chore(deps-dev): bump the development-dependencies group with 7 updates

dependabot[bot] commented 4 weeks ago

Bumps the development-dependencies group with 7 updates:

Package	From	To
poetry	`1.8.3`	`1.8.4`
boto3-stubs	`1.35.35`	`1.35.49`
mypy	`1.11.2`	`1.13.0`
ruff	`0.6.9`	`0.7.1`
moto	`5.0.16`	`5.0.18`
tox	`4.21.2`	`4.23.2`
bump-my-version	`0.27.0`	`0.28.0`

Updates poetry from 1.8.3 to 1.8.4

Release notes

Sourced from poetry's releases.

1.8.4

Added

Add official support for Python 3.13 (#9523).

Changed

Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#9757).

poetry-core (1.9.1)

Add 3.13 to the list of available Python versions (#747).

Changelog

Sourced from poetry's changelog.

[1.8.4] - 2024-10-14

Added

Add official support for Python 3.13 (#9523).

Changed

Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#9757).

poetry-core (1.9.1)

Add 3.13 to the list of available Python versions (#747).

Commits

6a071c1 release: bump version to 1.8.4
8d2a341 backport release workflow from main branch
b8546d7 python 3.13 in workflows (#9523)
0329bca Bump virtualenv to 20.26.6
a2d09a1 fix changelog (#9399)
See full diff in compare view

Updates boto3-stubs from 1.35.35 to 1.35.49

Commits

See full diff in compare view

Updates mypy from 1.11.2 to 1.13.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next release

Mypy 1.13

We’ve just uploaded mypy 1.13 to the Python Package Index (PyPI). Mypy is a static type checker for Python. You can install it as follows:
python3 -m pip install -U mypy
You can read the full documentation for this release on Read the Docs.

Note that unlike typical releases, Mypy 1.13 does not have any changes to type checking semantics from 1.12.1.

Improved performance

Mypy 1.13 contains several performance improvements. Users can expect mypy to be 5-20% faster. In environments with long search paths (such as environments using many editable installs), mypy can be significantly faster, e.g. 2.2x faster in the use case targeted by these improvements.

Mypy 1.13 allows use of the orjson library for handling the cache instead of the stdlib json, for improved performance. You can ensure the presence of orjson using the faster-cache extra:
python3 -m pip install -U mypy[faster-cache]
Mypy may depend on orjson by default in the future.

These improvements were contributed by Shantanu.

List of changes:

Significantly speed up file handling error paths (Shantanu, PR 17920)

Use fast path in modulefinder more often (Shantanu, PR 17950)

Let mypyc optimise os.path.join (Shantanu, PR 17949)

Make is_sub_path faster (Shantanu, PR 17962)

Speed up stubs suggestions (Shantanu, PR 17965)

Use sha1 for hashing (Shantanu, PR 17953)

Use orjson instead of json, when available (Shantanu, PR 17955)

Add faster-cache extra, test in CI (Shantanu, PR 17978)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

Shantanu Jain

Jukka Lehtosalo

Mypy 1.12

We’ve just uploaded mypy 1.12 to the Python Package Index (PyPI). Mypy is a static type

... (truncated)

Commits

eb31034 Bump version to 1.13.0
2eeb588 Update changelog for 1.12.1 (#17999)
bc0386b Changelog for 1.13 (#18000)
5c4d2db Add faster-cache extra, test in CI (#17978)
854ad18 Make is_sub_path faster (#17962)
50aa4ca Speed up stubs suggestions (#17965)
7c27808 Use orjson instead of json, when available (#17955)
2cd2406 Use fast path in modulefinder more often (#17950)
e20aaee Let mypyc optimise os.path.join (#17949)
159974c Use sha1 for hashing (#17953)
Additional commits viewable in compare view

Updates ruff from 0.6.9 to 0.7.1

Release notes

Sourced from ruff's releases.

0.7.1

Release Notes

Preview features

Fix E221 and E222 to flag missing or extra whitespace around == operator (#13890)

Formatter: Alternate quotes for strings inside f-strings in preview (#13860)

Formatter: Join implicit concatenated strings when they fit on a line (#13663)

[pylint] Restrict iteration-over-set to only work on sets of literals (PLC0208) (#13731)

Rule changes

[flake8-type-checking] Support auto-quoting when annotations contain quotes (#11811)

Server

Avoid indexing the workspace for single-file mode (#13770)

Bug fixes

Make ARG002 compatible with EM101 when raising NotImplementedError (#13714)

Other changes

Introduce more Docker tags for Ruff (similar to uv) (#13274)

Contributors

@Aditya-PS-05

@AlexWaygood

@Glyphack

@Lexxxzy

@MichaReiser

@TomerBin

@Watercycle

@cake-monotone

@carljm

@dhruvmanila

@diceroll123

@mihaic

@ndmitchell

@pilleye

@renovate

@rtpg

@samypr100

@sharkdp

Install ruff 0.7.1

Install prebuilt binaries via shell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.1

Preview features

Fix E221 and E222 to flag missing or extra whitespace around == operator (#13890)

Formatter: Alternate quotes for strings inside f-strings in preview (#13860)

Formatter: Join implicit concatenated strings when they fit on a line (#13663)

[pylint] Restrict iteration-over-set to only work on sets of literals (PLC0208) (#13731)

Rule changes

[flake8-type-checking] Support auto-quoting when annotations contain quotes (#11811)

Server

Avoid indexing the workspace for single-file mode (#13770)

Bug fixes

Make ARG002 compatible with EM101 when raising NotImplementedError (#13714)

Other changes

Introduce more Docker tags for Ruff (similar to uv) (#13274)

0.7.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.

The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.

The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

[refurb] implement hardcoded-string-charset (FURB156) (#13530)

[refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

... (truncated)

Commits

337af83 Bump version to 0.7.1 (#13913)
113ce84 Fix normalize arguments when fstring_formatting is disabled (#13910)
7272f83 Fix preview style name in can_omit_parentheses to is_f_string_formatting_en...
3eb4546 [red-knot] Format mdtest Python snippets more concisely (#13905)
77ae0cc [red-knot] Infer subscript expression types for bytes literals (#13901)
73ee72b Join implicit concatenated strings when they fit on a line (#13663)
e402e27 Use referencial equality in traversal helper methods (#13895)
de4181d Remove "default" remark from ruff check (#13900)
2c57c2d [red-knot] Type narrowing for isinstance checks (#13894)
72c18c8 Fix E221 and E222 to flag missing or extra whitespace around == operator (#...
Additional commits viewable in compare view

Updates moto from 5.0.16 to 5.0.18

Changelog

Sourced from moto's changelog.

5.0.18

Docker Digest for 5.0.18: sha256:62423941446f8863f499ebdfd04c1d1743b5afd84c3837799df7ce08ce3bb750

New Methods:
    * RDS:
        * delete_db_proxy()
        * deregister_db_proxy_targets()
        * describe_db_proxy_target_groups()
        * describe_db_proxy_targets()
        * modify_db_proxy_target_group()
        * register_db_proxy_targets()
Miscellaneous:
* CloudFormation: create_change_set() now supports the UsePreviousTemplate-parameter
* CognitoIDP: MFA-related features (like AssociateSoftwareToken) now also work with non-Python SDK's
* ECS: update_service() now correctly sets the createdAt/updatedAt values when forceNewDeployment=True
* ELBv2: remove_tags() now throws a ResourceNotFound Exception

5.0.17

Docker Digest for 5.0.17: sha256:39372432cb24ab46211ca45648ca787e104589070b0d0a13ea0d73c6eb550079

New Methods:
    * CloudFront:
        * create_key_group()
        * create_public_key()
        * delete_public_key()
        * get_key_group()
        * get_public_key()
        * list_key_groups()
        * list_public_keys()
* QuickSight:
    * list_user_groups()
    * search_groups()
    * update_user()

* Workspaces Web:
    * list_tags_for_resource()
    * tag_resource()
    * untag_resource()

Miscellaneous:
* APIGateway: get_api_keys()/get_usage_plan_keys() now support the nameQuery param
* AppSync: create_graphql_api() now supports the visibility-parameter
* DynamoDB: delete_item() now returns the item when a ConditionalCheckFailed is thrown and ReturnValuesOnConditionCheckFailure == ALL_OLD
* QuickSight: Users can now have special characters in their name
* QuickSight: list_group_memberships() now supports pagination

... (truncated)

Commits

1038de6 Pre-Release: Up Version Number
afebd54 Prep release 5.0.18 (#8243)
fcb3c8b chore: update SSM default parameters (#8244)
7edf69a chore: update EC2 Instance Offerings (#8242)
fe37392 CognitoIDP: Ensure MFA functions work with non-python SDK's (#8241)
eea6b16 RDS: Proxy Target Groups (#8237)
fa4352a ResourceGroupsTaggingAPI: fixed tags for Workspaces Web Portals (#8234)
77fbf51 Adds support for UsePreviousTemplate to create_change_set (#8229)
035586c Pinpoint: Fix region in application ARN (#8233)
9dbd017 [ECS] Force New Deployment (#8232)
Additional commits viewable in compare view

Updates tox from 4.21.2 to 4.23.2

Release notes

Sourced from tox's releases.

4.23.2

What's Changed

Support external tox.pytest usage via "test" extra by @mbra in tox-dev/tox#3422

New Contributors

@mbra made their first contribution in tox-dev/tox#3422

Full Changelog: https://github.com/tox-dev/tox/compare/4.23.1...4.23.2

4.23.1

What's Changed

Docs: adjusting EOL Python version testing remarks by @robsdedude in tox-dev/tox#3417

Fix example docs by @gaborbernat in tox-dev/tox#3421

New Contributors

@robsdedude made their first contribution in tox-dev/tox#3417

Full Changelog: https://github.com/tox-dev/tox/compare/4.23.0...4.23.1

4.23.0

What's Changed

replace tool.pyproject and tool.tox.pyproject with tool.tox in config… by @graingert-coef in tox-dev/tox#3411

Add NETRC to the default_pass_env list by @chipot in tox-dev/tox#3410

New Contributors

@graingert-coef made their first contribution in tox-dev/tox#3411

@chipot made their first contribution in tox-dev/tox#3410

Full Changelog: https://github.com/tox-dev/tox/compare/4.22.0...4.23.0

4.22.0

What's Changed

Fix the fix environment definition by @gaborbernat in tox-dev/tox#3407

Expose type checking dependencies into an extra by @ssbarnea in tox-dev/tox#3404

Add dependency-groups support (PEP-735) by @gaborbernat in tox-dev/tox#3409

Full Changelog: https://github.com/tox-dev/tox/compare/4.21.2...4.22.0

Changelog

Sourced from tox's changelog.

v4.23.2 (2024-10-22)

Misc - 4.23.2
- :issue:`3415`
v4.23.1 (2024-10-21)
Improved Documentation - 4.23.1
Fix bad example in documentation for dependency groups - by :user:gaborbernat. (:issue:3240)

v4.23.0 (2024-10-16)

Features - 4.23.0
- Add ``NETRC`` to the list of environment variables always passed through. (:issue:`3410`)
Improved Documentation - 4.23.0
replace [tool.pyproject] and [tool.tox.pyproject] with [tool.tox] in config.rst (:issue:3411)

v4.22.0 (2024-10-15)

Features - 4.22.0
- Implement dependency group support as defined in :pep:`735` - see :ref:`dependency_groups` - by :user:`gaborbernat`. (:issue:`3408`)

Commits

0447036 release 4.23.2
f0799ac Support external tox.pytest usage via "test" extra (#3422)
ec88713 Fix docs link check
962bc59 release 4.23.1
5916cc9 Fix example docs (#3421)
e9cb93a [pre-commit.ci] pre-commit autoupdate (#3418)
88c1b99 Docs: adjusting EOL Python version testing remarks (#3417)
7696a8e release 4.23.0
c01a023 Add NETRC to the default_pass_env list (#3410)
971e7da replace tool.pyproject and tool.tox.pyproject with tool.tox in config… (#3411)
Additional commits viewable in compare view

Updates bump-my-version from 0.27.0 to 0.28.0

Release notes

Sourced from bump-my-version's releases.

0.28.0

Compare the full difference.

New

Added container labels and version hooks. d4cb8f2

Add Docker support and configure Dependabot for Docker updates. 0315db4

Introduce a Dockerfile for containerized environments and add a .dockerignore file to exclude unnecessary files. Also, update dependabot.yml to include daily checks for Docker image updates.

Add inputs section in GHA workflow example. 813e7f5

Other

Switch from ADD to COPY in Dockerfile. a5fc5c0

This change updates the Dockerfile to use the COPY instruction instead of ADD. COPY is preferred when only copying files because it is more explicit and simpler.

[pre-commit.ci] pre-commit autoupdate. 7c48f98

updates: - github.com/astral-sh/ruff-pre-commit: v0.6.8 → v0.6.9

Updates

Changed dependency manager to uv. cce9e1d

Changelog

Sourced from bump-my-version's changelog.

0.28.0 (2024-10-16)

Compare the full difference.

New

Added container labels and version hooks. d4cb8f2

Add Docker support and configure Dependabot for Docker updates. 0315db4

Introduce a Dockerfile for containerized environments and add a .dockerignore file to exclude unnecessary files. Also, update dependabot.yml to include daily checks for Docker image updates.

Add inputs section in GHA workflow example. 813e7f5

Other

Switch from ADD to COPY in Dockerfile. a5fc5c0

This change updates the Dockerfile to use the COPY instruction instead of ADD. COPY is preferred when only copying files because it is more explicit and simpler.

[pre-commit.ci] pre-commit autoupdate. 7c48f98

updates: - github.com/astral-sh/ruff-pre-commit: v0.6.8 → v0.6.9

Updates

Changed dependency manager to uv. cce9e1d

Commits

697c23d Version updated from 0.27.0 to 0.28.0
1ae5416 Merge pull request #244 from callowayproject/docker-image
a5fc5c0 Switch from ADD to COPY in Dockerfile
d4cb8f2 Added container labels and version hooks
0315db4 Add Docker support and configure Dependabot for Docker updates
cce9e1d Changed dependency manager to uv.
44eb22a Merge pull request #240 from callowayproject/pre-commit-ci-update-config
d04a19a Merge pull request #242 from christolis/fix/readme-file
813e7f5 Add inputs section in GHA workflow example
7c48f98 [pre-commit.ci] pre-commit autoupdate
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions