chore(deps-dev): bump the development-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the development-dependencies group with 7 updates in the / directory:

Package	From	To
poetry	1.8.3	1.8.4
boto3-stubs	1.35.35	1.35.44
mypy	1.11.2	1.12.1
ruff	0.6.9	0.7.0
moto	5.0.16	5.0.18
tox	4.21.2	4.23.0
bump-my-version	0.27.0	0.28.0

Updates poetry from 1.8.3 to 1.8.4

Release notes

Sourced from poetry's releases.

1.8.4

Added

• Add official support for Python 3.13 (#9523).

Changed

• Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#9757).

poetry-core (1.9.1)

• Add 3.13 to the list of available Python versions (#747).

Changelog

Sourced from poetry's changelog.

[1.8.4] - 2024-10-14

Added

• Add official support for Python 3.13 (#9523).

Changed

• Require virtualenv>=20.26.6 to mitigate potential command injection when running poetry shell in untrusted projects (#9757).

poetry-core (1.9.1)

• Add 3.13 to the list of available Python versions (#747).

Commits

• 6a071c1 release: bump version to 1.8.4
• 8d2a341 backport release workflow from main branch
• b8546d7 python 3.13 in workflows (#9523)
• 0329bca Bump virtualenv to 20.26.6
• a2d09a1 fix changelog (#9399)
• See full diff in compare view

Updates boto3-stubs from 1.35.35 to 1.35.44

Commits

• See full diff in compare view

Updates mypy from 1.11.2 to 1.12.1

Changelog

Sourced from mypy's changelog.

Mypy 1.12.1

• Fix crash when showing partially analyzed type in error message (Ivan Levkivskyi, PR 17961)
• Fix iteration over union (when self type is involved) (Shantanu, PR 17976)
• Fix type object with type var default in union context (Jukka Lehtosalo, PR 17991)
• Revert change to os.path stubs affecting use of os.PathLike[Any] (Shantanu, PR 17995)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Ali Hamdan
• Anders Kaseorg
• Bénédikt Tran
• Brian Schubert
• bzoracler
• Chelsea Durazo
• Danny Yang
• Edgar Ramírez Mondragón
• Eric Mark Martin
• InSync
• Ivan Levkivskyi
• Jordandev678
• Katrina Connors
• Kirill Podoprigora
• Marc Mueller
• Max Muoto
• Max Murin
• Michael Carlstrom
• Michael I Chen
• Pradyun Gedam
• quinn-sasha
• Raphael Krupinski
• Sebastian Rittau
• Shantanu
• sobolevn
• Soubhik Kumar Mitra
• Stanislav Terliakov
• wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.11

We’ve just uploaded mypy 1.11 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Support Python 3.12 Syntax for Generics (PEP 695)

... (truncated)

Commits

• 050d12f Bump version to 1.12.1
• 346e370 [1.12 backport] revert os.path change (#17995)
• 71e1f05 Fix type object with type var default in union context (#17991)
• 34d8603 Fix iteration over union (when self type is involved) (#17976)
• 2485bed Use kw-only args for member access booleans (#17975)
• a5e9b0b Fix crash when showing partially analyzed type in error message (#17961)
• 4775da1 Bump version to 1.12.1+dev
• f2a39b1 Update version to 1.12.0
• b4ec37a Add one more 1.12 changelog item (#17936)
• cc1c679 Better handling of generic functions in partial plugin (#17925)
• Additional commits viewable in compare view

Updates ruff from 0.6.9 to 0.7.0

Release notes

Sourced from ruff's releases.

0.7.0

Release Notes

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

• The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.
• The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.
• The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

• Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

• [refurb] implement hardcoded-string-charset (FURB156) (#13530)
• [refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

• [pylint] Mark PLE1141 fix as unsafe (#13629)
• [flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)
• [flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)
• [flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)
• [pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)
• [flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

• Add explanation of fixable in --statistics command (#13774)

Bug fixes

• [pyflakes] Allow ipytest cell magic (F401) (#13745)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)
• [flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)
• [flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Contributors

• @​AlexWaygood

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.0

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

• The pytest rules PT001 and PT023 now default to omitting the decorator parentheses when there are no arguments (#12838, #13292). This was a change that we attempted to make in Ruff v0.6.0, but only partially made due to an error on our part. See the blog post for more details.
• The useless-try-except rule (in our tryceratops category) has been recoded from TRY302 to TRY203 (#13502). This ensures Ruff's code is consistent with the same rule in the tryceratops linter.
• The lint.allow-unused-imports setting has been removed (#13677). Use lint.pyflakes.allow-unused-imports instead.

Formatter preview style

• Normalize implicit concatenated f-string quotes per part (#13539)

Preview linter features

• [refurb] implement hardcoded-string-charset (FURB156) (#13530)
• [refurb] Count codepoints not bytes for slice-to-remove-prefix-or-suffix (FURB188) (#13631)

Rule changes

• [pylint] Mark PLE1141 fix as unsafe (#13629)
• [flake8-async] Consider async generators to be "checkpoints" for cancel-scope-no-checkpoint (ASYNC100) (#13639)
• [flake8-bugbear] Do not suggest setting parameter strict= to False in B905 diagnostic message (#13656)
• [flake8-todos] Only flag the word "TODO", not words starting with "todo" (TD006) (#13640)
• [pycodestyle] Fix whitespace-related false positives and false negatives inside type-parameter lists (E231, E251) (#13704)
• [flake8-simplify] Stabilize preview behavior for SIM115 so that the rule can detect files being opened from a wider range of standard-library functions (#12959).

CLI

• Add explanation of fixable in --statistics command (#13774)

Bug fixes

• [pyflakes] Allow ipytest cell magic (F401) (#13745)
• [flake8-use-pathlib] Fix PTH123 false positive when open is passed a file descriptor (#13616)
• [flake8-bandit] Detect patterns from multi line SQL statements (S608) (#13574)
• [flake8-pyi] - Fix dropped expressions in PYI030 autofix (#13727)

Commits

• 5e6de4e Changelog for Ruff v0.7 (#13794)
• 70e5c4a Recode TRY302 to TRY203 (#13502)
• 9218d6b Remove allow-unused-imports setting from the common lint options (#13677)
• 1b79ae9 [ruff-0.7] Stabilise the expansion of open-file-with-context-handler to wor...
• 2b87587 [flake8-pytest-style] Fix defaults when lint.flake8-pytest-style config s...
• d1e15f6 Remove tab-size setting (#12835)
• 89a8215 Remove error messages for removed CLI aliases (#12833)
• 202c6a6 Remove output-format=text setting (#12836)
• 5c3c0c4 [red-knot] Inference for comparison of union types (#13781)
• 6b7a738 Add explanation of fixable in --statistics command (#13774)
• Additional commits viewable in compare view

Updates moto from 5.0.16 to 5.0.18

Changelog

Sourced from moto's changelog.

5.0.18

Docker Digest for 5.0.18: sha256:62423941446f8863f499ebdfd04c1d1743b5afd84c3837799df7ce08ce3bb750

New Methods:
    * RDS:
        * delete_db_proxy()
        * deregister_db_proxy_targets()
        * describe_db_proxy_target_groups()
        * describe_db_proxy_targets()
        * modify_db_proxy_target_group()
        * register_db_proxy_targets()
Miscellaneous:
* CloudFormation: create_change_set() now supports the UsePreviousTemplate-parameter
* CognitoIDP: MFA-related features (like AssociateSoftwareToken) now also work with non-Python SDK's
* ECS: update_service() now correctly sets the createdAt/updatedAt values when forceNewDeployment=True
* ELBv2: remove_tags() now throws a ResourceNotFound Exception

5.0.17

Docker Digest for 5.0.17: sha256:39372432cb24ab46211ca45648ca787e104589070b0d0a13ea0d73c6eb550079

New Methods:
    * CloudFront:
        * create_key_group()
        * create_public_key()
        * delete_public_key()
        * get_key_group()
        * get_public_key()
        * list_key_groups()
        * list_public_keys()
* QuickSight:
    * list_user_groups()
    * search_groups()
    * update_user()

Workspaces Web:

list_tags_for_resource()
tag_resource()
untag_resource()





Miscellaneous:
* APIGateway: get_api_keys()/get_usage_plan_keys() now support the nameQuery param
* AppSync: create_graphql_api() now supports the visibility-parameter
* DynamoDB: delete_item() now returns the item when a ConditionalCheckFailed is thrown and ReturnValuesOnConditionCheckFailure == ALL_OLD
* QuickSight: Users can now have special characters in their name
* QuickSight: list_group_memberships() now supports pagination

... (truncated)

Commits

• 1038de6 Pre-Release: Up Version Number
• afebd54 Prep release 5.0.18 (#8243)
• fcb3c8b chore: update SSM default parameters (#8244)
• 7edf69a chore: update EC2 Instance Offerings (#8242)
• fe37392 CognitoIDP: Ensure MFA functions work with non-python SDK's (#8241)
• eea6b16 RDS: Proxy Target Groups (#8237)
• fa4352a ResourceGroupsTaggingAPI: fixed tags for Workspaces Web Portals (#8234)
• 77fbf51 Adds support for UsePreviousTemplate to create_change_set (#8229)
• 035586c Pinpoint: Fix region in application ARN (#8233)
• 9dbd017 [ECS] Force New Deployment (#8232)
• Additional commits viewable in compare view

Updates tox from 4.21.2 to 4.23.0

Release notes

Sourced from tox's releases.

4.23.0

What's Changed

• replace tool.pyproject and tool.tox.pyproject with tool.tox in config… by @​graingert-coef in tox-dev/tox#3411
• Add NETRC to the default_pass_env list by @​chipot in tox-dev/tox#3410

New Contributors

• @​graingert-coef made their first contribution in tox-dev/tox#3411
• @​chipot made their first contribution in tox-dev/tox#3410

Full Changelog: tox-dev/tox@4.22.0...4.23.0

4.22.0

What's Changed

• Fix the fix environment definition by @​gaborbernat in tox-dev/tox#3407
• Expose type checking dependencies into an extra by @​ssbarnea in tox-dev/tox#3404
• Add dependency-groups support (PEP-735) by @​gaborbernat in tox-dev/tox#3409

Full Changelog: tox-dev/tox@4.21.2...4.22.0

Changelog

Sourced from tox's changelog.

v4.23.0 (2024-10-16)

Features - 4.23.0

- Add ``NETRC`` to the list of environment variables always passed through. (:issue:`3410`)
Improved Documentation - 4.23.0

• replace [tool.pyproject] and [tool.tox.pyproject] with [tool.tox] in config.rst (:issue:3411)

v4.22.0 (2024-10-15)

Features - 4.22.0

- Implement dependency group support as defined in :pep:`735` - see :ref:`dependency_groups` - by :user:`gaborbernat`. (:issue:`3408`)

Commits

• 7696a8e release 4.23.0
• c01a023 Add NETRC to the default_pass_env list (#3410)
• 971e7da replace tool.pyproject and tool.tox.pyproject with tool.tox in config… (#3411)
• 81a83bd Fix typo in docs for dependency_groups
• b912cb2 release 4.22.0
• 568b90f Add dependency-groups support (PEP-735) (#3409)
• f919d0d Expose type checking dependencies into an extra (#3404)
• 7c0e3ed [pre-commit.ci] pre-commit autoupdate (#3406)
• 6db3730 Fix the fix environment definition (#3407)
• 2bf065a Bump pypa/gh-action-pypi-publish from 1.10.2 to 1.10.3 (#3392)
• Additional commits viewable in compare view

Updates bump-my-version from 0.27.0 to 0.28.0

Release notes

Sourced from bump-my-version's releases.

0.28.0

Compare the full difference.

New

• Added container labels and version hooks. d4cb8f2

• Add Docker support and configure Dependabot for Docker updates. 0315db4

  Introduce a Dockerfile for containerized environments and add a .dockerignore file to exclude unnecessary files. Also, update dependabot.yml to include daily checks for Docker image updates.

• Add inputs section in GHA workflow example. 813e7f5

Other

• Switch from ADD to COPY in Dockerfile. a5fc5c0

  This change updates the Dockerfile to use the COPY instruction instead of ADD. COPY is preferred when only copying files because it is more explicit and simpler.

• [pre-commit.ci] pre-commit autoupdate. 7c48f98

  updates: - github.com/astral-sh/ruff-pre-commit: v0.6.8 → v0.6.9

Updates

• Changed dependency manager to uv. cce9e1d

Changelog

Sourced from bump-my-version's changelog.

0.28.0 (2024-10-16)

Compare the full difference.

New

• Added container labels and version hooks. d4cb8f2

• Add Docker support and configure Dependabot for Docker updates. 0315db4

  Introduce a Dockerfile for containerized environments and add a .dockerignore file to exclude unnecessary files. Also, update dependabot.yml to include daily checks for Docker image updates.

• Add inputs section in GHA workflow example. 813e7f5

Other

• Switch from ADD to COPY in Dockerfile. a5fc5c0

  This change updates the Dockerfile to use the COPY instruction instead of ADD. COPY is preferred when only copying files because it is more explicit and simpler.

• [pre-commit.ci] pre-commit autoupdate. 7c48f98

  updates: - github.com/astral-sh/ruff-pre-commit: v0.6.8 → v0.6.9

Updates

• Changed dependency manager to uv. cce9e1d

Commits

• 697c23d Version updated from 0.27.0 to 0.28.0
• 1ae5416 Merge pull request #244 from callowayproject/docker-image
• a5fc5c0 Switch from ADD to COPY in Dockerfile
• d4cb8f2 Added container labels and version hooks
• 0315db4 Add Docker support and configure Dependabot for Docker updates
• cce9e1d Changed dependency manager to uv.
• 44eb22a Merge pull request #240 from callowayproject/pre-commit-ci-update-config
• d04a19a Merge pull request #242 from christolis/fix/readme-file
• 813e7f5 Add inputs section in GHA workflow example
• 7c48f98 [pre-commit.ci] pre-commit autoupdate
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[malachi-constant]

AWS CodeBuild CI Report

• CodeBuild project: GitHubCodeBuild8756EF16-4rfo0GHQ0u9a
• Commit ID: 308f96f
• Result: SUCCEEDED
• Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

[malachi-constant]

AWS CodeBuild CI Report

• CodeBuild project: GitHubDistributedCodeBuild6-jWcl5DLmvupS
• Commit ID: 308f96f
• Result: FAILED
• Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

[dependabot]

Superseded by #3001.