Skip to content

chore(deps-dev): bump the development-dependencies group across 1 directory with 9 updates#96

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/development-dependencies-d032e2e076
Open

chore(deps-dev): bump the development-dependencies group across 1 directory with 9 updates#96
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/development-dependencies-d032e2e076

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 13, 2026

Bumps the development-dependencies group with 9 updates in the / directory:

Package From To
cookiecutter 2.6.0 2.7.1
coverage 7.11.0 7.13.5
gitpython 3.1.45 3.1.46
pre-commit 4.3.0 4.5.1
pyright 1.1.407 1.1.408
pytest 8.4.2 9.0.3
pytest-cov 7.0.0 7.1.0
python-semantic-release 10.4.1 10.5.3
refurb 2.2.0 2.3.1

Updates cookiecutter from 2.6.0 to 2.7.1

Release notes

Sourced from cookiecutter's releases.

Cookiecutter 2.7.1: The One Where It Knows Its Own Name

You know that thing where you release an album, it's on the shelves, people are buying it, and then someone points out the spine says it's your previous album? That's what happened with Cookiecutter 2.7.0. We put out the long-awaited release with 27 improvements and 17 contributors, and cookiecutter -V proudly announced: 2.6.0.

$ cookiecutter -V
Cookiecutter 2.6.0

$ # narrator voice: it was not 2.6.0

Go on, run this and see for yourself that the 2.7.1 release knows its own version number now:

uv tool upgrade cookiecutter

What's fixed

cookiecutter -V now reports the real version. Rather than patch VERSION.txt, this release removes it entirely. The version is now read from package metadata at runtime, so pyproject.toml is the single source of truth and there's nothing left to drift. Thanks @​bollwyvl for the bug report PR and for suggesting the importlib.metadata approach, and thanks @​tranzystorekk for filing #2195!

What's better

CI runs each Python version as its own job. Tests for 3.10 through 3.14 used to run sequentially inside a single job per OS, which pushed Windows past 30 minutes. Each version now runs in parallel with a 15-minute timeout. Windows tests focus on the boundary versions (3.10 and 3.14) since intermediate versions add little signal beyond Ubuntu and macOS.

Contributors

@​audreyfeldroy (Audrey M. Roy Greenfeld) and @​pydanny (Daniel Roy Greenfeld) built this release, with help from Claude roleplaying as David Bowie.

Thanks to @​bollwyvl (Nicholas Bollweg) for the version fix PR and the importlib.metadata suggestion, and @​tranzystorekk for reporting the version mismatch.

2.7.0

Cookiecutter 2.7.0 is tested on Python 3.10 through 3.14, ships with a security policy documenting the trust model for template hook scripts, and publishes to PyPI with cryptographic provenance so you can verify every release. Seventeen contributors from the community helped build it.

uv tool upgrade cookiecutter

What's new

A security policy that explains what you're trusting. Cookiecutter templates can run arbitrary code through hook scripts, and that's by design. The new SECURITY.md lays out the trust model: what Cookiecutter sandboxes (nothing), what's in scope for vulnerability reports, and how to report them privately through GitHub. If you maintain templates or run unfamiliar ones, this is worth reading.

Python 3.10 through 3.14. Full test coverage across five Python versions. If you're on 3.7, 3.8, or 3.9, this is the release where you'll want to upgrade.

Pretty-printed JSON in templates. The jsonify Jinja2 extension takes an indent argument, so you can generate formatted JSON in your templates instead of single-line blobs. Thanks @​pabloxio! (#2050)

Boolean variables from the command line. Pass use_docker=y via --no-input and it arrives as a proper boolean in your template context. Thanks @​tylermilner! (#2029)

Structured bug reports. The GitHub issue form collects environment details upfront, so maintainers can reproduce your issue faster.

Tutorial videos and slides. Conference talk recordings and slide decks linked from the docs. Thanks @​datasharp! (#2137)

... (truncated)

Commits
  • 083dd3c Release 2.7.1
  • 59e7eb1 Ground the runtime version in package metadata instead of a hand-maintained file
  • 730d2eb Run each Python version as its own CI job instead of sequentially
  • db674d8 Reflect that PyPI publishing runs automatically on tag push
  • 718f685 Release 2.7.0
  • 14da090 Let contributors focus on what interests them, not a milestone plan
  • a4a7e99 Give release managers a safe, documented path from version bump to PyPI
  • cf3bd2f Drop the Release Drafter integration
  • 0ff1fa8 Tell template creators what Cookiecutter actually gives them
  • 154d946 Modernize the README around uv and a leaner project page
  • Additional commits viewable in compare view

Updates coverage from 7.11.0 to 7.13.5

Changelog

Sourced from coverage's changelog.

