Bump the pip-dependencies group across 2 directories with 5 updates

[dependabot]

Bumps the pip-dependencies group with 5 updates in the /Tests/ExamplesTest directory:

Package	From	To
attrs	25.3.0	26.1.0
pytest	8.3.5	9.0.3
scapy	2.6.1	2.7.0
pytest-rerunfailures	14.0	15.1
cryptography	46.0.7	48.0.0

Bumps the pip-dependencies group with 1 update in the /ci/run_tests directory: scapy.

Updates attrs from 25.3.0 to 26.1.0

Release notes

Sourced from attrs's releases.

26.1.0

Highlights

The main outward change here only affects people using field transformers, but it should be a nice quality of life improvement!

Full changelog below!

Special Thanks

This release would not be possible without my generous sponsors! Thank you to all of you making sustainable maintenance possible! If you would like to join them, go to https://github.com/sponsors/hynek and check out the sweet perks!

Above and Beyond

Variomedia AG (@variomedia), Tidelift (@tidelift), Kraken Tech (@kraken-tech), Privacy Solutions GmbH (@privacy-solutions), FilePreviews (@filepreviews), Ecosystems (@ecosyste-ms), TestMu AI Open Source Office (Formerly LambdaTest) (@LambdaTest-Inc), Doist (@Doist), Daniel Fortunov (@asqui), and Kevin P. Fleming (@kpfleming).

Maintenance Sustainers

Buttondown (@buttondown), Christopher Dignam (@chdsbd), Magnus Watn (@magnuswatn), David Cramer (@dcramer), Rivo Laks (@rivol), Polar (@polarsource), Mike Fiedler (@miketheman), Duncan Hill (@cricalix), Colin Marquardt (@cmarqu), Pieter Swinkels (@swinkels), Nick Libertini (@libertininick), Brian M. Dennis (@crossjam), Celebrity News AG (@celebritynewsag), The Westervelt Company (@westerveltco), Sławomir Ehlert (@slafs), Mostafa Khalil (@khadrawy), Filip Mularczyk (@mukiblejlok), Thomas Klinger (@thmsklngr), Andreas Poehlmann (@ap--), August Trapper Bigelow (@atbigelow), Carlton Gibson (@carltongibson), and Roboflow (@roboflow).

Full Changelog

Backwards-incompatible Changes

• Field aliases are now resolved before calling field_transformer, so transformers receive fully populated Attribute objects with usable alias values instead of None. The new Attribute.alias_is_default flag indicates whether the alias was auto-generated (True) or explicitly set by the user (False). #1509

Changes

• Fix type annotations for attrs.validators.optional(), so it no longer rejects tuples with more than one validator. #1496
• The attrs.validators.disabled() contextmanager can now be nested. #1513
• Frozen classes can set on_setattr=attrs.setters.NO_OP in addition to None. #1515
• It's now possible to pass attrs instances in addition to attrs classes to attrs.fields(). #1529

---

This release contains contributions from @​bysiber, @​DavidCEllis, @​finite-state-machine, @​hynek, @​veeceey, and @​vstinner.

Artifact Attestations

You can verify this release's artifact attestions using GitHub's CLI tool by downloading the sdist and wheel from PyPI and running:

$ gh attestation verify --owner python-attrs attrs-26.1.0.tar.gz

... (truncated)

Changelog

Sourced from attrs's changelog.

26.1.0 - 2026-03-19

Backwards-incompatible Changes

• Field aliases are now resolved before calling field_transformer, so transformers receive fully populated Attribute objects with usable alias values instead of None. The new Attribute.alias_is_default flag indicates whether the alias was auto-generated (True) or explicitly set by the user (False). #1509

Changes

• Fix type annotations for attrs.validators.optional(), so it no longer rejects tuples with more than one validator. #1496
• The attrs.validators.disabled() contextmanager can now be nested. #1513
• Frozen classes can set on_setattr=attrs.setters.NO_OP in addition to None. #1515
• It's now possible to pass attrs instances in addition to attrs classes to attrs.fields(). #1529

25.4.0 - 2025-10-06

Backwards-incompatible Changes

• Class-level kw_only=True behavior is now consistent with dataclasses.

  Previously, a class that sets kw_only=True makes all attributes keyword-only, including those from base classes. If an attribute sets kw_only=False, that setting is ignored, and it is still made keyword-only.

  Now, only the attributes defined in that class that doesn't explicitly set kw_only=False are made keyword-only.

  This shouldn't be a problem for most users, unless you have a pattern like this:

  @attrs.define(kw_only=True)
  class Base:
      a: int
      b: int = attrs.field(default=1, kw_only=False)
  @​attrs.define
  class Subclass(Base):
  c: int

  Here, we have a kw_only=True attrs class (Base) with an attribute that sets kw_only=False and has a default (Base.b), and then create a subclass (Subclass) with required arguments (Subclass.c). Previously this would work, since it would make Base.b keyword-only, but now this fails since Base.b is positional, and we have a required positional argument (Subclass.c) following another argument with defaults. #1457

... (truncated)

Commits

• 7bfc49e Prepare 26.1.0
• 31e0286 Update test_validators.py for Python 3.15a7 (#1530)
• 48b8611 Add instance support to attrs.fields() (#1529)
• 3a68d49 dev: document missing git tags failure mode
• a572c3a Allow field(on_setattr=NO_OP) on frozen classes
• af9c510 Fix validators.disabled() to save/restore state on nesting (#1513)
• ab7f8b2 update dev
• ce89f5d Fix message passing in frozen errors
• eccd966 Fix optional validator to accept tuples of len > 1 (#1496)
• e92fe52 policies: tighten screws (#1528)
• Additional commits viewable in compare view

Updates pytest from 8.3.5 to 9.0.3

Release notes

Sourced from pytest's releases.

9.0.3

pytest 9.0.3 (2026-04-07)

Bug fixes

• #12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.

• #13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.

  Previously this resulted in an internal assertion failure during plugin loading.

  Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.

• #13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.

• #14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.

• #14343: Fixed use of insecure temporary directory (CVE-2025-71176).

Improved documentation

• #13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
• #13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
• #14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
• #14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes

• #12689: The test reports are now published to Codecov from GitHub Actions. The test statistics is visible on the web interface.

  -- by aleguy02

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

• #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

  You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

  Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

• #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

• #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

... (truncated)

Commits

• a7d58d7 Prepare release version 9.0.3
• 089d981 Merge pull request #14366 from bluetech/revert-14193-backport
• 8127eaf Revert "Fix: assertrepr_compare respects dict insertion order (#14050) (#14193)"
• 99a7e60 Merge pull request #14363 from pytest-dev/patchback/backports/9.0.x/95d8423bd...
• ddee02a Merge pull request #14343 from bluetech/cve-2025-71176-simple
• 74eac69 doc: Update training info (#14298) (#14301)
• f92dee7 Merge pull request #14267 from pytest-dev/patchback/backports/9.0.x/d6fa26c62...
• 7ee58ac Merge pull request #12378 from Pierre-Sassoulas/fix-implicit-str-concat-and-d...
• 37da870 Merge pull request #14259 from mitre88/patch-4 (#14268)
• c34bfa3 Add explanation for string context diffs (#14257) (#14266)
• Additional commits viewable in compare view

Updates scapy from 2.6.1 to 2.7.0

Release notes

Sourced from scapy's releases.

v2.7.0

Hi everyone & Merry Christmas ! This release brings many new features, bug fixes and cleanups. If you encounter any issues when trying it out, please submit bug reports !

Deprecation notice

• This version will be the last to support Python 3.7 and 3.8. (PEP639 will require a new license format starting in 2026, which isn't supported in the latest version of setuptools available on those older versions of Python.)

Changelog

• [new] ForwardMachine: a new Scapy feature allowing to create a scriptable multi-clients, multi-destination TCP forwarder. It can edit packets on the fly, redirect them to another server, perform TLS interception and more. More details here

• Windows protocols:
  • Implementation details in this paper
  • SMB:
    • client improvements (doc)
    • server improvements (doc)
    • add support for encryption
    • add support for requiring signature
  • Kerberos:
    • FAST support
    • PKINIT support
    • DMSA support
    • many improvements to Ticketer++ (see demo below)
    • many bug fixes & improvements
  • SSPs:
    • SPNEGOSSP was re-written for clarity & now enforces proper mechListMIC rules
    • NTLMSSP and KerberosSSP were improved. Support for KB5068222 changes. Better error handling.
    • NeglogonSSP now supports Kerberos secure channel (Windows 2025+)
  • [new] .NET Remoting layer ([MS-NRTP])
  • LDAP: many improvements to the client
  • [new] graphical LDAP client "ldaphero"
  • DCE/RPC
    • better handling of contexts
    • better handling of fragmentation
    • See https://github.com/gpotter2/scapy-rpc for the MIDL -> Scapy compiler
  • [new] DCOM is now supported
• [removal] scapy -s has been removed.
• TLS:
  • Parsing of CSR structures is now implemented (PKCS#10 and CMC variants)
  • Big refactor of the TLS utils to parse certificates, CSRs, keys and manipulate them. See examples in the documentation
  • New CertTree class to act as a certificate store one can check a certificate against.
  • better handling of NSS KeyLog for TLS 1.3 decryption
  • doc improvements
  • more structures are implemented
• bluetooth:
  • MANY new payloads (EIR, BTLE, HCI_MON ...)

... (truncated)

Commits

• 40fc5ec OpenBSD: fix tests and disallow LibreSSL (#4888)
• 9c3d51c Fix interface IP for point-to-point links (#4887)
• 69fdfbf Windows/Crypto rework: CertTree, CSR, PKINIT, Netlogon's Kerberos secure chan...
• e73137e TLS: fix _TLSSignature show2 (#4878)
• c211285 Address TripleDES + Camellia deprecations (#4881)
• 8e7e73b Rename unaccessible FCfields (#4869)
• 3255441 Add missing crypto_validator (#4870)
• 79e48dc OSPF: dissect without underlayer (#4871)
• 04ea2f3 BPF filter: fix memory leak (#4872)
• dc266d5 RTPS: Fix payload_len calculation for DataPacket. (#4545)
• Additional commits viewable in compare view

Updates pytest-rerunfailures from 14.0 to 15.1

Changelog

Sourced from pytest-rerunfailures's changelog.

15.1 (2025-05-08)

Bug fixes +++++++++

• Fix --fail-on-flaky option to fail the test run with custom exit code only when reruns are detected. ([#287](https://github.com/pytest-dev/pytest-rerunfailures/issues/287) <https://github.com/pytest-dev/pytest-rerunfailures/issues/287>_)

• Switched to using the SPDX license identifier in the project metadata.

Other changes +++++++++++++

• Change exception filtering logic to match AssertionError raised via assert statements when filtering by "AssertionError". ([#292](https://github.com/pytest-dev/pytest-rerunfailures/issues/292) <https://github.com/pytest-dev/pytest-rerunfailures/issues/292>_)

15.0 (2024-11-20)

Breaking changes ++++++++++++++++

• Drop support for Python 3.8.

• Drop support for pytest < 7.4.

Features ++++++++

• Fix compatibility with pytest 8.2. ([#267](https://github.com/pytest-dev/pytest-rerunfailures/issues/267) <https://github.com/pytest-dev/pytest-rerunfailures/issues/267>_)

• Add support for pytest 8.2, 8.3.

• Add --fail-on-flaky option to fail the test run with custom exit code when test passed on rerun.

Commits

• beaa1a4 Preparing release 15.1
• 1ddc245 Pimp MANIFEST.
• c5a282c Update exception filtering to match against actual exception (#293)
• 3064a77 Use SPDX license identifier (#289)
• d0ff1d4 Adjust --fail-on-flaky behavior to improve exit status handling (#288)
• c4992c3 Configure for readthedocs (#284)
• 5a1a3b2 Initial draft docs (#283)
• 4bbc0be Fix duplicate keyword. (#282)
• 88d1bf2 Release 15.0 (#281)
• 67e0056 Update versions (#279)
• Additional commits viewable in compare view

Updates cryptography from 46.0.7 to 48.0.0

Changelog

Sourced from cryptography's changelog.

48.0.0 - 2026-05-04

* **BACKWARDS INCOMPATIBLE:** Support for Python 3.8 has been removed.
  ``cryptography`` now requires Python 3.9 or later.
* **BACKWARDS INCOMPATIBLE:** Loading an X.509 CRL whose inner
  ``TBSCertList.signature`` algorithm does not match the outer
  ``signatureAlgorithm`` now raises ``ValueError``. Previously, such CRLs
  were parsed successfully and only rejected during signature validation.
* Added support for :doc:`/hazmat/primitives/asymmetric/mlkem` and
  :doc:`/hazmat/primitives/asymmetric/mldsa` when using OpenSSL 3.5.0 or
  later, in addition to the existing AWS-LC and BoringSSL support. This means
  post-quantum algorithms are now available to users of our wheels.

Note: Going forward, we do not guarantee that all functionality

in cryptography will be available when building against

OpenSSL. See :doc:/statements/state-of-openssl for more information.

.. _v47-0-0:
47.0.0 - 2026-04-24

• Support for Python 3.8 is deprecated and will be removed in the next cryptography release.
• BACKWARDS INCOMPATIBLE: Support for binary elliptic curves (SECT* classes) has been removed. These curves are rarely used and have additional security considerations that make them undesirable.
• BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.1.x has been removed. OpenSSL 3.0.0 or later is now required. LibreSSL, BoringSSL, and AWS-LC continue to be supported.
• BACKWARDS INCOMPATIBLE: Dropped support for LibreSSL < 4.1.
• BACKWARDS INCOMPATIBLE: Loading keys with unsupported algorithms or keys with unsupported explicit curve encodings now raises :class:~cryptography.exceptions.UnsupportedAlgorithm instead of ValueError. This change affects :func:~cryptography.hazmat.primitives.serialization.load_pem_private_key, :func:~cryptography.hazmat.primitives.serialization.load_der_private_key, :func:~cryptography.hazmat.primitives.serialization.load_pem_public_key, :func:~cryptography.hazmat.primitives.serialization.load_der_public_key, and :meth:~cryptography.x509.Certificate.public_key when called on certificates with unsupported public key algorithms.
• BACKWARDS INCOMPATIBLE: When parsing elliptic curve private keys, we now reject keys that incorrectly encode a private key of the wrong length because such keys are impossible to process in a constant-time manner. We do not believe keys with this problem are in wide use, however we may revert this change based on the feedback we receive.
• Deprecated passing 64-bit (8-byte) and 128-bit (16-byte) keys to :class:~cryptography.hazmat.decrepit.ciphers.algorithms.TripleDES. In a

... (truncated)

Commits

• 8e03e30 bump for 48.0.0 release (#14796)
• 295e0d2 Add AGENTS.md with CLAUDE.md symlink (#14794)
• 104a2de Bump BoringSSL, OpenSSL, AWS-LC in CI (#14793)
• 67ec1e5 call check_length early on AesSiv::encrypt (#14792)
• b2da57a changelog for mldsa/mlkem for openssl (#14791)
• 3cf44ad ML-KEM OpenSSL support (#14781)
• 2e31639 ML-DSA OpenSSL support (#14773)
• 5affe5a fix rust nightly clippy (#14790)
• 2e73ca4 bump rust-openssl dep and update EcPoint::mul_generator to mul_generator2 (#1...
• 82ebd3b Bump BoringSSL, OpenSSL, AWS-LC in CI (#14785)
• Additional commits viewable in compare view

Updates scapy from 2.6.1 to 2.7.0

Release notes

Sourced from scapy's releases.

v2.7.0

Hi everyone & Merry Christmas ! This release brings many new features, bug fixes and cleanups. If you encounter any issues when trying it out, please submit bug reports !

Deprecation notice

• This version will be the last to support Python 3.7 and 3.8. (PEP639 will require a new license format starting in 2026, which isn't supported in the latest version of setuptools available on those older versions of Python.)

Changelog

• [new] ForwardMachine: a new Scapy feature allowing to create a scriptable multi-clients, multi-destination TCP forwarder. It can edit packets on the fly, redirect them to another server, perform TLS interception and more. More details here

• Windows protocols:
  • Implementation details in this paper
  • SMB:
    • client improvements (doc)
    • server improvements (doc)
    • add support for encryption
    • add support for requiring signature
  • Kerberos:
    • FAST support
    • PKINIT support
    • DMSA support
    • many improvements to Ticketer++ (see demo below)
    • many bug fixes & improvements
  • SSPs:
    • SPNEGOSSP was re-written for clarity & now enforces proper mechListMIC rules
    • NTLMSSP and KerberosSSP were improved. Support for KB5068222 changes. Better error handling.
    • NeglogonSSP now supports Kerberos secure channel (Windows 2025+)
  • [new] .NET Remoting layer ([MS-NRTP])
  • LDAP: many improvements to the client
  • [new] graphical LDAP client "ldaphero"
  • DCE/RPC
    • better handling of contexts
    • better handling of fragmentation
    • See https://github.com/gpotter2/scapy-rpc for the MIDL -> Scapy compiler
  • [new] DCOM is now supported
• [removal] scapy -s has been removed.
• TLS:
  • Parsing of CSR structures is now implemented (PKCS#10 and CMC variants)
  • Big refactor of the TLS utils to parse certificates, CSRs, keys and manipulate them. See examples in the documentation
  • New CertTree class to act as a certificate store one can check a certificate against.
  • better handling of NSS KeyLog for TLS 1.3 decryption
  • doc improvements
  • more structures are implemented
• bluetooth:
  • MANY new payloads (EIR, BTLE, HCI_MON ...)

... (truncated)

Commits

• 40fc5ec OpenBSD: fix tests and disallow LibreSSL (#4888)
• 9c3d51c Fix interface IP for point-to-point links (#4887)
• 69fdfbf Windows/Crypto rework: CertTree, CSR, PKINIT, Netlogon's Kerberos secure chan...
• e73137e TLS: fix _TLSSignature show2 (#4878)
• c211285 Address TripleDES + Camellia deprecations (#4881)
• 8e7e73b Rename unaccessible FCfields (#4869)
• 3255441 Add missing crypto_validator (#4870)
• 79e48dc OSPF: dissect without underlayer (#4871)
• 04ea2f3 BPF filter: fix memory leak (#4872)
• dc266d5 RTPS: Fix payload_len calculation for DataPacket. (#4545)
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
attrs	[>= 25.4.dev0, < 25.5]
pytest	[>= 8.4.dev0, < 8.5]
pytest-rerunfailures	[>= 16.dev0, < 17]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions