Skip to content

Bump the dependencies group across 1 directory with 6 updates#167

Merged
tugrulates merged 1 commit intomainfrom
dependabot/pip/dependencies-83546eab61
Mar 20, 2026
Merged

Bump the dependencies group across 1 directory with 6 updates#167
tugrulates merged 1 commit intomainfrom
dependabot/pip/dependencies-83546eab61

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 20, 2026

Bumps the dependencies group with 6 updates in the / directory:

Package From To
typer[all] 0.21.1 0.24.1
bandit[toml] 1.8.6 1.9.4
black 25.11.0 26.3.1
flake8-bugbear 24.12.12 25.11.29
isort 6.1.0 8.0.1
pytest 8.4.2 9.0.2

Updates typer[all] from 0.21.1 to 0.24.1

Release notes

Sourced from typer[all]'s releases.

0.24.1

Internal

0.24.0

Breaking Changes

0.23.1

Fixes

  • 🐛 Fix TYPER_USE_RICH parsing to allow disabling Rich completely. PR #1539 by @​bckohan.

Docs

  • 📝 Remove documentation pages that reference using Click directly. PR #1538 by @​svlandeg.

Internal

0.23.0

Breaking Changes

  • ♻️ When printing error tracebacks with Rich, default to not showing locals, which are sometimes verbose. PR #1072 by @​tiangolo.

Docs

  • 📝 Add more explicit deprecation note in shell packages. PR #1534 by @​tiangolo.

Internal

0.22.0

... (truncated)

Changelog

Sourced from typer[all]'s changelog.

0.24.1

Internal

0.24.0

Breaking Changes

0.23.2

Features

  • ✅ Monkeypatch console width to allow running pytest directly. PR #1542 by @​SwaatiR.

Internal

0.23.1

Fixes

  • 🐛 Fix TYPER_USE_RICH parsing to allow disabling Rich completely. PR #1539 by @​bckohan.

Docs

  • 📝 Remove documentation pages that reference using Click directly. PR #1538 by @​svlandeg.

Internal

0.23.0

... (truncated)

Commits
  • eaec8fa 🔖 Release version 0.24.1
  • c73cc2b 📝 Update release notes
  • 6c6259c 👷 Fix CI, do not attempt to build typer-slim, nor typer-cli (#1569)
  • bc65ad8 📝 Update release notes
  • 3aedc0a ➖ Drop support for typer-slim and typer-cli, no more versions will be rel...
  • 4b13020 📝 Update release notes
  • 19aaf0b ⬆ Bump rich from 14.3.2 to 14.3.3 (#1565)
  • 0ece295 📝 Update release notes
  • 833c005 📝 Update release notes
  • 64c0dcb ⬆ Bump pydantic-settings from 2.13.0 to 2.13.1 (#1566)
  • Additional commits viewable in compare view

Updates bandit[toml] from 1.8.6 to 1.9.4

Release notes

Sourced from bandit[toml]'s releases.

1.9.4

What's Changed

New Contributors

Full Changelog: PyCQA/bandit@1.9.3...1.9.4

1.9.3

What's Changed

New Contributors

Full Changelog: PyCQA/bandit@1.9.2...1.9.3

1.9.2

What's Changed

Full Changelog: PyCQA/bandit@1.9.1...1.9.2

1.9.1

What's Changed

... (truncated)

Commits
  • 92ae8b8 Fix B106 reporting wrong line number on multiline function calls (#1360)
  • c8c8a55 Lower version guard in check_ast_node to Python 3.12 (#1355)
  • 8f2f928 Fix B615 false positive when revision is set via variable (#1358)
  • e27493f Include filename in nosec 'no failed test' warning (#1363)
  • b69b336 Fix B613 crash when reading from stdin (#1361)
  • e418b79 Bump docker/build-push-action from 6.18.0 to 6.19.2 (#1357)
  • ff646fd Bump docker/login-action from 3.6.0 to 3.7.0 (#1353)
  • c0def6c chore: fixed some typos in comments (#1351)
  • 765f00d Limit B614 to torch.load deserializers (#1348)
  • 06fbbab Bump docker/setup-buildx-action from 3.11.1 to 3.12.0 (#1347)
  • Additional commits viewable in compare view

Updates black from 25.11.0 to 26.3.1

Release notes

Sourced from black's releases.

26.3.1

Stable style

  • Prevent Jupyter notebook magic masking collisions from corrupting cells by using exact-length placeholders for short magics and aborting if a placeholder can no longer be unmasked safely (#5038)

Configuration

  • Always hash cache filename components derived from --python-cell-magics so custom magic names cannot affect cache paths (#5038)

Blackd

  • Disable browser-originated requests by default, add configurable origin allowlisting and request body limits, and bound executor submissions to improve backpressure (#5039)

26.3.0

Stable style

  • Don't double-decode input, causing non-UTF-8 files to be corrupted (#4964)
  • Fix crash on standalone comment in lambda default arguments (#4993)
  • Preserve parentheses when # type: ignore comments would be merged with other comments on the same line, preventing AST equivalence failures (#4888)

Preview style

  • Fix bug where if guards in case blocks were incorrectly split when the pattern had a trailing comma (#4884)
  • Fix string_processing crashing on unassigned long string literals with trailing commas (one-item tuples) (#4929)
  • Simplify implementation of the power operator "hugging" logic (#4918)

Packaging

  • Fix shutdown errors in PyInstaller builds on macOS by disabling multiprocessing in frozen environments (#4930)

Performance

  • Introduce winloop for windows as an alternative to uvloop (#4996)
  • Remove deprecated function uvloop.install() in favor of uvloop.new_event_loop() (#4996)
  • Rename maybe_install_uvloop function to maybe_use_uvloop to simplify loop installation and creation of either a uvloop/winloop evenloop or default eventloop (#4996)

Output

... (truncated)

Changelog

Sourced from black's changelog.

26.3.1

Stable style

  • Prevent Jupyter notebook magic masking collisions from corrupting cells by using exact-length placeholders for short magics and aborting if a placeholder can no longer be unmasked safely (#5038)

Configuration

  • Always hash cache filename components derived from --python-cell-magics so custom magic names cannot affect cache paths (#5038)

Blackd

  • Disable browser-originated requests by default, add configurable origin allowlisting and request body limits, and bound executor submissions to improve backpressure (#5039)

26.3.0

Stable style

  • Don't double-decode input, causing non-UTF-8 files to be corrupted (#4964)
  • Fix crash on standalone comment in lambda default arguments (#4993)
  • Preserve parentheses when # type: ignore comments would be merged with other comments on the same line, preventing AST equivalence failures (#4888)

Preview style

  • Fix bug where if guards in case blocks were incorrectly split when the pattern had a trailing comma (#4884)
  • Fix string_processing crashing on unassigned long string literals with trailing commas (one-item tuples) (#4929)
  • Simplify implementation of the power operator "hugging" logic (#4918)

Packaging

  • Fix shutdown errors in PyInstaller builds on macOS by disabling multiprocessing in frozen environments (#4930)

Performance

  • Introduce winloop for windows as an alternative to uvloop (#4996)
  • Remove deprecated function uvloop.install() in favor of uvloop.new_event_loop() (#4996)
  • Rename maybe_install_uvloop function to maybe_use_uvloop to simplify loop installation and creation of either a uvloop/winloop evenloop or default eventloop (#4996)

... (truncated)

Commits

Updates flake8-bugbear from 24.12.12 to 25.11.29

Release notes

Sourced from flake8-bugbear's releases.

25.11.29

  • B043: Add new check to state don't call delattr with constant (#514)
  • B042: ignore overloaded init, ignore if str+pickle dunder, improve README

25.10.21

  • B042: New check for reminding to call super().init in custom exceptions
  • B028: Skip if skip_file_prefixes is used (#503)
  • B912: New check for map() without an explicit strict= parameter. (#516)
  • Add python3.14 Support / CI
  • Remove python3.9 support / CI
  • flake8-bugbear now requires at least Python 3.10, like the next release of flake8
Commits
  • a5ace0a Update CHANGES + move to version 25.11.29 to release
  • 0afdcce b042: ignore overloaded init, ignore if str+pickle dunder, improve README (#531)
  • 2d2fd4d Add B043: Do not call delattr with constant (#514)
  • 9677fa8 Bump actions/checkout from 5 to 6 (#530)
  • ad43575 [pre-commit.ci] pre-commit autoupdate (#529)
  • cdd75f1 Update CHANGES + move to version 25.10.21 to release
  • 4601fe6 Drop 3.9 support + add 3.14 CI (#524)
  • 3969961 [pre-commit.ci] pre-commit autoupdate (#523)
  • 6276149 [pre-commit.ci] pre-commit autoupdate (#522)
  • d264420 [pre-commit.ci] pre-commit autoupdate (#520)
  • Additional commits viewable in compare view

Updates isort from 6.1.0 to 8.0.1

Release notes

Sourced from isort's releases.

8.0.0

Changes

🚀 Features

👷 Continuous Integration

📦 Dependencies

7.0.0

Changes

💥 Breaking Changes

🚀 Features

🪲 Fixes

👷 Continuous Integration

... (truncated)

Changelog

Sourced from isort's changelog.

Changelog

NOTE: isort follows the semver versioning standard. Find out more about isort's release policy here.

Releases

Unreleased

8.0.0 February 19 2026

  • Removed --old-finders and --magic-placement flags and old_finders configuration option. The legacy finder logic that relied on environment introspection has been removed (#2445) @​joao-faria-dev
  • Update the plone profile to not clash with black (#2456) @​ale-rt
Commits
  • a333737 Merge pull request #2463 from FinlayTheBerry/issue/2461
  • 878ba7e Added compression to stdlibs for Python 3.14 in isort/stdlibs/py314.py
  • b5f06a7 Merge pull request #2459 from Fridayai700/fix-unindented-comment-corruption
  • 3459bde Merge pull request #2460 from PyCQA/DanielNoord-patch-1
  • 6e70bb6 Update CHANGELOG for version 8.0.0
  • fd2514b Fix unindented comments being corrupted in indented blocks
  • b0f2dab Merge pull request #2458 from skv0zsneg/issue/1882
  • 313797b Fix lint.
  • 7d3a6f5 Add ignore for cyclomatic complexity check.
  • 6b9f895 Remove debug prints.
  • Additional commits viewable in compare view

Updates pytest from 8.4.2 to 9.0.2

Release notes

Sourced from pytest's releases.

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

  • #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

    You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

    Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

  • #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

  • #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

  • #13965: Fixed quadratic-time behavior when handling unittest subtests in Python 3.10.

Improved documentation

  • #4492: The API Reference now contains cross-reference-able documentation of pytest's command-line flags <command-line-flags>.

9.0.1

pytest 9.0.1 (2025-11-12)

Bug fixes

  • #13895: Restore support for skipping tests via raise unittest.SkipTest.
  • #13896: The terminal progress plugin added in pytest 9.0 is now automatically disabled when iTerm2 is detected, it generated desktop notifications instead of the desired functionality.
  • #13904: Fixed the TOML type of the verbosity settings in the API reference from number to string.
  • #13910: Fixed UserWarning: Do not expect file_or_dir on some earlier Python 3.12 and 3.13 point versions.

Packaging updates and notes for downstreams

  • #13933: The tox configuration has been adjusted to make sure the desired version string can be passed into its package_env through the SETUPTOOLS_SCM_PRETEND_VERSION_FOR_PYTEST environment variable as a part of the release process -- by webknjaz.

Contributor-facing changes

  • #13891, #13942: The CI/CD part of the release automation is now capable of creating GitHub Releases without having a Git checkout on disk -- by bluetech and webknjaz.
  • #13933: The tox configuration has been adjusted to make sure the desired version string can be passed into its package_env through the SETUPTOOLS_SCM_PRETEND_VERSION_FOR_PYTEST environment variable as a part of the release process -- by webknjaz.

... (truncated)

Commits
  • 3d10b51 Prepare release version 9.0.2
  • 188750b Merge pull request #14030 from pytest-dev/patchback/backports/9.0.x/1e4b01d1f...
  • b7d7bef Merge pull request #14014 from bluetech/compat-note
  • bd08e85 Merge pull request #14013 from pytest-dev/patchback/backports/9.0.x/922b60377...
  • bc78386 Add CLI options reference documentation (#13930)
  • 5a4e398 Fix docs typo (#14005) (#14008)
  • d7ae6df Merge pull request #14006 from pytest-dev/maintenance/update-plugin-list-tmpl...
  • 556f6a2 pre-commit: fix rst-lint after new release (#13999) (#14001)
  • c60fbe6 Fix quadratic-time behavior when handling unittest subtests in Python 3.10 ...
  • 73d9b01 Merge pull request #13995 from nicoddemus/patchback/backports/9.0.x/1b5200c0f...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dependencies group across 1 directory with 6 updates
f0e84c2 
Bumps the dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [typer[all]](https://github.com/fastapi/typer) | `0.21.1` | `0.24.1` |
| [bandit[toml]](https://github.com/PyCQA/bandit) | `1.8.6` | `1.9.4` |
| [black](https://github.com/psf/black) | `25.11.0` | `26.3.1` |
| [flake8-bugbear](https://github.com/PyCQA/flake8-bugbear) | `24.12.12` | `25.11.29` |
| [isort](https://github.com/PyCQA/isort) | `6.1.0` | `8.0.1` |
| [pytest](https://github.com/pytest-dev/pytest) | `8.4.2` | `9.0.2` |



Updates `typer[all]` from 0.21.1 to 0.24.1
- [Release notes](https://github.com/fastapi/typer/releases)
- [Changelog](https://github.com/fastapi/typer/blob/master/docs/release-notes.md)
- [Commits](fastapi/typer@0.21.1...0.24.1)

Updates `bandit[toml]` from 1.8.6 to 1.9.4
- [Release notes](https://github.com/PyCQA/bandit/releases)
- [Commits](PyCQA/bandit@1.8.6...1.9.4)

Updates `black` from 25.11.0 to 26.3.1
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@25.11.0...26.3.1)

Updates `flake8-bugbear` from 24.12.12 to 25.11.29
- [Release notes](https://github.com/PyCQA/flake8-bugbear/releases)
- [Commits](PyCQA/flake8-bugbear@24.12.12...25.11.29)

Updates `isort` from 6.1.0 to 8.0.1
- [Release notes](https://github.com/PyCQA/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](PyCQA/isort@6.1.0...8.0.1)

Updates `pytest` from 8.4.2 to 9.0.2
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.4.2...9.0.2)

---
updated-dependencies:
- dependency-name: typer[all]
  dependency-version: 0.24.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: bandit[toml]
  dependency-version: 1.9.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: black
  dependency-version: 26.3.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: flake8-bugbear
  dependency-version: 25.11.29
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: isort
  dependency-version: 8.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: pytest
  dependency-version: 9.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels Mar 20, 2026
@tugrulates tugrulates merged commit cd14b53 into main Mar 20, 2026
21 checks passed
@tugrulates tugrulates deleted the dependabot/pip/dependencies-83546eab61 branch March 20, 2026 12:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tugrulates