chore(deps): bump the poetry group across 1 directory with 5 updates

[dependabot[bot]]

Bumps the poetry group with 5 updates in the / directory:

Package	From	To
asyncpg	0.29.0	0.30.0
pydantic-settings	2.5.2	2.6.0
ruff	0.6.9	0.7.0
sqlalchemy	2.0.35	2.0.36
uvicorn	0.31.1	0.32.0

Updates asyncpg from 0.29.0 to 0.30.0

Release notes

Sourced from asyncpg's releases.

v0.30.0

Support Python 3.13 and PostgreSQL 17.

Improvements

• Implement GSSAPI authentication (by @​eltoder in 1d4e5680 for #1122)

• Implement SSPI authentication (by @​eltoder in 1aab2094 for #1128)

• Add initial typings (by @​bryanforbes in d42432bf for #1127)

• Allow building with Cython 3 (by @​musicinmybrain in 258d8a95 for #1101)

• docs: fix connection pool close call (#1125) (by @​paulovitorweb in e8488149 for #1125)

• Add support for the sslnegotiation parameter (by @​elprans in afdb05c7 for #1187)

• Test and build on Python 3.13 (by @​elprans in 3aa98944 for #1188)

• Support PostgreSQL 17 (by @​elprans in cee97e1a for #1189) (by @​MeggyCal in aa2d0e69 for #1185)

• Add fetchmany to execute many and return rows (by @​rossmacarthur in 73f2209d for #1175)

• Add connect kwarg to Pool to better support GCP's CloudSQL (by @​d1manson in 3ee19baa for #1170)

• Allow customizing connection state reset (#1191) (by @​elprans in f6ec755c for #1191)

Fixes

• s/quote/quote_plus/ in the note about DSN part quoting (by @​elprans in 1194a8a6 for #1151)

• Use asyncio.run() instead of run_until_complete() (by @​eltoder in 9fcddfc1 for #1140)

• Require async_timeout for python < 3.11 (#1177)

... (truncated)

Commits

• bae282e asyncpg v0.30.0
• 965fb08 Fix release workflow
• f6ec755 Allow customizing connection state reset (#1191)
• 3ef884e Upgrade Sphinx
• 3ee19ba Add connect_fn kwarg to Pool to better support GCP's CloudSQL (#1170)
• 73f2209 Add fetchmany to execute many and return rows (#1175)
• b732b4f tests: Attempt to inhibit spurious ConnectionResetError on Windows (#1190)
• cee97e1 Test on PostgreSQL 17 (#1189)
• 3aa9894 Test and build on Python 3.13 (#1188)
• afdb05c Add support for the sslnegotiation parameter (#1187)
• Additional commits viewable in compare view

Updates pydantic-settings from 2.5.2 to 2.6.0

Release notes

Sourced from pydantic-settings's releases.

v2.6.0

What's Changed

• Fix nested model field with alias parsing by @​hramezani in pydantic/pydantic-settings#400
• Fix PathType typing in case of sequence by @​just-maiyak in pydantic/pydantic-settings#402
• Add cli_ignore_unknown_args config option. by @​kschwab in pydantic/pydantic-settings#405
• Fix AzureKeyVaultSettingsSource problem in case of field with underscore by @​hramezani in pydantic/pydantic-settings#415
• Add cli_flag_prefix_char config option. by @​kschwab in pydantic/pydantic-settings#418
• Fix nested model AliasChoices in validation alias by @​hramezani in pydantic/pydantic-settings#411
• Add CLI App Support by @​kschwab in pydantic/pydantic-settings#389
• Fix context not passed to field validators bug by @​hramezani in pydantic/pydantic-settings#417
• Fix a regression in dotenv optional nested field by @​hramezani in pydantic/pydantic-settings#423
• Put tests for non-default sources in separate files by @​makukha in pydantic/pydantic-settings#429
• Update nested model partial update docs example. by @​kschwab in pydantic/pydantic-settings#433
• Add support for suppressing fields from CLI help. by @​kschwab in pydantic/pydantic-settings#436
• Fix bug in dotenv source when there is env with and without prefix by @​hramezani in pydantic/pydantic-settings#440
• Prepare release 2.6.0 by @​hramezani in pydantic/pydantic-settings#444

New Contributors

• @​just-maiyak made their first contribution in pydantic/pydantic-settings#402

Full Changelog: https://github.com/pydantic/pydantic-settings/compare/v2.5.2...v2.6.0

Commits

• eeea989 Prepare release 2.6.0 (#444)
• a72fa73 Fix bug in dotenv source when there is env with and without prefix (#440)
• d2e498a Add support for suppressing fields from CLI help. (#436)
• 0d605d0 Update nested model partial update docs example. (#433)
• 8f7653c Put tests for non-default sources in separate files (#429)
• f3a25f2 Fix a regression in dotenv optional nested field (#423)
• 76ba2c6 Fix context not passed to field validators bug (#417)
• 84cab2b Add CLI App Support (#389)
• fdd666b Fix nested model AliasChoices in validation alias (#411)
• 9b73e92 Add cli_flag_prefix_char config option. (#418)
• Additional commits viewable in compare view

Updates ruff from 0.6.9 to 0.7.0

Release notes

Sourced from ruff's releases.

0.7.0

Release Notes

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

• The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.
• The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.
• The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

• Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

• [refurb] implement hardcoded-string-charset (FURB156) (#13530)
• [refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

• [pylint] Mark PLE1141 fix as unsafe (#13629)
• [flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)
• [flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)
• [flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)
• [pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)
• [flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

• Add explanation of fixable in --statistics command (#13774)

Bug fixes

• [pyflakes] Allow ipytest cell magic (F401) (#13745)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)
• [flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)
• [flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Contributors

• @​AlexWaygood

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

• The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.
• The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.
• The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

• Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

• [refurb] implement hardcoded-string-charset (FURB156) (#13530)
• [refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

• [pylint] Mark PLE1141 fix as unsafe (#13629)
• [flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)
• [flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)
• [flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)
• [pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)
• [flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

• Add explanation of fixable in --statistics command (#13774)

Bug fixes

• [pyflakes] Allow ipytest cell magic (F401) (#13745)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)
• [flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)
• [flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Commits

• 5e6de4e Changelog for Ruff v0.7 (#13794)
• 70e5c4a Recode TRY302 to TRY203 (#13502)
• 9218d6b Remove allow-unused-imports setting from the common lint options (#13677)
• 1b79ae9 [ruff-0.7] Stabilise the expansion of open-file-with-context-handler to wor...
• 2b87587 [flake8-pytest-style] Fix defaults when lint.flake8-pytest-style config s...
• d1e15f6 Remove tab-size setting (#12835)
• 89a8215 Remove error messages for removed CLI aliases (#12833)
• 202c6a6 Remove output-format=text setting (#12836)
• 5c3c0c4 [red-knot] Inference for comparison of union types (#13781)
• 6b7a738 Add explanation of fixable in --statistics command (#13774)
• Additional commits viewable in compare view

Updates sqlalchemy from 2.0.35 to 2.0.36

Release notes

Sourced from sqlalchemy's releases.

2.0.36

Released: October 15, 2024

orm

• [orm] [usecase] Added new parameter _orm.mapped_column.hash to ORM constructs such as _orm.mapped_column(), _orm.relationship(), etc., which is interpreted for ORM Native Dataclasses in the same way as other dataclass-specific field parameters.

  References: #11923

• [orm] [bug] Fixed bug in ORM bulk update/delete where using RETURNING with bulk update/delete in combination with populate_existing would fail to accommodate the populate_existing option.

  References: #11912

• [orm] [bug] Continuing from #11912, columns marked with mapped_column.onupdate, mapped_column.server_onupdate, or Computed are now refreshed in ORM instances when running an ORM enabled UPDATE with WHERE criteria, even if the statement does not use RETURNING or populate_existing.

  References: #11917

• [orm] [bug] Fixed regression caused by fixes to joined eager loading in #11449 released in 2.0.31, where a particular joinedload case could not be asserted correctly. We now have an example of that case so the assertion has been repaired to allow for it.

  References: #11965

• [orm] [bug] Improved the error message emitted when trying to map as dataclass a class while also manually providing the __table__ attribute. This usage is currently not supported.

  References: #11973

• [orm] [bug] Refined the check which the ORM lazy loader uses to detect "this would be loading by primary key and the primary key is NULL, skip loading" to take into account the current setting for the orm.Mapper.allow_partial_pks parameter. If this parameter is False, then a composite PK value that has partial NULL elements should also be skipped. This can apply to some composite overlapping foreign key configurations.

... (truncated)

Commits

• See full diff in compare view

Updates uvicorn from 0.31.1 to 0.32.0

Release notes

Sourced from uvicorn's releases.

Version 0.32.0

Added

• Officially support Python 3.13 (#2482)
• Warn when max_request_limit is exceeded (#2430)

---

Full Changelog: https://github.com/encode/uvicorn/compare/0.31.1...0.32.0

Changelog

Sourced from uvicorn's changelog.

0.32.0 (2024-10-15)

Added

• Officially support Python 3.13 (#2482)
• Warn when max_request_limit is exceeded (#2430)

Commits

• fe39100 Version 0.32.0 (#2485)
• 967a2dc Support Python 3.13 (#2482)
• 079f07a feat(server): log warning when max request limit is exceeded (#2430)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions

[dependabot[bot]]

Looks like these dependencies are updatable in another way, so this is no longer needed.