Bump the minor-patch-dependencies group across 1 directory with 11 updates

[dependabot]

Bumps the minor-patch-dependencies group with 11 updates in the / directory:

Package	From	To
starlette	0.41.2	0.41.3
pydantic	2.9.2	2.10.2
uvicorn	0.32.0	0.32.1
python-multipart	0.0.17	0.0.19
sentry-sdk	2.18.0	2.19.0
pyjwt	2.10.0	2.10.1
pytest	8.3.3	8.3.4
coverage	7.6.7	7.6.8
bandit	1.7.10	1.8.0
httpx	0.27.2	0.28.0
ruff	0.7.4	0.8.1

Updates starlette from 0.41.2 to 0.41.3

Release notes

Sourced from starlette's releases.

Version 0.41.3

Fixed

• Exclude the query parameters from the scope[raw_path] on the TestClient #2716.
• Replace dict by Mapping on HTTPException.headers #2749.
• Correct middleware argument passing and improve factory pattern #2752.

---

Full Changelog: encode/starlette@0.41.2...0.41.3

Changelog

Sourced from starlette's changelog.

0.41.3 (November 18, 2024)

Fixed

• Exclude the query parameters from the scope[raw_path] on the TestClient #2716.
• Replace dict by Mapping on HTTPException.headers #2749.
• Correct middleware argument passing and improve factory pattern #2752.

Commits

• 1a8efba Version 0.41.3 (#2754)
• 9dc9d2e fix(testclient): exclude query sting from raw_path (#2716)
• cc1e2d7 Replace dict by Mapping on HTTPException.headers (#2749)
• 427a8dc Fix issue with middleware args passing (#2752)
• c2e3a39 Match httpx documentation style (#2742)
• See full diff in compare view

Updates pydantic from 2.9.2 to 2.10.2

Release notes

Sourced from pydantic's releases.

v2.10.2 2024-11-26

What's Changed

Fixes

• Only evaluate FieldInfo annotations if required during schema building by @​Viicos in #10769
• Do not evaluate annotations for private fields by @​Viicos in #10962
• Support serialization as any for Secret types and Url types by @​sydney-runkle in #10947
• Fix type hint of Field.default to be compatible with Python 3.8 and 3.9 by @​Viicos in #10972
• Add hashing support for URL types by @​sydney-runkle in #10975
• Hide BaseModel.__replace__ definition from type checkers by @​Viicos in 10979

Full Changelog: pydantic/pydantic@v2.10.1...v2.10.2

v2.10.1 2024-11-21

What's Changed

Packaging

• Bump pydantic-core version to v2.27.1 by @​sydney-runkle in #10938

Fixes

• Use the correct frame when instantiating a parametrized TypeAdapter by @​Viicos in #10893
• Relax check for validated data in default_factory utils by @​sydney-runkle in #10909
• Fix type checking issue with model_fields and model_computed_fields by @​sydney-runkle in #10911
• Use the parent configuration during schema generation for stdlib dataclasses by @​sydney-runkle in #10928
• Use the globals of the function when evaluating the return type of serializers and computed_fields by @​Viicos in #10929
• Fix URL constraint application by @​sydney-runkle in #10922
• Fix URL equality with different validation methods by @​sydney-runkle in #10934
• Fix JSON schema title when specified as '' by @​sydney-runkle in #10936
• Fix python mode serialization for complex inference by @​sydney-runkle in pydantic-core#1549

Full Changelog: pydantic/pydantic@v2.10.0...v2.10.1

v2.10.0 2024-11-20

The code released in v2.10.0 is practically identical to that of v2.10.0b2. See the v2.10 release blog post for the highlights!

What's Changed

Packaging

• Bump pydantic-core to v2.27.0 by @​sydney-runkle in #10825
• Replaced pdm with uv by @​frfahim in #10727

New Features

• Support fractions.Fraction by @​sydney-runkle in #10318
• Support Hashable for json validation by @​sydney-runkle in #10324

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.10.2 (2024-11-25)

GitHub release

What's Changed

Fixes

• Only evaluate FieldInfo annotations if required during schema building by @​Viicos in #10769
• Do not evaluate annotations for private fields by @​Viicos in #10962
• Support serialization as any for Secret types and Url types by @​sydney-runkle in #10947
• Fix type hint of Field.default to be compatible with Python 3.8 and 3.9 by @​Viicos in #10972
• Add hashing support for URL types by @​sydney-runkle in #10975
• Hide BaseModel.__replace__ definition from type checkers by @​Viicos in 10979

v2.10.1 (2024-11-21)

GitHub release

What's Changed

Packaging

• Bump pydantic-core version to v2.27.1 by @​sydney-runkle in #10938

Fixes

• Use the correct frame when instantiating a parametrized TypeAdapter by @​Viicos in #10893
• Relax check for validated data in default_factory utils by @​sydney-runkle in #10909
• Fix type checking issue with model_fields and model_computed_fields by @​sydney-runkle in #10911
• Use the parent configuration during schema generation for stdlib dataclasses by @​sydney-runkle in #10928
• Use the globals of the function when evaluating the return type of serializers and computed_fields by @​Viicos in #10929
• Fix URL constraint application by @​sydney-runkle in #10922
• Fix URL equality with different validation methods by @​sydney-runkle in #10934
• Fix JSON schema title when specified as '' by @​sydney-runkle in #10936
• Fix python mode serialization for complex inference by @​sydney-runkle in pydantic-core#1549

New Contributors

v2.10.0 (2024-11-20)

The code released in v2.10.0 is practically identical to that of v2.10.0b2.

GitHub release

See the v2.10 release blog post for the highlights!

What's Changed

Packaging

... (truncated)

Commits

• fe32515 Prepare for v2.10.2 release (#10982)
• 226cfaf Hide BaseModel.__replace__ definition from type checkers (#10979)
• 02229a6 hashing support for urls (#10975)
• a9cf39c Fix type hint of Field.default to be compatible with Python 3.8 and 3.9 (#1...
• 869eafd Support serialization as any for Secret types and Url types (#10947)
• 7c0ed72 Do not evaluate annotations for private fields (#10962)
• d6fc7fc Only evaluate FieldInfo annotations if required during schema building (#10...
• 17e60fa spacing
• 369b355 remove typo
• 4c75404 Prepare for v2.10.1 release (#10939)
• Additional commits viewable in compare view

Updates uvicorn from 0.32.0 to 0.32.1

Release notes

Sourced from uvicorn's releases.

Version 0.32.1

What's Changed

• Enable httptools lenient data by @​vvanglro in encode/uvicorn#2488
• Drop ASGI spec version to 2.3 on HTTP scope by @​Kludex in encode/uvicorn#2513

---

Full Changelog: encode/uvicorn@0.32.0...0.32.1

Changelog

Sourced from uvicorn's changelog.

0.32.1 (2024-11-20)

Fixed

• Drop ASGI spec version to 2.3 on HTTP scope #2513
• Enable httptools lenient data on httptools >= 0.6.3 #2488

Commits

• 5279296 Upgrade upload/download GitHub Actions (#2517)
• 8c3402d Update publish.yaml with latest PyPI recommendations (#2516)
• 04c6320 Version 0.32.1 (#2515)
• fc6c51b Drop ASGI spec version to 2.3 on HTTP (#2513)
• 2aea835 fix(http): enable httptools lenient data (#2488)
• See full diff in compare view

Updates python-multipart from 0.0.17 to 0.0.19

Release notes

Sourced from python-multipart's releases.

Version 0.0.19

What's Changed

• Don't warn when CRLF is found after last boundary by @​Kludex in Kludex/python-multipart#193

---

Full Changelog: Kludex/python-multipart@0.0.18...0.0.19

Version 0.0.18

What's Changed

• Hard break if found data after last boundary on MultipartParser by @​Kludex in Kludex/python-multipart#189

---

Full Changelog: Kludex/python-multipart@0.0.17...0.0.18

Changelog

Sourced from python-multipart's changelog.

0.0.19 (2024-11-30)

• Don't warn when CRLF is found after last boundary on MultipartParser #193.

0.0.18 (2024-11-28)

• Hard break if found data after last boundary on MultipartParser #189.

Commits

• c4fe4d3 Don't warn when CRLF is found after last boundary (#193)
• 5b1aed8 Version 0.0.18 (#191)
• 9205a0e Hard break if found data after last boundary on MultipartParser (#189)
• 170e604 Update ruff & mypy (#188)
• e53b541 Create SECURITY.md (#187)
• 02d1ec1 fuzz: fix boundary error (#179)
• See full diff in compare view

Updates sentry-sdk from 2.18.0 to 2.19.0

Release notes

Sourced from sentry-sdk's releases.

2.19.0

Various fixes & improvements

• New: introduce rust_tracing integration. See https://docs.sentry.io/platforms/python/integrations/rust_tracing/ (#3717) by @​matt-codecov
• Auto enable Litestar integration (#3540) by @​provinzkraut
• Deprecate sentry_sdk.init context manager (#3729) by @​szokeasaurusrex
• feat(spotlight): Send PII to Spotlight when no DSN is set (#3804) by @​BYK
• feat(spotlight): Add info logs when Sentry is enabled (#3735) by @​BYK
• feat(spotlight): Inject Spotlight button on Django (#3751) by @​BYK
• feat(spotlight): Auto enable cache_spans for Spotlight on DEBUG (#3791) by @​BYK
• fix(logging): Handle parameter stack_info for the LoggingIntegration (#3745) by @​gmcrocetti
• fix(pure-eval): Make sentry-sdk[pure-eval] installable with pip==24.0 (#3757) by @​sentrivana
• fix(rust_tracing): include_tracing_fields arg to control unvetted data in rust_tracing integration (#3780) by @​matt-codecov
• fix(aws) Fix aws lambda tests (by reducing event size) (#3770) by @​antonpirker
• fix(arq): fix integration with Worker settings as a dict (#3742) by @​saber-solooki
• fix(httpx): Prevent Sentry baggage duplication (#3728) by @​szokeasaurusrex
• fix(falcon): Don't exhaust request body stream (#3768) by @​szokeasaurusrex
• fix(integrations): Check retries_left before capturing exception (#3803) by @​malkovro
• fix(openai): Use name instead of description (#3807) by @​sourceful-rob
• test(gcp): Only run GCP tests when they should (#3721) by @​szokeasaurusrex
• chore: Shorten CI workflow names (#3805) by @​sentrivana
• chore: Test with pyspark prerelease (#3760) by @​sentrivana
• build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.2 (#3792) by @​dependabot
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3691) by @​dependabot

Changelog

Sourced from sentry-sdk's changelog.

2.19.0

Various fixes & improvements

• New: introduce rust_tracing integration. See https://docs.sentry.io/platforms/python/integrations/rust_tracing/ (#3717) by @​matt-codecov
• Auto enable Litestar integration (#3540) by @​provinzkraut
• Deprecate sentry_sdk.init context manager (#3729) by @​szokeasaurusrex
• feat(spotlight): Send PII to Spotlight when no DSN is set (#3804) by @​BYK
• feat(spotlight): Add info logs when Sentry is enabled (#3735) by @​BYK
• feat(spotlight): Inject Spotlight button on Django (#3751) by @​BYK
• feat(spotlight): Auto enable cache_spans for Spotlight on DEBUG (#3791) by @​BYK
• fix(logging): Handle parameter stack_info for the LoggingIntegration (#3745) by @​gmcrocetti
• fix(pure-eval): Make sentry-sdk[pure-eval] installable with pip==24.0 (#3757) by @​sentrivana
• fix(rust_tracing): include_tracing_fields arg to control unvetted data in rust_tracing integration (#3780) by @​matt-codecov
• fix(aws) Fix aws lambda tests (by reducing event size) (#3770) by @​antonpirker
• fix(arq): fix integration with Worker settings as a dict (#3742) by @​saber-solooki
• fix(httpx): Prevent Sentry baggage duplication (#3728) by @​szokeasaurusrex
• fix(falcon): Don't exhaust request body stream (#3768) by @​szokeasaurusrex
• fix(integrations): Check retries_left before capturing exception (#3803) by @​malkovro
• fix(openai): Use name instead of description (#3807) by @​sourceful-rob
• test(gcp): Only run GCP tests when they should (#3721) by @​szokeasaurusrex
• chore: Shorten CI workflow names (#3805) by @​sentrivana
• chore: Test with pyspark prerelease (#3760) by @​sentrivana
• build(deps): bump codecov/codecov-action from 4.6.0 to 5.0.2 (#3792) by @​dependabot
• build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#3691) by @​dependabot

Commits

• 039c220 Updated changelog
• c83e742 release: 2.19.0
• 8fe5bb4 feat: Send PII to Spotlight when no DSN is set (#3804)
• 295dd8d Auto enable Litestar integration (#3540)
• bd50c38 fix(httpx): Prevent Sentry baggage duplication (#3728)
• e9ec6c1 test(gcp): Only run GCP tests when they should (#3721)
• aa6e8fd fix(falcon): Don't exhaust request body stream (#3768)
• 3e28853 fix(integrations): Check retries_left before capturing exception (#3803)
• 01146bd fix(openai): Use name instead of description (#3807)
• d894fc2 Shorten CI workflow names (#3805)
• Additional commits viewable in compare view

Updates pyjwt from 2.10.0 to 2.10.1

Release notes

Sourced from pyjwt's releases.

2.10.1

Fixed

• Prevent partial matching of iss claim. Thanks @​fabianbadoi! (See: GHSA-75c5-xw7c-p5pm)

Full Changelog: jpadilla/pyjwt@2.10.0...2.10.1

Changelog

Sourced from pyjwt's changelog.

v2.10.1 <https://github.com/jpadilla/pyjwt/compare/2.10.0...2.10.1>__

Fixed

- Prevent partial matching of `iss` claim by @fabianbadoi in `GHSA-75c5-xw7c-p5pm <https://github.com/jpadilla/pyjwt/security/advisories/GHSA-75c5-xw7c-p5pm>`__

Commits

• 3ebbb22 fix lint
• 37748dc update changelog
• 33022c2 Merge commit from fork
• See full diff in compare view

Updates pytest from 8.3.3 to 8.3.4

Release notes

Sourced from pytest's releases.

8.3.4

pytest 8.3.4 (2024-12-01)

Bug fixes

• #12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

• #12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

• #12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

• #9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

• #10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

• #10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

• #12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

• #12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

• #12497: Fixed two failing pdb-related tests on Python 3.13.

Commits

• 53f8b4e Update pypa/gh-action-pypi-publish to v1.12.2
• 98dff36 Prepare release version 8.3.4
• 1b474e2 approx: use exact comparison for bool (#13013)
• b541721 docs: Fix wrong statement about sys.modules with importlib import mode (#1298...
• 16cb87b pytest.fail: fix ANSI escape codes for colored output (#12959) (#12990)
• be6bc81 Issue #12966 Clarify filterwarnings docs on precedence when using multiple ma...
• 7aeb72b Improve docs on basetemp and retention (#12912) (#12928)
• c875841 Merge pull request #12917 from pytest-dev/patchback/backports/8.3.x/ded1f44e5...
• 6502816 Merge pull request #12913 from jakkdl/dontfailonbadpath
• 52135b0 Merge pull request #12885 from The-Compiler/pdb-py311 (#12887)
• Additional commits viewable in compare view

Updates coverage from 7.6.7 to 7.6.8

Changelog

Sourced from coverage's changelog.

Version 7.6.8 — 2024-11-23

• Fix: the LCOV report code assumed that a branch line that took no branches meant that the entire line was unexecuted. This isn't true in a few cases: the line might always raise an exception, or might have been optimized away. Fixes issue 1896_.

• Fix: similarly, the HTML report will now explain that a line that jumps to none of its expected destinations must have always raised an exception. Previously, it would say something nonsensical like, "line 4 didn't jump to line 5 because line 4 was never true, and it didn't jump to line 7 because line 4 was always true." This was also shown in issue 1896_.

.. _issue 1896: nedbat/coveragepy#1896

.. _changes_7-6-7:

Commits

• 6134266 docs: sample HTML for 7.6.8
• 041f963 docs: prep for 7.6.8
• 7fe48b6 build: don't search generated report files
• f219144 docs: start changelog entries with capital letters
• d1a916a fix: a line that branches nowhere must always raise an exception
• 2ace7a2 fix: don't assume 'no branches' means 'not executed' #1896
• 3ed5915 style: all of ci should use underscores
• 0db86f2 build: automate updating readthedocs
• 2a89551 chore: make upgrade (not sure why files became absolute)
• ba9c157 chore: make doc_upgrade
• Additional commits viewable in compare view

Updates bandit from 1.7.10 to 1.8.0

Release notes

Sourced from bandit's releases.

1.8.0

What's Changed

• Bump docker/build-push-action from 6.7.0 to 6.9.0 by @​dependabot in PyCQA/bandit#1178
• Rename doc file to match proper bandit ID by @​ericwb in PyCQA/bandit#1183
• Removal of Python 3.8 support by @​ericwb in PyCQA/bandit#1174
• Add more insecure cryptography cipher algorithms by @​ericwb in PyCQA/bandit#1185
• Bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @​dependabot in PyCQA/bandit#1186
• Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @​dependabot in PyCQA/bandit#1187
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1162
• No need to check httpx client without timeout defined by @​ericwb in PyCQA/bandit#1177
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1191
• Mark Python 3.13 as officially supported by @​ericwb in PyCQA/bandit#1192
• Update project urls with added links by @​ericwb in PyCQA/bandit#1193
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in PyCQA/bandit#1196
• Add a JSON to seek funding from the FLOSS/fund by @​ericwb in PyCQA/bandit#1194
• Remove Sentry as a sponsor by @​ericwb in PyCQA/bandit#1198
• Remove more leftover OpenStack references by @​ericwb in PyCQA/bandit#1195

Full Changelog: PyCQA/bandit@1.7.10...1.8.0

Commits

• 8fd258a Remove more leftover OpenStack references (#1195)
• a19b072 Remove Sentry as a sponsor (#1198)
• 48e0258 Add a JSON to seek funding from the FLOSS/fund (#1194)
• 5300a21 [pre-commit.ci] pre-commit autoupdate (#1196)
• 0b249d9 Update project urls with added links (#1193)
• 4be653d Mark Python 3.13 as officially supported (#1192)
• 8e6dc1b [pre-commit.ci] pre-commit autoupdate (#1191)
• 071386b No need to check httpx client without timeout defined (#1177)
• 9b4d480 [pre-commit.ci] pre-commit autoupdate (#1162)
• ddf9b48 Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 (#1187)
• Additional commits viewable in compare view

Updates httpx from 0.27.2 to 0.28.0

Release notes

Sourced from httpx's releases.

Version 0.28.0

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

• The verify argument as a string argument is now deprecated and will raise warnings.
• The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

• The deprecated proxies argument has now been removed.
• The deprecated app argument has now been removed.
• JSON request bodies use a compact representation. (#3363)
• Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
• Ensure certifi and httpcore are only imported if required. (#3377)
• Treat socks5h as a valid proxy scheme. (#3178)
• Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)

Changelog

Sourced from httpx's changelog.

0.28.0 (28th November, 2024)

The 0.28 release includes a limited set of deprecations.

Deprecations:

We are working towards a simplified SSL configuration API.

For users of the standard verify=True or verify=False cases, or verify=<ssl_context> case this should require no changes. The following cases have been deprecated...

• The verify argument as a string argument is now deprecated and will raise warnings.
• The cert argument is now deprecated and will raise warnings.

Our revised SSL documentation covers how to implement the same behaviour with a more constrained API.

The following changes are also included:

• The deprecated proxies argument has now been removed.
• The deprecated app argument has now been removed.
• JSON request bodies use a compact representation. (#3363)
• Review URL percent escape sets, based on WHATWG spec. (#3371, #3373)
• Ensure certifi and httpcore are only imported if required. (#3377)
• Treat socks5h as a valid proxy scheme. (#3178)
• Cleanup Request() method signature in line with client.request() and httpx.request(). (#3378)

Commits

• 80960fa Version 0.28.0. (#3419)
• a33c878 Fix extensions type annotation. (#3380)
• ce7e14d Error on verify as str. (#3418)
• 47f4a96 Handle empty zstd responses (#3412)
• 189fc4b Update CHANGELOG.md, fix typo(s) (#3406)
• 7b19cd5 Move utility functions from _utils.py to _client.py (#3389)
• b47d94c Avoid private imports in test cases. (#3403)
• 2ea2286 Import ssl on demand (#3401)
• 1805ee0 Graceful upgrade path for 0.28. (#3394)
• 41597ad Move remaining utility functions from _utils.py to _models.py (#3387)
• Additional commits viewable in compare view

Updates ruff from 0.7.4 to 0.8.1

Release notes

Sourced from ruff's releases.

0.8.1

Release Notes

Preview features

• Formatter: Avoid invalid syntax for format-spec with quotes for all Python versions (#14625)
• Formatter: Consider quotes inside format-specs when choosing the quotes for an f-string (#14493)
• Formatter: Do not consider f-strings with escaped newlines as multiline (#14624)
• Formatter: Fix f-string formatting in assignment statement (#14454)
• Formatter: Fix unnecessary space around power operator (**) in overlong f-string expressions (#14489)
• [airflow] Avoid implicit schedule argument to DAG and @dag (AIR301) (#14581)
• [flake8-builtins] Exempt private built-in modules (A005) (#14505)
• [flake8-pytest-style] Fix pytest.mark.parametrize rules to check calls instead of decorators (#14515)
• [flake8-type-checking] Implement runtime-cast-value (TC006) (#14511)
• [flake8-type-checking] Implement unquoted-type-alias (TC007) and quoted-type-alias (TC008) (#12927)
• [flake8-use-pathlib] Recommend Path.iterdir() over os.listdir() (PTH208) (#14509)
• [pylint] Extend invalid-envvar-default to detect os.environ.get (PLW1508) (#14512)
• [pylint] Implement len-test (PLC1802) (#14309)
• [refurb] Fix bug where methods defined using lambdas were flagged by FURB118 (#14639)
• [ruff] Auto-add r prefix when string has no backslashes for unraw-re-pattern (RUF039) (#14536)
• [ruff] Implement invalid-assert-message-literal-argument (RUF040) (#14488)
• [ruff] Implement unnecessary-nested-literal (RUF041) (#14323)
• [ruff] Implement unnecessary-regular-expression (RUF055) (#14659)

Rule changes

• Ignore more rules for stub files (#14541)
• [pep8-naming] Eliminate false positives for single-letter names (N811, N814) (#14584)
• [pyflakes] Avoid false positives in @no_type_check contexts (F821, F722) (#14615)
• [ruff] Detect redirected-noqa in file-level comments (RUF101) (#14635)
• [ruff] Mark fixes for unsorted-dunder-all and unsorted-dunder-slots as unsafe when there are complex comments in the sequence (RUF022, RUF023) (#14560)

Bug fixes

• Avoid fixing code to None | None for redundant-none-literal (PYI061) and never-union (RUF020) (#14583, #14589)
• [flake8-bugbear] Fix mutable-contextvar-default to resolve annotated function calls properly (B039) (#14532)
• [flake8-pyi, ruff] Fix traversal of nested literals and u...

  Description has been truncated

[github-actions]

The minor update of this production dependency was not automatically approved. For production dependencies, these semver updates can be automatically approved: patch