Bump the dependencies group in /.config with 5 updates

[dependabot]

Bumps the dependencies group in /.config with 5 updates:

Package	From	To
charset-normalizer	3.4.1	3.4.2
pymdown-extensions	10.14.3	10.15
ruff	0.11.7	0.11.8
termcolor	3.0.1	3.1.0
uv	0.6.17	0.7.2

Updates charset-normalizer from 3.4.1 to 3.4.2

Release notes

Sourced from charset-normalizer's releases.

Version 3.4.2

3.4.2 (2025-05-02)

Fixed

• Addressed the DeprecationWarning in our CLI regarding argparse.FileType by backporting the target class into the package. (#591)
• Improved the overall reliability of the detector with CJK Ideographs. (#605) (#587)

Changed

• Optional mypyc compilation upgraded to version 1.15 for Python >= 3.9

Changelog

Sourced from charset-normalizer's changelog.

3.4.2 (2025-05-02)

Fixed

• Addressed the DeprecationWarning in our CLI regarding argparse.FileType by backporting the target class into the package. (#591)
• Improved the overall reliability of the detector with CJK Ideographs. (#605) (#587)

Changed

• Optional mypyc compilation upgraded to version 1.15 for Python >= 3.8

Commits

• 6422af1 📝 update release date
• 0e60ec1 🔖 Release 3.4.2 (#614)
• f6630ce ⬆️ Bump pypa/cibuildwheel from 2.23.2 to 2.23.3 (#617)
• 677c999 ⬆️ Bump actions/download-artifact from 4.2.1 to 4.3.0 (#618)
• 960ab1e ⬆️ Bump actions/setup-python from 5.5.0 to 5.6.0 (#619)
• 6eb6325 ⬆️ Bump github/codeql-action from 3.28.10 to 3.28.16 (#620)
• c99c0f2 ⬆️ Update coverage requirement from <7.7,>=7.2.7 to >=7.2.7,<7.9 (#606)
• 270f28e ⬆️ Bump actions/setup-python from 5.4.0 to 5.5.0 (#607)
• d4d89a0 ⬆️ Bump pypa/cibuildwheel from 2.22.0 to 2.23.2 (#608)
• 905fcf5 ⬆️ Bump slsa-framework/slsa-github-generator from 2.0.0 to 2.1.0 (#609)
• Additional commits viewable in compare view

Updates pymdown-extensions from 10.14.3 to 10.15

Release notes

Sourced from pymdown-extensions's releases.

10.15.0

• NEW: SuperFences: Add relaxed_headers option which can tolerate bad content in the fenced code header. When enabled, code blocks with bad content in the header will likely still convert into code blocks, often respecting the specified language.
• NEW: Add type hints to the Blocks interface and a few additional files.
• FIX: Blocks: Fix some corner cases of nested blocks with lists.
• FIX: Tab and Tabbed: Fix a case where tabs could fail if combine_header_slug was enabled and there was no header.

Commits

• d32c6b3 Update changelog
• 9f5c3ca Finish typing the Blocks interface and type additional referenced files (#2652)
• 84a087b add type annotations to block.py (#2634)
• 70e475c Docs: update JS deps
• 0eb2047 Provide option for more relaxed fenced code headers (#2649)
• 677a863 Fix some corner cases with Blocks and nested lists (#2651)
• f655468 Fix a corner case with combine_header_slug and Tab and Tabbed
• 3e8a097 Only show "steps" as direct list items
• f8d7f62 Docs: Mermaid Pie chart is now considered viable and update version used
• 48cda23 Add a note about snippet syntax and XML files
• Additional commits viewable in compare view

Updates ruff from 0.11.7 to 0.11.8

Release notes

Sourced from ruff's releases.

0.11.8

Release Notes

Preview features

• [airflow] Apply auto fixes to cases where the names have changed in Airflow 3 (AIR302, AIR311) (#17553, #17570, #17571)
• [airflow] Extend AIR301 rule (#17598)
• [airflow] Update existing AIR302 rules with better suggestions (#17542)
• [refurb] Mark fix as safe for readlines-in-for (FURB129) (#17644)
• [syntax-errors] nonlocal declaration at module level (#17559)
• [syntax-errors] Detect single starred expression assignment x = *y (#17624)

Bug fixes

• [flake8-pyi] Ensure Literal[None,] | Literal[None,] is not autofixed to None | None (PYI061) (#17659)
• [flake8-use-pathlib] Avoid suggesting Path.iterdir() for os.listdir with file descriptor (PTH208) (#17715)
• [flake8-use-pathlib] Fix PTH104 false positive when rename is passed a file descriptor (#17712)
• [flake8-use-pathlib] Fix PTH116 false positive when stat is passed a file descriptor (#17709)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor from a function call (#17705)
• [pycodestyle] Fix duplicated diagnostic in E712 (#17651)
• [pylint] Detect global declarations in module scope (PLE0118) (#17411)
• [syntax-errors] Make async-comprehension-in-sync-comprehension more specific (#17460)

Configuration

• Add option to disable typing_extensions imports (#17611)

Documentation

• Fix example syntax for the lint.pydocstyle.ignore-var-parameters option (#17740)
• Add fix safety sections (ASYNC116, FLY002, D200, RUF005, RUF017, RUF027, RUF028, RUF057) (#17497, #17496, #17502, #17484, #17480, #17485, #17722, #17483)

Other changes

• Add Python 3.14 to configuration options (#17647)
• Make syntax error for unparenthesized except tuples version specific to before 3.14 (#17660)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​Jie211
• @​Kalmaegi
• @​LaBatata101
• @​Lee-W
• @​MichaReiser
• @​VascoSch92
• @​abhijeetbodas2001
• @​brendancooley
• @​carljm

... (truncated)

Changelog

Sourced from ruff's changelog.

0.11.8

Preview features

• [airflow] Apply auto fixes to cases where the names have changed in Airflow 3 (AIR302, AIR311) (#17553, #17570, #17571)
• [airflow] Extend AIR301 rule (#17598)
• [airflow] Update existing AIR302 rules with better suggestions (#17542)
• [refurb] Mark fix as safe for readlines-in-for (FURB129) (#17644)
• [syntax-errors] nonlocal declaration at module level (#17559)
• [syntax-errors] Detect single starred expression assignment x = *y (#17624)

Bug fixes

• [flake8-pyi] Ensure Literal[None,] | Literal[None,] is not autofixed to None | None (PYI061) (#17659)
• [flake8-use-pathlib] Avoid suggesting Path.iterdir() for os.listdir with file descriptor (PTH208) (#17715)
• [flake8-use-pathlib] Fix PTH104 false positive when rename is passed a file descriptor (#17712)
• [flake8-use-pathlib] Fix PTH116 false positive when stat is passed a file descriptor (#17709)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor from a function call (#17705)
• [pycodestyle] Fix duplicated diagnostic in E712 (#17651)
• [pylint] Detect global declarations in module scope (PLE0118) (#17411)
• [syntax-errors] Make async-comprehension-in-sync-comprehension more specific (#17460)

Configuration

• Add option to disable typing_extensions imports (#17611)

Documentation

• Fix example syntax for the lint.pydocstyle.ignore-var-parameters option (#17740)
• Add fix safety sections (ASYNC116, FLY002, D200, RUF005, RUF017, RUF027, RUF028, RUF057) (#17497, #17496, #17502, #17484, #17480, #17485, #17722, #17483)

Other changes

• Add Python 3.14 to configuration options (#17647)
• Make syntax error for unparenthesized except tuples version specific to before 3.14 (#17660)

Commits

• 75effb8 Bump 0.11.8 (#17766)
• 3353d07 [flake8-use-pathlib] Fix PTH104false positive when rename is passed a f...
• 41f3f21 Improve messages outputted by py-fuzzer (#17764)
• 76ec64d [red-knot] Allow subclasses of Any to be assignable to Callable types (#17717)
• b7e69ec [red-knot] Increase durability of read-only File fields (#17757)
• 9c57862 [red-knot] Cache source type during semanic index building (#17756)
• 67ef370 [flake8-use-pathlib] Fix PTH116 false positive when stat is passed a fi...
• e17e1e8 Sync vendored typeshed stubs (#17753)
• 03d8679 [red-knot] Preliminary NamedTuple support (#17738)
• d33a503 [red-knot] Add tests for classes that have incompatible __new__ and `__init...
• Additional commits viewable in compare view

Updates termcolor from 3.0.1 to 3.1.0

Release notes

Sourced from termcolor's releases.

Release 3.1.0

Added

• Add true colour RGB option as input arguments (#102) @​icyveins7
• Cache system lookups to save invocation time (#107) @​miketheman
• Advertise typing via classifier (#104) @​miketheman

Changed

• Migrate coverage configuration to pyproject.toml (#105) @​miketheman

Commits

• 1e0ae11 Test free-threaded Python 3.13t and 3.14t (#111)
• 9e3f5bb Test free-threaded Python 3.13t and 3.14t
• 52bf721 Add mutation testing (#109)
• 968cfa5 Add tests for cprint kwargs
• 6048bd5 Add mutation testing
• fd08149 Test code branches (#108)
• b32a006 Test code branches
• 60815d2 Cache system lookups to save invocation time (#107)
• 7e1e892 Complete coverage via added tests (#106)
• e516dd5 Cache system lookups to save invocation time
• Additional commits viewable in compare view

Updates uv from 0.6.17 to 0.7.2

Release notes

Sourced from uv's releases.

0.7.2

Release Notes

Enhancements

• Improve trace log for retryable errors (#13228)
• Use "error" instead of "warning" for self-update message (#13229)
• Error when uv version is used with project-specific flags but no project is found (#13203)

Bug fixes

• Fix incorrect virtual environment invalidation for pre-release Python versions (#13234)
• Fix patching of clang in managed Python sysconfig (#13237)
• Respect --project in uv version (#13230)

Install uv 0.7.2

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/uv/releases/download/0.7.2/uv-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/uv/releases/download/0.7.2/uv-installer.ps1 | iex"

Download uv 0.7.2

File	Platform	Checksum
uv-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
uv-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
uv-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
uv-i686-pc-windows-msvc.zip	x86 Windows	checksum
uv-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
uv-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
uv-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
uv-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
uv-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
uv-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum
uv-x86_64-unknown-linux-gnu.tar.gz	x64 Linux	checksum
uv-armv7-unknown-linux-gnueabihf.tar.gz	ARMv7 Linux	checksum
uv-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum
uv-i686-unknown-linux-musl.tar.gz	x86 MUSL Linux	checksum
uv-x86_64-unknown-linux-musl.tar.gz	x64 MUSL Linux	checksum
uv-arm-unknown-linux-musleabihf.tar.gz	ARMv6 MUSL Linux (Hardfloat)	checksum
uv-armv7-unknown-linux-musleabihf.tar.gz	ARMv7 MUSL Linux	checksum

... (truncated)

Changelog

Sourced from uv's changelog.

0.7.2

Enhancements

• Improve trace log for retryable errors (#13228)
• Use "error" instead of "warning" for self-update message (#13229)
• Error when uv version is used with project-specific flags but no project is found (#13203)

Bug fixes

• Fix incorrect virtual environment invalidation for pre-release Python versions (#13234)
• Fix patching of clang in managed Python sysconfig (#13237)
• Respect --project in uv version (#13230)

0.7.1

Enhancement

• Add support for BLAKE2b-256 (#13204)

Bugfix

• Revert fix handling of authentication when encountering redirects (#13215)

0.7.0

This release contains various changes that improve correctness and user experience, but could break some workflows; many changes have been marked as breaking out of an abundance of caution. We expect most users to be able to upgrade without making changes.

Breaking changes

• Update uv version to display and update project versions (#12349)

  Previously, uv version displayed uv's version. Now, uv version will display or update the project's version. This interface was heavily requested and, after much consideration, we decided that transitioning the top-level command was the best option.

  Here's a brief example:

  $ uv init example
  Initialized project `example` at `./example`
  $ cd example
  $ uv version
  example 0.1.0
  $ uv version --bump major
  example 0.1.0 => 1.0.0
  $ uv version --short
  1.0.0

  If used outside of a project, uv will fallback to showing its own version still:

... (truncated)

Commits

• 481d05d Bump version to 0.7.2 (#13240)
• f91b4ae hard error uv version for more cli flags (#13203)
• 671d609 Improve trace log for retryable errors (#13228)
• d8e472c Use "error" instead of "warning" for self-update message (#13229)
• a9ab39a Fix patching of clang in managed Python sysconfig (#13237)
• 9ea0fdc Respect --project in uv version (#13230)
• 3a87b63 Fix incorrect venv invalidation for pre-release Python versions (#13234)
• 9558a86 Fix PR links in CHANGELOG (#13220)
• dfec52b Fix changelog indentation level (#13219)
• 90f46f8 Bump version to 0.7.1 (#13218)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions