Skip to content

Bump the pip-deps group across 1 directory with 6 updates #2971

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: develop
Choose a base branch
from
Open

Bump the pip-deps group across 1 directory with 6 updates #2971

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 24, 2025
edited
Loading

Bumps the pip-deps group with 6 updates in the / directory:

Package From To
boto3 1.40.69 1.41.2
asf-search 10.1.2 10.2.0
moto[dynamodb] 5.1.16 5.1.17
pytest 9.0.0 9.0.1
ruff 0.14.4 0.14.6
cfn-lint 1.40.4 1.41.0

Updates boto3 from 1.40.69 to 1.41.2

Commits
  • 4904cf2 Merge branch 'release-1.41.2'
  • 5fc9822 Bumping version to 1.41.2
  • c529f4b Add changelog entries from botocore
  • 921b1b9 Merge branch 'release-1.41.1'
  • 572e05a Merge branch 'release-1.41.1' into develop
  • 31ef0a2 Bumping version to 1.41.1
  • 1179f32 Add changelog entries from botocore
  • 8bf9a8b Merge pull request #4662 from boto/s3-copy-etag
  • bd1009f Update copy test to expect CopySourceIfMatch
  • 1520fdc Merge branch 'release-1.41.0'
  • Additional commits viewable in compare view

Updates asf-search from 10.1.2 to 10.2.0

Release notes

Sourced from asf-search's releases.

v10.2.0

v10.2.0

Changed

  • SEATSAT 1 collections in CMR have been merged into a new single collection. Filtering by processing level for same scene no longer necessary. Different file urls, s3 uris, sizes, and md5sums of each scene now accessible via additionalUrls, s3Urls, bytes, and md5sum keys in each scene's properties dict.

Added

  • Added authentication test case support for main master branch, --auth_with_creds and --auth-with-token for local test session authentication

Fixed

  • Removed CRSD from NISAR dataset and relevant constants, no longer part of L0B science product type
Changelog

Sourced from asf-search's changelog.

v10.2.0

Changed

  • SEATSAT 1 collections in CMR have been merged into a new single collection. Filtering by processing level for same scene no longer necessary. Different file urls, s3 uris, sizes, and md5sums of each scene now accessible via additionalUrls, s3Urls, bytes, and md5sum keys in each scene's properties dict.
  • NISAR products have collection id and collection name in products and jsonlite export

Added

  • Added authentication test case support for main master branch, --auth_with_creds and --auth-with-token for local test session authentication

Fixed

  • Removed CRSD from NISAR dataset and relevant constants, no longer part of L0B science product type
Commits
  • ec63732 Merge pull request #404 from asfadmin/bug-crsd-l0b-removal
  • 7906de9 bug: remove CRSD constant and collections from relevant nisar collections
  • e9609d5 Merge pull request #402 from asfadmin/topic-nisar-collection
  • 0485378 style: captialize conceptID
  • f13b982 Merge branch 'master' into topic-nisar-collection
  • 4316cef Merge pull request #401 from asfadmin/topic-seasat-migration
  • 1118752 chore: update CHANGELOG
  • cf59125 cicd: set pytest auth workflow permissions
  • 5134d69 test: add authentication methods for test cases for local and pre-release env...
  • b6d9586 chore: codefactor fixes
  • Additional commits viewable in compare view

Updates moto[dynamodb] from 5.1.16 to 5.1.17

Changelog

Sourced from moto[dynamodb]'s changelog.

5.1.17

Docker Digest for 5.1.17: sha256:0361ac8f0cc6687dcf3835da1d60e31cf457fb0d49229d56586f2aa5c510f170

General:
    * The MotoServer dashboard (available on http://localhost:5000/moto-api) now has an new and improved look, making it easier to search for and find your resources

New Methods:
* CloudFront:
* tag_resource()
* untag_resource()


* DMS:
    * create_replication_subnet_group()
    * describe_connection()
    * describe_replication_subnet_group()
    * delete_endpoint()
    * delete_replication_instance()
    * delete_replication_subnet_group()
    * test_endpoint()

    

  • 

    EC2:
    

      

    • describe_reserved_instances_offerings()
      • 

    

    • 

  • 

    RDS:
    

      

    • add_role_to_db_cluster()
      • 

    • add_role_to_db_instance()
      • 

    

    • 

  • 

    S3Vectors:
    

      

    • create_index()
      • 

    • delete_index()
      • 

    • get_index()
      • 

    • list_indexes()
      • 

    

    • 

  • 

    ServiceCatalog:
    

      

    • create_product()
      • 

    • describe_product()
      • 

    • delete_product()
      






Miscellaneous:
* ACM-PCA: get_certificate() now returns the CertificateChain-attribute, if appropriate
* DMS: Manual control of the State Transition is now available for the dms:connection and dms:replicationinstance models.
* Organizations: describe_account() now returns the State-attribute.
* ResourceGroupsTaggingAPI: get_resources() now supports all Comprehend models
* StepFunctions: create_execution() now takes the execution input into account when checking idempotency.

Commits

Updates pytest from 9.0.0 to 9.0.1

Release notes

Sourced from pytest's releases.

9.0.1

pytest 9.0.1 (2025-11-12)

Bug fixes

  • #13895: Restore support for skipping tests via raise unittest.SkipTest.
  • #13896: The terminal progress plugin added in pytest 9.0 is now automatically disabled when iTerm2 is detected, it generated desktop notifications instead of the desired functionality.
  • #13904: Fixed the TOML type of the verbosity settings in the API reference from number to string.
  • #13910: Fixed UserWarning: Do not expect file_or_dir on some earlier Python 3.12 and 3.13 point versions.

Packaging updates and notes for downstreams

  • #13933: The tox configuration has been adjusted to make sure the desired version string can be passed into its package_env through the SETUPTOOLS_SCM_PRETEND_VERSION_FOR_PYTEST environment variable as a part of the release process -- by webknjaz.

Contributor-facing changes

  • #13891, #13942: The CI/CD part of the release automation is now capable of creating GitHub Releases without having a Git checkout on disk -- by bluetech and webknjaz.
  • #13933: The tox configuration has been adjusted to make sure the desired version string can be passed into its package_env through the SETUPTOOLS_SCM_PRETEND_VERSION_FOR_PYTEST environment variable as a part of the release process -- by webknjaz.
Commits
  • d1b64aa Prepare release version 9.0.1
  • 0a497c7 regendoc: remove CI environment variables (#13950) (#13951)
  • a9f7e6e 🧪 Run gh release w/o Git in CI/CD (#13942) (#13947)
  • 2682a66 Merge pull request #13944 from pytest-dev/patchback/backports/9.0.x/bef7d34f1...
  • a999997 Merge pull request #13941 from nicoddemus/min-pre-commit-version
  • 4bd63a0 Merge pull request #13935 from pytest-dev/patchback/backports/9.0.x/ce8b8a7b4...
  • 15f93b3 Merge pull request #13933 from webknjaz/maintenance/tox-pep517-env-setuptools...
  • 0fa11ae Merge pull request #13927 from pytest-dev/patchback/backports/9.0.x/3d8075743...
  • fa45470 Merge pull request #13926 from pytest-dev/patchback/backports/9.0.x/d587e0cf8...
  • b4e3973 Merge pull request #13922 from bluetech/fix-argparse-userwarning
  • Additional commits viewable in compare view

Updates ruff from 0.14.4 to 0.14.6

Release notes

Sourced from ruff's releases.

0.14.6

Release Notes

Released on 2025-11-21.

Preview features

  • [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

  • Adjust own-line comment placement between branches (#21185)
  • Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
  • Fix panic when formatting comments in unary expressions (#21501)
  • Respect fmt: skip for compound statements on a single line (#20633)
  • [refurb] Fix FURB103 autofix (#21454)
  • [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

  • [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

  • Render hyperlinks for lint errors (#21514)
  • Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

  • Limit eglot-format hook to eglot-managed Python buffers (#21459)
  • Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

Install ruff 0.14.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.14.6/ruff-installer.sh | sh
</tr></table>

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.6

Released on 2025-11-21.

Preview features

  • [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

  • Adjust own-line comment placement between branches (#21185)
  • Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
  • Fix panic when formatting comments in unary expressions (#21501)
  • Respect fmt: skip for compound statements on a single line (#20633)
  • [refurb] Fix FURB103 autofix (#21454)
  • [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

  • [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

  • Render hyperlinks for lint errors (#21514)
  • Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

  • Limit eglot-format hook to eglot-managed Python buffers (#21459)
  • Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

0.14.5

Released on 2025-11-13.

Preview features

  • [flake8-simplify] Apply SIM113 when index variable is of type int (#21395)

... (truncated)

Commits
  • 59c6cb5 Bump 0.14.6 (#21558)
  • 54dba15 [ty] Improve debug messages when imports fail (#21555)
  • 1af3185 [ty] Add support for relative import completions
  • 553e568 [ty] Refactor detection of import statements for completions
  • cdef3f5 [ty] Use dedicated collector for completions
  • 6178822 [ty] Attach subdiagnostics to unresolved-import errors for relative imports...
  • 6b7adb0 [ty] support PEP 613 type aliases (#21394)
  • 06941c1 [ty] More low-hanging fruit for inlay hint goto-definition (#21548)
  • eb7c098 [ty] implement TypedDict structural assignment (#21467)
  • 1b28fc1 [ty] Add more random TypeDetails and tests (#21546)
  • Additional commits viewable in compare view

Updates cfn-lint from 1.40.4 to 1.41.0

Release notes

Sourced from cfn-lint's releases.

Release v1.41.0

What's Changed

New Contributors

Full Changelog: aws-cloudformation/cfn-lint@v1.40.4...v1.41.0

Changelog

Sourced from cfn-lint's changelog.

v1.41.0

What's Changed

New Contributors

Full Changelog: aws-cloudformation/cfn-lint@v1.40.4...v1.41.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-deps group across 1 directory with 6 updates
54c943d 
Bumps the pip-deps group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.40.69` | `1.41.2` |
| [asf-search](https://github.com/asfadmin/Discovery-asf_search) | `10.1.2` | `10.2.0` |
| [moto[dynamodb]](https://github.com/getmoto/moto) | `5.1.16` | `5.1.17` |
| [pytest](https://github.com/pytest-dev/pytest) | `9.0.0` | `9.0.1` |
| [ruff](https://github.com/astral-sh/ruff) | `0.14.4` | `0.14.6` |
| [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) | `1.40.4` | `1.41.0` |



Updates `boto3` from 1.40.69 to 1.41.2
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.40.69...1.41.2)

Updates `asf-search` from 10.1.2 to 10.2.0
- [Release notes](https://github.com/asfadmin/Discovery-asf_search/releases)
- [Changelog](https://github.com/asfadmin/Discovery-asf_search/blob/master/CHANGELOG.md)
- [Commits](asfadmin/Discovery-asf_search@v10.1.2...v10.2.0)

Updates `moto[dynamodb]` from 5.1.16 to 5.1.17
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](getmoto/moto@5.1.16...5.1.17)

Updates `pytest` from 9.0.0 to 9.0.1
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@9.0.0...9.0.1)

Updates `ruff` from 0.14.4 to 0.14.6
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.4...0.14.6)

Updates `cfn-lint` from 1.40.4 to 1.41.0
- [Release notes](https://github.com/aws-cloudformation/cfn-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](aws-cloudformation/cfn-lint@v1.40.4...v1.41.0)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.41.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: asf-search
  dependency-version: 10.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: moto[dynamodb]
  dependency-version: 5.1.17
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: pytest
  dependency-version: 9.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: ruff
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: cfn-lint
  dependency-version: 1.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project labels Nov 24, 2025
@dependabot dependabot bot requested review from a team as code owners November 24, 2025 19:54
@dependabot dependabot bot added minor Bump the minor version number of this project bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version labels Nov 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant