Update Python dependencies (16/edge)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
boto3	^1.43.10 → ^1.43.17
coverage	^7.14.0 → ^7.14.1
jubilant	^1.9.0 → ^1.10.0
ops (changelog)	3.7.0 → 3.7.1
ops (changelog)	^3.7.0 → ^3.7.1
poetry-core	>=2.4.0 → >=2.4.1
postgresql-charms-single-kernel	16.2.1 → 16.2.2
ruff (source, changelog)	^0.15.13 → ^0.15.15
ty (changelog)	^0.0.37 → ^0.0.40

---

Release Notes

boto/boto3 (boto3)

v1.43.17

Compare Source

=======

• api-change:appstream: [botocore] Amazon WorkSpaces Applications now supports BYOL (Bring Your Own License). This enables customers to import their own WorkSpaces images and use them in WorkSpaces Applications.
• api-change:bedrock: [botocore] Add support for ModelPackageArn in Bedrock's CreateCustomModel API
• api-change:bedrock-agentcore: [botocore] Added Harness support for LiteLLM model configuration for third-party model providers. Added S3 and Git skill source types. Added Responses API format for OpenAI and Bedrock models. Added runtimeUserId and runtimeClientError to InvokeHarness.
• api-change:bedrock-agentcore-control: [botocore] Added Harness support for LiteLLM model configuration for third-party model providers. Added S3 and Git skill source types. Added Responses API format for OpenAI and Bedrock models. Added runtimeUserId parameter to InvokeHarness for end-user identification.
• api-change:bedrock-runtime: [botocore] Support system role in message
• api-change:controlcatalog: [botocore] AWS Control Catalog - Added GovernedProviders response field and inclusion filter to GetControl and ListControls APIs to identify and filter by cloud provider. Added ParameterRequirementSummary response field indicating parameter requirements.
• api-change:customer-profiles: [botocore] BatchPutProfileObject API adds multiple profile objects to a domain of a given ObjectType in a single API call.
• api-change:deadline: [botocore] Added support for persistent storage on Service-Managed Fleets, allowing customers to configure persistent storage that preserves data across worker sessions which reduces job startup times for workloads with large software installations or asset caches.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:iot: [botocore] Adds new connectivity-related fields to Fleet Indexing API requests and responses.
• api-change:iot-data: [botocore] Adding GetConnection, ListSubscriptions, and SendDirectMessage APIs to IoT Data Plane
• api-change:opensearchserverless: [botocore] Adds support for deletion protection on collections, ability to create NEXTGEN collection groups and autoscaling visibility for NEXTGEN collection groups
• api-change:pcs: [botocore] This release adds support for configuring scaleDownIdleTimeInSeconds at the compute node group level, allowing customers to set different idle timeouts per node group. Previously this setting was only available at the cluster level.
• api-change:resiliencehubv2: [botocore] This is the initial SDK release for the next generation of Resilience Hub.
• api-change:s3control: [botocore] Update the minimum value of MinStorageBytesPercentage in StorageLensPrefixLevel.SelectionCriteria from 0.1 to 1, aligning the model with the documented contract.

v1.43.16

Compare Source

=======

• api-change:bedrock-data-automation: [botocore] Matcher Fallback extends the CustomOutputConfiguration for the Document modality in DataAutomationProjects, enabling a fallback blueprint when no match is found. A FALLBACK match status is returned, improving the matching experience and guaranteeing customers always receive CustomOutputResults.
• api-change:ecs: [botocore] Add support for Neuron device resource requirements for Amazon ECS
• api-change:elementalinference: [botocore] Added support for smart subtitles in Elemental Inference, enabling automatic generation of subtitles for media content. Available in English, Spanish, French, German, Italian, and Portuguese.
• api-change:medialive: [botocore] AWS Elemental MediaLive now supports Smart Subtitles, a new caption source that uses AWS Elemental Inference to automatically generate WebVTT and TTML captions from source audio. Available in English, Spanish, French, German, Italian, and Portuguese.
• api-change:opensearch: [botocore] OpenSearch will now support multi-segment paths in JWKS URLs.
• api-change:organizations: [botocore] AWS Organizations now emits CloudTrail events (AccountJoinedOrganization, AccountDepartedOrganization) to the management account for membership changes, including join and departure method and timestamp.
• api-change:sagemaker: [botocore] Adds shared environment support for Restricted Instance Groups (RIGs) on SageMaker HyperPod, enabling cross-RIG workload scheduling and FSx sharing. This unlocks shared CPU-GPU environments needed for cost-efficient RL training (e.g., Nova Forge). Adds p6 instance support for recommendation jobs

v1.43.15

Compare Source

=======

• api-change:backup: [botocore] Launching S3 PITR malware scanning support for AWS Backup
• api-change:batch: [botocore] Increase the maximum value of jobExecutionTimeoutMinutes to support longer job timeouts during compute environment infrastructure updates.
• api-change:budgets: [botocore] AWS Budget Name Validation Documentation Updates.
• api-change:datazone: [botocore] Added resourceConfigurations and allowUserProvidedConfigurations fields to environment blueprint configuration APIs, enabling customers who migrated from V1 to V2 domains to update resource configurations (such as lineage schedules) programmatically via the SDK.
• api-change:guardduty: [botocore] Add malware scan support for Continuous Backups, also known as Point-In-Time Recovery Points (PITR).
• api-change:resourcegroupstaggingapi: [botocore] The GetResources API now returns MissingTagKeys in ComplianceDetails, listing tag keys defined as required in the ReportRequiredTagBlock block of the effective tag policy that are absent from the resource.

coveragepy/coveragepy (coverage)

v7.14.1

Compare Source

• Fix: the HTML report used typographic niceties to make file paths more
  readable by adding a small amount of space around slashes. Those spaces
  interfered with searching the page for file paths of interest. Now the report
  uses CSS to accomplish the same visual tweak so that searches with slashes
  work correctly. Closes issue 2170_.

• Add a 3.16 PyPI classifier <hugo-316_>_ since we test on the 3.16 main
  branch.

.. _issue 2170: #​2170
.. _hugo-316: https://mastodon.social/@​hugovk/116588523571204490

.. _changes_7-14-0:

canonical/jubilant (jubilant)

v1.10.0

Compare Source

Features

• Add add_machine command (#​305)

Fixes

• Add ./ for relative pathlib.Path objects in deploy (#​317)

Documentation

• Replace the PGP key with the upstream page in SECURITY.md (#​316)
• Improve support for agents, with Sphinx Stack upgrade (#​322)

CI

• Use sbomber to security scan and generate SBOM on release (#​325)

canonical/operator (ops)

v3.7.1

Compare Source

Fixes

• Pass the endpoint name through to relation-get (#​2499)

Documentation

• Add a how-to guide focused on debugging charms (#​2386)
• Add metadata descriptions to the debug and public listing how-to guides (#​2415)
• Update tutorials and how-tos to use pytest-jubilant (#​2406)
• Add how-to guide about CI (#​2405)
• Test COS Lite integration with the k8s-5-observe charm (#​2411)
• Update tutorials and example charms to match Charmcraft 4.2 (#​2407)
• Update api_demo_server version to support non-amd64 architectures (#​2448)
• Pin to 24.04 when launching VMs (#​2457)
• Explain how to remove errored apps in k8s tutorial (#​2445)
• Align example charms with pre-release Charmcraft (#​2444)
• Add how-to guide for naming and initialising a charm (#​2449)
• Add a how-to guide about publishing a charm (#​2420)
• In the tutorials, recommend initing from GitHub (#​2459)
• Fix integration tests of K8s tutorial charms (#​2471)
• Replace the PGP key with the upstream page in SECURITY.md (#​2474)
• Bump api_demo_server to 1.0.4 in docs and example charms (#​2473)
• Refresh the machine workloads how-to (#​2443)
• Add COS Lite integration tests to K8s tutorial (#​2478)
• Add git workflow guidance for contributors (#​2453)
• Update profile guidance in HACKING.md (#​2486)
• Explain how to add an icon to a charm (#​2451)
• Adopt latest Charmcraft profiles, incl juju_setup marker on integration tests (#​2497)
• Improve support for agents, with Sphinx Stack upgrade (#​2495)
• Improve how-to about managing files in containers (#​2470)
• Improve Container.pull docs to avoid leaky files (#​2508)
• Clarify Secret manage-permission error in testing.State (#​2510)

Tests

• Extend the type checking of the ops-scenario tests (#​2234, #​2235)
• Wait on ExecProcess after expected TypeError (#​2509)

CI

• Drop external action for checking PR title format (#​2388)
• Add a dependabot cooldown (#​2413)
• Sort the directory entries when updating the best practices list (#​2422)
• Configure dependabot for the example charms (#​2426)
• Pin zizmor and TIOBE tool versions in pyproject.toml rather than the workflow (#​2437)
• Add 26.04 to smoke tests and remove outdated metadata.yaml (#​2450)
• Use charmcraft test for example charm (#​2440)
• Add workflow_dispatch trigger to workflows where it is useful (#​2468)
• Ensure the correct job is selected in updating charm pins (#​2500)

astral-sh/ruff (ruff)

v0.15.15

Compare Source

Released on 2026-05-28.

Preview features

• Fix Markdown closing fence handling (#​25310)
• [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#​22560)

Bug fixes

• [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#​21540)

Performance

• Avoid redundant TokenValue drops in the lexer (#​25300)
• Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#​25354)
• Use ThinVec in AST to shrink Stmt (#​25361)

Documentation

• Fix line-length example for --config option (#​25389)
• [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#​25286)
• [mccabe] Improve example (C901) (#​25287)
• [pyupgrade] Clarify fix safety docs (UP007, UP045) (#​25288)
• [refurb] Document FURB192 exception change for empty sequences (#​25317)
• [ruff] Document false negative for user-defined types (RUF013) (#​25289)

Formatter

• Fix formatting of lambdas nested within f-strings (#​25398)

Server

• Return code action for codeAction/resolve requests that contain no or no valid URL (#​25365)

Other changes

• Expand semantic syntax errors for invalid walruses (#​25415)

Contributors

• @​chirizxc
• @​ntBre
• @​adityasingh2400
• @​charliermarsh
• @​fallintoplace
• @​martin-schlossarek
• @​MichaReiser
• @​Ruchir28

astral-sh/ty (ty)

v0.0.40

Compare Source

Released on 2026-05-27.

Bug fixes

• Accept complete enum-literal alias unions as enums (#​25341)
• Fix diagnostics in ignored folders after adding new files (#​25236)
• Show LiteralString when hovering over an inline of a literal string in an IDE (#​25373)

LSP server

• Follow aliases when attempting to map a definition in a stub file to its "real" runtime definition (#​25328)
• Treat Python notebook text documents as Python sources (#​25393)
• Fix autocompletion for elements inside incomplete list comprehensions (#​25326)

Diagnostics

• Add a subdiagnostic help message to invalid-generic-class diagnostics regarding incompatible variance (#​25385)

Core type checking

• Ignore and reject annotations on non-name targets (#​25324)
• Infer class attributes assigned by metaclass initialization (#​25342)
• Reject inconsistent generic bases in "dynamic" classes created using type(...), types.new_type(...), etc. (#​25413)
• Resolve enum names for all unions arms in Literal enum subsets (#​25379)
• Support typing.TypeForm (#​25334)
• Fix many issues in the generics solver by using constraint sets more widely to solve type variables (#​24540)

Contributors

• @​anuraaga
• @​dcreager
• @​charliermarsh
• @​MichaReiser
• @​Dev-X25874

v0.0.39

Compare Source

Released on 2026-05-22.

This release removes the Python 3.9 branches from our vendored standard library stubs. ty now only has "full" support for
Python 3.10 and later, but will still report version-specific syntax errors and other diagnostics when --python-version 3.9
is provided via the CLI.

Bug fixes

• Avoid panicking on __new__ assignments to classes (#​25282)
• Preserve declaration order when synthesizing class fields (#​25249)
• Respect dict-compatible fallbacks in TypedDict unions (#​25242)
• Retain recursively-defined state in binary expressions (#​25277)

LSP server

• Add Quick Fix to remove redundant cast (#​25211)
• Classify property declaration semantic tokens (#​25322)
• Escape HTML syntax in docstring rendering (#​25247)
• Prefer symbols from standard library over those of the same name from third party libraries for import completions. (#​25108)
• Support type aliases in document symbols (#​25302)

Diagnostics

• Add error context for extra callable parameters (#​25269)

Performance

• Avoid exponential blow-up in fall-through narrowing (#​25278)
• Speed up include filtering for projects with many literal include patterns (#​25266)

Core type checking

• Allow enum member accesses on self (#​25077)
• Emit a diagnostic for subclassing with order=True (#​21704)
• Full-scope bidirectional inference for unconstrained container literals (#​25279)
• Infer dict(TypedDict) as dict[str, object] (#​24852)
• Refine Callable class-decorator fallback for unknown results (#​25250)
• Reject incompatible explicit variance in generic base classes (#​25327)
• Support multi-inference through type aliases (#​25245)
• Sync vendored typeshed stubs (#​25271, #​25172)

Contributors

• @​ibraheemdev
• @​MatthewMckee4
• @​sqqueak
• @​lerebear
• @​sharkdp
• @​dhimasardinata
• @​MichaReiser
• @​charliermarsh

v0.0.38

Compare Source

Released on 2026-05-19.

Bug fixes

• Fix panic in enum literal during cycle recovery (#​25237)
• Fix panic from lazy NewType base expansion during cycle recovery (#​25234)
• Fix class-body global lookup before class binding (#​25224)
• Handle aliased dict fallbacks in TypedDict unions (#​25241)
• Ignore _generate_next_value_ with custom construction hooks (#​25210)

LSP server

• Fix find references for except handlers (#​25231)
• Preserve delimiters when folding expressions (#​24999)
• Use incremental file walk on .gitignore changes (#​25183)

Core type checking

• Add first-class support for enum complements (#​24961)
• Allow known non-field writes on frozen dataclass subclasses (#​25087)
• Ignore generic specialization in layout compatibility checks (#​25178)
• Preserve short-circuit bindings in all condition consumers (#​25160)
• Support class decorators (#​25091)
• Support custom _generate_next_value_ methods in enums (#​25196)

Contributors

• @​MatthewMckee4
• @​MichaReiser
• @​charliermarsh
• @​lerebear
• @​thejchap

---

Configuration

📅 Schedule: (in timezone Etc/UTC)

• Branch creation
  • Between 01:00 AM and 07:59 AM, only on Tuesday (* 1-7 * * 2)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.