chore(deps): update non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
black (changelog)	==25.9.0 -> ==25.11.0			project.optional-dependencies	minor
boto3	==1.40.65 -> ==1.40.76			project.optional-dependencies	patch
coverage	==7.10.7 -> ==7.12.0			project.optional-dependencies	minor
python	3.13 -> 3.14			uses-with	minor

---

Release Notes

psf/black (black)

v25.11.0

Compare Source

Highlights

• Enable base 3.14 support (#​4804)
• Add support for the new Python 3.14 t-string syntax introduced by PEP 750 (#​4805)

Stable style

• Fix bug where comments between # fmt: off and # fmt: on were reformatted (#​4811)
• Comments containing fmt directives now preserve their exact formatting instead of
  being normalized (#​4811)

Preview style

• Move multiline_string_handling from --unstable to --preview (#​4760)
• Fix bug where module docstrings would be treated as normal strings if preceded by
  comments (#​4764)
• Fix bug where python 3.12 generics syntax split line happens weirdly (#​4777)
• Standardize type comments to form # type: <value> (#​4645)
• Fix fix_fmt_skip_in_one_liners preview feature to respect # fmt: skip for compound
  statements with semicolon-separated bodies (#​4800)

Configuration

• Add no_cache option to control caching behavior. (#​4803)

Packaging

• Releases now include arm64 Linux binaries (#​4773)

Output

• Write unchanged content to stdout when excluding formatting from stdin using pipes
  (#​4610)

Blackd

• Implemented BlackDClient. This simple python client allows to easily send formatting
  requests to blackd (#​4774)

Integrations

• Enable 3.14 base CI (#​4804)
• Enhance GitHub Action psf/black to support the required-version major-version-only
  "stability" format when using pyproject.toml (#​4770)
• Improve error message for vim plugin users. It now handles independently vim version
• Vim: Warn on unsupported Vim and Python versions independently (#​4772)
• Vim: Print the import paths when importing black fails (#​4675)
• Vim: Fix handling of virtualenvs that have a different Python version (#​4675)

boto/boto3 (boto3)

v1.40.76

Compare Source

=======

• api-change:autoscaling: [botocore] This release adds the new LaunchInstances API, which can launch instances synchronously in an AutoScaling group. The API also returns instances info and launch error back immediately.
• api-change:backup: [botocore] AWS Backup now supports a low-cost warm storage tier for Amazon S3 backup data.
• api-change:bedrock-runtime: [botocore] Amazon Bedrock Runtime Service Tier Support Launch
• api-change:cloudformation: [botocore] New CloudFormation DescribeEvents API with operation ID tracking and failure filtering capabilities to quickly identify root causes of deployment failures. Also, a DeploymentMode parameter for the CreateChangeSet API that enables creation of drift-aware change sets for safe drift management.
• api-change:connect: [botocore] This release added support for ring timer configuration for campaign calls.
• api-change:ec2: [botocore] AWS Site-to-Site VPN now supports VPN Concentrator, a new feature that enables customers to connect multiple low-bandwidth sites connections through a single attachment, simplifying multi-site connectivity for distributed enterprises.
• api-change:iam: [botocore] Added the AssociateDelegationRequest, GetDelegationRequest, AcceptDelegationRequest, RejectDelegatonRequest, ListDelegationRequests, UpdateDelegationRequest, SendDelegationToken and GetHumanReadableSummary APIs for the IAM temporary delegation feature.
• api-change:kafka: [botocore] Amazon MSK adds three new APIs, ListTopics, DescribeTopic, and DescribeTopicPartitions for viewing Kafka topics in your MSK clusters.
• api-change:logs: [botocore] CloudWatch Logs updates: Added capability to setup a recurring schedule for log insights queries. Logs introduced Scheduled Queries (managed through Create/Update/Get/Delete/List/History Scheduled Query APIs). For more information, see CloudWatch Logs API documentation.
• api-change:resourcegroupstaggingapi: [botocore] Add support for new ListRequiredTags API used to retrieve the required tags specified in a customer's effective tag policy.
• api-change:storagegateway: [botocore] Adds support for European Sovereign Cloud ARNs in Storage Gateway API parameters.
• api-change:wafv2: [botocore] AssociateWebACL, UpdateWebACL and PutLoggingConfiguration will now throw WAFFeatureNotIncludedInPricingPlanException when the request contains a feature that is not included in the CloudFront pricing plan of the WebACL.

v1.40.75

Compare Source

=======

• api-change:appstream: [botocore] Adding support for additional instances and extended storage
• api-change:backup: [botocore] AWS Backup now supports specifying a logically air-gapped backup vault as a primary backup target in backup plans and on-demand backup jobs.
• api-change:bedrock: [botocore] Automated Reasoning checks in Amazon Bedrock Guardrails now automatically generate Q&A tests for new Automated Reasoning policies. The GetAutomatedReasoningPolicyBuildWorkflowResultAssets API adds GENERATED_TEST_CASES asset type, allowing customers to retrieve tests generated by the build workflow.
• api-change:devicefarm: [botocore] This release adds support for interacting with devices during a remote access session using the remoteDriverEndpoint interface
• api-change:dms: [botocore] This release introduces the SAP ASE(Sybase) Data Provider for AWS Data Migration Service (DMS). In addition, DMS Schema Conversion now supports this provider, enabling customers to migrate SAP ASE(Sybase) databases to Amazon RDS for PostgreSQL or Aurora PostgreSQL seamlessly.
• api-change:ec2: [botocore] This release introduces new APIs: DescribeInstanceSqlHaStates, DescribeInstanceSqlHaHistoryStates, EnableInstanceSqlHaStandbyDetections and DisableInstanceSqlHaStandbyDetections on Amazon EC2, allowing customers to enroll and monitor SQL Server licensing fee savings for their SQL HA EC2 instances.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:glue: [botocore] Amazon Glue Releasing 2 the new API ListIntegrationResourceProperties and DeleteIntegrationResourceProperty along with minor improvement on existing API(s).
• api-change:guardduty: [botocore] Add S3 On-Demand Object Scanning
• api-change:lexv2-models: [botocore] Adds support for LLM as Primary, allowing usage of LLMs as the default NLU system.
• api-change:medialive: [botocore] Adds configurations for spatial/temporal adaptive quantization in AV1 codec, and conversion to HLG output color space in H265 codec.
• api-change:mediapackagev2: [botocore] Add support for SCTE messages in Segment file output
• api-change:mwaa-serverless: [botocore] Amazon MWAA now offers serverless deployment, eliminating operational overhead while optimizing costs. The service supports YAML and Python-based workflows, with 80+ AWS Operators. It provides isolated execution, IAM permissions, and automatic scaling with pay-per-use pricing.
• api-change:opensearch: [botocore] This release adds index operation APIs to support Automatic Semantic Enrichment feature
• api-change:pcs: [botocore] Added support for the managed Slurm REST API endpoint
• api-change:route53resolver: [botocore] Adding DICTIONARY_DGA to dns-threat-protection as a new enum type. Customers can now set rules for dictionary dga protection

v1.40.74

Compare Source

=======

• api-change:datazone: [botocore] Adds support for granting read and write access to Amazon S3 general purpose buckets using CreateSubscriptionRequest and AcceptSubscriptionRequest APIs. Also adds search filters for SSOUser and SSOGroup to ListSubscriptions APIs and deprecates "sortBy" parameter for ListSubscriptions APIs.
• api-change:ec2: [botocore] This release adds AvailabilityZoneId support for CreateInstanceConnectEndpoint, DescribeInstanceConnectEndpoints, and DeleteInstanceConnectEndpoint APIs.
• api-change:imagebuilder: [botocore] EC2 Image Builder now supports invoking Lambda functions and executing Step Functions state machine through image workflows.
• api-change:medialive: [botocore] Removed all the value constraint (min/max) for the shape definitions (e.g. integerMin0Max3600) on the C2j models to get rid of the need to request an exemption from the SDK team whenever a shape definition (e.g. integerMin0Max3600) is changed.
• enhancement:AWSCRT: [botocore] Update awscrt version to 0.28.4

v1.40.73

Compare Source

=======

• api-change:cloudformation: [botocore] CloudFormation now supports GetHookResult API with annotations to retrieve structured compliance check results and remediation guidance for each evaluated resource, replacing the previous single-message limitation with detailed validation outcomes.
• api-change:controlcatalog: [botocore] Added support for related control mappings with new RELATED_CONTROL mapping type in ListControlMappings API.
• api-change:ec2: [botocore] Added support for new accelerator types ("media") and accelerator names ("L4", "L40s", "GAUDI_HL_205", "INFERENTIA2", "TRAINIUM", "TRAINIUM2", "U30") in Attributes Based Instance Type Selection for launched instance types.
• api-change:ecr: [botocore] Add Amazon ECR FIPS PrivateLink endpoint support
• api-change:elbv2: [botocore] QUIC and TCP_QUIC protocol support for Network Load Balancer (NLB). This capability enables customers to forward QUIC traffic to their targets with ultra-low latency while maintaining session stickiness using QUIC Connection IDs.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:iotwireless: [botocore] Integration of Device Location with Amazon Sidewalk network for Amazon Sidewalk enabled devices
• api-change:mediaconvert: [botocore] Lowers minimum duration for black video generator. Adds support for embedding and signing C2PA content credentials in DASH and CMAF HLS outputs.
• api-change:rds: [botocore] Updated endpoint and service metadata
• api-change:sagemaker: [botocore] Added support for minor version upgrades and AWS Identity Center integration for SageMaker Hadron Partner Apps, enabling automated version management and IdC group-based access control.
• api-change:workspaces-web: [botocore] Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings.

v1.40.72

Compare Source

=======

• api-change:amp: [botocore] Add VPC source configuration support enabling Amazon Managed Service for Prometheus Collector to collect metrics from MSK clusters.
• api-change:connect: [botocore] Updated Authentication Profile APIs to add support for automatic logout on user inactivity
• api-change:dms: [botocore] Added support of SQL statements creation, metadata model discovery and selection rules transformation.
• api-change:ec2: [botocore] Adds complete AMI ancestry tracing from immediate parent through each preceding generation back to the root AMI
• api-change:elbv2: [botocore] This release expands ALB Authentication to support JWT verification and adds support for a new JWT validation action in listener rule.
• api-change:redshift: [botocore] Added GetIdentityCenterAuthToken API to retrieve encrypted authentication tokens for Identity Center integrated applications. This API enables programmatic access to secure Identity Center tokens with proper error handling and parameter validation across supported SDK languages.
• api-change:s3tables: [botocore] Adds support for request metrics metrics APIs for S3 Tables
• api-change:sagemaker: [botocore] Add support for trn2.3xlarge instance type for SageMaker Hyperpod

v1.40.71

Compare Source

=======

• api-change:batch: [botocore] Documentation-only update: update API and doc descriptions per EKS ImageType default value switch from AL2 to AL2023.
• api-change:bedrock-data-automation: [botocore] Added support for Language Expansion feature for BDA Audio modality.
• api-change:ec2: [botocore] AWS Site-to-Site VPN now supports VPN connections with up to 5 Gbps bandwidth per tunnel, a 4x improvement from existing limit of 1.25 Gbps.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:medical-imaging: [botocore] Added new fields in existing APIs.
• api-change:rtbfabric: [botocore] Added LogSettings and LinkAttribute fields to external links
• api-change:security-ir: [botocore] Added support for configuring communication preferences as well as clearly displaying case comment author identities.

v1.40.70

Compare Source

=======

• api-change:acm-pca: [botocore] Private Certificate Authority service now supports ML-DSA key algorithms.
• api-change:appstream: [botocore] AWS Appstream support for IPv6
• api-change:backup: [botocore] AWS Backup supports backups of Amazon EKS clusters, including Kubernetes cluster state and persistent storage attached to the EKS cluster via a persistent volume claim (EBS volumes, EFS file systems, and S3 buckets).
• api-change:braket: [botocore] Adds ExperimentalCapabilities field to CreateQuantumTask request and GetQuantumTask response objects. Enables use of experimental software capabilities when creating quantum tasks.
• api-change:datazone: [botocore] Remove trackingServerName from DataZone Connection MLflowProperties
• api-change:dsql: [botocore] Cluster endpoint added to CreateCluster and GetCluster API responses
• api-change:ec2: [botocore] Amazon EC2 Fleet customers can now filter instance types based on encryption-in-transit support using Attribute-Based Instance Type Selection (ABIS), eliminating the manual effort of identifying and selecting compatible instance types for security-sensitive workloads.
• api-change:guardduty: [botocore] Include tags filed in CreatePublishingDestinationRequest and DescribePublishingDestinationResponse.
• api-change:iam: [botocore] Added CreateDelegationRequest API, which is not available for general use at this time.
• api-change:invoicing: [botocore] Added new invoicing get-invoice-pdf API Operation
• api-change:kafka: [botocore] Amazon MSK now supports intelligent rebalancing for MSK Express brokers.
• api-change:sts: [botocore] Added GetDelegatedAccessToken API, which is not available for general use at this time.
• api-change:verifiedpermissions: [botocore] Amazon Verified Permissions / Features : Adds support for entity Cedar tags.
• api-change:wafv2: [botocore] AWS WAF now supports CLOUDWATCH_TELEMETRY_RULE_MANAGED as a LogScope option, enabling automated logging configuration through Amazon CloudWatch Logs for telemetry data collection and analysis.

v1.40.69

Compare Source

=======

• api-change:controltower: [botocore] Added Parent Identifier support to ListEnabledControls and GetEnabledControl API. Implemented RemediationType support for Landing Zone operations: CreateLandingZone, UpdateLandingZone and GetLandingZone APIs
• api-change:ec2: [botocore] Adds PrivateDnsPreference and PrivateDnsSpecifiedDomains to control private DNS resolution for resource and service network VPC endpoints and IpamScopeExternalAuthorityConfiguration to integrate Amazon VPC IPAM with a third-party IPAM service
• api-change:kms: [botocore] Added support for new ECC_NIST_EDWARDS25519 AWS KMS key spec
• api-change:opensearch: [botocore] This release introduces the Default Application feature, allowing users to set, change, or unset a preferred OpenSearch UI application on a per-region basis for a streamlined and consistent user experience.
• api-change:vpc-lattice: [botocore] Amazon VPC Lattice now supports custom domain name for resource configurations

v1.40.68

Compare Source

=======

• api-change:accessanalyzer: [botocore] New field totalActiveErrors added to getFindingsStatistics response.
• api-change:backup: [botocore] AWS Backup now supports customer-managed keys (CMK) for logically air-gapped vaults, enabling customers to maintain full control over their encryption key lifecycle. This feature helps organizations meet specific internal governance requirements or external regulatory compliance standards.
• api-change:connect: [botocore] Added support for Conditional Questions in Evaluation Forms. Introduced Auto Evaluation capability for Evaluation Forms and Contact Evaluations. Added new API operations: SearchEvaluationForms and SearchContactEvaluations.
• api-change:ec2: [botocore] Add Amazon EC2 R8a instance types
• api-change:gamelift: [botocore] Amazon GameLift Servers now supports game builds that use the Windows 2022 operating system.
• api-change:identitystore: [botocore] IdentityStore API: added new KMSExceptionReason fields to the Exception object; added multiple new fields to the User APIs - UserStatus, Birthdate, Website and Photos; added multiple new metadata fields for User, Groups and Membership APIs - CreatedAt, CreatedBy, UpdatedAt and UpdatedBy.
• api-change:quicksight: [botocore] Support for New Data Prep Experience
• api-change:s3tables: [botocore] Adds support for tagging APIs for S3 Tables
• api-change:s3vectors: [botocore] Amazon S3 Vectors provides cost-effective, elastic, and durable vector storage for queries based on semantic meaning and similarity.
• api-change:sagemaker: [botocore] Added NodeProvisioningMode parameter to UpdateCluster API to determine how instance provisioning is handled during cluster operations; in Continuous mode. Added VpcId field in UpdateDomain request for SageMaker Unified Studio domains with no VPC to add a customer VPC.
• api-change:ssm: [botocore] Provides NoLongerSupportedException error message

v1.40.67

Compare Source

=======

• api-change:cloudfront: [botocore] This release adds new and updated API operations. You can now use the IpAddressType field to specify either ipv4 or dualstack for your Anycast static IP list. You can also enable cross-account resource sharing to share your VPC origins with other AWS accounts
• api-change:datazone: [botocore] Added support for Project Resource Tags
• api-change:ec2: [botocore] This release adds AvailabilityZoneId support for DescribeFastSnapshotRestores, DisableFastSnapshotRestores, and EnableFastSnapshotRestores APIs.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:fsx: [botocore] Amazon FSx now enables secure management of Active Directory credentials through AWS Secrets Manager integration. Customers can use Secret ARNs instead of direct credentials when joining resources to Active Directory domains.
• api-change:groundstation: [botocore] Introduce CreateDataflowEndpointGroupV2 action
• api-change:s3: [botocore] Launch IPv6 dual-stack support for S3 Express
• api-change:sagemaker: [botocore] Add new fields in SageMaker Hyperpod DescribeCluster API response: TargetStateCount, SoftwareUpdateStatus and ActiveSoftwareDeploymentConfig to provide AMI update progress visibility .

v1.40.66

Compare Source

=======

• api-change:pinpoint-sms-voice-v2: [botocore] This release adds support for the CarrierLookup API, which returns information about a destination phone number including if the number is valid, the carrier, and more.

coveragepy/coveragepy (coverage)

v7.12.0

Compare Source

• The HTML report now shows separate coverage totals for statements and
  branches, as well as the usual combined coverage percentage. Thanks to Ryuta
  Otsuka for the discussion <issue 2081_>_ and the implementation <pull 2085_>_.

• The JSON report now includes separate coverage totals for statements and
  branches, thanks to Ryuta Otsuka <pull 2090_>_.

• Fix: except* clauses were not handled properly under the "sysmon"
  measurement core, causing KeyError exceptions as described in issue 2086_.
  This is now fixed.

• Fix: we now defend against aggressive mocking of open() that could cause
  errors inside coverage.py. An example of a failure is in issue 2083_.

• Fix: in unusual cases where a test suite intentionally exhausts the system's
  file descriptors to test handling errors in open(), coverage.py would
  fail when trying to open source files, as described in issue 2091_. This
  is now fixed.

• A small tweak to the HTML report: file paths now use thin spaces around
  slashes to make them easier to read.

.. _issue 2081: #​2081
.. _issue 2083: #​2083
.. _pull 2085: #​2085
.. _issue 2086: #​2086
.. _pull 2090: #​2090
.. _issue 2091: #​2091

.. _changes_7-11-3:

v7.11.3

Compare Source

• Fix: the 7.11.1 changes meant that conflicts between a requested measurement
  core and other settings would raise an error. This was a breaking change from
  previous behavior, as reported in issue 2076_ and issue 2078_.

  The previous behavior has been restored: when the requested core conflicts
  with other settings, another core is used instead, and a warning is issued.

• For contributors: the repo has moved from Ned's nedbat GitHub account_ to
  the coveragepy GitHub organization_. The default branch has changed from
  master to main.

.. _issue 2076: #​2076
.. _issue 2078: #​2078
.. _nedbat GitHub account: https://github.com/nedbat
.. _coveragepy GitHub organization: https://github.com/coveragepy

.. _changes_7-11-2:

v7.11.2

Compare Source

• Fix: using the "sysmon" measurement core in 7.11.1, if Python code was
  claimed to come from a non-Python file, a NotPython exception could be
  raised. This could happen for example with Jinja templates compiled to
  Python, as reported in issue 2077_. This is now fixed.

• Doc: corrected the first entry in the 7.11.1 changelog.

.. _issue 2077: #​2077

.. _changes_7-11-1:

v7.11.1

Compare Source

• Fix: some chanages to details of how the measurement core is chosen, and how
  conflicting settings are handled. The "sysmon" core cannot be used with some
  conurrency settings, with dynamic context, and in Python 3.12/3.13, with
  branch measurement.

  • If the core is not specified and defaults to "sysmon" (Python 3.14+), but
    other settings conflict with sysmon, then the "ctrace" core will be used
    instead with no warning. For concurrency conflicts, this used to produce an
    error, as described in issue 2064_.

  • If the "sysmon" core is explicitly requested in your configuration, but
    other settings conflict, an error is now raised. This used to produce a
    warning.

• Fix: some multi-line case clauses or for loops (and probably other
  constructs) could cause incorrect claims of missing branches with the
  sys.monitoring core, as described in issue 2070_. This is now fixed.

• Fix: when running in pytest under coverage, a breakpoint() would stop in
  the wrong frame, one level down from where it should, as described in issue 1420_. This was due to a coverage change in v6.4.1 that seemed to give a
  slight performance improvement, but I couldn't reproduce the performance
  gain, so it's been reverted, fixing the debugger problem.

• A new debug option --debug=core shows which core is in use and why.

• Split sqlite debugging information out of the sys :ref:coverage debug <cmd_debug> and :ref:cmd_run_debug options since it's bulky and not
  very useful.

• Updated the :ref:howitworks page to better describe the three different
  measurement cores.

.. _issue 1420: #​1420
.. _issue 2064: #​2064
.. _issue 2070: #​2070

.. _changes_7-11-0:

v7.11.0

Compare Source

• Dropped support for Python 3.9, declared support for Python 3.15 alpha.

.. _changes_7-10-7:

actions/python-versions (python)

v3.14.0: 3.14.0

Compare Source

Python 3.14.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.