chore(deps): update all non-major dependencies#52
Open
renovate[bot] wants to merge 1 commit into
Open
Conversation
1fc0bbc to
5f7cd22
Compare
5f7cd22 to
092a1ec
Compare
092a1ec to
70d15c1
Compare
70d15c1 to
a2cdd61
Compare
a2cdd61 to
539fdfa
Compare
539fdfa to
71d7853
Compare
d0fbf1e to
8fe23b4
Compare
14bed75 to
744ec59
Compare
d413260 to
fd55458
Compare
fd55458 to
de7a71f
Compare
de7a71f to
adf3d66
Compare
0e45dd6 to
e84a25a
Compare
e84a25a to
bbc6fb0
Compare
bbc6fb0 to
a7e95c0
Compare
c927192 to
84c35af
Compare
38e2524 to
674e7b1
Compare
bbc38e7 to
9d2875a
Compare
61717de to
9cadb67
Compare
2a5fae4 to
3c2416e
Compare
6485f99 to
8ba0c52
Compare
99a6c6c to
226f626
Compare
4d510b5 to
be51c12
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v4.0.0→v4.1.0v8.1.0→v8.3.21.1.408→1.1.411==1.22.5→==1.25.2>=0.8.4,<0.9.0→>=0.11.28,<0.12.0Release Notes
astral-sh/ruff-action (astral-sh/ruff-action)
v4.1.0: 🌈 Skip Astral mirror and support uv.lockCompare Source
Changes
Among some minor bugfixes this release adds the option to skip the astral-sh mirror and download directly from GitHub releases. Useful if the Astral mirror can't or shouldn't be used.
Also big thanks to @somaz94 for adding support for reading the desired ruff version from
uv.lock.This works automatically if you haven't overridden the version discovery by using the inputs
versionorversion-file🐛 Bug fixes
🚀 Enhancements
🧰 Maintenance
📚 Documentation
⬆️ Dependency updates
astral-sh/setup-uv (astral-sh/setup-uv)
v8.3.2Compare Source
v8.3.1Compare Source
v8.3.0Compare Source
v8.2.0: 🌈 New inputsquietanddownload-from-astral-mirrorCompare Source
Changes
This release brings two new inputs and a few bug fixes.
New inputs
Lets talk about the new inputs first.
quiet
Pretty simple. It turns of all
infologgings. Useful if you use this in a composite action and are not interested in all the details.In the upcoming releases we will add log groups to fully implement support for "less noise"
download-from-astral-mirror
In some cases you may want to directly use the fallback of checking for available versions and downloading releases from GitHub instead of using the astral.sh mirror. Setting
download-from-astral-mirror: falseallows you to do that.Bugfixes
When using the astral.sh mirror to query available versions and download releases (done by default) we now stop sending the GitHub token in the header. The mirror never looked at it but we shouldn't be handing out that data even if it is just a short lived token.
All other bugfixes try to limit the impact of failed GitHub queries due to retries and other faults.
We couldn't pinpoint all rootcauses yet but added more logging for error cases to track them down.
🐛 Bug fixes
🚀 Enhancements
download-from-astral-mirrorinput @eifinger (#897)🧰 Maintenance
⬆️ Dependency updates
Microsoft/pyright (pyright)
v1.1.411: Published 1.1.411Compare Source
Changes:
9a9205ffix Agentless jobs error in release (#11524)c9315a2Bump version to 1.1.411 (#11523)a147f88Pull Pylance with Pyright 1.1.410 (#11522)1baa49bUpdate typeshed to289e5d3(#11521)4ba562bFix reachability for generic context managers with bool exit (#11488) [ #11483 ]e1d4856Evaluate truthiness of literals in static boolean expressions (#11520)ceb0d20Fix generic NamedTuple match narrowing for bounded type vars (#11489) [ #11487 ]9e036b2Fix NewType identity comparisons with base literals (#11491) [ #11463 ]11f5588Handle symlinked files in partial stubs (#11516)f335122fix(dataClasses): recognize KW_ONLY separator with any variable name (#11486)See More
03d38cbAllow Callable class attributes to be overridden by instance methods (#11490) [ #11475 ]de5220aPull Pylance with Pyright 1.1.410 (#11506)f744c78Avoid unnecessary workspace configuration request (#11480)0e4c124Update pipeline template reference to use Official.Publish.yml (#11466)92235e0Publish version 1.1.410 (#11461)This list of changes was auto generated.
v1.1.410: Published 1.1.410Compare Source
Changes:
2dfeabcPublished 1.1.41079cc195Update NODE_VERSION to '22.x' in workflow files for consistency with vscode (#11460)505a9bcUpdate typeshed to483fd73(#11416)f06cf49Fix hang in constraint solver for cyclic TypeVar lower bounds (#11413) (#11415)3619ecdFaster tokenizer (#11392)34c556bPush pylance changes to pyright (#11396)This list of changes was auto generated.
v1.1.409: Published 1.1.409Compare Source
Changes:
63998f4Publish 1.1.4094fe3b94Update typeshed tobd18cc6(#11389)870edd1fix style (#11390)28ea84atokenizer: accept ':' in type: ignore code names for namespaced codes (#11383) [ #11345 ]a897500Implement fix for literal loops (#11368)4da46a6Fix match statement issue (#11363)See More
e2aebd4reportPrivateUsage: honor all for module-level _name in non-py.typed source (#11375)81b8686Preserve condition when narrowing Any to None (#11367)7f29b00Fixed bug in mixed gradual tuple assignment logic that's affecting sh… (#11371) [ #11127 ]7c187beFix type narrowing bug (#11364)50a5385Fix workspace initialization when workspaceFolders capability is enabled (#11239) (#11370) [ #11249 ]872edaeUpdate typeshed and agents (#11310)51c403ddocs: remove duplicate word in import statements (#11327)8832b38Fallback to rootpyproject.tomlif projectpyproject.tomldoesnt contain[tool.pyright](#11323)f6bdd93Preserve diagnostic rule overrides when positional args override include (#11285)c971180Fix prettier (#11284)1bec65cAdd iOS and Android as pythonPlatform (#11221)5a325e4Convert worker OOM to a fatal error. (#11274)321c182Avoid cloneStr for small strings and intern tokenizer identifiers (#11267)74ec0f5Optimize findClosestMatch complexity (#11263)66456eaFix reportPrivateImportUsage errors disappearing when source package is tracked (#11237)e89e2dbFix workspace initialization when workspaceFolders capability is enabled (#11239)138238bPush pylance changes to pyright for release of 2026.1.0 (#11218)270cc0aPublish 1.1.408 (#11212)This list of changes was auto generated.
astral-sh/uv (uv_build)
v0.11.28Compare Source
Released on 2026-07-07.
Security
This release updates our ZIP library, astral-async-zip, to v0.0.20, which includes 15 changes that harden our ZIP handling against parser differentials. uv may reject ZIP archives with malformed or ambiguous content that were previously accepted.
See the upstream commits for a full list of changes.
Python
Enhancements
-qand-qq(#20163)uv builderrors (#20159)Performance
uv pip install(#19914)Bug fixes
--upgradewhenupgrade-packageis configured (#19955)uv treein dependency-group-only projects (#20167)v0.11.27Compare Source
Released on 2026-07-06.
Enhancements
--python-downloads-json-url(#16749)Preview features
uv workspace list --scripts(#20099)Performance
requires-pythonspecifiers in Simple API parsing (#20104)Bug fixes
packagestable for pylock.toml (#20145)uv pip tree(#20062)uv add --indexupdates an existing index URL (#19818)Other changes
pubAPIs used in Pixi (#20074)v0.11.26Compare Source
Released on 2026-06-30.
Performance
ForkMap::contains(#20023)Bug fixes
v0.11.25Compare Source
Released on 2026-06-26.
Security
This release updates our tar library, astral-tokio-tar, to v0.6.3, which includes over 20 changes that harden our tar handling against parser differentials. uv may reject source distributions with malformed or ambiguous content that were previously accepted.
See the upstream commits for a full list of changes.
Enhancements
tool.uv.environments(#19933)Preview features
uv workspace list --scripts(#20009)uv venv(#19912)uv check(#19884)uv check(#19995)uv check --script(#19989)Bug fixes
uv buildif the cache dir is enclosed (#19991)v0.11.24Compare Source
Released on 2026-06-23.
Python
Preview features
Performance
Bug fixes
exclude-newer(#19934)activate.fishand broaden Fish version support (#19856)v0.11.23Compare Source
Released on 2026-06-19.
Bug fixes
pre-commit-uv(#19925)pyproject.tomlwould be treated as standalone projects (#19926)v0.11.22Compare Source
Released on 2026-06-18.
Enhancements
uv publish(#19831)TYandRUFFenv vars for providing paths for binaries used byuv formatanduv check(#19821)Preview features
uv.tomlandpyproject.toml(#18437)uv check --no-sync(#19909)--scripttouv checkanduv metadata(#19860)workspace metadata(#19862)uv auditoutput (#19872)Performance
Bug fixes
include-groupentries that have additional fields (#19866)backend-paths exist when building sdists (#19834)pylock.tomlfiles do not have an unsupported alock-version(#19869)packages.requires-pythonof apylock.toml(#19868)uvto be recursively invoked by PEP 517 build hooks (#19879)credentials.tomlfiles (#19815)uv pip list(#19867)uv tree --invert(#19910)uv venvin a project (#19837)uv tree(#19905)Documentation
Other changes
v0.11.21Compare Source
Released on 2026-06-11.
Python
Preview features
environment.roottouv workspace metadata --sync(#19760)uv upgradeto update a single dependency constraint (#19738)uv workspace metadatapayload inty check(#19763)uv init(#17841)Performance
uv python list(#18684)Bug fixes
uv python listwith path requests (#19774)v0.11.20Compare Source
Released on 2026-06-10.
Enhancements
--emit-index-urland--emit-find-linkstouv export(#18370)--find-linkssupport foruv pip list(#16103)uv python install(#19691)Preview features
uv upgradecommand (#19678)uv upgrade(#19742)Configuration
UV_NO_INSTALL_PROJECT,UV_NO_INSTALL_WORKSPACE,UV_NO_INSTALL_LOCAL(#19323)Performance
Bug fixes
VIRTUAL_ENVthroughcygpathinsidefishon Windows (#19703)Documentation
--find-linkscaching behavior (#19585)v0.11.19Compare Source
Released on 2026-06-03.
Python
Enhancements
Preview features
--isolatedinuv check(#19666)Bug fixes
v0.11.18Compare Source
Released on 2026-06-01.
Performance
Preview
uv checkto runtyfrom uv (#19605)Bug fixes
Other changes
v0.11.17Compare Source
Released on 2026-05-28.
Enhancements
uv addwith standard library modules (#19572)uv workspaceand itslistsubcommand in help output (#19533)ignore-error-codeswhen applicable (#19521)import-namesandimport-namespacessupport touv-build(PEP 794) (#19380)--no-editable-packageflag to various commands (#19584)uv toolinvocations (#19577)Preview features
uv workspace metadata(#19122)uv venv --clearto remove non-virtual environments (#19595)Bug fixes
tool.uv.conflicts(#19538)--env-fileinuv run(#19567)--check-url(#19594)--find-linksparsing (#19537)Documentation
v0.11.16Compare Source
Released on 2026-05-21.
Enhancements
Preview features
Configuration
UV_NO_SYSTEM_CONFIG(#19476)Bug fixes