From f7803cd3effffd2ca3b3d787665b74675a931421 Mon Sep 17 00:00:00 2001
From: Intent <intent@local>
Date: Fri, 15 May 2026 18:31:28 +0200
Subject: [PATCH] chore(deps): pin osxphotos>=0.75.6 + dependency audit

Pin osxphotos to >=0.75.6 in pyproject.toml so we capture the
LetsMove-Kill-on-Hang protection (osxphotos v0.69+) and lock
out accidental downgrades, while still allowing future patch/minor
updates.

Per STABILITY_PLAN_2026-05-15.md.

Audit:
- uv lock produced no transitive bumps (resolver was already at
  osxphotos 0.75.6); only the dependency specifier line in uv.lock
  changed.
- Tests: 263 passed (baseline parity).
---
 pyproject.toml | 2 +-
 uv.lock        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/pyproject.toml b/pyproject.toml
index 3f80f98..00c5fee 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -8,7 +8,7 @@ version = "1.0.2"
 description = "Intelligent photo migration helper for Apple Photos on macOS"
 requires-python = ">=3.13"
 dependencies = [
-  "osxphotos",
+  "osxphotos>=0.75.6",
   "click",
   "pydantic",
   "websockets",
diff --git a/uv.lock b/uv.lock
index 3f88ec8..ecd09cd 100644
--- a/uv.lock
+++ b/uv.lock
@@ -481,7 +481,7 @@ requires-dist = [
     { name = "aiohttp" },
     { name = "click" },
     { name = "customtkinter", specifier = ">=5.2.2" },
-    { name = "osxphotos" },
+    { name = "osxphotos", specifier = ">=0.75.6" },
     { name = "pillow", specifier = ">=12.2.0" },
     { name = "pydantic" },
     { name = "websockets" },