Skip to content

[pull] master from aio-libs:master#658

Merged
pull[bot] merged 4 commits into
tj-python:masterfrom
aio-libs:master
Jul 8, 2026
Merged

[pull] master from aio-libs:master#658
pull[bot] merged 4 commits into
tj-python:masterfrom
aio-libs:master

Conversation

@pull

@pull pull Bot commented Jul 8, 2026

Copy link
Copy Markdown

See Commits and Changes for more details.


Created by pull[bot] (v2.0.0-alpha.4)

Can you help keep this open source service alive? 💖 Please sponsor : )

dependabot Bot added 4 commits July 8, 2026 11:45
Bumps [astral-sh/setup-uv](https://github.com/astral-sh/setup-uv) from
8.3.1 to 8.3.2.
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/astral-sh/setup-uv/commit/11f9893b081a58869d3b5fccaea48c9e9e46f990"><code>11f9893</code></a>
chore: roll up Dependabot updates (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/948">#948</a>)</li>
<li><a
href="https://github.com/astral-sh/setup-uv/commit/f79855603231e1609d02bec6956bd0e05cbc46b5"><code>f798556</code></a>
docs: update version references to v8.3.1 (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/946">#946</a>)</li>
<li><a
href="https://github.com/astral-sh/setup-uv/commit/e80544d808267c93733c3fd1e2c8c65e0c8707d6"><code>e80544d</code></a>
chore: update known checksums for 0.11.28 (<a
href="https://redirect.github.com/astral-sh/setup-uv/issues/947">#947</a>)</li>
<li>See full diff in <a
href="https://github.com/astral-sh/setup-uv/compare/v8.3.1...v8.3.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=astral-sh/setup-uv&package-manager=github_actions&previous-version=8.3.1&new-version=8.3.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [charset-normalizer](https://github.com/jawah/charset_normalizer)
from 3.4.8 to 3.4.9.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/jawah/charset_normalizer/releases">charset-normalizer's
releases</a>.</em></p>
<blockquote>
<h2>Version 3.4.9</h2>
<h2><a
href="https://github.com/Ousret/charset_normalizer/compare/3.4.8...3.4.9">3.4.9</a>
(2026-07-07)</h2>
<h3>Fixed</h3>
<ul>
<li>Regression in our fallback path leading to a decode error. (<a
href="https://redirect.github.com/jawah/charset_normalizer/issues/771">#771</a>)
We've yanked 3.4.8 as a result of that bug.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md">charset-normalizer's
changelog</a>.</em></p>
<blockquote>
<h2><a
href="https://github.com/Ousret/charset_normalizer/compare/3.4.8...3.4.9">3.4.9</a>
(2026-07-07)</h2>
<h3>Fixed</h3>
<ul>
<li>Regression in our fallback path leading to a decode error. (<a
href="https://redirect.github.com/jawah/charset_normalizer/issues/771">#771</a>)
We've yanked 3.4.8 as a result of that bug.</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/cc6840753f17f00dea4e339ce37507747217e916"><code>cc68407</code></a>
Merge pull request <a
href="https://redirect.github.com/jawah/charset_normalizer/issues/772">#772</a>
from jawah/fix-regression-fallback-path</li>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/152b923c87e212e11c9591ff0a29ff35df719c91"><code>152b923</code></a>
chore: release 3.4.9</li>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/2bc26076a86704fc19bc2ae811615b169373dea6"><code>2bc2607</code></a>
fix: unicodedecodeerror in fallback path</li>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/be252d70c9f45846f0e851cc4d1829328540c825"><code>be252d7</code></a>
chore(deps): bump docker/setup-qemu-action from 4.1.0 to 4.2.0 (<a
href="https://redirect.github.com/jawah/charset_normalizer/issues/767">#767</a>)</li>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/71c7bdd25514e5631c17be397abb6a2974b26e5b"><code>71c7bdd</code></a>
chore(deps): bump actions/setup-python from 6.2.0 to 6.3.0 (<a
href="https://redirect.github.com/jawah/charset_normalizer/issues/768">#768</a>)</li>
<li><a
href="https://github.com/jawah/charset_normalizer/commit/aeea391cc95761f1353b3914afcdee7a6e7589da"><code>aeea391</code></a>
chore(deps): bump pypa/cibuildwheel from 3.4.1 to 4.1.0 (<a
href="https://redirect.github.com/jawah/charset_normalizer/issues/758">#758</a>)</li>
<li>See full diff in <a
href="https://github.com/jawah/charset_normalizer/compare/3.4.8...3.4.9">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=charset-normalizer&package-manager=pip&previous-version=3.4.8&new-version=3.4.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [filelock](https://github.com/tox-dev/py-filelock) from 3.29.6 to
3.29.7.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/tox-dev/py-filelock/releases">filelock's
releases</a>.</em></p>
<blockquote>
<h2>3.29.7</h2>
<!-- raw HTML omitted -->
<h2>What's Changed</h2>
<ul>
<li>asyncio: detect cross-instance reentrant deadlocks before the poll
loop by <a
href="https://github.com/HrachShah"><code>@​HrachShah</code></a> in <a
href="https://redirect.github.com/tox-dev/filelock/pull/586">tox-dev/filelock#586</a></li>
<li>🐛 fix(soft_rw): evict non-regular write marker without reading it by
<a href="https://github.com/gaborbernat"><code>@​gaborbernat</code></a>
in <a
href="https://redirect.github.com/tox-dev/filelock/pull/588">tox-dev/filelock#588</a></li>
<li>_util: drop the dead st_mtime=0 short-circuit in
raise_on_not_writable_file by <a
href="https://github.com/HrachShah"><code>@​HrachShah</code></a> in <a
href="https://redirect.github.com/tox-dev/filelock/pull/589">tox-dev/filelock#589</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/tox-dev/filelock/compare/3.29.6...3.29.7">https://github.com/tox-dev/filelock/compare/3.29.6...3.29.7</a></p>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/tox-dev/filelock/commit/1efb8932c08789deb08ad93a91d8996cc36bb9cc"><code>1efb893</code></a>
_util: drop the dead st_mtime=0 short-circuit in
raise_on_not_writable_file (...</li>
<li><a
href="https://github.com/tox-dev/filelock/commit/3547d58a293651fcf6cf8544b0002e6d7b357332"><code>3547d58</code></a>
soft_rw: evict a non-regular write marker without reading it (<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/588">#588</a>)</li>
<li><a
href="https://github.com/tox-dev/filelock/commit/616400e382cdc9cc8c95823014e4d2d61a70095c"><code>616400e</code></a>
asyncio: detect cross-instance reentrant deadlocks before the poll loop
(<a
href="https://redirect.github.com/tox-dev/py-filelock/issues/586">#586</a>)</li>
<li>See full diff in <a
href="https://github.com/tox-dev/py-filelock/compare/3.29.6...3.29.7">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=filelock&package-manager=pip&previous-version=3.29.6&new-version=3.29.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps
[sphinxcontrib-mermaid](https://github.com/mgaitan/sphinxcontrib-mermaid)
from 2.0.2 to 2.0.3.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/blob/master/CHANGELOG.md">sphinxcontrib-mermaid's
changelog</a>.</em></p>
<blockquote>
<h2>2.0.3 (July 7, 2026)</h2>
<ul>
<li>Capture mmdc error message as string for nicer error display</li>
<li>Fix local JS module imports on root-level pages by ensuring a valid
relative ES module specifier (<a
href="https://redirect.github.com/mgaitan/sphinxcontrib-mermaid/issues/246">#246</a>)</li>
<li>Defer rendering of Mermaid diagrams hidden by a parent (e.g.
Reveal.js slides, unopened tabs) until they become visible, fixing
broken SVGs</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/f992df73a848cdbbe504a3e9c0704119f4cf041c"><code>f992df7</code></a>
Merge pull request <a
href="https://redirect.github.com/mgaitan/sphinxcontrib-mermaid/issues/249">#249</a>
from mgaitan/tkp/203</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/7ced3de3ded0507f4be43d119b720b246a7e4756"><code>7ced3de</code></a>
bump to 2.0.3</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/7346af22627a4ce1128059ef211c54e55088b1e0"><code>7346af2</code></a>
Merge pull request <a
href="https://redirect.github.com/mgaitan/sphinxcontrib-mermaid/issues/227">#227</a>
from drillan/fix/lazy-render-hidden-elements</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/b6d1fdcd0f5b566f37bad45d471dc3654f38edeb"><code>b6d1fdc</code></a>
Merge branch 'master' into fix/lazy-render-hidden-elements</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/425076f58a35abf711907e55ee18f3a660fdfe1c"><code>425076f</code></a>
Apply zoom to deferred diagrams and fix zoom completion loop</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/9261af46563a1ae4eebb34db072d4e2b1d64dcc0"><code>9261af4</code></a>
Merge pull request <a
href="https://redirect.github.com/mgaitan/sphinxcontrib-mermaid/issues/248">#248</a>
from timkpaine/tkp/hf</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/a90279933825ac2af99bafe4809e64369eeccb94"><code>a902799</code></a>
Fix local JS module imports on root-level pages</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/881b38a42f918c36f1cdf71310428ec47f14c9be"><code>881b38a</code></a>
Merge pull request <a
href="https://redirect.github.com/mgaitan/sphinxcontrib-mermaid/issues/245">#245</a>
from imphil/string-error-message</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/4fa38480f96780c1ef6e9ebf1c996611193ebe33"><code>4fa3848</code></a>
fix: Capture mmdc error message as string</li>
<li><a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/commit/1a6cad05ea06d90c7d8716a8b6c77527a4812a5a"><code>1a6cad0</code></a>
Backfill CHANGELOG for 2.0.2</li>
<li>Additional commits viewable in <a
href="https://github.com/mgaitan/sphinxcontrib-mermaid/compare/2.0.2...v2.0.3">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=sphinxcontrib-mermaid&package-manager=pip&previous-version=2.0.2&new-version=2.0.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@pull pull Bot locked and limited conversation to collaborators Jul 8, 2026
@pull pull Bot added the ⤵️ pull label Jul 8, 2026
@pull pull Bot merged commit 2519225 into tj-python:master Jul 8, 2026
1 check passed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants