From 870f4418b15cebb846862eddd64719b4bb7c659a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 11:21:40 +0000 Subject: [PATCH 1/3] Bump python-discovery from 1.4.2 to 1.4.3 (#13061) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [python-discovery](https://github.com/tox-dev/python-discovery) from 1.4.2 to 1.4.3.
Release notes

Sourced from python-discovery's releases.

v1.4.3

What's Changed

Full Changelog: https://github.com/tox-dev/python-discovery/compare/1.4.2...1.4.3

Changelog

Sourced from python-discovery's changelog.

Packaging updates and notes for downstreams - 1.4.3


v1.4.2 (2026-06-11)


Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=python-discovery&package-manager=pip&previous-version=1.4.2&new-version=1.4.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- requirements/lint.txt | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 826f3493788..157c0d2b6fb 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -234,7 +234,7 @@ pytest-xdist==3.8.0 # via -r requirements/test-common.in python-dateutil==2.9.0.post0 # via freezegun -python-discovery==1.4.2 +python-discovery==1.4.3 # via virtualenv python-on-whales==0.81.0 # via diff --git a/requirements/dev.txt b/requirements/dev.txt index 764d6fd69ee..46518d086a4 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -229,7 +229,7 @@ pytest-xdist==3.8.0 # via -r requirements/test-common.in python-dateutil==2.9.0.post0 # via freezegun -python-discovery==1.4.2 +python-discovery==1.4.3 # via virtualenv python-on-whales==0.81.0 # via diff --git a/requirements/lint.txt b/requirements/lint.txt index 29d427a4b1c..a24240a30d8 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -125,7 +125,7 @@ pytest-mock==3.15.1 # via -r requirements/lint.in python-dateutil==2.9.0.post0 # via freezegun -python-discovery==1.4.2 +python-discovery==1.4.3 # via virtualenv python-on-whales==0.81.0 # via -r requirements/lint.in From acd2905073157d2462559bfba1869b11a9dec32e Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 11:31:39 +0000 Subject: [PATCH 2/3] Bump setuptools from 82.0.1 to 83.0.0 (#13063) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bumps [setuptools](https://github.com/pypa/setuptools) from 82.0.1 to 83.0.0.
Changelog

Sourced from setuptools's changelog.

v83.0.0

Features

  • Require Python 3.10 or later.

Bugfixes

  • MANIFEST.in matching (via FileList) is now insensitive to Unicode normalization form. A pattern authored in one form (e.g. NFC, as typically saved by editors) now matches a file whose name is stored on disk in another (e.g. NFD, as produced by macOS APFS/HFS+). Previously an exclude, global-exclude, recursive-exclude, or prune rule could silently fail to drop a non-ASCII-named file from the source distribution, publishing it despite the exclusion -- see GHSA-h35f-9h28-mq5c.

Deprecations and Removals

  • pypa/distutils#334
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=setuptools&package-manager=pip&previous-version=82.0.1&new-version=83.0.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 2 +- requirements/dev.txt | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 157c0d2b6fb..9d9f524ba0c 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -251,7 +251,7 @@ requests==2.34.2 # sphinxcontrib-spelling rich==15.0.0 # via pytest-codspeed -setuptools==82.0.1 +setuptools==83.0.0 # via pip-tools setuptools-git==1.2 # via -r requirements/test-common-base.in diff --git a/requirements/dev.txt b/requirements/dev.txt index 46518d086a4..121ba6a8e88 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -244,7 +244,7 @@ requests==2.34.2 # via sphinx rich==15.0.0 # via pytest-codspeed -setuptools==82.0.1 +setuptools==83.0.0 # via pip-tools setuptools-git==1.2 # via -r requirements/test-common-base.in From 7f8284af865b7412c46226db3bcf816d0ddf62d5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Jul 2026 11:38:43 +0000 Subject: [PATCH 3/3] Bump slotscheck from 0.20.0 to 0.20.1 (#13067) Bumps [slotscheck](https://github.com/ariebovenberg/slotscheck) from 0.20.0 to 0.20.1.
Release notes

Sourced from slotscheck's releases.

v0.20.1

  • Removed the click dependency in favor of the standard library argparse. This makes slotscheck dependency-free (aside from tomli for Python <3.11).
  • Add a readme note about the differences between slotscheck and static linters like Ruff and Pylint.
Changelog

Sourced from slotscheck's changelog.

0.20.1 (2026-07-05)

  • Removed the click dependency in favor of the standard library argparse. This makes slotscheck dependency-free (aside from tomli for Python <3.11).
  • Add a readme note about the differences between slotscheck and static linters like Ruff and Pylint.
Commits
  • c97c0d2 fix release date in changelog
  • 557fba9 fix brittle test
  • 734db78 add changelog note
  • 7556199 use sphinx argparse to generate CLI docs
  • 4dce3cb add ruff/pylint notes
  • 1b53f94 make version lazy-computed
  • 960f995 remove click dependency in favor of stdlib
  • 4fb44c0 Bump typing-extensions from 4.15.0 to 4.16.0
  • 2312500 Bump click from 8.4.1 to 8.4.2
  • 223dccc Bump ruff from 0.15.18 to 0.15.20
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=slotscheck&package-manager=pip&previous-version=0.20.0&new-version=0.20.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- requirements/constraints.txt | 3 +-- requirements/dev.txt | 3 +-- requirements/lint.txt | 4 +--- 3 files changed, 3 insertions(+), 7 deletions(-) diff --git a/requirements/constraints.txt b/requirements/constraints.txt index 9d9f524ba0c..ad64e6e7207 100644 --- a/requirements/constraints.txt +++ b/requirements/constraints.txt @@ -60,7 +60,6 @@ charset-normalizer==3.4.7 click==8.4.2 # via # pip-tools - # slotscheck # towncrier # wait-for-it coverage==7.15.0 @@ -257,7 +256,7 @@ setuptools-git==1.2 # via -r requirements/test-common-base.in six==1.17.0 # via python-dateutil -slotscheck==0.20.0 +slotscheck==0.20.1 # via -r requirements/lint.in snowballstemmer==3.1.1 # via sphinx diff --git a/requirements/dev.txt b/requirements/dev.txt index 121ba6a8e88..3da010bd9c3 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -60,7 +60,6 @@ charset-normalizer==3.4.7 click==8.4.2 # via # pip-tools - # slotscheck # towncrier # wait-for-it coverage==7.15.0 @@ -250,7 +249,7 @@ setuptools-git==1.2 # via -r requirements/test-common-base.in six==1.17.0 # via python-dateutil -slotscheck==0.20.0 +slotscheck==0.20.1 # via -r requirements/lint.in snowballstemmer==3.1.1 # via sphinx diff --git a/requirements/lint.txt b/requirements/lint.txt index a24240a30d8..51b7f4df981 100644 --- a/requirements/lint.txt +++ b/requirements/lint.txt @@ -32,8 +32,6 @@ cffi==2.0.0 # pycares cfgv==3.5.0 # via pre-commit -click==8.4.2 - # via slotscheck cryptography==49.0.0 # via trustme distlib==0.4.3 @@ -135,7 +133,7 @@ rich==15.0.0 # via pytest-codspeed six==1.17.0 # via python-dateutil -slotscheck==0.20.0 +slotscheck==0.20.1 # via -r requirements/lint.in tomli==2.4.1 # via