chore(deps): bump the all group across 1 directory with 6 updates

[dependabot]

Bumps the all group with 6 updates in the / directory:

Package	From	To
packaging	25.0	26.0
web3	7.14.0	7.14.1
ruff	0.14.13	0.15.6
deepdiff	8.6.1	8.6.2
filelock	3.20.3	3.25.2
openai	2.15.0	2.29.0

Updates packaging from 25.0 to 26.0

Release notes

Sourced from packaging's releases.

26.0

Read about the performance improvements here: https://iscinumpy.dev/post/packaging-faster.

What's Changed

Features:

• PEP 751: support pylock by @​sbidoul in pypa/packaging#900
• PEP 794: import name metadata by @​brettcannon in pypa/packaging#948
• Support writing metadata by @​henryiii in pypa/packaging#846
• Support __replace__ for Version by @​henryiii in pypa/packaging#1003
• Support positional pattern matching for Version and Specifier by @​henryiii in pypa/packaging#1004

Behavior adaptations:

• PEP 440 handling of prereleases for Specifier.contains, SpecifierSet.contains, and SpecifierSet.filter by @​notatallshaw in pypa/packaging#897
• Handle PEP 440 edge case in SpecifierSet.filter by @​notatallshaw in pypa/packaging#942
• Adjust arbitrary equality intersection preservation in SpecifierSet by @​notatallshaw in pypa/packaging#951
• Return False instead of raising for .contains with invalid version by @​Liam-DeVoe in pypa/packaging#932
• Support arbitrary equality on arbitrary strings for Specifier and SpecifierSet's filter and contains method. by @​notatallshaw in pypa/packaging#954
• Only try to parse as Version on certain marker keys, return False on unequal ordered comparsions by @​JP-Ellis in pypa/packaging#939

Fixes:

• Update _hash when unpickling Tag() by @​dholth in pypa/packaging#860
• Correct comment and simplify implicit prerelease handling in Specifier.prereleases by @​notatallshaw in pypa/packaging#896
• Use explicit _GLibCVersion NamedTuple in _manylinux by @​cthoyt in pypa/packaging#868
• Detect invalid license expressions containing () by @​bwoodsend in pypa/packaging#879
• Correct regex for metadata 'name' format by @​di in pypa/packaging#925
• Improve the message around expecting a semicolon by @​pradyunsg in pypa/packaging#833
• Support nested parens in license expressions by @​Liam-DeVoe in pypa/packaging#931
• Add space before at symbol in Requirements string by @​henryiii in pypa/packaging#953
• A root logger use found by ruff LOG, use packaging logger instead by @​henryiii in pypa/packaging#965
• Better support for subclassing Marker and Requirement by @​henryiii in pypa/packaging#1022
• Normalize all extras, not just if it comes first by @​henryiii in pypa/packaging#1024
• Don't produce a broken repr if Marker fails to construct by @​henryiii in pypa/packaging#1033

Performance:

• Avoid recompiling regexes in the tokenizer for a 3x speedup by @​hauntsaninja in pypa/packaging#1019
• Improve performance in _manylinux.py by @​cthoyt in pypa/packaging#869
• Minor cleanups to Version by @​bearomorphism in pypa/packaging#913
• Skip redundant creation of Versions in specifier comparison by @​notatallshaw in pypa/packaging#986
• Cache Specifier's Version by @​notatallshaw in pypa/packaging#985
• Make Version a little faster by @​henryiii in pypa/packaging#987
• Minor Version regex cleanup by @​henryiii in pypa/packaging#990
• Faster regex on Python 3.11.5+ by @​henryiii in pypa/packaging#988 and pypa/packaging#1055
• Lazily calculate _key in Version by @​notatallshaw in pypa/packaging#989 and regression for packaging_legacy fixed by @​henryiii in pypa/packaging#1048
• Faster canonicalize_version by @​henryiii in pypa/packaging#993
• Use fullmatch in a couple more places by @​henryiii in pypa/packaging#992

... (truncated)

Changelog

Sourced from packaging's changelog.

26.0 - 2026-01-20

Features:

PEP 751: support pylock (:pull:900)
PEP 794: import name metadata (:pull:948)
Support for writing metadata to a file (:pull:846)
Support __replace__ on Version (:pull:1003)
Support positional pattern matching for Version and SpecifierSet (:pull:1004)

Behavior adaptations:

PEP 440 handling of prereleases for Specifier.contains, SpecifierSet.contains, and SpecifierSet.filter (:pull:897)
Handle PEP 440 edge case in SpecifierSet.filter (:pull:942)
Adjust arbitrary equality intersection preservation in SpecifierSet (:pull:951)
Return False instead of raising for .contains with invalid version (:pull:932)
Support arbitrary equality on arbitrary strings for Specifier and SpecifierSet's filter and contains method. (:pull:954)
Only try to parse as Version on certain marker keys, return False on unequal ordered comparisons (:pull:939)

Fixes:

Update _hash when unpickling Tag() (:pull:860)
Correct comment and simplify implicit prerelease handling in Specifier.prereleases (:pull:896)
Use explicit _GLibCVersion NamedTuple in _manylinux (:pull:868)
Detect invalid license expressions containing () (:pull:879)
Correct regex for metadata 'name' format (:pull:925)
Improve the message around expecting a semicolon (:pull:833)
Support nested parens in license expressions (:pull:931)
Add space before at symbol in Requirements string (:pull:953)
A root logger use found, use a packaging logger instead (:pull:965)
Better support for subclassing Marker and Requirement (:pull:1022)
Normalize all extras, not just if it comes first (:pull:1024)
Don't produce a broken repr if Marker fails to construct (:pull:1033)

Performance:

Avoid recompiling regexes in the tokenizer for a 3x speedup (:pull:1019)
Improve performance in _manylinux.py (:pull:869)
Minor cleanups to Version (:pull:913)
Skip redundant creation of Version's in specifier comparison (:pull:986)
Cache the Specifier's Version (:pull:985)
Make Version a little faster (:pull:987)
Minor Version regex cleanup (:pull:990)
Faster regex on Python 3.11.5+ for Version (:pull:988, :pull:1055)
Lazily calculate _key in Version (:pull:989, :pull:1048)
Faster canonicalize_version (:pull:993)
Use re.fullmatch in a couple more places (:pull:992, :pull:1029)
Use map instead of generator (:pull:996)
Deprecate ._version (_Version, a NamedTuple) (:pull:995, :pull:1062)

</tr></table>

... (truncated)

Commits

• 3b77a26 Bump for release
• 31371cc docs: prepare for 26.0 final (#1063)
• 9627a88 perf: dual replace (#1064)
• d5398b8 fix: restore ._version as a compat shim (#1062)
• 3a7b600 Bump for development
• d4eefdc Bump for release
• 4618912 docs: prepare for 26.0rc3 (#1060)
• 0cf1b41 ci: test on first public release of CPythons (#1056)
• 716beb1 perf: 10% faster stripping zeros (#1058)
• 350a230 fix: support CPython 3.11.0-3.11.4 and older PyPy3.11 (#1055)
• Additional commits viewable in compare view

Updates web3 from 7.14.0 to 7.14.1

Changelog

Sourced from web3's changelog.

web3.py v7.14.1 (2026-02-03)

Bugfixes

- Wrap timeout in ClientTimeout for AsyncBeacon post request (`[#3784](https://github.com/ethereum/web3.py/issues/3784) <https://github.com/ethereum/web3.py/issues/3784>`__)
- Fix ``HTTPProvider`` to share an explicitly provided ``session`` across all threads, rather than only the creating thread. (`[#3800](https://github.com/ethereum/web3.py/issues/3800) <https://github.com/ethereum/web3.py/issues/3800>`__)
- Fix TypedDict field names to use camelCase (``validatorIndex``, ``yParity``) matching JSON-RPC conventions and formatter outputs. (`[#3801](https://github.com/ethereum/web3.py/issues/3801) <https://github.com/ethereum/web3.py/issues/3801>`__)
- Exclude type checking in Sphinx module and submodules (`[#3803](https://github.com/ethereum/web3.py/issues/3803) <https://github.com/ethereum/web3.py/issues/3803>`__)
Improved Documentation

• Added documentation for formatters explaining how they work, what the default formatters do, and how to customize them. ([#2994](https://github.com/ethereum/web3.py/issues/2994) <https://github.com/ethereum/web3.py/issues/2994>__)

Internal Changes - for web3.py Contributors

- Upgrade geth version in CI (`[#3787](https://github.com/ethereum/web3.py/issues/3787) <https://github.com/ethereum/web3.py/issues/3787>`__)

Commits

• ea5e072 Bump version: 7.14.0 → 7.14.1
• 8396964 Compile release notes for v7.14.1
• 1864c89 minor nit for release notes
• 555aec6 backport commits from main to v7 (#3809)
• See full diff in compare view

Updates ruff from 0.14.13 to 0.15.6

Release notes

Sourced from ruff's releases.

0.15.6

Release Notes

Released on 2026-03-12.

Preview features

• Add support for lazy import parsing (#23755)
• Add support for star-unpacking of comprehensions (PEP 798) (#23788)
• Reject semantic syntax errors for lazy imports (#23757)
• Drop a few rules from the preview default set (#23879)
• [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
• [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
• [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
• [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
• [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
• [isort] Retain lazy keyword when sorting imports (#23762)
• [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
• [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
• [ruff] Add os-path-commonprefix (RUF071) (#23814)
• [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
• [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
• [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

• Fix --add-noqa creating unwanted leading whitespace (#23773)
• Fix --add-noqa breaking shebangs (#23577)
• [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
• [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
• [formatter] Preserve type-expression parentheses in the formatter (#23867)
• [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
• [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
• [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
• [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
• [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

• [flake8-bandit] Flag S501 with requests.request (#23873)
• [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
• [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

• Update docs for Markdown code block formatting (#23871)
• [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.6

Released on 2026-03-12.

Preview features

• Add support for lazy import parsing (#23755)
• Add support for star-unpacking of comprehensions (PEP 798) (#23788)
• Reject semantic syntax errors for lazy imports (#23757)
• Drop a few rules from the preview default set (#23879)
• [airflow] Flag Variable.get() calls outside of task execution context (AIR003) (#23584)
• [airflow] Flag runtime-varying values in DAG/task constructor arguments (AIR304) (#23631)
• [flake8-bugbear] Implement delattr-with-constant (B043) (#23737)
• [flake8-tidy-imports] Add TID254 to enforce lazy imports (#23777)
• [flake8-tidy-imports] Allow users to ban lazy imports with TID254 (#23847)
• [isort] Retain lazy keyword when sorting imports (#23762)
• [pyupgrade] Add from __future__ import annotations automatically (UP006) (#23260)
• [refurb] Support newline parameter in FURB101 for Python 3.13+ (#23754)
• [ruff] Add os-path-commonprefix (RUF071) (#23814)
• [ruff] Add unsafe fix for os-path-commonprefix (RUF071) (#23852)
• [ruff] Limit RUF036 to typing contexts; make it unsafe for non-typing-only (#23765)
• [ruff] Use starred unpacking for RUF017 in Python 3.15+ (#23789)

Bug fixes

• Fix --add-noqa creating unwanted leading whitespace (#23773)
• Fix --add-noqa breaking shebangs (#23577)
• [formatter] Fix lambda body formatting for multiline calls and subscripts (#23866)
• [formatter] Preserve required annotation parentheses in annotated assignments (#23865)
• [formatter] Preserve type-expression parentheses in the formatter (#23867)
• [flake8-annotations] Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23912)
• [pep8-naming] Check naming conventions in match pattern bindings (N806, N815, N816) (#23899)
• [perflint] Fix comment duplication in fixes (PERF401, PERF403) (#23729)
• [pyupgrade] Properly trigger super change in nested class (UP008) (#22677)
• [ruff] Avoid syntax errors in RUF036 fixes (#23764)

Rule changes

• [flake8-bandit] Flag S501 with requests.request (#23873)
• [flake8-executable] Fix WSL detection in non-Docker containers (#22879)
• [flake8-print] Ignore pprint calls with stream= (#23787)

Documentation

• Update docs for Markdown code block formatting (#23871)
• [flake8-bugbear] Fix misleading description for B904 (#23731)

Contributors

• @​zsol

... (truncated)

Commits

• e4c7f35 Bump 0.15.6 (#23919)
• edfe6c1 [ty] Narrow type context during collection literal inference (#23844)
• dd16d68 Exclude broken symlink in ecosystem check (#23921)
• 3f94c6a Fix stack overflow in ANN401 on quoted annotations with escape sequences (#23...
• 91fc7bd [ty] Fix false-positive diagnostics for PEP-604 union annotations on attribut...
• 04229cf [ty] Initial test suite for PEP-728 TypedDict features (#23832)
• 728b9d6 [pep8-naming] Check naming conventions in match pattern bindings (N806,...
• 88d1eec [ty] Ensure a type[] type T is always considered assignable to a union th...
• 37cdd61 Fix lambda body formatting for multiline calls and subscripts (#23866)
• a25a4df [ty] Disambiguate duplicate-looking overloaded callables in union display (#2...
• Additional commits viewable in compare view

Updates deepdiff from 8.6.1 to 8.6.2

Release notes

Sourced from deepdiff's releases.

8.6.2 - Fix (CVE-2025-58367)

Commits

• 0d07ec2 Merge commit from fork
• 791f5aa updating CVE number
• a6aafea updating docs
• a0950ab Bump version: 8.6.1 → 8.6.2
• 887128a Fix (CVE-2025-58367)
• See full diff in compare view

Updates filelock from 3.20.3 to 3.25.2

Release notes

Sourced from filelock's releases.

3.25.2

What's Changed

• 🐛 fix(unix): suppress EIO on close in Docker bind mounts by @​gaborbernat in tox-dev/filelock#513

Full Changelog: tox-dev/filelock@3.25.1...3.25.2

3.25.1

What's Changed

• 📝 docs(logo): add branded project logo by @​gaborbernat in tox-dev/filelock#507
• 🐛 fix(win): restore best-effort lock file cleanup on release by @​gaborbernat in tox-dev/filelock#511

Full Changelog: tox-dev/filelock@3.25.0...3.25.1

3.25.0

What's Changed

• Add permissions to check workflow by @​gaborbernat in tox-dev/filelock#500
• Move SECURITY.md to .github/SECURITY.md by @​gaborbernat in tox-dev/filelock#501
• Standardize .github files to .yaml suffix by @​gaborbernat in tox-dev/filelock#504
• ✨ feat(async): add AsyncReadWriteLock by @​gaborbernat in tox-dev/filelock#506

Full Changelog: tox-dev/filelock@3.24.4...3.25.0

3.24.4

What's Changed

• Suppress ValueError in _try_break_stale_lock for corrupted lock files by @​bysiber in tox-dev/filelock#496
• Fix ValueError in _acquire_transaction_lock when blocking=False with timeout by @​gaborbernat in tox-dev/filelock#498

New Contributors

• @​bysiber made their first contribution in tox-dev/filelock#496

Full Changelog: tox-dev/filelock@3.24.3...3.24.4

3.24.3

What's Changed

• 🐛 fix(ci): add trailing blank line after changelog entries by @​gaborbernat in tox-dev/filelock#492
• 🐛 fix(unix): handle ENOENT race on FUSE/NFS during acquire by @​gaborbernat in tox-dev/filelock#495

... (truncated)

Changelog

Sourced from filelock's changelog.

########### Changelog ###########

---

3.25.2 (2026-03-11)

---

• 🐛 fix(unix): suppress EIO on close in Docker bind mounts :pr:513

---

3.25.1 (2026-03-09)

---

• [pre-commit.ci] pre-commit autoupdate :pr:510 - by :user:pre-commit-ci[bot]
• 🐛 fix(win): restore best-effort lock file cleanup on release :pr:511
• [pre-commit.ci] pre-commit autoupdate :pr:508 - by :user:pre-commit-ci[bot]
• 📝 docs(logo): add branded project logo :pr:507

---

3.25.0 (2026-03-01)

---

• ✨ feat(async): add AsyncReadWriteLock :pr:506
• Standardize .github files to .yaml suffix
• build(deps): bump actions/download-artifact from 7 to 8 :pr:503 - by :user:dependabot[bot]
• build(deps): bump actions/upload-artifact from 6 to 7 :pr:502 - by :user:dependabot[bot]
• Move SECURITY.md to .github/SECURITY.md
• Add security policy
• Add permissions to check workflow :pr:500
• [pre-commit.ci] pre-commit autoupdate :pr:499 - by :user:pre-commit-ci[bot]

---

3.24.3 (2026-02-19)

---

• 🐛 fix(unix): handle ENOENT race on FUSE/NFS during acquire :pr:495
• 🐛 fix(ci): add trailing blank line after changelog entries :pr:492

---

3.24.2 (2026-02-16)

---

• 🐛 fix(rw): close sqlite3 cursors and skip SoftFileLock Windows race :pr:491
• 🐛 fix(test): resolve flaky write non-starvation test :pr:490
• 📝 docs: restructure using Diataxis framework :pr:489

---

3.24.1 (2026-02-15)

---

... (truncated)

Commits

• 5b9872c Release 3.25.2
• 42b740a 🐛 fix(unix): suppress EIO on close in Docker bind mounts (#513)
• d8b04b5 Release 3.25.1
• 0633386 [pre-commit.ci] pre-commit autoupdate (#510)
• 7f2247d 🐛 fix(win): restore best-effort lock file cleanup on release (#511)
• 5ae1c4e [pre-commit.ci] pre-commit autoupdate (#508)
• bcffcfe 📝 docs(logo): add branded project logo (#507)
• 7f195d9 Release 3.25.0
• df2754e ✨ feat(async): add AsyncReadWriteLock (#506)
• 8a359c5 Standardize .github files to .yaml suffix
• Additional commits viewable in compare view

Updates openai from 2.15.0 to 2.29.0

Release notes

Sourced from openai's releases.

v2.29.0

2.29.0 (2026-03-17)

Full Changelog: v2.28.0...v2.29.0

Features

• api: 5.4 nano and mini model slugs (3b45666)
• api: add /v1/videos endpoint to batches create method (c0e7a16)
• api: add defer_loading field to ToolFunction (3167595)
• api: add in and nin operators to ComparisonFilter type (664f02b)

Bug Fixes

• deps: bump minimum typing-extensions version (a2fb2ca)
• pydantic: do not pass by_alias unless set (8ebe8fb)

Chores

• internal: tweak CI branches (96ccc3c)

v2.28.0

2.28.0 (2026-03-13)

Full Changelog: v2.27.0...v2.28.0

Features

• api: custom voices (50dc060)

v2.27.0

2.27.0 (2026-03-13)

Full Changelog: v2.26.0...v2.27.0

Features

• api: api update (60ab24a)
• api: manual updates (b244b09)
• api: manual updates (d806635)
• api: sora api improvements: character api, video extensions/edits, higher resolution exports. (58b70d3)

Bug Fixes

• api: repair merged videos resource (742d8ee)

... (truncated)

Changelog

Sourced from openai's changelog.

2.29.0 (2026-03-17)

Full Changelog: v2.28.0...v2.29.0

Features

• api: 5.4 nano and mini model slugs (3b45666)
• api: add /v1/videos endpoint to batches create method (c0e7a16)
• api: add defer_loading field to ToolFunction (3167595)
• api: add in and nin operators to ComparisonFilter type (664f02b)

Bug Fixes

• deps: bump minimum typing-extensions version (a2fb2ca)
• pydantic: do not pass by_alias unless set (8ebe8fb)

Chores

• internal: tweak CI branches (96ccc3c)

2.28.0 (2026-03-13)

Full Changelog: v2.27.0...v2.28.0

Features

• api: custom voices (50dc060)

2.27.0 (2026-03-13)

Full Changelog: v2.26.0...v2.27.0

Features

• api: api update (60ab24a)
• api: manual updates (b244b09)
• api: manual updates (d806635)
• api: sora api improvements: character api, video extensions/edits, higher resolution exports. (58b70d3)

Bug Fixes

• api: repair merged videos resource (742d8ee)

Chores

• internal: codegen related update (4e6498e)

... (truncated)

Commits

• acd0c54 release: 2.29.0
• 2c67256 feat(api): 5.4 nano and mini model slugs
• bc96310 feat(api): add in and nin operators to ComparisonFilter type
• cf8e9e7 chore(internal): tweak CI branches
• 11f50b6 fix(deps): bump minimum typing-extensions version
• 02b3071 fix(pydantic): do not pass by_alias unless set
• fdf7f83 codegen metadata
• 28bda04 codegen metadata
• f857bdc feat(api): add defer_loading field to ToolFunction
• c9ccb8f feat(api): add /v1/videos endpoint to batches create method
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions