Skip to content

chore(deps): update uv: bump the uv-version-updates group across 1 directory with 4 updates#31

Merged
JacquesPotgieter merged 1 commit into
mainfrom
dependabot/uv/uv-version-updates-6314101f0c
Oct 6, 2025
Merged

chore(deps): update uv: bump the uv-version-updates group across 1 directory with 4 updates#31
JacquesPotgieter merged 1 commit into
mainfrom
dependabot/uv/uv-version-updates-6314101f0c

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Oct 6, 2025

Copy link
Copy Markdown
Contributor

Bumps the uv-version-updates group with 4 updates in the / directory: isort, checkov, ruff and pyright.

Updates isort from 6.0.1 to 6.1.0

Release notes

Sourced from isort's releases.

6.1.0

Changes

👷 Continuous Integration

📦 Dependencies

Changelog

Sourced from isort's changelog.

6.1.0 October 1 2025

Commits
  • ec0efae Merge pull request #2410 from PyCQA/docs/discussion
  • 8af675f Update docs discussions channel
  • a03dae8 Merge pull request #2409 from PyCQA/build/py314-classifier
  • 2232a26 Add python 3.14 classifier and badge
  • ec48dd7 Merge pull request #2405 from dvarrazzo/fix/drop-pkg-resources
  • be46cd4 refactor: make importlib metadata package import lazy
  • 18ecd0c chore: drop branch guarding unsupported Python versions
  • 1d42e56 fix: drop use of non-standard pkg_resources API
  • 0c8fc82 Merge pull request #2406 from PyCQA/dependabot/github_actions/github-actions-...
  • 3478763 Bump actions/checkout from 4 to 5 in the github-actions group
  • Additional commits viewable in compare view

Updates checkov from 3.2.472 to 3.2.474

Release notes

Sourced from checkov's releases.

3.2.474

Documentation

  • general: Add JAVA_FULL_DT environment variable to CLI reference - #7312

3.2.473

  • no noteworthy changes
Changelog

Sourced from checkov's changelog.

3.2.474 - 2025-10-05

Documentation

  • general: Add JAVA_FULL_DT environment variable to CLI reference - #7312

3.2.473 - 2025-09-30

  • no noteworthy changes
Commits
  • ca4a356 fix(general): escape default ignored directories (#6738)
  • 5ab9792 docs(general): Add JAVA_FULL_DT environment variable to CLI reference (#7312)
  • cea46be fix(general): escape default ignored directories (#6738)
  • b479004 chore: update release notes
  • 388b978 fix(terraform): correctly evaluate CKV_AWS_37 when there's a dynamic … (#6792)
  • 2a57d95 fix(terraform): correctly evaluate CKV_AWS_37 when there's a dynamic … (#6792)
  • e36a9aa chore: update release notes
  • See full diff in compare view

Updates ruff from 0.13.2 to 0.13.3

Release notes

Sourced from ruff's releases.

0.13.3

Release Notes

Released on 2025-10-02.

Preview features

  • Display diffs for ruff format --check and add support for different output formats (#20443)
  • [pyflakes] Handle some common submodule import situations for unused-import (F401) (#20200)
  • [ruff] Do not flag %r + repr() combinations (RUF065) (#20600)

Bug fixes

  • [cli] Add conflict between --add-noqa and --diff options (#20642)
  • [pylint] Exempt required imports from PLR0402 (#20381)
  • [pylint] Fix missing max-nested-blocks in settings display (#20574)
  • [pyupgrade] Prevent infinite loop with I002 and UP026 (#20634)

Rule changes

  • [flake8-simplify] Improve help message clarity (SIM105) (#20548)

Documentation

  • Add the The Basics title back to CONTRIBUTING.md (#20624)
  • Fixed documentation for try_consider_else (#20587)
  • [isort] Clarify dependency between order-by-type and case-sensitive settings (#20559)
  • [pylint] Clarify fix safety to include left-hand hashability (PLR6201) (#20518)

Other changes

  • [playground] Fix quick fixes for empty ranges in playground (#20599)

Contributors

Install ruff 0.13.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.13.3/ruff-installer.sh | sh
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.13.3

Released on 2025-10-02.

Preview features

  • Display diffs for ruff format --check and add support for different output formats (#20443)
  • [pyflakes] Handle some common submodule import situations for unused-import (F401) (#20200)
  • [ruff] Do not flag %r + repr() combinations (RUF065) (#20600)

Bug fixes

  • [cli] Add conflict between --add-noqa and --diff options (#20642)
  • [pylint] Exempt required imports from PLR0402 (#20381)
  • [pylint] Fix missing max-nested-blocks in settings display (#20574)
  • [pyupgrade] Prevent infinite loop with I002 and UP026 (#20634)

Rule changes

  • [flake8-simplify] Improve help message clarity (SIM105) (#20548)

Documentation

  • Add the The Basics title back to CONTRIBUTING.md (#20624)
  • Fixed documentation for try_consider_else (#20587)
  • [isort] Clarify dependency between order-by-type and case-sensitive settings (#20559)
  • [pylint] Clarify fix safety to include left-hand hashability (PLR6201) (#20518)

Other changes

  • [playground] Fix quick fixes for empty ranges in playground (#20599)

Contributors

Commits
  • 188c0dc Bump 0.13.3 (#20685)
  • c9b2bcb Update benchmarking CI for cargo-codspeed v4 (#20686)
  • 4e94b22 [ty] Support single-starred argument for overload call (#20223)
  • 0639da2 [ty] ~T should never be assignable to T (#20606)
  • caf48f4 [pylint] Clarify fix safety to include left-hand hashability (PLR6201) (#...
  • 71d7112 [ty] No union with Unknown for module-global symbols (#20664)
  • eb34d12 [ty] Reject renaming files to start with slash in Playground (#20666)
  • 56d630e [ty] Enums: allow multiple aliases to point to the same member (#20669)
  • 963bc8c [ty] Reformulation of public symbol inference test suite (#20667)
  • 20eb5b5 [ty] Fix subtyping of invariant generics specialized with Any (#20650)
  • Additional commits viewable in compare view

Updates pyright from 1.1.405 to 1.1.406

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…rectory with 4 updates

Bumps the uv-version-updates group with 4 updates in the / directory: [isort](https://github.com/PyCQA/isort), [checkov](https://github.com/bridgecrewio/checkov), [ruff](https://github.com/astral-sh/ruff) and [pyright](https://github.com/RobertCraigie/pyright-python).


Updates `isort` from 6.0.1 to 6.1.0
- [Release notes](https://github.com/PyCQA/isort/releases)
- [Changelog](https://github.com/PyCQA/isort/blob/main/CHANGELOG.md)
- [Commits](PyCQA/isort@6.0.1...6.1.0)

Updates `checkov` from 3.2.472 to 3.2.474
- [Release notes](https://github.com/bridgecrewio/checkov/releases)
- [Changelog](https://github.com/bridgecrewio/checkov/blob/main/CHANGELOG.md)
- [Commits](bridgecrewio/checkov@3.2.472...3.2.474)

Updates `ruff` from 0.13.2 to 0.13.3
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.13.2...0.13.3)

Updates `pyright` from 1.1.405 to 1.1.406
- [Release notes](https://github.com/RobertCraigie/pyright-python/releases)
- [Commits](RobertCraigie/pyright-python@v1.1.405...v1.1.406)

---
updated-dependencies:
- dependency-name: isort
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-version-updates
- dependency-name: checkov
  dependency-version: 3.2.474
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: ruff
  dependency-version: 0.13.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: pyright
  dependency-version: 1.1.406
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Oct 6, 2025
@dependabot dependabot Bot requested a review from a team as a code owner October 6, 2025 11:22
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Oct 6, 2025
@JacquesPotgieter JacquesPotgieter merged commit 2ed489e into main Oct 6, 2025
5 checks passed
@JacquesPotgieter JacquesPotgieter deleted the dependabot/uv/uv-version-updates-6314101f0c branch October 6, 2025 11:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant