Skip to content

⬆️ Bump the uv-dependencies group across 1 directory with 8 updates#186

Merged
fmigneault merged 1 commit into
mainfrom
dependabot/uv/uv-dependencies-a7da09648c
May 30, 2026
Merged

⬆️ Bump the uv-dependencies group across 1 directory with 8 updates#186
fmigneault merged 1 commit into
mainfrom
dependabot/uv/uv-dependencies-a7da09648c

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 29, 2026

Copy link
Copy Markdown
Contributor

Bumps the uv-dependencies group with 5 updates in the / directory:

Package From To
typer 0.25.1 0.26.3
setuptools 81.0.0 82.0.1
safety 3.8.0b3 3.8.1
coverage 7.14.0 7.14.1
ruff 0.15.14 0.15.15

Updates typer from 0.25.1 to 0.26.3

Release notes

Sourced from typer's releases.

0.26.3

Refactors

Internal

0.26.2

Fixes

  • 🐛 Ensure that an envvar set for a typer.Option list is split on whitespace. PR #1791 by @​svlandeg.

0.26.1

Fixes

  • 🐛 Ensure that an envvar set for typer.Option works as expected. PR #1788 by @​svlandeg.

Internal

0.26.0

Breaking Changes

  • ➖ Vendor Click and streamline Typer's functionality and code base. PR #1774 by @​svlandeg.
    • Typer no longer depends on Click as a third party dependency, it vendors (includes the source code of) Click.
    • This simplifies the work done by both Click and Typer teams.
    • It allows Typer to evolve independently, and enables several new planned features.
    • It will solve several dependency conflict situations for projects that use some packages that depend on Click and some that depend on Typer.
    • This also means that Click-specific functionality is no longer supported, like extracting the Click app and adding Click-specific plug-ins, or customizing the field types with Click-specific types.
    • You can read more about it in the docs for Vendored Click.

Docs

Internal

... (truncated)

Changelog

Sourced from typer's changelog.

0.26.3 (2026-05-28)

Refactors

Internal

0.26.2 (2026-05-27)

Fixes

  • 🐛 Ensure that an envvar set for a typer.Option list is split on whitespace. PR #1791 by @​svlandeg.

0.26.1 (2026-05-26)

Fixes

  • 🐛 Ensure that an envvar set for typer.Option works as expected. PR #1788 by @​svlandeg.

Internal

0.26.0 (2026-05-26)

Breaking Changes

  • ➖ Vendor Click and streamline Typer's functionality and code base. PR #1774 by @​svlandeg.
    • Typer no longer depends on Click as a third party dependency, it vendors (includes the source code of) Click.
    • This simplifies the work done by both Click and Typer teams.
    • It allows Typer to evolve independently, and enables several new planned features.
    • It will solve several dependency conflict situations for projects that use some packages that depend on Click and some that depend on Typer.
    • This also means that Click-specific functionality is no longer supported, like extracting the Click app and adding Click-specific plug-ins, or customizing the field types with Click-specific types.
    • You can read more about it in the docs for Vendored Click.

Docs

Internal

  • 📌 Pin max version of Click to >= 8.2.1, < 8.4 temporarily to prevent incompatibilities. PR #1753 by @​tiangolo.
    • Superseded by vendoring Click.

... (truncated)

Commits
  • 08225ab 🔖 Release version 0.26.3
  • 7dc707c 📝 Update release notes
  • 6812cee 👷 Update version of latest-changes GitHub action (#1798)
  • 37214ea 📝 Update release notes
  • 2ce37a7 ♻️ Unify the testing functionality (#1792)
  • eef433f 🔖 Release version 0.26.2
  • 23474b0 📝 Update release notes
  • 5568bab 🐛 Ensure that an envvar set for a typer.Option list is split on whitespace ...
  • 8c70d49 🔖 Release version 0.26.1
  • 75ee927 📝 Update release notes
  • Additional commits viewable in compare view

Updates setuptools from 81.0.0 to 82.0.1

Changelog

Sourced from setuptools's changelog.

v82.0.1

Bugfixes

  • Fix the loading of launcher manifest.xml file. (#5047)
  • Replaced deprecated json.__version__ with fixture in tests. (#5186)

Improved Documentation

  • Add advice about how to improve predictability when installing sdists. (#5168)

Misc

v82.0.0

Deprecations and Removals

  • pkg_resources has been removed from Setuptools. Most common uses of pkg_resources have been superseded by the importlib.resources <https://docs.python.org/3/library/importlib.resources.html>_ and importlib.metadata <https://docs.python.org/3/library/importlib.metadata.html>_ projects. Projects and environments relying on pkg_resources for namespace packages or other behavior should depend on older versions of setuptools. (#3085)
Commits
  • 5a13876 Bump version: 82.0.0 → 82.0.1
  • 51ab8f1 Avoid using (deprecated) 'json.version' in tests (#5194)
  • f9c37b2 Docs/CI: Fix intersphinx references (#5195)
  • 8173db2 Docs: Fix intersphinx references
  • 09bafbc Fix past tense on newsfragment
  • 461ea56 Add news fragment
  • c4ffe53 Avoid using (deprecated) 'json.version' in tests
  • 749258b Cleanup pkg_resources dependencies and configuration (#5175)
  • 2019c16 Parse ext-module.define-macros from pyproject.toml as list of tuples (#5169)
  • b809c86 Sync setuptools schema with validate-pyproject (#5157)
  • Additional commits viewable in compare view

Updates safety from 3.8.0b3 to 3.8.1

Release notes

Sourced from safety's releases.

Version 3.8.1

What's Changed

  • bump: version 3.8.0 → 3.8.1 (ec3368a)
  • fix: support SFTY-format vulnerability IDs in policy files (#868) (796af4d)

Version 3.8.0

What's Changed

  • bump: version 3.8.0b4 → 3.8.0 (a4d6a5c)
  • chore: update system-scan details in the README (#867) (2042d7b)

Version 3.8.0b4

What's Changed

  • bump: version 3.8.0b3 → 3.8.0b4 (7dfee9a)
  • fix: pin typer <0.26.0 to fix CLI import crash (#865) (304fe88)
  • chore(core): remove system-scan command (#846) (5049dbf)
  • chore: format codebase (#844) (a86ed3c)
Changelog

Sourced from safety's changelog.

3.8.1 (2026-05-27)

Fix

  • support SFTY-format vulnerability IDs in policy files (#868)

3.8.0 (2026-05-26)

3.8.0b4 (2026-05-26)

Fix

  • pin typer <0.26.0 to fix CLI import crash (#865)
Commits
  • ec3368a bump: version 3.8.0 → 3.8.1
  • 796af4d fix: support SFTY-format vulnerability IDs in policy files (#868)
  • a4d6a5c bump: version 3.8.0b4 → 3.8.0
  • 2042d7b chore: update system-scan details in the README (#867)
  • 7dfee9a bump: version 3.8.0b3 → 3.8.0b4
  • 304fe88 fix: pin typer <0.26.0 to fix CLI import crash (#865)
  • 5049dbf chore(core): remove system-scan command (#846)
  • a86ed3c chore: format codebase (#844)
  • See full diff in compare view

Updates coverage from 7.14.0 to 7.14.1

Changelog

Sourced from coverage's changelog.

Version 7.14.1 — 2026-05-26

  • Fix: the HTML report used typographic niceties to make file paths more readable by adding a small amount of space around slashes. Those spaces interfered with searching the page for file paths of interest. Now the report uses CSS to accomplish the same visual tweak so that searches with slashes work correctly. Closes issue 2170_.

  • Add a 3.16 PyPI classifier <hugo-316_>_ since we test on the 3.16 main branch.

.. _issue 2170: coveragepy/coveragepy#2170 .. _hugo-316: https://mastodon.social/@​hugovk/116588523571204490

.. _changes_7-14-0:

Commits
  • 64d9b66 docs: correct the date for 7.14.1
  • 6fa7dd4 chore: bump actions/dependency-review-action (#2181)
  • 078afae docs: sample HTML for 7.14.1
  • cb4f028 docs: prep for 7.14.1
  • ae2d09f Merge branch 'nedbat/classifire-316-kits'
  • 2c3568b build: declare 3.16 compatibility
  • faa68f8 chore: bump github/codeql-action in the action-dependencies group (#2173)
  • eb55fee test: we don't need PyPy < 7.3.22 anymore
  • ac168fe test: the text summary should show missing
  • fed4bd2 chore: upgrade virtualenv
  • Additional commits viewable in compare view

Updates ruff from 0.15.14 to 0.15.15

Release notes

Sourced from ruff's releases.

0.15.15

Release Notes

Released on 2026-05-28.

Preview features

  • Fix Markdown closing fence handling (#25310)
  • [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

  • [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

  • Avoid redundant TokenValue drops in the lexer (#25300)
  • Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
  • Use ThinVec in AST to shrink Stmt (#25361)

Documentation

  • Fix line-length example for --config option (#25389)
  • [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
  • [mccabe] Improve example (C901) (#25287)
  • [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
  • [refurb] Document FURB192 exception change for empty sequences (#25317)
  • [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

  • Fix formatting of lambdas nested within f-strings (#25398)

Server

  • Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

  • Expand semantic syntax errors for invalid walruses (#25415)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.15

Released on 2026-05-28.

Preview features

  • Fix Markdown closing fence handling (#25310)
  • [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

  • [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

  • Avoid redundant TokenValue drops in the lexer (#25300)
  • Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
  • Use ThinVec in AST to shrink Stmt (#25361)

Documentation

  • Fix line-length example for --config option (#25389)
  • [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
  • [mccabe] Improve example (C901) (#25287)
  • [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
  • [refurb] Document FURB192 exception change for empty sequences (#25317)
  • [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

  • Fix formatting of lambdas nested within f-strings (#25398)

Server

  • Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

  • Expand semantic syntax errors for invalid walruses (#25415)

Contributors

Commits
  • db5aa0a Bump 0.15.15 (#25431)
  • 366fe21 [ty] Improve diagnostics for syntax errors in forward annotations (#25158)
  • e2e1e64 [ty] Remove excess capacity from more Salsa cached collections (#25411)
  • 1bd77e1 [ty] Use diagnostic message as tie breaker when sorting (#25424)
  • 7e1bc1e Add agent skills for working on ty (#25422)
  • 574e107 Expand semantic syntax errors for invalid walruses (#25415)
  • 4a7ca06 [ty] Display docs for matching parameter when hovering over the name of an ar...
  • 5432709 Refine a few agents instructions (#25423)
  • 3cb09eb [ty] Support typing.TypeForm (#25334)
  • c8cd59f [ty] Infer class attributes assigned by metaclass initialization (#25342)
  • Additional commits viewable in compare view

Updates nvidia-cuda-nvrtc-cu12 from 12.6.85 to 12.6.77

Updates nvidia-nccl-cu12 from 2.29.3 to 2.27.5

Updates triton from 3.7.0 to 3.6.0

Commits
  • 7c56a5e [release 3.6] Release Triton to pypi (#9254)
  • 9844da9 [release/3.6] Force disable slp-copyable-elements (#9035)
  • 6213a0e [Cherrypick][CUDA][PTXAS] Make TRITON_PTXAS_BLACKWELL_PATH work to overwrite ...
  • 8fedd49 [Release specific] [BACKEND] Disable maybeDeduplicate for AMDWmma (#8936)
  • 3362bc8 [release/3.6] [Revert] [Coalesce] Fix the default order to be row major (#570...
  • 5261b27 [cherry-pick] Advance version 3.5.0->3.6.0 (#8836) (#8861)
  • 85400f8 [BACKEND] run remove backward prop until a fix point (#8776)
  • e7fb841 Revert "[Triton] Make tl.cat deterministic by using permute+reshape+join an...
  • 9946bd3 [BACKEND] Check that Shared layouts have rank equal to the tensor or one less...
  • 49b7472 [LAYOUTS] Make CTALayout an honest-to-goodness LinearLayout (#8770)
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 29, 2026
@fmigneault

Copy link
Copy Markdown
Collaborator

@dependabot recreate

Bumps the uv-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [typer](https://github.com/fastapi/typer) | `0.25.1` | `0.26.3` |
| [setuptools](https://github.com/pypa/setuptools) | `81.0.0` | `82.0.1` |
| [safety](https://github.com/pyupio/safety) | `3.8.0b3` | `3.8.1` |
| [coverage](https://github.com/coveragepy/coveragepy) | `7.14.0` | `7.14.1` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.14` | `0.15.15` |



Updates `typer` from 0.25.1 to 0.26.3
- [Release notes](https://github.com/fastapi/typer/releases)
- [Changelog](https://github.com/fastapi/typer/blob/master/docs/release-notes.md)
- [Commits](fastapi/typer@0.25.1...0.26.3)

Updates `setuptools` from 81.0.0 to 82.0.1
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/NEWS.rst)
- [Commits](pypa/setuptools@v81.0.0...v82.0.1)

Updates `safety` from 3.8.0b3 to 3.8.1
- [Release notes](https://github.com/pyupio/safety/releases)
- [Changelog](https://github.com/pyupio/safety/blob/main/CHANGELOG.md)
- [Commits](pyupio/safety@3.8.0b3...3.8.1)

Updates `coverage` from 7.14.0 to 7.14.1
- [Release notes](https://github.com/coveragepy/coveragepy/releases)
- [Changelog](https://github.com/coveragepy/coveragepy/blob/main/CHANGES.rst)
- [Commits](coveragepy/coveragepy@7.14.0...7.14.1)

Updates `ruff` from 0.15.14 to 0.15.15
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.14...0.15.15)

Updates `nvidia-cuda-nvrtc-cu12` from 12.6.85 to 12.6.77

Updates `nvidia-nccl-cu12` from 2.29.3 to 2.27.5

Updates `triton` from 3.7.0 to 3.6.0
- [Release notes](https://github.com/triton-lang/triton/releases)
- [Changelog](https://github.com/triton-lang/triton/blob/main/RELEASE.md)
- [Commits](triton-lang/triton@v3.7.0...v3.6.0)

---
updated-dependencies:
- dependency-name: coverage
  dependency-version: 7.14.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
- dependency-name: nvidia-cuda-nvrtc-cu12
  dependency-version: 12.6.77
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
- dependency-name: nvidia-nccl-cu12
  dependency-version: 2.27.5
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: ruff
  dependency-version: 0.15.15
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
- dependency-name: safety
  dependency-version: 3.8.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: uv-dependencies
- dependency-name: setuptools
  dependency-version: 82.0.1
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: uv-dependencies
- dependency-name: triton
  dependency-version: 3.6.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
- dependency-name: typer
  dependency-version: 0.26.3
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: uv-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title ⬆️ Bump the uv-dependencies group with 8 updates ⬆️ Bump the uv-dependencies group across 1 directory with 8 updates May 30, 2026
@dependabot
dependabot Bot force-pushed the dependabot/uv/uv-dependencies-a7da09648c branch from 18cab56 to d567c9f Compare May 30, 2026 02:02
@fmigneault
fmigneault merged commit f800408 into main May 30, 2026
8 checks passed
@fmigneault
fmigneault deleted the dependabot/uv/uv-dependencies-a7da09648c branch May 30, 2026 03:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant