fix(deps): update all non-major dependencies

[a-klos]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update	Pending
@sit-onyx/icons (source)	1.9.1 -> 1.10.0			devDependencies	minor
@types/node (source)	22.19.19 -> 22.19.20			devDependencies	patch	22.19.21
@vue/eslint-config-typescript	14.7.0 -> 14.8.0			devDependencies	minor
@vue/test-utils	2.4.10 -> 2.4.11			devDependencies	patch
authlib	1.6.12 -> 1.7.2			dependencies	minor
axios (source)	1.16.1 -> 1.17.0			devDependencies	minor
azure-core (source)	1.38.0 -> 1.41.0			dependencies	minor
boto3	1.42.49 -> 1.43.24			dependencies	minor	1.43.29 (+4)
boto3	1.42.44 -> 1.43.24			dependencies	minor	1.43.29 (+4)
botocore	1.42.49 -> 1.43.24			dependencies	minor	1.43.29 (+4)
conventional-changelog-conventionalcommits (source)	9.1.0 -> 9.3.1			devDependencies	minor
coverage	7.13.4 -> 7.14.1			test	minor
coverage	7.11.3 -> 7.14.1			test	minor
daisyui (source)	5.5.20 -> 5.5.23			devDependencies	patch
datasets	4.5.0 -> 4.8.5			dependencies	minor
debugpy (source)	1.8.20 -> 1.8.21			dev	patch
debugpy (source)	1.8.17 -> 1.8.21			dev	patch
dependency-injector	4.48.3 -> 4.49.0			dependencies	minor
docling-core (changelog)	2.78.1 -> 2.79.0			dependencies	minor	2.82.0 (+2)
eslint-plugin-vue (source)	10.9.1 -> 10.9.2			devDependencies	patch
fastmcp	3.2.0 -> 3.4.2			dependencies	minor
filelock	3.29.0 -> 3.29.1			dependencies	patch	3.29.4 (+2)
filelock	3.20.3 -> 3.29.1			dependencies	minor	3.29.4 (+2)
flake8-pyproject (changelog)	1.2.3 -> 1.2.4			lint	patch
langchain (changelog)	1.2.9 -> 1.3.4			dependencies	minor	1.3.9 (+3)
langchain-community (source)	0.4.1 -> 0.4.2			dependencies	patch
langchain-core (changelog)	1.4.0 -> 1.4.1			dependencies	patch	1.4.7 (+5)
langchain-experimental (changelog)	0.4.1 -> 0.4.2			dependencies	patch
langchain-ollama (changelog)	1.0.1 -> 1.1.0			dependencies	minor
langfuse	3.14.1 -> 3.15.0			dependencies	minor
langfuse (source)	1.5.31 -> 1.5.33				patch	1.5.34
langfuse/langfuse	3.175.0 -> 3.178.0				minor	3.185.0 (+7)
langfuse/langfuse-worker	3.175.0 -> 3.178.0				minor	3.185.0 (+7)
langsmith	0.8.8 -> 0.8.9			dependencies	patch	0.8.15 (+4)
lxml (source, changelog)	6.1.0 -> 6.1.1			dependencies	patch
mammoth	1.11.0 -> 1.12.0			dependencies	minor
markitdown	0.1.4 -> 0.1.6			dependencies	patch
numpy (changelog)	2.3.5 -> 2.4.6			dependencies	minor
ollama (source)	1.57.0 -> 1.59.0				minor	1.60.0
poetry (changelog)	2.3.4 -> 2.4.1			dependencies	minor
protobuf	6.33.5 -> 6.33.6			dependencies	patch
pydantic (changelog)	2.12.5 -> 2.13.4			dependencies	minor
pydantic-settings (changelog)	2.12.0 -> 2.14.1			dependencies	minor
pypandoc	1.16.2 -> 1.17			dependencies	minor
pypandoc-binary	1.16.2 -> 1.17			dependencies	minor
pypandoc_binary	1.16.2 -> 1.17			dependencies	minor
pytest-asyncio (changelog)	1.3.0 -> 1.4.0			test	minor
qdrant (source)	1.18.0 -> 1.18.2				patch
qdrant-client	1.16.2 -> 1.18.0			dependencies	minor
stackit (source)	~> 0.96.0 -> ~> 0.98.0			required_provider	minor
tesserocr	2.9.2 -> 2.10.0			dependencies	minor
torch	2.10.0+cpu -> 2.12.0+cpu			dependencies	minor
torchvision	^0.25.0 -> ^0.27.0			dependencies	minor
tqdm (changelog)	4.67.3 -> 4.68.1			dependencies	minor	4.68.2
unstructured	0.18.31 -> 0.22.31			dependencies	minor	0.23.1 (+2)
uvicorn (changelog)	^0.47.0 -> ^0.49.0			dependencies	minor
vue-eslint-parser	10.4.0 -> 10.4.1			devDependencies	patch
vue-i18n (source)	11.4.4 -> 11.4.5			dependencies	patch

---

Release Notes

SchwarzIT/onyx (@​sit-onyx/icons)

v1.10.0

Compare Source

Minor Changes

• 0bb52be: feat: update icons

New

• backpack
• pathsign
• telemetry-router

vuejs/eslint-config-typescript (@​vue/eslint-config-typescript)

v14.8.0

Compare Source

What's Changed

• feat: add includeDotFolders option by @​mlmoravek in #​278

New Contributors

• @​arpitjain099 made their first contribution in #​285
• @​mlmoravek made their first contribution in #​278

Full Changelog: vuejs/eslint-config-typescript@v14.7.0...v14.8.0

vuejs/test-utils (@​vue/test-utils)

v2.4.11

Compare Source

compare changes

🩹 Fixes

• Drop legacy Mutation Event listener entries (#​2844)
• Handle setData() correctly for components using both setup() and data() (#​2846)
• Export GlobalMountOptions type (#​2851)
• Set spec-compliant event.code on keydown/keyup (#​2850)

❤️ Contributors

• Cédric Exbrayat (@​cexbrayat)
• Renato de Leão (@​renatodeleao)
• Matt Van Horn (@​mvanhorn)
• Carsten Brachem (@​cbrachem)
• Ahmad Hanan (@​AhmadHannan037)
• Paul Cochrane (@​paultcochrane)
• Arpit Jain (@​arpitjain099)

authlib/authlib (authlib)

v1.7.2

Compare Source

What's Changed

• Fix the readme links by @​azmeuk in #​886
• Allow non-recommended algorithms in ClientSecretJWT and PrivateKey by @​azmeuk in #​887
• Validate BCP47 language tags with a regex by @​azmeuk in #​873
• Fix RFC7523 signing with non RSA keys by @​azmeuk in #​884

Full Changelog: authlib/authlib@v1.7.1...v1.7.2

v1.7.1

Compare Source

What's Changed

• Fix authlib.jose deprecation warning poping from _joserfc_helpers by @​azmeuk in #​881
• Fix redirecting to unvalidated redirect_uri on InvalidScopeError in OpenIDImplicitGrant and OpenIDHybridGrant.

Full Changelog: authlib/authlib@v1.7.0...v1.7.1

v1.7.0

Compare Source

What's Changed

• Authorization and token endpoints request empty scope parameter management by @​azmeuk in #​847
• Support from Python 3.10 to 3.14 by @​azmeuk in #​850
• Allow composition of AuthorizationServerMetadata by @​azmeuk in #​853
• Make require_oauth parenthesis optional by @​azmeuk in #​855
• Fix expires_at behavior when its value is 0 by @​azmeuk in #​854
• Migration to joserfc by @​lepture in #​852
• RP-initiated logout by @​frohrlich in #​849
• Fix get_jwt_config by @​lepture in #​858
• chore(ci): Update PyPy version from 3.10 to 3.11 by @​cclauss in #​863
• fix: remove "none" from default authlib.jose.jwt algorithms by @​lepture in #​860
• fix: normalize resolve_client_public_key method by @​lepture in #​861
• Implement rfc9700 PKCE downgrade countermeasure by @​azmeuk in #​864
• Use correct syntax for tox.requires in tox.ini by @​alex-ball in #​868
• Set client session User-Agent when fetching server metadata and JWKs by @​alex-ball in #​867
• fix: use the real application object for Flask by @​nblock in #​869
• Accept the issuer URL as a valid audience by @​azmeuk in #​865
• Don't nest InvalidTokenError extra attribute by @​azmeuk in #​872
• Documentation overhaul by @​azmeuk in #​875
• Update README.md docs.authlib.org/en/latest => docs.authlib.org/en/stable by @​guillett in #​876
• Merge release/1.6 branch by @​lepture in #​877

New Contributors

• @​frohrlich made their first contribution in #​849
• @​cclauss made their first contribution in #​863
• @​alex-ball made their first contribution in #​868
• @​nblock made their first contribution in #​869
• @​guillett made their first contribution in #​876

Full Changelog: authlib/authlib@v1.6.10...v1.7.0

axios/axios (axios)

v1.17.0

Compare Source

This release adds Node HTTP zstd decompression, hardens config and release workflows, and fixes authentication, header, proxy, and type-handling regressions.

Azure/azure-sdk-for-python (azure-core)

v1.41.0

Compare Source

Features Added

• AZURE_LOG_LEVEL now accepts VERBOSE (case-insensitive) as an alias for DEBUG. #​46668

Other Changes

• Invalid values for the AZURE_LOG_LEVEL, AZURE_TRACING_ENABLED, and AZURE_SDK_TRACING_IMPLEMENTATION environment variables no longer raise errors. Instead, a warning is logged and the default value is used (INFO for AZURE_LOG_LEVEL). #​46668

v1.40.0

Compare Source

Features Added

• Added support for per-operation http_logging_level overrides in HttpLoggingPolicy. #​44115
• Introduced the keyword argument additional_allowed_query_params to DistributedTracingPolicy and HttpLoggingPolicy to allow users to specify additional URL query parameters that should not be redacted in span attributes or logs. #​46482
  • Users can specify this at the SDK client level by passing additional_allowed_query_params to the client constructor. For example: client = ServiceClient(..., additional_allowed_query_params={"custom_param"}). This will apply to all operations performed by the client.

Other Changes

• URL attributes in HTTP tracing spans will now have query parameters sanitized by default. To add additional query parameters that should not be redacted, use the additional_allowed_query_params argument in your client constructor. #​46482
• Python 3.9 is no longer supported. Please use Python version 3.10 or later.

v1.39.0

Compare Source

Breaking Changes

• Changed the previously undocumented azure_cloud setting environment variable from AZURE_CLOUD to AZURE_SDK_CLOUD_CONF.

v1.38.3

Compare Source

Bugs Fixed

• Fixed PipelineClient.format_url to preserve trailing slash in the base URL when the URL template is query-string-only (e.g., ?key=value). #​45365
• Fixed SensitiveHeaderCleanupPolicy to persist the insecure_domain_change flag across retries after a cross-domain redirect. #​45518

Other Changes

• Added jitter to token refresh timing in BearerTokenCredentialPolicy and AsyncBearerTokenCredentialPolicy to prevent simultaneous token refresh attempts across multiple processes. This helps mitigate the thundering herd problem during token refresh operations. #​43720

v1.38.2

Compare Source

Bugs Fixed

• Fixed PipelineClient.format_url to preserve the leading slash when the URL template starts with /?. #​45218

v1.38.1

Compare Source

Bugs Fixed

• Fixed PipelineClient.format_url to avoid adding trailing slashes when the URL template contains only query parameters. #​45044

boto/boto3 (boto3)

v1.43.24

Compare Source

=======

• api-change:emr-serverless: [botocore] Adds support for updating max capacity and custom fields while application is started
• api-change:mediaconvert: [botocore] Adds support for configurable number of Clear Lead segments at the beginning of encrypted output. Adds support for multiple trickplay variants.
• api-change:payment-cryptography: [botocore] Adds CloudFormation support for resource-based policies on AWS Payment Cryptography keys.
• api-change:quicksight: [botocore] Adds support for Knowledge Base APIs and Index Capacity API
• api-change:sagemaker: [botocore] This release adds support for MLflow experiment tracking in SageMaker inference optimization. CreateAIRecommendationJob and CreateAIBenchmarkJob now accept an optional OutputConfig.MlflowConfig (MLflow App ARN, experiment, run name) to stream benchmark metrics and artifacts to your own MLflow App.

v1.43.23

Compare Source

=======

• api-change:appflow: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:appintegrations: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:auditmanager: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:chime-sdk-voice: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:cloudformation: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:config: [botocore] AWS Config now supports internal service-linked rules, allowing AWS service partners to deploy Config rules for customers and use the evaluation results to build enhanced features.
• api-change:connectparticipant: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:efs: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:emr: [botocore] Added support for Spark Connect interactive sessions on Amazon EMR on EC2 with new APIs - StartSession, GetSession, GetSessionEndpoint, ListSessions, and TerminateSession. Added sessionEnabled field in RunJobFlow and DescribeCluster to enable Spark Connect endpoints on EMR clusters.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:glue: [botocore] AWS Glue Interactive Sessions now supports Apache Spark Connect, enabling remote Spark execution over gRPC with minimal client-side dependencies. Adds GetSessionEndpoint and GetDashboardUrl APIs. Modifies CreateSession now accepts SPARK CONNECT session type.
• api-change:guardduty: [botocore] Remove unsupported RDS field for filter
• api-change:ivs: [botocore] adds UpdateAdConfiguration operation to AWS IVS low-latency APIs
• api-change:kendra: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:sagemaker: [botocore] Adds the IncludedData parameter to DescribeModelCard and DescribeModelPackage. Set it to MetadataOnly to retrieve a model card without decrypt permission on the customer managed AWS KMS key (default AllData returns full content). Adds support for the MTRL Job resource in SageMaker Search.
• api-change:sns: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:wickr: [botocore] AWS Wickr now allows network administrators to configure a maximum session duration for non-SSO users in security groups, and display customizable consent popups to users at login for terms of use or compliance acknowledgements.
• api-change:workdocs: [botocore] Adding new BDD representation of endpoint ruleset
• api-change:workspaces: [botocore] Adding new BDD representation of endpoint ruleset

v1.43.22

Compare Source

=======

• api-change:arc-region-switch: [botocore] ARC Region Switch now supports three new execution blocks for multi-Region database workloads-Amazon Aurora Serverless scaling, Amazon Aurora Provisioned scaling, and Amazon Neptune Global Database failover.
• api-change:ce: [botocore] Added support for target-coverage-based Savings Plans purchase analysis. The StartCommitmentPurchaseAnalysis API now accepts a new TARGET AVERAGE COVERAGE value for AnalysisType, as well as an optional SavingsPlansTargetCoverage field in SavingsPlansPurchaseAnalysisConfiguration
• api-change:compute-optimizer: [botocore] This release lets customers extend the lookback period for Amazon EBS volume and Amazon ECS rightsizing recommendations to 32 days.
• api-change:connect: [botocore] SearchContacts Connect API now supports filtering contacts by the AI Agents involved in handling them
• api-change:inspector2: [botocore] Inspector support for enhanced scanning
• api-change:socialmessaging: [botocore] Adding support for WhatsApp flow APIs and adding AccessDeniedByMetaException for Template APIs

v1.43.21

Compare Source

=======

• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:geo-routes: [botocore] Add "standardRegionalEndpoints" back to fix 'Could not connect to the endpoint URL'

v1.43.20

Compare Source

=======

• api-change:ec2: [botocore] Amazon EC2 now supports self-service cancellation of future-dated Capacity Reservations. A cancellation charge applies based on remaining commitment. Customers can generate a cancellation quote to review charges before confirming.
• api-change:elasticache: [botocore] Amazon ElastiCache for Valkey now supports durability. This new capability is enabled through a Multi-AZ transactional log, enabling fast recovery and restart during failures.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:geo-routes: [botocore] Added Transit and Intermodal travel modes to CalculateRoutes. Plan routes using public transit (bus, subway, train, ferry) or combine transit with driving, taxi, and rental car segments in a single multi-modal route.
• api-change:guardduty: [botocore] Amazon GuardDuty Runtime Monitoring now supports 3 new SensitiveFileModified finding types (Persistence, PrivilegeEscalation, DefenseEvasion) that detect when security-sensitive system files are modified on EC2 instances or containers, indicating potential compromise through file tampering.
• api-change:iot: [botocore] Fleet indexing documentation update
• api-change:keyspacesstreams: [botocore] Added iterator description to the GetRecords API response for Amazon Keyspaces Change Data Capture (CDC) streams, enabling consumers to track their current position within the stream.
• api-change:lambda: [botocore] Adds configuration for tag propagation to Lambda-managed resources.
• api-change:sagemaker: [botocore] Amazon SageMaker Job is a new service to help you manage various workloads related to model fine tuning, evaluation etc. Two job categories are supported today, AgentRFT for multi-turn agentic reinforcement fine tuning, and AgentRFTEvaluation for evaluating base model or trained model from AgentRFT.
• api-change:sagemakerjobruntime: [botocore] Amazon SageMaker Job Runtime is a new service for managing trajectory data during multi-turn customization jobs. It provides APIs to send inference requests to models during job execution, mark rollouts as complete, and submit reward values for training trajectories.
• api-change:transcribe: [botocore] Release new Language locales including am-ET, es-MX, fa-AF, ht-HT, jv-ID, km-KH, my-MM, sq-AL, ne-NP. The commit shows past locales that have already been release which include cy-gb, ga-ie, gd-gb.

v1.43.19

Compare Source

=======

• api-change:cognito-idp: [botocore] Add support for multi-region replication, enabling synchronization of user data and configurations to a secondary user pool in a standby Region. Add support for customer managed keys (CMK) in AWS KMS for encrypting user pool data at rest.
• api-change:marketplace-agreement: [botocore] Adding Entitlements in SearchAgreements Response
• api-change:quicksight: [botocore] This release adds public APIs for Amazon QuickSight Spaces, Agents, and Flows. Spaces APIs enable management of curated resource collections. Agents APIs provide lifecycle control over AI-powered agents that leverage Spaces. Flows APIs add CRUDL APIs for automated workflows.

v1.43.18

Compare Source

=======

• api-change:bedrock: [botocore] Automated Reasoning checks - Added two build workflows for policies. Iterative Refine Policy uses AI to update policy definitions based on test results and feedback. Resolve Policy Ambiguities consolidates ambiguous variables in Automated Reasoning policies, a common source of ambiguous validation.
• api-change:bedrock-agentcore-control: [botocore] Reference your own AWS Secrets Manager secrets when configuring credential providers, giving you control over encryption, rotation, and access policies instead of using service-managed secrets.
• api-change:groundstation: [botocore] Adds support for Alpha-5 satellite number encoding in the Two-Line Element ephemeris format.
• api-change:omics: [botocore] Add engineSettings to StartRun and GetRun. Add profiles and profileParameterTemplates to GetWorkflow and GetWorkflowVersion.
• api-change:quicksight: [botocore] Adds support for creating, updating, describing, listing, and deleting an OAuthClientApplication resource, a new quicksight resource that allows customers to store OAuth configurations to connect to their databases via 3 Legged OAuth.
• api-change:rds-data: [botocore] RDS Data API arrays (longValues, doubleValues, stringValues, booleanValues) in ExecuteStatement responses now correctly support null elements. Runtime change for JS v3 and .NET. Compile-time change for C plus plus, .NET, Kotlin, Rust. No impact for Java, Python, Ruby, PHP, Go.
• api-change:route53resolver: [botocore] Added BatchCreateFirewallRule, BatchUpdateFirewallRule, BatchDeleteFirewallRule, and ListFirewallRuleTypes APIs. Added FirewallRuleType support to Firewall Rule APIs.
• api-change:sesv2: [botocore] This release introduces support for Tenant Suppression Lists

v1.43.17

Compare Source

=======

• api-change:appstream: [botocore] Amazon WorkSpaces Applications now supports BYOL (Bring Your Own License). This enables customers to import their own WorkSpaces images and use them in WorkSpaces Applications.
• api-change:bedrock: [botocore] Add support for ModelPackageArn in Bedrock's CreateCustomModel API
• api-change:bedrock-agentcore: [botocore] Added Harness support for LiteLLM model configuration for third-party model providers. Added S3 and Git skill source types. Added Responses API format for OpenAI and Bedrock models. Added runtimeUserId and runtimeClientError to InvokeHarness.
• api-change:bedrock-agentcore-control: [botocore] Added Harness support for LiteLLM model configuration for third-party model providers. Added S3 and Git skill source types. Added Responses API format for OpenAI and Bedrock models. Added runtimeUserId parameter to InvokeHarness for end-user identification.
• api-change:bedrock-runtime: [botocore] Support system role in message
• api-change:controlcatalog: [botocore] AWS Control Catalog - Added GovernedProviders response field and inclusion filter to GetControl and ListControls APIs to identify and filter by cloud provider. Added ParameterRequirementSummary response field indicating parameter requirements.
• api-change:customer-profiles: [botocore] BatchPutProfileObject API adds multiple profile objects to a domain of a given ObjectType in a single API call.
• api-change:deadline: [botocore] Added support for persistent storage on Service-Managed Fleets, allowing customers to configure persistent storage that preserves data across worker sessions which reduces job startup times for workloads with large software installations or asset caches.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:iot: [botocore] Adds new connectivity-related fields to Fleet Indexing API requests and responses.
• api-change:iot-data: [botocore] Adding GetConnection, ListSubscriptions, and SendDirectMessage APIs to IoT Data Plane
• api-change:opensearchserverless: [botocore] Adds support for deletion protection on collections, ability to create NEXTGEN collection groups and autoscaling visibility for NEXTGEN collection groups
• api-change:pcs: [botocore] This release adds support for configuring scaleDownIdleTimeInSeconds at the compute node group level, allowing customers to set different idle timeouts per node group. Previously this setting was only available at the cluster level.
• api-change:resiliencehubv2: [botocore] This is the initial SDK release for the next generation of Resilience Hub.
• api-change:s3control: [botocore] Update the minimum value of MinStorageBytesPercentage in StorageLensPrefixLevel.SelectionCriteria from 0.1 to 1, aligning the model with the documented contract.

v1.43.16

Compare Source

=======

• api-change:bedrock-data-automation: [botocore] Matcher Fallback extends the CustomOutputConfiguration for the Document modality in DataAutomationProjects, enabling a fallback blueprint when no match is found. A FALLBACK match status is returned, improving the matching experience and guaranteeing customers always receive CustomOutputResults.
• api-change:ecs: [botocore] Add support for Neuron device resource requirements for Amazon ECS
• api-change:elementalinference: [botocore] Added support for smart subtitles in Elemental Inference, enabling automatic generation of subtitles for media content. Available in English, Spanish, French, German, Italian, and Portuguese.
• api-change:medialive: [botocore] AWS Elemental MediaLive now supports Smart Subtitles, a new caption source that uses AWS Elemental Inference to automatically generate WebVTT and TTML captions from source audio. Available in English, Spanish, French, German, Italian, and Portuguese.
• api-change:opensearch: [botocore] OpenSearch will now support multi-segment paths in JWKS URLs.
• api-change:organizations: [botocore] AWS Organizations now emits CloudTrail events (AccountJoinedOrganization, AccountDepartedOrganization) t

---

Configuration

📅 Schedule: Branch creation - "before 4am" in timezone UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[a-klos]

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: libs/extractor-api-lib/poetry.lock

Updating dependencies
Resolving dependencies...

Creating virtualenv extractor-api-lib-dSQcVejG-py3.13 in /home/ubuntu/.cache/pypoetry/virtualenvs

Because no versions of langfuse match >3.10.1,<3.10.2 || >3.10.2,<3.10.3 || >3.10.3,<3.10.4 || >3.10.4,<3.10.5 || >3.10.5,<3.10.6 || >3.10.6,<3.10.7 || >3.10.7,<3.11.0 || >3.11.0,<3.11.1 || >3.11.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0
 and langfuse (3.10.1) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.10.2 || >3.10.2,<3.10.3 || >3.10.3,<3.10.4 || >3.10.4,<3.10.5 || >3.10.5,<3.10.6 || >3.10.6,<3.10.7 || >3.10.7,<3.11.0 || >3.11.0,<3.11.1 || >3.11.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.10.2) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.10.3) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.10.4 || >3.10.4,<3.10.5 || >3.10.5,<3.10.6 || >3.10.6,<3.10.7 || >3.10.7,<3.11.0 || >3.11.0,<3.11.1 || >3.11.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.10.4) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.10.5) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.10.6 || >3.10.6,<3.10.7 || >3.10.7,<3.11.0 || >3.11.0,<3.11.1 || >3.11.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.10.6) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.10.7) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.11.0 || >3.11.0,<3.11.1 || >3.11.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.11.0) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.11.1) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.11.2 || >3.11.2,<3.12.0 || >3.12.0,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.11.2) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.12.0) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.12.1 || >3.12.1,<3.13.0 || >3.13.0,<3.14.0 || >3.14.0,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.13.0) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.14.0) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.12.1 || >3.12.1,<3.14.1 || >3.14.1,<3.14.2 || >3.14.2,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.14.1) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.14.2) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.12.1 || >3.12.1,<3.14.3 || >3.14.3,<3.14.4 || >3.14.4,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.14.3) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.14.4) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.12.1 || >3.12.1,<3.14.5 || >3.14.5,<3.14.6 || >3.14.6,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.14.5) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.14.6) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<3.12.1 || >3.12.1,<3.15.0 || >3.15.0,<4.0.0) requires wrapt (>=1.14,<2.0).
And because langfuse (3.15.0) depends on wrapt (>=1.14,<2.0)
 and langfuse (3.12.1) depends on wrapt (>=1.14,<2.0), langfuse (>=3.10.1,<4.0.0) requires wrapt (>=1.14,<2.0).
Because rag-core-lib (4.2.0) @ file:///tmp/renovate/repos/github/stackitcloud/rag-template/libs/rag-core-lib depends on both langfuse (^3.10.1) and langfuse (^3.10.1), langfuse is required.
Thus, wrapt is required.
So, because extractor-api-lib depends on unstructured[docx,pptx] (0.22.31) which depends on wrapt (>=2.1.1,<3.0.0), version solving failed.

File name: services/document-extractor/poetry.lock

Updating dependencies
Resolving dependencies...

Creating virtualenv extractor-server-JVU6rL5B-py3.13 in /home/ubuntu/.cache/pypoetry/virtualenvs

Because extractor-server depends on extractor-api-lib (4.2.0) @ file:///tmp/renovate/repos/github/stackitcloud/rag-template/libs/extractor-api-lib which depends on torchvision (0.25.0), torchvision is required.
So, because extractor-server depends on torchvision (^0.27.0), version solving failed.