chore(deps)(deps): bump the security-updates group across 1 directory with 32 updates

[dependabot]

Bumps the security-updates group with 32 updates in the /secbrain directory:

Package	From	To
typer	0.21.1	0.24.1
pydantic	2.12.5	2.13.0
pydantic-settings	2.12.0	2.13.1
openai	2.14.0	2.31.0
eth-hash	0.7.1	0.8.0
pytest	9.0.2	9.0.3
pytest-cov	7.0.0	7.1.0
ruff	0.14.10	0.15.10
mypy	1.19.1	1.20.1
anyio	4.12.1	4.13.0
charset-normalizer	3.4.4	3.4.7
click	8.3.1	8.3.2
coverage	7.13.1	7.13.5
google-ai-generativelanguage	0.10.0	0.11.0
google-api-core	2.29.0	2.30.3
google-api-python-client	2.188.0	2.194.0
google-auth	2.47.0	2.49.2
google-auth-httplib2	0.3.0	0.3.1
googleapis-common-protos	1.72.0	1.74.0
grpcio	1.76.0	1.80.0
grpcio-status	1.76.0	1.80.0
httplib2	0.31.1	0.31.2
jiter	0.12.0	0.14.0
librt	0.7.8	0.9.0
proto-plus	1.27.0	1.27.2
pyasn1	0.6.2	0.6.3
pydantic-core	2.41.5	2.46.0
pygments	2.19.2	2.20.0
pyparsing	3.3.1	3.3.2
python-dotenv	1.2.1	1.2.2
requests	2.32.5	2.33.1
tqdm	4.67.1	4.67.3

Updates typer from 0.21.1 to 0.24.1

Release notes

Sourced from typer's releases.

0.24.1

Internal

• 👷 Fix CI, do not attempt to build typer-slim, nor typer-cli. PR #1569 by @​tiangolo.
• ➖ Drop support for typer-slim and typer-cli, no more versions will be released, use only typer. PR #1568 by @​tiangolo.
• ⬆ Bump rich from 14.3.2 to 14.3.3. PR #1565 by @​dependabot[bot].
• ⬆ Bump pydantic-settings from 2.13.0 to 2.13.1. PR #1566 by @​dependabot[bot].
• ⬆ Bump ruff from 0.15.1 to 0.15.2. PR #1567 by @​dependabot[bot].
• ⬆ Bump mkdocs-material from 9.7.1 to 9.7.2. PR #1561 by @​dependabot[bot].
• ⬆ Bump pillow from 11.3.0 to 12.1.1. PR #1550 by @​dependabot[bot].
• ⬆ Bump pytest from 8.4.2 to 9.0.2. PR #1551 by @​dependabot[bot].
• ⬆ Bump pydantic-settings from 2.12.0 to 2.13.0. PR #1552 by @​dependabot[bot].
• 🎨 Upgrade types for Python 3.10. PR #1549 by @​tiangolo.
• 🔨 Add internal scripts to migrate docs from Python 3.9 to 3.10. PR #1547 by @​tiangolo.
• ⬆ Bump ty from 0.0.16 to 0.0.17. PR #1544 by @​dependabot[bot].

0.24.0

Breaking Changes

• ➖ Drop support for Python 3.9. PR #1546 by @​tiangolo.

0.23.1

Fixes

• 🐛 Fix TYPER_USE_RICH parsing to allow disabling Rich completely. PR #1539 by @​bckohan.

Docs

• 📝 Remove documentation pages that reference using Click directly. PR #1538 by @​svlandeg.

Internal

• ⬆ Bump ty from 0.0.15 to 0.0.16. PR #1533 by @​dependabot[bot].

0.23.0

Breaking Changes

• ♻️ When printing error tracebacks with Rich, default to not showing locals, which are sometimes verbose. PR #1072 by @​tiangolo.

Docs

• 📝 Add more explicit deprecation note in shell packages. PR #1534 by @​tiangolo.

Internal

• ⬆ Bump cryptography from 46.0.4 to 46.0.5. PR #1532 by @​dependabot[bot].
• 🔨 Tweak PDM hook script, remove unnecessary default. PR #1536 by @​tiangolo.
• ♻️ Simplify build setup scripts and configs for deprecated wrapper packages. PR #1535 by @​tiangolo.

0.22.0

... (truncated)

Changelog

Sourced from typer's changelog.

0.24.1 (2026-02-21)

Internal

• 👷 Fix CI, do not attempt to build typer-slim, nor typer-cli. PR #1569 by @​tiangolo.
• ➖ Drop support for typer-slim and typer-cli, no more versions will be released, use only typer. PR #1568 by @​tiangolo.
• ⬆ Bump rich from 14.3.2 to 14.3.3. PR #1565 by @​dependabot[bot].
• ⬆ Bump pydantic-settings from 2.13.0 to 2.13.1. PR #1566 by @​dependabot[bot].
• ⬆ Bump ruff from 0.15.1 to 0.15.2. PR #1567 by @​dependabot[bot].
• ⬆ Bump mkdocs-material from 9.7.1 to 9.7.2. PR #1561 by @​dependabot[bot].
• ⬆ Bump pillow from 11.3.0 to 12.1.1. PR #1550 by @​dependabot[bot].
• ⬆ Bump pytest from 8.4.2 to 9.0.2. PR #1551 by @​dependabot[bot].
• ⬆ Bump pydantic-settings from 2.12.0 to 2.13.0. PR #1552 by @​dependabot[bot].
• 🎨 Upgrade types for Python 3.10. PR #1549 by @​tiangolo.
• 🔨 Add internal scripts to migrate docs from Python 3.9 to 3.10. PR #1547 by @​tiangolo.
• ⬆ Bump ty from 0.0.16 to 0.0.17. PR #1544 by @​dependabot[bot].

0.24.0 (2026-02-16)

Breaking Changes

• ➖ Drop support for Python 3.9. PR #1546 by @​tiangolo.

0.23.2 (2026-02-16)

Features

• ✅ Monkeypatch console width to allow running pytest directly. PR #1542 by @​SwaatiR.

Internal

• 👷 Run tests with lower bound uv sync, update minimum dependencies. PR #1526 by @​YuriiMotov.
• ⬆ Bump prek from 0.3.2 to 0.3.3. PR #1545 by @​dependabot[bot].
• ⬆ Bump ruff from 0.15.0 to 0.15.1. PR #1541 by @​dependabot[bot].

0.23.1 (2026-02-13)

Fixes

• 🐛 Fix TYPER_USE_RICH parsing to allow disabling Rich completely. PR #1539 by @​bckohan.

Docs

• 📝 Remove documentation pages that reference using Click directly. PR #1538 by @​svlandeg.

Internal

• ⬆ Bump ty from 0.0.15 to 0.0.16. PR #1533 by @​dependabot[bot].

0.23.0 (2026-02-11)

... (truncated)

Commits

• eaec8fa 🔖 Release version 0.24.1
• c73cc2b 📝 Update release notes
• 6c6259c 👷 Fix CI, do not attempt to build typer-slim, nor typer-cli (#1569)
• bc65ad8 📝 Update release notes
• 3aedc0a ➖ Drop support for typer-slim and typer-cli, no more versions will be rel...
• 4b13020 📝 Update release notes
• 19aaf0b ⬆ Bump rich from 14.3.2 to 14.3.3 (#1565)
• 0ece295 📝 Update release notes
• 833c005 📝 Update release notes
• 64c0dcb ⬆ Bump pydantic-settings from 2.13.0 to 2.13.1 (#1566)
• Additional commits viewable in compare view

Updates pydantic from 2.12.5 to 2.13.0

Release notes

Sourced from pydantic's releases.

v2.13.0 2026-04-13

v2.13.0 (2026-04-13)

The highlights of the v2.13 release are available in the blog post. Several minor changes (considered non-breaking changes according to our versioning policy) are also included in this release. Make sure to look into them before upgrading.

This release contains the updated pydantic.v1 namespace, matching version 1.10.26 which includes support for Python 3.14.

What's Changed

See the beta releases for all changes sinces 2.12.

Packaging

• Add zizmor for GitHub Actions workflow linting by @​Viicos in #13039
• Update jiter to v0.14.0 to fix a segmentation fault on musl Linux by @​Viicos in #13064

New Features

• Allow default factories of private attributes to take validated model data by @​Viicos in #13013

Changes

• Warn when serializing fixed length tuples with too few items by @​arvindsaripalli in #13016

Fixes

• Change type of Any when synthesizing _build_sources for BaseSettings.__init__() signature in the mypy plugin by @​Viicos in #13049
• Fix model equality when using runtime extra configuration by @​Viicos in #13062

New Contributors

• @​arvindsaripalli made their first contribution in #13016

Full Changelog: pydantic/pydantic@v2.12.0...v2.13.0

v2.13.0b3 2026-03-31

What's Changed

Packaging

• Add riscv64 build target for manylinux by @​boosterl in #12723

New Features

• Add ascii_only option to StringConstraints by @​ai-man-codes in #12907
• Support exclude_if in computed fields by @​andresliszt in #12748
• Push down constraints in unions involving MISSING sentinel by @​Viicos in #12908

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.13.0 (2026-04-13)

GitHub release

The highlights of the v2.13 release are available in the blog post. Several minor changes (considered non-breaking changes according to our versioning policy) are also included in this release. Make sure to look into them before upgrading.

This release contains the updated pydantic.v1 namespace, matching version 1.10.26 which includes support for Python 3.14.

What's Changed

See the beta releases for all changes sinces 2.12.

New Features

• Allow default factories of private attributes to take validated model data by @​Viicos in #13013

Changes

• Warn when serializing fixed length tuples with too few items by @​arvindsaripalli in #13016

Fixes

• Change type of Any when synthesizing _build_sources for BaseSettings.__init__() signature in the mypy plugin by @​Viicos in #13049
• Fix model equality when using runtime extra configuration by @​Viicos in #13062

Packaging

• Add zizmor for GitHub Actions workflow linting by @​Viicos in #13039
• Update jiter to v0.14.0 to fix a segmentation fault on musl Linux by @​Viicos in #13064

New Contributors

• @​arvindsaripalli made their first contribution in #13016

v2.13.0b3 (2026-03-31)

GitHub release

What's Changed

New Features

• Add ascii_only option to StringConstraints by @​ai-man-codes in #12907
• Support exclude_if in computed fields by @​andresliszt in #12748
• Push down constraints in unions involving MISSING sentinel by @​Viicos in #12908

Changes

... (truncated)

Commits

• 46bf4fa Fix Pydantic release workflow (#13067)
• 1b359ed Prepare release v2.13.0 (#13065)
• b1bf194 Fix model equality when using runtime extra configuration (#13062)
• 17a35e3 Update jiter to v0.14.0 (#13064)
• feea402 Use simulation mode in Codspeed CI (#13063)
• 671c9b0 Add basic benchmarks for model equality (#13061)
• d17d71e Bump cryptography from 46.0.6 to 46.0.7 (#13056)
• 919d61a 👥 Update Pydantic People (#13059)
• e7cf5dc Fix people workflow (#13047)
• 2a806ad Add regression test for MISSING sentinel serialization with subclasses (#13...
• Additional commits viewable in compare view

Updates pydantic-settings from 2.12.0 to 2.13.1

Release notes

Sourced from pydantic-settings's releases.

v2.13.0

What's Changed

• fix: Deterministic alias selection when using validate_by_name by @​chbndrhnns in pydantic/pydantic-settings#707
• add deep merge functionality to config file sources by @​pmeier in pydantic/pydantic-settings#698
• Add support for AWS Secrets Manager VersionId parameter by @​jcyamacho in pydantic/pydantic-settings#708
• bugfix: Return None for inaccessible GCP Secret Manager secrets by @​zaphod72 in pydantic/pydantic-settings#712
• Bugfix for cli_kebab_case="all" and CliImplicitFlag[bool] by @​Digity101 in pydantic/pydantic-settings#702
• Unpack type alisases when looking for NoDecode by @​tselepakis in pydantic/pydantic-settings#695
• CliToggleFlag and CliDualFlag by @​kschwab in pydantic/pydantic-settings#717
• Fix for CLI duplicate enum field values. by @​kschwab in pydantic/pydantic-settings#722
• fixed load nested config from env by @​Sube-py in pydantic/pydantic-settings#723
• Add non-Path files support (for example Traversable) and open files using Path.open method by @​mahenzon in pydantic/pydantic-settings#724
• add one more traversable test by @​mahenzon in pydantic/pydantic-settings#725
• CLI fix fox external list args. by @​kschwab in pydantic/pydantic-settings#727
• fix: handle case-insensitive retrieval in GoogleSecretManagerSettingsSource by @​ezwiefel in pydantic/pydantic-settings#730
• CLI test fixes for help text formatting. by @​kschwab in pydantic/pydantic-settings#735
• Avoid conflicts with the NAME environment variable in WSL by @​kzrnm in pydantic/pydantic-settings#747
• fix: When restoring init kwargs, use deterministic order by @​chbndrhnns in pydantic/pydantic-settings#746
• Add env_prefix_target by @​kzrnm in pydantic/pydantic-settings#749
• Remove (default: …) in the help message for CliToggleFlag by @​kzrnm in pydantic/pydantic-settings#740
• Add support for CLI serialize styles. by @​kschwab in pydantic/pydantic-settings#755
• Add support for overriding default help on CLI internal parser. by @​kschwab in pydantic/pydantic-settings#758
• CLI format_help method support by @​kschwab in pydantic/pydantic-settings#759
• feat(gcp): support SecretVersion annotation for per-field secret versioning by @​ezwiefel in pydantic/pydantic-settings#763
• Allow snake_case_conversion with env_prefix for Azure Key Vault source by @​cstarkers in pydantic/pydantic-settings#762
• fix: Only override preferred_key when no value was found by @​chbndrhnns in pydantic/pydantic-settings#767
• Update deps by @​hramezani in pydantic/pydantic-settings#768
• CLI coerce numeric types. by @​kschwab in pydantic/pydantic-settings#769
• CLI Union Discriminator Choices in Help by @​kschwab in pydantic/pydantic-settings#764
• Add nested path support for yaml_config_section (fixes #772) by @​hugo-romero-mm in pydantic/pydantic-settings#773
• Prepare release 2.13.0 by @​hramezani in pydantic/pydantic-settings#777

New Contributors

• @​pmeier made their first contribution in pydantic/pydantic-settings#698
• @​jcyamacho made their first contribution in pydantic/pydantic-settings#708
• @​zaphod72 made their first contribution in pydantic/pydantic-settings#712
• @​Digity101 made their first contribution in pydantic/pydantic-settings#702
• @​Sube-py made their first contribution in pydantic/pydantic-settings#723
• @​mahenzon made their first contribution in pydantic/pydantic-settings#724
• @​kzrnm made their first contribution in pydantic/pydantic-settings#747
• @​cstarkers made their first contribution in pydantic/pydantic-settings#762
• @​hugo-romero-mm made their first contribution in pydantic/pydantic-settings#773

Full Changelog: pydantic/pydantic-settings@v2.12.0...v2.13.0

Commits

• e87d12d v2.13.1 (#790)
• acf8c14 Fix JSON decoding for parameterized PEP 695 type aliases (#780)
• 58b236a Fix AttributeError with nested env vars for dict fields (#785) (#786)
• 4933f06 Fix CLI parsing error for set field types since 2.13.0 (#787) (#788)
• bd0ebe6 Fix RecursionError with self-referential models in CliApp (#783)
• eb7840e Fix regression for bool fields since 2.13.0 (#784)
• 198e71c Prepare release 2.13.0 (#777)
• de71e84 Add nested path support for yaml_config_section (fixes #772) (#773)
• 0f8f951 CLI Union Discriminator Choices in Help (#764)
• ce9804c CLI coerce numeric types. (#769)
• Additional commits viewable in compare view

Updates openai from 2.14.0 to 2.31.0

Release notes

Sourced from openai's releases.

v2.31.0

2.31.0 (2026-04-08)

Full Changelog: v2.30.0...v2.31.0

Features

• api: add phase field to conversations message (3e5834e)
• api: add web_search_call.results to ResponseIncludable type (ffd8741)
• client: add support for short-lived tokens (#1608) (22fe722)
• client: support sending raw data over websockets (f1bc52e)
• internal: implement indices array format for query and form serialization (49194cf)

Bug Fixes

• client: preserve hardcoded query params when merging with user params (92e109c)
• types: remove web_search_call.results from ResponseIncludable (d3cc401)

Chores

• tests: bump steady to v0.20.1 (d60e2ee)
• tests: bump steady to v0.20.2 (6508d47)

Documentation

• api: update file parameter descriptions in vector_stores files and file_batches (a9e7ebd)

v2.30.0

2.30.0 (2026-03-25)

Full Changelog: v2.29.0...v2.30.0

Features

• api: add keys field to Click/DoubleClick/Drag/Move/Scroll computer actions (ee1bbed)

Bug Fixes

• api: align SDK response types with expanded item schemas (f3f258a)
• sanitize endpoint path params (89f6698)
• types: make type required in ResponseInputMessageItem (cfdb167)

Chores

• ci: skip lint on metadata-only changes (faa93e1)

... (truncated)

Changelog

Sourced from openai's changelog.

2.31.0 (2026-04-08)

Full Changelog: v2.30.0...v2.31.0

Features

• api: add phase field to conversations message (3e5834e)
• api: add web_search_call.results to ResponseIncludable type (ffd8741)
• client: add support for short-lived tokens (#1608) (22fe722)
• client: support sending raw data over websockets (f1bc52e)
• internal: implement indices array format for query and form serialization (49194cf)

Bug Fixes

• client: preserve hardcoded query params when merging with user params (92e109c)
• types: remove web_search_call.results from ResponseIncludable (d3cc401)

Chores

• tests: bump steady to v0.20.1 (d60e2ee)
• tests: bump steady to v0.20.2 (6508d47)

Documentation

• api: update file parameter descriptions in vector_stores files and file_batches (a9e7ebd)

2.30.0 (2026-03-25)

Full Changelog: v2.29.0...v2.30.0

Features

• api: add keys field to Click/DoubleClick/Drag/Move/Scroll computer actions (ee1bbed)

Bug Fixes

• api: align SDK response types with expanded item schemas (f3f258a)
• sanitize endpoint path params (89f6698)
• types: make type required in ResponseInputMessageItem (cfdb167)

Chores

• ci: skip lint on metadata-only changes (faa93e1)
• internal: update gitignore (c468477)
• tests: bump steady to v0.19.4 (f350af8)

... (truncated)

Commits

• 750354e release: 2.31.0
• 5be9536 feat(client): add support for short-lived tokens (#1608)
• f1fd4fa feat(client): support sending raw data over websockets
• 73ea2f7 fix(client): preserve hardcoded query params when merging with user params
• 454b257 feat(api): add web_search_call.results to ResponseIncludable type
• de2c7b1 chore(tests): bump steady to v0.20.2
• 6efca95 chore(tests): bump steady to v0.20.1
• 2076d85 feat(api): add phase field to conversations message
• c0c59af fix(types): remove web_search_call.results from ResponseIncludable
• ad7cc79 docs(api): update file parameter descriptions in vector_stores files and file...
• Additional commits viewable in compare view

Updates eth-hash from 0.7.1 to 0.8.0

Changelog

Sourced from eth-hash's changelog.

eth-hash v0.8.0 (2026-03-25)

No significant changes.

eth-hash v0.8.0-beta.1 (2025-12-17)

Breaking Changes

- Drop support for Python 3.8 and 3.9 (`[#66](https://github.com/ethereum/eth-hash/issues/66) <https://github.com/ethereum/eth-hash/issues/66>`__)
Features

- Add support for Python 3.14 (`[#66](https://github.com/ethereum/eth-hash/issues/66) &lt;https://github.com/ethereum/eth-hash/issues/66&gt;`__)
</code></pre>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>

<li><a href="https://github.com/ethereum/eth-hash/commit/b599a9632c696d0fb63b1903e79b0608f302e4d2&quot;&gt;&lt;code&gt;b599a96&lt;/code&gt;&lt;/a> Bump version: 0.8.0-beta.1 → 0.8.0</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/3651eea939a90c08328bb69fbbc061c1544c34a7&quot;&gt;&lt;code&gt;3651eea&lt;/code&gt;&lt;/a> Compile release notes for v0.8.0</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/fe118e793e1e626762120419bf72548b8f2ec604&quot;&gt;&lt;code&gt;fe118e7&lt;/code&gt;&lt;/a> Bump version: 0.7.1 → 0.8.0-beta.1</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/e2a6b53d8eddb12c4e0ab9534cf31b134c3d2da4&quot;&gt;&lt;code&gt;e2a6b53&lt;/code&gt;&lt;/a> Compile release notes for v0.8.0-beta.1</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/d1b733ecb7ef7ffe86c9701cf333c55bab8bfb80&quot;&gt;&lt;code&gt;d1b733e&lt;/code&gt;&lt;/a> Merge pull request <a href="https://redirect.github.com/ethereum/eth-hash/issues/66&quot;&gt;#66&lt;/a> from kclowes/template-upgrade</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/c97025fb0df6c9389feb795b03aa8fca832f6c7c&quot;&gt;&lt;code&gt;c97025f&lt;/code&gt;&lt;/a> Add newsfragments for <a href="https://redirect.github.com/ethereum/eth-hash/issues/66&quot;&gt;#66&lt;/a&gt;&lt;/li>

<li><a href="https://github.com/ethereum/eth-hash/commit/b17284c4c9ea8da04f70c994136dd8aeadfca968&quot;&gt;&lt;code&gt;b17284c&lt;/code&gt;&lt;/a> lint</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/62b4055a18a683e637489699b31b07fcd76c2e28&quot;&gt;&lt;code&gt;62b4055&lt;/code&gt;&lt;/a> Fix typing</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/75a75ab080513d4b15946a6e3ec8ade9b8168f6b&quot;&gt;&lt;code&gt;75a75ab&lt;/code&gt;&lt;/a> Fix docs build</li>

<li><a href="https://github.com/ethereum/eth-hash/commit/cca06391f173d09936352dd9a512c2abb801383b&quot;&gt;&lt;code&gt;cca0639&lt;/code&gt;&lt;/a> Add py314-backend-* jobs to circleci config</li>

<li>Additional commits viewable in <a href="https://github.com/ethereum/eth-hash/compare/v0.7.1...v0.8.0&quot;&gt;compare view</a></li>

</ul>

</details>
<br />

Updates pytest from 9.0.2 to 9.0.3

Release notes
Sourced from pytest's releases.

9.0.3
pytest 9.0.3 (2026-04-07)
Bug fixes


#12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.


#13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.
Previously this resulted in an internal assertion failure during plugin loading.
Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.


#13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.


#14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.


#14343: Fixed use of insecure temporary directory (CVE-2025-71176).


Improved documentation

#13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
#13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
#14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
#14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes


#12689: The test reports are now published to Codecov from GitHub Actions.
The test statistics is visible on the web interface.
-- by aleguy02





Commits

a7d58d7 Prepare release version 9.0.3
089d981 Merge pull request #14366 from bluetech/revert-14193-backport
8127eaf Revert "Fix: assertrepr_compare respects dict insertion order (#14050) (#14193)"
99a7e60 Merge pull request #14363 from pytest-dev/patchback/backports/9.0.x/95d8423bd...
ddee02a Merge pull request #14343 from bluetech/cve-2025-71176-simple
74eac69 doc: Update training info (#14298) (#14301)
f92dee7 Merge pull request #14267 from pytest-dev/patchback/backports/9.0.x/d6fa26c62...
7ee58ac Merge pull request #12378 from Pierre-Sassoulas/fix-implicit-str-concat-and-d...
37da870 Merge pull request #14259 from mitre88/patch-4 (#14268)
c34bfa3 Add explanation for string context diffs (#14257) (#14266)
Additional commits viewable in compare view




Updates pytest-cov from 7.0.0 to 7.1.0

Changelog
Sourced from pytest-cov's changelog.

7.1.0 (2026-03-21)


Fixed total coverage computation to always be consistent, regardless of reporting settings.
Previously some reports could produce different total counts, and consequently can make --cov-fail-under behave different depending on
reporting options.
See [#641](https://github.com/pytest-dev/pytest-cov/issues/641) <https://github.com/pytest-dev/pytest-cov/issues/641>_.


Improve handling of ResourceWarning from sqlite3.
The plugin adds warning filter for sqlite3 ResourceWarning unclosed database (since 6.2.0).
It checks if there is already existing plugin for this message by comparing filter regular expression.
When filter is specified on command line the message is escaped and does not match an expected message.
A check for an escaped regular expression is added to handle this case.
With this fix one can suppress ResourceWarning from sqlite3 from command line::
pytest -W "ignore:unclosed database in <sqlite3.Connection object at:ResourceWarning" ...


Various improvements to documentation.
Contributed by Art Pelling in [#718](https://github.com/pytest-dev/pytest-cov/issues/718) <https://github.com/pytest-dev/pytest-cov/pull/718>_ and
"vivodi" in [#738](https://github.com/pytest-dev/pytest-cov/issues/738) <https://github.com/pytest-dev/pytest-cov/pull/738>.
Also closed [#736](https://github.com/pytest-dev/pytest-cov/issues/736) <https://github.com/pytest-dev/pytest-cov/issues/736>.


Fixed some assertions in tests.
Contributed by in Markéta Machová in [#722](https://github.com/pytest-dev/pytest-cov/issues/722) <https://github.com/pytest-dev/pytest-cov/pull/722>_.


Removed unnecessary coverage configuration copying (meant as a backup because reporting commands had configuration side-effects before coverage 5.0).





Commits

66c8a52 Bump version: 7.0.0 → 7.1.0
f707662 Make the examples use pypy 3.11.
6049a78 Make context test use the old ctracer (seems the new sysmon tracer behaves di...
8ebf20b Update changelog.
861d30e Remove the backup context manager  - shouldn't be needed since coverage 5.0, ...
fd4c956 Pass the precision on the nulled total (seems that there's some caching goion...
78c9c4e Only run the 3.9 on older deps.
4849a92 Punctuation.
197c35e Update changelog and hopefully I don't forget to publish release again :))
14dc1c9 Update examples to use 3.11 and make the adhoc layout example look a bit more...
Additional commits viewable in compare view




Updates ruff from 0.14.10 to 0.15.10

Release notes
Sourced from ruff's releases.

0.15.10
Release Notes
Released on 2026-04-09.
Preview features

[flake8-logging] Allow closures in except handlers (LOG004) (#24464)
[flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
[flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

Avoid emitting multi-line f-string elements before Python 3.12 (#24377)
Avoid syntax error from E502 fixes in f-strings and t-strings (#24410)
Strip form feeds from indent passed to dedent_to (#24381)
[pyupgrade] Fix panic caused by handling of octals (UP012) (#24390)
Reject multi-line f-string elements before Python 3.12 (#24355)

Rule changes

[ruff] Treat f-string interpolation as potential side effect (RUF019) (#24426)

Server

Add support for custom file extensions (#24463)

Documentation

Document adding fixes in CONTRIBUTING.md (#24393)
Fix JSON typo in settings example (#24517)

Contributors

@​charliermarsh
@​dylwil3
@​silverstein
@​anishgirianish
@​shizukushq
@​zanieb
@​AlexWaygood

Install ruff 0.15.10
Install prebuilt binaries via shell script
curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.10/ruff-installer.sh | sh



... (truncated)


Changelog
Sourced from ruff's changelog.

0.15.10
Released on 2026-04-09.
Preview features

[flake8-logging] Allow closures in except handlers (LOG004) (#24464)
[flake8-self] Make SLF diagnostics robust to non-self-named variables (#24281)
[flake8-simplify] Make the fix for collapsible-if safe in preview (SIM102) (#24371)

Bug fixes

<...
Description has been truncated

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.