Deps: Bump the dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dependencies group with 4 updates in the / directory: certifi, charset-normalizer, imagesize and ruff.

Updates certifi from 2026.1.4 to 2026.2.25

Commits

• 8571a4b 2026.02.25 (#395)
• 6f7de00 Bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#390)
• a1de59b Bump actions/checkout from 6.0.1 to 6.0.2 (#391)
• 7f5ade5 Bump actions/setup-python from 6.1.0 to 6.2.0 (#392)
• See full diff in compare view

Updates charset-normalizer from 3.4.4 to 3.4.5

Release notes

Sourced from charset-normalizer's releases.

Version 3.4.5

3.4.5 (2026-03-06)

Changed

• Update setuptools constraint to setuptools>=68,<=82.
• Raised upper bound of mypyc for the optional pre-built extension to v1.19.1

Fixed

• Add explicit link to lib math in our optimized build. (#692)
• Logger level not restored correctly for empty byte sequences. (#701)
• TypeError when passing bytearray to from_bytes. (#703)

Misc

• Applied safe micro-optimizations in both our noise detector and language detector.
• Rewrote the query_yes_no function (inside CLI) to avoid using ambiguous licensed code.
• Added cd.py submodule into mypyc optional compilation to reduce further the performance impact.

[!WARNING]
mypyc changed the usual binary output for the optimized wheel. Beware, especially if using PyInstaller or alike. See jawah/charset_normalizer#714

Changelog

Sourced from charset-normalizer's changelog.

3.4.5 (2026-03-06)

Changed

• Update setuptools constraint to setuptools>=68,<=82.
• Raised upper bound of mypyc for the optional pre-built extension to v1.19.1

Fixed

• Add explicit link to lib math in our optimized build. (#692)
• Logger level not restored correctly for empty byte sequences. (#701)
• TypeError when passing bytearray to from_bytes. (#703)

Misc

• Applied safe micro-optimizations in both our noise detector and language detector.
• Rewrote the query_yes_no function (inside CLI) to avoid using ambiguous licensed code.
• Added cd.py submodule into mypyc optional compilation to reduce further the performance impact.

Commits

• 7411396 📝 update changelog
• 8de6012 Merge pull request #713 from jawah/release-3.4.5
• 39d0fba Merge branch 'master' into release-3.4.5
• f211d4a ⬆️ Bump actions/upload-artifact from 6.0.0 to 7.0.0 (#707)
• 9123864 ⬆️ Bump github/codeql-action from 4.32.0 to 4.32.4 (#710)
• 5cb1f12 ⬆️ Bump actions/download-artifact from 7.0.0 to 8.0.0 (#711)
• 7e68582 ⬆️ Update setuptools requirement from <=81,>=68 to >=68,<=82.0.0 (#712)
• e1e2ccb correct cp_similarity ratio ceiling (#704)
• 209f9ff fix TypeError when passing bytearray to from_bytes (#703)
• 6a8503f Fix logger level not restored correctly for empty byte sequences (#701)
• Additional commits viewable in compare view

Updates imagesize from 1.4.1 to 1.5.0

Commits

• 0e23fee bump version to 1.5.0
• 3b791f1 add contributors
• fb4cbab add test for BMP
• de45472 Merge pull request #67 from flagman/fix-vp8x-dimensions
• 3cff760 Merge pull request #65 from fuyb1992/master
• e59bc03 Merge pull request #60 from ExtReMLapin/patch-2
• 44c4d1f Merge pull request #56 from gremur/patch-1
• a880db5 Fix VP8X WebP dimension parsing bug
• 3a6b008 Update imagesize.py issuse: #57
• 178b3c2 added support for signed values thanks to @​marcoffee
• Additional commits viewable in compare view

Updates ruff from 0.15.2 to 0.15.5

Release notes

Sourced from ruff's releases.

0.15.5

Release Notes

Released on 2026-03-05.

Preview features

• Discover Markdown files by default in preview mode (#23434)
• [perflint] Extend PERF102 to comprehensions and generators (#23473)
• [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
• [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
• [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

• [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
• [pydocstyle] Fix numpy section ordering (D420) (#23685)
• [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
• [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

• Document extension mapping for Markdown code formatting (#23574)
• Update default Python version examples (#23605)

Other changes

• Publish releases to Astral mirror (#23616)

Contributors

• @​amyreese
• @​stakeswky
• @​chirizxc
• @​anishgirianish
• @​bxff
• @​zsol
• @​charliermarsh
• @​ntBre
• @​kar-ganap

Install ruff 0.15.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.15.5/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.5

Released on 2026-03-05.

Preview features

• Discover Markdown files by default in preview mode (#23434)
• [perflint] Extend PERF102 to comprehensions and generators (#23473)
• [refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
• [ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
• [ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)

Bug fixes

• [fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
• [pydocstyle] Fix numpy section ordering (D420) (#23685)
• [pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
• [pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)

Documentation

• Document extension mapping for Markdown code formatting (#23574)
• Update default Python version examples (#23605)

Other changes

• Publish releases to Astral mirror (#23616)

Contributors

• @​amyreese
• @​stakeswky
• @​chirizxc
• @​anishgirianish
• @​bxff
• @​zsol
• @​charliermarsh
• @​ntBre
• @​kar-ganap

0.15.4

Released on 2026-02-26.

This is a follow-up release to 0.15.3 that resolves a panic when the new rule PLR1712 was enabled with any rule that analyzes definitions, such as many of the ANN or D rules.

Bug fixes

• Fix panic on access to definitions after analyzing definitions (#23588)
• [pyflakes] Suppress false positive in F821 for names used before del in stub files (#23550)

... (truncated)

Commits

• 5e4a3d9 Bump 0.15.5 (#23743)
• 69c23cc [ty] Render all changed diagnostics in conformance.py (#23613)
• 4926bd5 [ty] Split deferred checks out of types/infer/builder.rs (#23740)
• 9a70f5e Discover markdown files by default in preview mode (#23434)
• 3dc78b0 [ty] Use HasOptionalDefinition for except handlers (#23739)
• a6a5e8d [ty] Fix precedence of all selector in TOML configurations (#23723)
• 2a5384b [ty] Make all selector case sensitive (#23713)
• db77d7b [ty] Add a diagnostic if a TypeVar is used to specialize a ParamSpec, or ...
• db28490 [ty] Override home directory in ty tests (#23724)
• 5f0fd91 [ty] More type-variable default validation (#23639)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Conventional Commits Report

Type	Number
Dependencies	1

🚀 Conventional commits found.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 89.48%. Comparing base (00c9ab4) to head (75953f1).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #777   +/-   ##
=======================================
  Coverage   89.48%   89.48%           
=======================================
  Files          14       14           
  Lines         723      723           
=======================================
  Hits          647      647           
  Misses         76       76           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.