Version 7.13.5 — 2026-03-17

  • Fix: issue 2138_ describes a memory leak that happened when repeatedly using the Coverage API with in-memory data. This is now fixed.

  • Fix: the markdown-formatted coverage report didn't fully escape special characters in file paths (issue 2141). This would be very unlikely to cause a problem, but now it's done properly, thanks to Ellie Ayla <pull 2142_>.

  • Fix: the C extension wouldn't build on VS2019, but now it does (issue 2145_).

.. _issue 2138: coveragepy/coveragepy#2138 .. _issue 2141: coveragepy/coveragepy#2141 .. _pull 2142: coveragepy/coveragepy#2142 .. _issue 2145: coveragepy/coveragepy#2145

.. _changes_7-13-4:

Version 7.13.4 — 2026-02-09

  • Fix: the third-party code fix in 7.13.3 required examining the parent directories where coverage was run. In the unusual situation that one of the parent directories is unreadable, a PermissionError would occur, as described in issue 2129_. This is now fixed.

  • Fix: in test suites that change sys.path, coverage.py could fail with "RuntimeError: Set changed size during iteration" as described and fixed in pull 2130_. Thanks, Noah Fatsi.

  • We now publish ppc64le wheels, thanks to Pankhudi Jain <pull 2121_>_.

.. _pull 2121: coveragepy/coveragepy#2121 .. _issue 2129: coveragepy/coveragepy#2129 .. _pull 2130: coveragepy/coveragepy#2130

.. _changes_7-13-3:

Version 7.13.3 — 2026-02-03

  • Fix: in some situations, third-party code was measured when it shouldn't have been, slowing down test execution. This happened with layered virtual environments such as uv sometimes makes. The problem is fixed, closing issue 2082_. Now any directory on sys.path that is inside a virtualenv is considered third-party code.

... (truncated)

Commits
  • c88da14 docs: sample HTML for 7.13.5
  • e2ac3e1 build: sample HTML shouldn't include the status.json file
  • 910f8f3 docs: prep for 7.13.5
  • 3a4819c style: make workflows more uniform
  • 2a53705 chore: bump the action-dependencies group across 1 directory with 4 updates (...
  • e7c878d chore: make upgrade
  • ab4db40 build: use --generate-hashes when pinning
  • a438753 chore: make upgrade
  • 7b33457 refactor: some leftover pyupgrade 3.10 bits
  • 2ff968d refactor: this type wasn't used anywhere
  • Additional commits viewable in compare view

Updates gitpython from 3.1.45 to 3.1.46

Release notes

Sourced from gitpython's releases.

3.1.46

What's Changed

New Contributors

Full Changelog: gitpython-developers/GitPython@3.1.45...3.1.46

Commits
  • 9e24eb6 Prepare next release
  • b8bb60e Merge pull request #2094 from George-Ogden/join-pathlike
  • c8b58c0 Update test/test_tree.py
  • 88e2614 Allow joining path to tree
  • 9fa28ae Add failing tests for joining paths
  • 6d66a02 Merge pull request #2093 from gitpython-developers/dependabot/submodules/git/...
  • f738029 Bump git/ext/gitdb from 65321a2 to 4c63ee6
  • eecc28d Merge pull request #2086 from George-Ogden/true-pathlike
  • 0cb55fb Revert "Add tests with non-ascii characters"
  • 1710626 Add tests with non-ascii characters
  • Additional commits viewable in compare view

Updates pre-commit from 4.3.0 to 4.5.1

Release notes

Sourced from pre-commit's releases.

pre-commit v4.5.1

Fixes

  • Fix language: python with repo: local without additional_dependencies.

pre-commit v4.5.0

Features

pre-commit v4.4.0

Features

Fixes

Changelog

Sourced from pre-commit's changelog.

4.5.1 - 2025-12-16

Fixes

  • Fix language: python with repo: local without additional_dependencies.

4.5.0 - 2025-11-22

Features

4.4.0 - 2025-11-08

Features

Fixes

Commits
  • 8a0630c v4.5.1
  • fcbc745 Merge pull request #3597 from pre-commit/empty-setup-py
  • 51592ee fix python local template when artifact dirs are present
  • 67e8faf Merge pull request #3596 from pre-commit/pre-commit-ci-update-config
  • c251e6b [pre-commit.ci] pre-commit autoupdate
  • 98ccafa Merge pull request #3593 from pre-commit/pre-commit-ci-update-config
  • 4895355 [pre-commit.ci] pre-commit autoupdate
  • 2cedd58 Merge pull request #3588 from pre-commit/pre-commit-ci-update-config
  • 465192d [pre-commit.ci] pre-commit autoupdate
  • fd42f96 Merge pull request #3586 from pre-commit/zipapp-sha256-file-not-needed
  • Additional commits viewable in compare view

Updates pyright from 1.1.407 to 1.1.408

Commits

Updates pytest from 8.4.2 to 9.0.3

Release notes

Sourced from pytest's releases.

9.0.3

pytest 9.0.3 (2026-04-07)

Bug fixes

  • #12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.

  • #13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.

    Previously this resulted in an internal assertion failure during plugin loading.

    Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.

  • #13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.

  • #14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.

  • #14343: Fixed use of insecure temporary directory (CVE-2025-71176).

Improved documentation

  • #13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
  • #13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
  • #14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
  • #14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes

  • #12689: The test reports are now published to Codecov from GitHub Actions. The test statistics is visible on the web interface.

    -- by aleguy02

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

  • #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

    You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

    Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

  • #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

  • #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

... (truncated)

Commits

Updates pytest-cov from 7.0.0 to 7.1.0

Changelog

Sourced from pytest-cov's changelog.

7.1.0 (2026-03-21)

  • Fixed total coverage computation to always be consistent, regardless of reporting settings. Previously some reports could produce different total counts, and consequently can make --cov-fail-under behave different depending on reporting options. See [#641](https://github.com/pytest-dev/pytest-cov/issues/641) <https://github.com/pytest-dev/pytest-cov/issues/641>_.

  • Improve handling of ResourceWarning from sqlite3.

    The plugin adds warning filter for sqlite3 ResourceWarning unclosed database (since 6.2.0). It checks if there is already existing plugin for this message by comparing filter regular expression. When filter is specified on command line the message is escaped and does not match an expected message. A check for an escaped regular expression is added to handle this case.

    With this fix one can suppress ResourceWarning from sqlite3 from command line::

    pytest -W "ignore:unclosed database in <sqlite3.Connection object at:ResourceWarning" ...

  • Various improvements to documentation. Contributed by Art Pelling in [#718](https://github.com/pytest-dev/pytest-cov/issues/718) <https://github.com/pytest-dev/pytest-cov/pull/718>_ and "vivodi" in [#738](https://github.com/pytest-dev/pytest-cov/issues/738) <https://github.com/pytest-dev/pytest-cov/pull/738>. Also closed [#736](https://github.com/pytest-dev/pytest-cov/issues/736) <https://github.com/pytest-dev/pytest-cov/issues/736>.

  • Fixed some assertions in tests. Contributed by in Markéta Machová in [#722](https://github.com/pytest-dev/pytest-cov/issues/722) <https://github.com/pytest-dev/pytest-cov/pull/722>_.

  • Removed unnecessary coverage configuration copying (meant as a backup because reporting commands had configuration side-effects before coverage 5.0).

Commits
  • 66c8a52 Bump version: 7.0.0 → 7.1.0
  • f707662 Make the examples use pypy 3.11.
  • 6049a78 Make context test use the old ctracer (seems the new sysmon tracer behaves di...
  • 8ebf20b Update changelog.
  • 861d30e Remove the backup context manager - shouldn't be needed since coverage 5.0, ...
  • fd4c956 Pass the precision on the nulled total (seems that there's some caching goion...
  • 78c9c4e Only run the 3.9 on older deps.
  • 4849a92 Punctuation.
  • 197c35e Update changelog and hopefully I don't forget to publish release again :))
  • 14dc1c9 Update examples to use 3.11 and make the adhoc layout example look a bit more...
  • Additional commits viewable in compare view

Updates python-semantic-release from 10.4.1 to 10.5.3

Release notes

Sourced from python-semantic-release's releases.

v10.5.3 (2025-12-14)

This release is published under the MIT License.

🪲 Bug Fixes

  • cmd-version: Resolve unauthenticated git repo issues for upstream verification (PR#1388, e164f68)

  • github-action: Fix failed signing issue when ssh was missing from action environment (PR#1389, 18b7eda)

  • parser-conventional-monorepo: Fix parser opts validator for outside dir path matches (PR#1382, a51eadd)

✅ Resolved Issues

  • #1373: verify_upstream_unchanged fails on github actions when git repo is unauthenticated

  • #1376: ssh-agent & ssh-add is missing from python-semantic-release github action

  • #1380: Monorepo path_filters fails to reference paths outside the current package subtree

Detailed Changes: v10.5.2...v10.5.3

Installable artifacts are available from:

v10.5.2

[!WARNING] 2025-11-11: Release fails git repo is unauthenticated (See #1373) & if you use SSH commit & tag signing (See #1376) - Resolved in v10.5.3

v10.5.2 (2025-11-10)

This release is published under the MIT License.

🪲 Bug Fixes

  • cmd-version: Toggle verify upstream off when no version commit is made (PR#1370, e0b3b70)

Detailed Changes: v10.5.1...v10.5.2

... (truncated)

Changelog

Sourced from python-semantic-release's changelog.

v10.5.3 (2025-12-14)

🪲 Bug Fixes

  • cmd-version: Resolve unauthenticated git repo issues for upstream verification, closes [#1373](https://github.com/python-semantic-release/python-semantic-release/issues/1373)_ (PR#1388, e164f68)

  • github-action: Fix failed signing issue when ssh was missing from action environment, closes [#1376](https://github.com/python-semantic-release/python-semantic-release/issues/1376)_ (PR#1389, 18b7eda)

  • parser-conventional-monorepo: Fix parser opts validator for outside dir path matches, closes [#1380](https://github.com/python-semantic-release/python-semantic-release/issues/1380)_ (PR#1382, a51eadd)

.. _#1373: python-semantic-release/python-semantic-release#1373 .. _#1376: python-semantic-release/python-semantic-release#1376 .. _#1380: python-semantic-release/python-semantic-release#1380 .. _18b7eda: python-semantic-release/python-semantic-release@18b7eda .. _a51eadd: python-semantic-release/python-semantic-release@a51eadd .. _e164f68: python-semantic-release/python-semantic-release@e164f68 .. _PR#1382: python-semantic-release/python-semantic-release#1382 .. _PR#1388: python-semantic-release/python-semantic-release#1388 .. _PR#1389: python-semantic-release/python-semantic-release#1389

.. _changelog-v10.5.2:

v10.5.2 (2025-11-10)

🪲 Bug Fixes

  • cmd-version: Toggle verify upstream off when no version commit is made (PR#1370, e0b3b70)

.. _e0b3b70: python-semantic-release/python-semantic-release@e0b3b70 .. _PR#1370: python-semantic-release/python-semantic-release#1370

.. _changelog-v10.5.1:

v10.5.1 (2025-11-10)

🪲 Bug Fixes

  • cmd-version: Fix upstream change detection to succeed without branch tracking (PR#1369_,

... (truncated)

Commits
  • 350c48f chore: release v10.5.3
  • a51eadd fix(parser-conventional-monorepo): fix parser opts validator for outside dir ...
  • 427af48 test(fixtures): upgrade monorepos to monitor external package files
  • 27a006c test(fixtures): upgrade commit simulation to modify specific files
  • e164f68 fix(cmd-version): resolve unauthenticated git repo issues for upstream verifi...
  • 18b7eda fix(github-action): fix failed signing issue when ssh was missing from action...
  • 779af88 ci(deps): bump tj-actions/changed-files@v47.0.0 action to v47.0.1 (#1394)
  • edf0229 ci(deps): bump actions/stale@v10.1.0 to v10.1.1 (#1394)
  • e0927e3 ci(deps): bump actions/setup-python@v6.0.0 to v6.1.0 (#1394)
  • b984f41 ci(deps): bump actions/upload-artifact@v5.0.0 to v6.0.0 (#1394)
  • Additional commits viewable in compare view

Updates refurb from 2.2.0 to 2.3.1

Release notes

Sourced from refurb's releases.

v2.3.1

What's Changed

Full Changelog: dosisod/refurb@v2.3.0...v2.3.1

Note: This version was re-released due to the version not being incremented in the pyproject.toml file first

Release v2.3.0

What's Changed

New Contributors

Full Changelog: dosisod/refurb@v2.2.0...v2.3.0

Commits
  • 0dbb127 Bump version to v2.3.1
  • 44040e5 Fix issue with MyPy 1.20 (#375)
  • 2fd5fe0 Bump version to 2.3.0
  • d10ae46 Fix FURB148 false positive when loop variable is used after loop (#370)
  • e2ce817 Fix FURB142 false positive when set target depends on loop variable (#367)
  • aea2e65 Fix FURB184 false positive when assignment is not a call (#368)
  • 5574ece Fix FURB173 false positive on Mapping types (#361)
  • 0726924 Fix FURB111 false positive on lambdas with default arguments (#363)
  • c8db505 Fix crash on PEP 695 type alias statements (#360)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): bump the development-dependencies group across 1 dir…
765d452 
…ectory with 9 updates

Bumps the development-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [cookiecutter](https://github.com/cookiecutter/cookiecutter) | `2.6.0` | `2.7.1` |
| [coverage](https://github.com/coveragepy/coveragepy) | `7.11.0` | `7.13.5` |
| [gitpython](https://github.com/gitpython-developers/GitPython) | `3.1.45` | `3.1.46` |
| [pre-commit](https://github.com/pre-commit/pre-commit) | `4.3.0` | `4.5.1` |
| [pyright](https://github.com/RobertCraigie/pyright-python) | `1.1.407` | `1.1.408` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.4.2` | `9.0.3` |
| [pytest-cov](https://github.com/pytest-dev/pytest-cov) | `7.0.0` | `7.1.0` |
| [python-semantic-release](https://github.com/python-semantic-release/python-semantic-release) | `10.4.1` | `10.5.3` |
| [refurb](https://github.com/dosisod/refurb) | `2.2.0` | `2.3.1` |



Updates `cookiecutter` from 2.6.0 to 2.7.1
- [Release notes](https://github.com/cookiecutter/cookiecutter/releases)
- [Commits](cookiecutter/cookiecutter@2.6.0...v2.7.1)

Updates `coverage` from 7.11.0 to 7.13.5
- [Release notes](https://github.com/coveragepy/coveragepy/releases)
- [Changelog](https://github.com/coveragepy/coveragepy/blob/main/CHANGES.rst)
- [Commits](coveragepy/coveragepy@7.11.0...7.13.5)

Updates `gitpython` from 3.1.45 to 3.1.46
- [Release notes](https://github.com/gitpython-developers/GitPython/releases)
- [Changelog](https://github.com/gitpython-developers/GitPython/blob/main/CHANGES)
- [Commits](gitpython-developers/GitPython@3.1.45...3.1.46)

Updates `pre-commit` from 4.3.0 to 4.5.1
- [Release notes](https://github.com/pre-commit/pre-commit/releases)
- [Changelog](https://github.com/pre-commit/pre-commit/blob/main/CHANGELOG.md)
- [Commits](pre-commit/pre-commit@v4.3.0...v4.5.1)

Updates `pyright` from 1.1.407 to 1.1.408
- [Release notes](https://github.com/RobertCraigie/pyright-python/releases)
- [Commits](RobertCraigie/pyright-python@v1.1.407...v1.1.408)

Updates `pytest` from 8.4.2 to 9.0.3
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.4.2...9.0.3)

Updates `pytest-cov` from 7.0.0 to 7.1.0
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst)
- [Commits](pytest-dev/pytest-cov@v7.0.0...v7.1.0)

Updates `python-semantic-release` from 10.4.1 to 10.5.3
- [Release notes](https://github.com/python-semantic-release/python-semantic-release/releases)
- [Changelog](https://github.com/python-semantic-release/python-semantic-release/blob/master/CHANGELOG.rst)
- [Commits](python-semantic-release/python-semantic-release@v10.4.1...v10.5.3)

Updates `refurb` from 2.2.0 to 2.3.1
- [Release notes](https://github.com/dosisod/refurb/releases)
- [Commits](dosisod/refurb@v2.2.0...v2.3.1)

---
updated-dependencies:
- dependency-name: cookiecutter
  dependency-version: 2.7.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: coverage
  dependency-version: 7.13.5
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: gitpython
  dependency-version: 3.1.46
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: pre-commit
  dependency-version: 4.5.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: pyright
  dependency-version: 1.1.408
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: development-dependencies
- dependency-name: pytest-cov
  dependency-version: 7.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: python-semantic-release
  dependency-version: 10.5.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
- dependency-name: refurb
  dependency-version: 2.3.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 13, 2026

Assignees

The following users could not be added as assignees: jonzeolla. Either the username does not exist or it does not have the correct permissions to be added as an assignee.

Labels

The following labels could not be found: dependencies, python. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot bot requested a review from JonZeolla as a code owner April 13, 2026 08:18
ai-coding-guardrails[bot]
ai-coding-guardrails bot reviewed Apr 13, 2026
View reviewed changes
Copy link
Copy Markdown

@ai-coding-guardrails ai-coding-guardrails bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice work! 😎

I didn't find anything of concern

List of skipped files due to configuration

Reviewed with 🤟 by Zenable

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ai-coding-guardrails ai-coding-guardrails[bot] ai-coding-guardrails[bot] left review comments

@JonZeolla JonZeolla Awaiting requested review from JonZeolla JonZeolla is a code owner

Assignees

@JonZeolla JonZeolla

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@JonZeolla