0.15.10

Release notes

Sourced from ruff's releases.

0.15.10

Release Notes

Released on 2026-04-09.

Preview features

  • [flake8-logging] Allow closures in except handlers (LOG004) (#24464)
  • [flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
  • [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

  • Avoid emitting multi-line f-string elements before Python 3.12 (#24377)
  • Avoid syntax error from E502 fixes in f-strings and t-strings (#24410)
  • Strip form feeds from indent passed to dedent_to (#24381)
  • [pyupgrade] Fix panic caused by handling of octals (UP012) (#24390)
  • Reject multi-line f-string elements before Python 3.12 (#24355)

Rule changes

  • [ruff] Treat f-string interpolation as potential side effect (RUF019) (#24426)

Server

  • Add support for custom file extensions (#24463)

Documentation

  • Document adding fixes in CONTRIBUTING.md (#24393)
  • Fix JSON typo in settings example (#24517)

Contributors

Install ruff 0.15.10

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.10/ruff-installer.sh | sh

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.10

Released on 2026-04-09.

Preview features

  • [flake8-logging] Allow closures in except handlers (LOG004) (#24464)
  • [flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
  • [flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

  • Avoid emitting multi-line f-string elements before Python 3.12 (#24377)
  • Avoid syntax error from E502 fixes in f-strings and t-strings (#24410)
  • Strip form feeds from indent passed to dedent_to (#24381)
  • [pyupgrade] Fix panic caused by handling of octals (UP012) (#24390)
  • Reject multi-line f-string elements before Python 3.12 (#24355)

Rule changes

  • [ruff] Treat f-string interpolation as potential side effect (RUF019) (#24426)

Server

  • Add support for custom file extensions (#24463)

Documentation

  • Document adding fixes in CONTRIBUTING.md (#24393)
  • Fix JSON typo in settings example (#24517)

Contributors

0.15.9

Released on 2026-04-02.

Preview features

  • [pyflakes] Flag annotated variable redeclarations as F811 in preview mode (#24244)
  • [ruff] Allow dunder-named assignments in non-strict mode for RUF067 (#24089)

... (truncated)

Commits
  • 252f761 Bump 0.15.10 (#24519)
  • 37a1ec8 [ty] Fix assignability of intersections with bounded typevars (#24502)
  • f518cc9 [ty] Allow partially stringified type[…] annotations (#24518)
  • 16c4090 docs: fix JSON typo in settings example (#24517)
  • 99d97bd [ty] Tighten up a few edge cases in Concatenate type-expression parsing (#2...
  • 2714e34 [ty] Enable pull-diagnostics by default in E2E tests (#24516)
  • d8bc700 LSP: Add support for custom extensions (#24463)
  • a45f96d [ty] stop special-casing str constructor (#24514)
  • 87a0f01 [ruff] Treat f-string interpolation as potential side effect in RUF019 (#24426)
  • e9ba848 [ty] Fix excess subscript argument inference for non-generic types (#24354)
  • Additional commits viewable in compare view

Updates mypy from 1.19.1 to 1.20.1

Changelog

Sourced from mypy's changelog.

Mypy 1.20.1

  • Always disable sync in SQLite cache (Ivan Levkivskyi, PR 21184)
  • Temporarily skip few base64 tests (Ivan Levkivskyi, PR 21193)
  • Revert dict.__or__ typeshed change (Ivan Levkivskyi, PR 21186)
  • Fix narrowing for match case with variadic tuples (Shantanu, PR 21192)
  • Avoid narrowing type[T] in type calls (Shantanu, PR 21174)
  • Fix regression for catching empty tuple in except (Shantanu, PR 21153)
  • Fix reachability for frozenset and dict view narrowing (Shantanu, PR 21151)
  • Fix narrowing with chained comparison (Shantanu, PR 21150)
  • Avoid narrowing to unreachable at module level (Shantanu, PR 21144)
  • Allow dangerous identity comparisons to Any typed variables (Shantanu, PR 21142)
  • --warn-unused-config should not be a strict flag (Ivan Levkivskyi, PR 21139)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

  • A5rocks
  • Aaron Wieczorek
  • Adam Turner
  • Ali Hamdan
  • asce
  • BobTheBuidler
  • Brent Westbrook
  • Brian Schubert
  • bzoracler
  • Chris Burroughs
  • Christoph Tyralla
  • Colin Watson
  • Donghoon Nam
  • E. M. Bray
  • Emma Smith
  • Ethan Sarp
  • George Ogden
  • getzze
  • grayjk
  • Gregor Riepl
  • Ivan Levkivskyi
  • James Hilliard
  • James Le Cuirot
  • Jeremy Nimmer
  • Joren Hammudoglu
  • Kai (Kazuya Ito)
  • kaushal trivedi
  • Kevin Kannammalil
  • Lukas Geiger
  • Łukasz Langa
  • Marc Mueller
  • Michael R. Crusoe
  • michaelm-openai

... (truncated)

Commits

Updates cfn-lint from 1.44.0 to 1.48.1

Release notes

Sourced from cfn-lint's releases.

Release v1.48.1

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.48.0...v1.48.1

Release v1.48.0

What's Changed

... (truncated)

Changelog

Sourced from cfn-lint's changelog.

v1.48.1

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.48.0...v1.48.1

v1.48.0

What's Changed

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-deps group across 1 directory with 7 updates
96dae2b 
Bumps the pip-deps group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.42.79` | `1.42.89` |
| [asf-search](https://github.com/asfadmin/Discovery-asf_search) | `12.0.6` | `12.0.7` |
| [jsonschema](https://github.com/python-jsonschema/jsonschema) | `4.24.0` | `4.26.0` |
| [openapi-core](https://github.com/python-openapi/openapi-core) | `0.23.0` | `0.23.1` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.8` | `0.15.10` |
| [mypy](https://github.com/python/mypy) | `1.19.1` | `1.20.1` |
| [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) | `1.44.0` | `1.48.1` |



Updates `boto3` from 1.42.79 to 1.42.89
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.42.79...1.42.89)

Updates `asf-search` from 12.0.6 to 12.0.7
- [Release notes](https://github.com/asfadmin/Discovery-asf_search/releases)
- [Changelog](https://github.com/asfadmin/Discovery-asf_search/blob/master/CHANGELOG.md)
- [Commits](asfadmin/Discovery-asf_search@v12.0.6...v12.0.7)

Updates `jsonschema` from 4.24.0 to 4.26.0
- [Release notes](https://github.com/python-jsonschema/jsonschema/releases)
- [Changelog](https://github.com/python-jsonschema/jsonschema/blob/main/CHANGELOG.rst)
- [Commits](python-jsonschema/jsonschema@v4.24.0...v4.26.0)

Updates `openapi-core` from 0.23.0 to 0.23.1
- [Release notes](https://github.com/python-openapi/openapi-core/releases)
- [Commits](python-openapi/openapi-core@0.23.0...0.23.1)

Updates `ruff` from 0.15.8 to 0.15.10
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.8...0.15.10)

Updates `mypy` from 1.19.1 to 1.20.1
- [Changelog](https://github.com/python/mypy/blob/master/CHANGELOG.md)
- [Commits](python/mypy@v1.19.1...v1.20.1)

Updates `cfn-lint` from 1.44.0 to 1.48.1
- [Release notes](https://github.com/aws-cloudformation/cfn-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](aws-cloudformation/cfn-lint@v1.44.0...v1.48.1)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.42.89
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: asf-search
  dependency-version: 12.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: jsonschema
  dependency-version: 4.26.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: openapi-core
  dependency-version: 0.23.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: ruff
  dependency-version: 0.15.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: mypy
  dependency-version: 1.20.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: cfn-lint
  dependency-version: 1.48.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project labels Apr 14, 2026
@dependabot dependabot bot requested review from a team as code owners April 14, 2026 18:57
@dependabot dependabot bot added the bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version label Apr 14, 2026
@dependabot dependabot bot requested a review from a team as a code owner April 14, 2026 18:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants