Skip to content

chore(deps)(deps): bump the python-minor-patch group with 6 updates#285

Open
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/uv/python-minor-patch-a00535d1b0
Open

chore(deps)(deps): bump the python-minor-patch group with 6 updates#285
dependabot[bot] wants to merge 2 commits intomainfrom
dependabot/uv/python-minor-patch-a00535d1b0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 9, 2026
edited
Loading

Bumps the python-minor-patch group with 6 updates:

Package From To
tox 4.47.0 4.49.0
ruff 0.15.4 0.15.5
openapi-python-client 0.28.2 0.28.3
datamodel-code-generator 0.54.0 0.54.1
mkdocs-material 9.7.3 9.7.4
ty 0.0.19 0.0.21

Updates tox from 4.47.0 to 4.49.0

Release notes

Sourced from tox's releases.

v4.49.0

What's Changed

New Contributors

Full Changelog: tox-dev/tox@4.48.1...4.49.0

v4.48.1

What's Changed

Full Changelog: tox-dev/tox@4.48.0...4.48.1

v4.48.0

What's Changed

Full Changelog: tox-dev/tox@4.47.3...4.48.0

v4.47.3

What's Changed

Full Changelog: tox-dev/tox@4.47.2...4.47.3

v4.47.2

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from tox's changelog.

Features - 4.49.0

  • Add {factor:label} substitution for TOML configs -- factor groups in product matrices and env_base factors can now be labeled with single-key dicts (e.g., {ecosystem = ["oci", "python"]}), enabling {factor:ecosystem} in any string value (descriptions, commands, etc.) to resolve to the active factor. Plain lists automatically get positional labels ({factor:0}, {factor:1}, ...) - by :user:gaborbernat. (:issue:3860) (:issue:3860)

Bug fixes - 4.49.0

  • Fix --showconfig and --help-ini legacy flags raising AttributeError after config format options were added
    • by :user:rares985 (:issue:3866)

v4.48.1 (2026-03-06)

Bug fixes - 4.48.1

  • Command-type configuration values like list_dependencies_command can now be referenced in TOML using the structured {replace = "ref"} syntax. The reference automatically extracts the command's argument list for compatibility with TOML's list[list[str]] structure - by :user:gaborbernat. (:issue:3830)

Improved documentation - 4.48.1

  • Replace archived 31z4/tox Docker image recommendation with instructions for building your own image using the official Python base image and uv - by :user:rahuldevikar. (:issue:3855)

v4.48.0 (2026-03-05)

Features - 4.48.0

  • Add --format flag (ini, json, toml) and -o/--output-file to the config command for machine-readable output with native types. JSON and TOML use the same key structure as tox.toml (env.<name> for environments, tox for core) and get syntax-highlighted on stdout - by :user:gaborbernat. (:issue:3854)

Improved documentation - 4.48.0

  • Add fail_fast to the configuration reference documentation - by :user:rahuldevikar. (:issue:578)

v4.47.3 (2026-03-04)

... (truncated)

Commits
  • 6c452bb release 4.49.0
  • 1c59d54 🐛 fix(legacy): initialize config_format and output_file for --showconfig (#3867)
  • 2382601 ✨ feat(config): add {factor:label} substitution for TOML (#3865)
  • ccf173f release 4.48.1
  • 113bcf8 🐛 fix(toml): extract args from Command in ref replacement (#3863)
  • fc50406 Replace archived 31z4/tox Docker image with build-your-own guide (#3864)
  • 51317d3 release 4.48.0
  • 4c72887 ✨ feat(config): add --format json/toml and -o to config command (#3857)
  • dd190f6 Add fail_fast to config reference docs (#3853)
  • 2c8c5b2 release 4.47.3
  • Additional commits viewable in compare view

Updates ruff from 0.15.4 to 0.15.5

Release notes

Sourced from ruff's releases.

0.15.5

Release Notes

Released on 2026-03-05.

Preview features

  • Discover Markdown files by default in preview mode (#23434)
  • [perflint] Extend PERF102 to comprehensions and generators (#23473)
  • [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
  • [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
  • [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

  • [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
  • [pydocstyle] Fix numpy section ordering (D420) (#23685)
  • [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
  • [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

  • Document extension mapping for Markdown code formatting (#23574)
  • Update default Python version examples (#23605)

Other changes

  • Publish releases to Astral mirror (#23616)

Contributors

Install ruff 0.15.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.15.5/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.5

Released on 2026-03-05.

Preview features

  • Discover Markdown files by default in preview mode (#23434)
  • [perflint] Extend PERF102 to comprehensions and generators (#23473)
  • [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
  • [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
  • [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

  • [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
  • [pydocstyle] Fix numpy section ordering (D420) (#23685)
  • [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
  • [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

  • Document extension mapping for Markdown code formatting (#23574)
  • Update default Python version examples (#23605)

Other changes

  • Publish releases to Astral mirror (#23616)

Contributors

Commits
  • 5e4a3d9 Bump 0.15.5 (#23743)
  • 69c23cc [ty] Render all changed diagnostics in conformance.py (#23613)
  • 4926bd5 [ty] Split deferred checks out of types/infer/builder.rs (#23740)
  • 9a70f5e Discover markdown files by default in preview mode (#23434)
  • 3dc78b0 [ty] Use HasOptionalDefinition for except handlers (#23739)
  • a6a5e8d [ty] Fix precedence of all selector in TOML configurations (#23723)
  • 2a5384b [ty] Make all selector case sensitive (#23713)
  • db77d7b [ty] Add a diagnostic if a TypeVar is used to specialize a ParamSpec, or ...
  • db28490 [ty] Override home directory in ty tests (#23724)
  • 5f0fd91 [ty] More type-variable default validation (#23639)
  • Additional commits viewable in compare view

Updates openapi-python-client from 0.28.2 to 0.28.3

Release notes

Sourced from openapi-python-client's releases.

0.28.3 (2026-02-17)

Fixes

  • sort remaining lazy imports in model template (#1400)
Changelog

Sourced from openapi-python-client's changelog.

0.28.3 (2026-02-17)

Fixes

  • sort remaining lazy imports in model template (#1400)
Commits

Updates datamodel-code-generator from 0.54.0 to 0.54.1

Release notes

Sourced from datamodel-code-generator's releases.

0.54.1

What's Changed

New Contributors

Full Changelog: koxudaxi/datamodel-code-generator@0.54.0...0.54.1

Changelog

Sourced from datamodel-code-generator's changelog.

0.54.1 - 2026-03-04

What's Changed

New Contributors

Full Changelog: koxudaxi/datamodel-code-generator@0.54.0...0.54.1

Commits
  • 690c535 Build(deps): Bump urllib3 from 2.6.2 to 2.6.3 (#3017)
  • b493eb9 Build(deps): Bump cryptography from 46.0.3 to 46.0.5 (#3016)
  • c5c5852 docs: update llms.txt files
  • 24d7a35 docs: update CLI reference documentation and prompt data
  • 7b7f1e9 feat: Add --external-ref-mapping to import from external packages instead of ...
  • 991f0ff Fix incorrect relative imports with --use-exact-imports and --collapse-root-m...
  • 69eda18 Skip default_factory wrapping for non-callable type aliases (#3012)
  • 5a9cdec docs: update llms.txt files
  • 875b3cf Support --use-annotated and `--use-non-positive-negative-number-constrain...
  • bff6a30 Fix --allow-population-by-field-name for pydantic v2 dataclass output (#3013)
  • Additional commits viewable in compare view

Updates mkdocs-material from 9.7.3 to 9.7.4

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.7.4

[!WARNING]

Material for MkDocs is in maintenance mode

Going forward, the Material for MkDocs team focuses on Zensical, a next-gen static site generator built from first principles. We will provide critical bug fixes and security updates for Material for MkDocs until November 2026.

Read the full announcement on our blog

Changes

  • Hardened social cards plugin by switching to sandboxed environment (recommended by @​caveeroo)
  • Updated MkDocs 2.0 incompatibility warning
Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.7.4 (2026-03-03)

  • Hardened social cards plugin by switching to sandboxed environment
  • Updated MkDocs 2.0 incompatibility warning

mkdocs-material-9.7.3 (2026-02-24)

  • Fixed #8567: Print MkDocs 2.0 incompatibility warning to stderr

mkdocs-material-9.7.2 (2026-02-18)

  • Opened up version ranges of optional dependencies for forward-compatibility
  • Added warning to 'mkdocs build' about impending MkDocs 2.0 incompatibility

mkdocs-material-9.7.1 (2025-12-18)

  • Updated requests to 2.30+ to mitigate CVE in urllib
  • Fixed privacy plugin not picking up protocol-relative URLs
  • Fixed #8542: false positives and negatives captured in privacy plugin

mkdocs-material-9.7.0 (2025-11-11)

⚠️ Material for MkDocs is now in maintenance mode

This is the last release of Material for MkDocs that will receive new features. Going forward, the Material for MkDocs team focuses on Zensical, a next-gen static site generator built from first principles. We will provide critical bug fixes and security updates for Material for MkDocs for 12 months at least.

Read the full announcement on our blog: https://squidfunk.github.io/mkdocs-material/blog/2025/11/05/zensical/

This release includes all features that were previously exclusive to the Insiders edition. These features are now freely available to everyone.

Note on deprecated plugins: The projects and typeset plugins are included in this release, but must be considered deprecated. Both plugins proved unsustainable to maintain and represent architectural dead ends. They are provided as-is without ongoing support.

Changes:

  • Added support for pinned blog posts and author profiles
  • Added support for customizing pagination for blog index pages
  • Added support for customizing blog category sort order
  • Added support for staying on page when switching languages
  • Added support for disabling tags in table of contents
  • Added support for nested tags and shadow tags
  • Added support for footnote tooltips
  • Added support for instant previews

... (truncated)

Commits

Updates ty from 0.0.19 to 0.0.21

Release notes

Sourced from ty's releases.

0.0.21

Release Notes

Released on 2026-03-05.

Bug fixes

  • Avoid stack overflow with recursive typevar (#23652)
  • Fix panic on incomplete except handlers (#23708)
  • Allow unions of different-length iterables in *args unpacking into optional positional parameters (#23124)
  • Don't replace Any attributes with object after isinstance narrowing (#23725)

LSP server

  • Exclude decorators from class/def code folding (#23543)
  • Fix handling of non-Python text documents (#23704)

Configuration

  • Add all selector to ty.json schema (#23721)
  • Fix precedence of all selector in TOML configurations (#23723)
  • Make all selector case-sensitive (#23713)

Type checking

  • Add invalid-enum-member-annotation lint rule (#23648)
  • Add a diagnostic for an unused awaitable (#23650)
  • Add a diagnostic if a TypeVar is used to specialize a ParamSpec, or vice versa (#23738)
  • Add more type-variable default validation (#23639)
  • Add unbound type variable detection in annotations (#23641)
  • Apply narrowing to walrus values (#23687)
  • Do not union Unknown into unannotated container types (#23718)
  • Avoid inferring generics with negative intersections (#23750)
  • More precise types for name and value of an enum (#23683)
  • Better preserve user-provided union order in inferred specializations (#23715)
  • Support narrowing in ternary expressions (#23726)
  • Validate bare ParamSpec usage in type annotations, and support stringified ParamSpecs as the first argument to Callable (#23625)

Contributors

... (truncated)

Changelog

Sourced from ty's changelog.

0.0.21

Released on 2026-03-05.

Bug fixes

  • Avoid stack overflow with recursive typevar (#23652)
  • Fix panic on incomplete except handlers (#23708)
  • Allow unions of different-length iterables in *args unpacking into optional positional parameters (#23124)
  • Don't replace Any attributes with object after isinstance narrowing (#23725)

LSP server

  • Exclude decorators from class/def code folding (#23543)
  • Fix handling of non-Python text documents (#23704)

Configuration

  • Add all selector to ty.json schema (#23721)
  • Fix precedence of all selector in TOML configurations (#23723)
  • Make all selector case-sensitive (#23713)

Type checking

  • Add invalid-enum-member-annotation lint rule (#23648)
  • Add a diagnostic for an unused awaitable (#23650)
  • Add a diagnostic if a TypeVar is used to specialize a ParamSpec, or vice versa (#23738)
  • Add more type-variable default validation (#23639)
  • Add unbound type variable detection in annotations (#23641)
  • Apply narrowing to walrus values (#23687)
  • Do not union Unknown into unannotated container types (#23718)
  • Avoid inferring generics with negative intersections (#23750)
  • More precise types for name and value of an enum (#23683)
  • Better preserve user-provided union order in inferred specializations (#23715)
  • Support narrowing in ternary expressions (#23726)
  • Validate bare ParamSpec usage in type annotations, and support stringified ParamSpecs as the first argument to Callable (#23625)

Contributors

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Dependency management python Python language and version issues labels Mar 9, 2026
@dependabot dependabot bot force-pushed the dependabot/uv/python-minor-patch-a00535d1b0 branch 2 times, most recently from 1ba2353 to 258050a Compare March 13, 2026 17:31
@dependabot
chore(deps)(deps): bump the python-minor-patch group with 6 updates
2f2cb07 
Bumps the python-minor-patch group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [tox](https://github.com/tox-dev/tox) | `4.47.0` | `4.49.0` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.4` | `0.15.5` |
| [openapi-python-client](https://github.com/openapi-generators/openapi-python-client) | `0.28.2` | `0.28.3` |
| [datamodel-code-generator](https://github.com/koxudaxi/datamodel-code-generator) | `0.54.0` | `0.54.1` |
| [mkdocs-material](https://github.com/squidfunk/mkdocs-material) | `9.7.3` | `9.7.4` |
| [ty](https://github.com/astral-sh/ty) | `0.0.19` | `0.0.21` |


Updates `tox` from 4.47.0 to 4.49.0
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](tox-dev/tox@4.47.0...4.49.0)

Updates `ruff` from 0.15.4 to 0.15.5
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.4...0.15.5)

Updates `openapi-python-client` from 0.28.2 to 0.28.3
- [Release notes](https://github.com/openapi-generators/openapi-python-client/releases)
- [Changelog](https://github.com/openapi-generators/openapi-python-client/blob/main/CHANGELOG.md)
- [Commits](openapi-generators/openapi-python-client@v0.28.2...v0.28.3)

Updates `datamodel-code-generator` from 0.54.0 to 0.54.1
- [Release notes](https://github.com/koxudaxi/datamodel-code-generator/releases)
- [Changelog](https://github.com/koxudaxi/datamodel-code-generator/blob/main/CHANGELOG.md)
- [Commits](koxudaxi/datamodel-code-generator@0.54.0...0.54.1)

Updates `mkdocs-material` from 9.7.3 to 9.7.4
- [Release notes](https://github.com/squidfunk/mkdocs-material/releases)
- [Changelog](https://github.com/squidfunk/mkdocs-material/blob/master/CHANGELOG)
- [Commits](squidfunk/mkdocs-material@9.7.3...9.7.4)

Updates `ty` from 0.0.19 to 0.0.21
- [Release notes](https://github.com/astral-sh/ty/releases)
- [Changelog](https://github.com/astral-sh/ty/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ty@0.0.19...0.0.21)

---
updated-dependencies:
- dependency-name: tox
  dependency-version: 4.49.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: python-minor-patch
- dependency-name: ruff
  dependency-version: 0.15.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-minor-patch
- dependency-name: openapi-python-client
  dependency-version: 0.28.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-minor-patch
- dependency-name: datamodel-code-generator
  dependency-version: 0.54.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-minor-patch
- dependency-name: mkdocs-material
  dependency-version: 9.7.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: python-minor-patch
- dependency-name: ty
  dependency-version: 0.0.21
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: python-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/uv/python-minor-patch-a00535d1b0 branch from 258050a to 2f2cb07 Compare March 13, 2026 23:44
@dougborg @claude
fix(client): add type cast for nested error detail dict to satisfy ty…
799f8ec 
… 0.0.23

ty 0.0.23 narrows isinstance(x, dict) to dict[Unknown, Unknown] which
rejects string key access. Cast to dict[str, object] explicitly.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Dependency management python Python language and version issues

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dougborg