build(deps): bump the python group across 1 directory with 8 updates

[dependabot]

Bumps the python group with 8 updates in the / directory:

Package	From	To
fastapi	0.114.0	0.115.0
boto3-stubs	1.35.14	1.35.24
prometheus-client	0.20.0	0.21.0
mkdocs-material	9.5.34	9.5.36
pytest	8.3.2	8.3.3
hypothesis	6.112.0	6.112.1
pyright	1.1.379	1.1.381
ruff	0.6.4	0.6.7

Updates fastapi from 0.114.0 to 0.115.0

Release notes

Sourced from fastapi's releases.

0.115.0

Highlights

Now you can declare Query, Header, and Cookie parameters with Pydantic models. 🎉

Query Parameter Models

Use Pydantic models for Query parameters:

from typing import Annotated, Literal
from fastapi import FastAPI, Query
from pydantic import BaseModel, Field
app = FastAPI()
class FilterParams(BaseModel):
limit: int = Field(100, gt=0, le=100)
offset: int = Field(0, ge=0)
order_by: Literal["created_at", "updated_at"] = "created_at"
tags: list[str] = []
@​app.get("/items/")
async def read_items(filter_query: Annotated[FilterParams, Query()]):
return filter_query

Read the new docs: Query Parameter Models.

Header Parameter Models

Use Pydantic models for Header parameters:

from typing import Annotated
from fastapi import FastAPI, Header
from pydantic import BaseModel
app = FastAPI()
class CommonHeaders(BaseModel):
host: str
save_data: bool
if_modified_since: str | None = None
traceparent: str | None = None
</tr></table>

... (truncated)

Commits

• 40e33e4 🔖 Release version 0.115.0
• b36047b 📝 Update release notes
• 7eadeb6 📝 Update release notes
• 55035f4 ✨ Add support for Pydantic models for parameters using Query, Cookie, `He...
• 0903da7 📝 Update release notes
• 4b2b14a ⬆ [pre-commit.ci] pre-commit autoupdate (#12204)
• 35df20c 📝 Update release notes
• 8eb3c56 🌐 Add Portuguese translation for `docs/pt/docs/advanced/security/http-basic-a...
• 2ada161 🔖 Release version 0.114.2
• 3a5fd71 📝 Update release notes
• Additional commits viewable in compare view

Updates boto3-stubs from 1.35.14 to 1.35.24

Commits

• See full diff in compare view

Updates prometheus-client from 0.20.0 to 0.21.0

Release notes

Sourced from prometheus-client's releases.

0.21.0 / 2024-09-20

What's Changed

[CHANGE] Reject invalid (not GET or OPTION) HTTP methods. #1019 [ENHANCEMENT] Allow writing metrics when holding a lock for the metric in the same thread. #1014 [BUGFIX] Check for and error on None label values. #1012 [BUGFIX] Fix timestamp comparison. #1038

Commits

• 3b183b4 Release 0.21.0
• 0014e97 Use re-entrant lock. (#1014)
• 7c45f84 Reject invalid HTTP methods and resources (#1019)
• 09a5ae3 Fix timestamp comparison (#1038)
• e364a96 Fix a typo in ASGI docs (#1036)
• eeec421 Pin python 3.8 and 3.9 at patch level (#1024)
• 7bc8cdd docs: correct link to multiprocessing docs (#1023)
• 4535ce0 Add sanity check for label value (#1012)
• See full diff in compare view

Updates mkdocs-material from 9.5.34 to 9.5.36

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.5.36

• Fixed #7544: Social cards incorrectly rendering HTML entities
• Fixed #7542: Improved support for setting custom list styles

mkdocs-material-9.5.35

• Fixed #7498: Search not showing for Vietnamese language

Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.5.36 (2024-09-21)

• Fixed #7544: Social cards incorrectly rendering HTML entities
• Fixed #7542: Improved support for setting custom list styles

mkdocs-material-9.5.35 (2024-09-18)

• Fixed #7498: Search not showing for Vietnamese language

mkdocs-material-9.5.34+insiders-4.53.13 (2024-09-14)

• Fixed #7520: Social plugin errors for generated files (MkDocs 1.6+)

mkdocs-material-9.5.34 (2024-08-31)

• Updated Mermaid.js to version 11 (latest)

mkdocs-material-9.5.33 (2024-08-23)

• Fixed #7453: Incorrect position of tooltip when sorting table

mkdocs-material-9.5.32 (2024-08-19)

• Fixed RXSS vulnerability via deep link in search results
• Added support for fetching latest release from GitLab

mkdocs-material-9.5.31+insiders-4.53.12 (2024-08-02)

• Fixed #7410: Instant previews jump on content tabs with anchor links
• Fixed #7408: Instant previews jump on content tabs

mkdocs-material-9.5.31 (2024-08-02)

• Fixed #7405: DockerHub missing images > 9.5.27 due to change in Alpine/APK

mkdocs-material-9.5.30 (2024-07-23)

• Fixed #7380: Navigation icons disappearing on hover in Safari
• Fixed #7367: Blog readtime computation includes SVG text content

mkdocs-material-9.5.29 (2024-07-14)

• Updated Galician translations
• Fixed #7362: Annotations in figure captions rendering incorrectly

mkdocs-material-9.5.28 (2024-07-02)

• Fixed #7313: Improved tooltips mounted in sidebar when feature is disabled

mkdocs-material-9.5.27 (2024-06-16)

... (truncated)

Commits

• 71b64f4 Prepare 9.5.36 release
• bbb76b8 Updated dependencies
• 57765c4 Updated dependencies
• 68b6758 Added support for setting custom list styles
• 85d6091 Added support for setting custom list styles
• 22ff858 Removed unused import
• b655e07 Fixed HTML entities not escaped in social cards
• 67f1752 Documentation
• c6286de Updated Insiders section (#7540)
• 909b2a6 Updated links to versioning example
• Additional commits viewable in compare view

Updates pytest from 8.3.2 to 8.3.3

Release notes

Sourced from pytest's releases.

8.3.3

pytest 8.3.3 (2024-09-09)

Bug fixes

• #12446: Avoid calling @property (and other instance descriptors) during fixture discovery -- by asottile{.interpreted-text role="user"}

• #12659: Fixed the issue of not displaying assertion failure differences when using the parameter --import-mode=importlib in pytest>=8.1.

• #12667: Fixed a regression where type change in [ExceptionInfo.errisinstance]{.title-ref} caused [mypy]{.title-ref} to fail.

• #12744: Fixed typing compatibility with Python 3.9 or less -- replaced [typing.Self]{.title-ref} with [typing_extensions.Self]{.title-ref} -- by Avasam{.interpreted-text role="user"}

• #12745: Fixed an issue with backslashes being incorrectly converted in nodeid paths on Windows, ensuring consistent path handling across environments.

• #6682: Fixed bug where the verbosity levels where not being respected when printing the "msg" part of failed assertion (as in assert condition, msg).

• #9422: Fix bug where disabling the terminal plugin via -p no:terminal would cause crashes related to missing the verbose option.

  -- by GTowers1{.interpreted-text role="user"}

Improved documentation

• #12663: Clarify that the [pytest_deselected]{.title-ref} hook should be called from [pytest_collection_modifyitems]{.title-ref} hook implementations when items are deselected.
• #12678: Remove erroneous quotes from [tmp_path_retention_policy]{.title-ref} example in docs.

Miscellaneous internal changes

• #12769: Fix typos discovered by codespell and add codespell to pre-commit hooks.

Commits

• d0f136f build(deps): Bump pypa/gh-action-pypi-publish from 1.10.0 to 1.10.1 (#12790)
• 972f307 Prepare release version 8.3.3
• 0dabdcf Include co-authors in release announcement (#12795) (#12797)
• a9910a4 Do not discover properties when iterating fixtures (#12781) (#12788)
• 0f10b6b Fix issue with slashes being turned into backslashes on Windows (#12760) (#12...
• 300d13d Merge pull request #12785 from pytest-dev/patchback/backports/8.3.x/57cccf7f4...
• e5d32c7 Merge pull request #12784 from svenevs/fix/docs-example-parametrize-minor-typo
• bc913d1 Streamline checks for verbose option (#12706) (#12778)
• 01cfcc9 Fix typos and introduce codespell pre-commit hook (#12769) (#12774)
• 4873394 doc: Remove past training (#12772) (#12773)
• Additional commits viewable in compare view

Updates hypothesis from 6.112.0 to 6.112.1

Commits

• a64b71c Bump hypothesis-python version to 6.112.1 and update changelog
• 7d7724c Merge pull request #4103 from tybug/fix-numpy-nightly
• 6dfe346 remove now-incorrect assertion
• 8f4dcab Merge pull request #4101 from tybug/strengthen-ir-tests
• d7ec1e3 bump upload-artifact
• 4a99ad0 more explicit generator
• eeaa831 rc2 is out probably?
• ccd6849 ensure coverage
• b49d4dc consolidate test_forced_* methods
• 927ad08 improve ir test strategies
• See full diff in compare view

Updates pyright from 1.1.379 to 1.1.381

Commits

• 7b5b8e8 Pyright NPM Package update to 1.1.381 (#295)
• e592e91 [pyright updated to 1.1.380] Update Version (#293)
• See full diff in compare view

Updates ruff from 0.6.4 to 0.6.7

Release notes

Sourced from ruff's releases.

0.6.7

Release Notes

Preview features

• Add Python version support to ruff analyze CLI (#13426)
• Add exclude support to ruff analyze (#13425)
• Fix parentheses around return type annotations (#13381)

Rule changes

• [pycodestyle] Fix: Don't autofix if the first line ends in a question mark? (D400) (#13399)

Bug fixes

• Respect lint.exclude in ruff check --add-noqa (#13427)

Performance

• Avoid tracking module resolver files in Salsa (#13437)
• Use forget for module resolver database (#13438)

Install ruff 0.6.7

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.7/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.6.7/ruff-installer.ps1 | iex"

Download ruff 0.6.7

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
ruff-i686-pc-windows-msvc.zip	x86 Windows	checksum
ruff-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
ruff-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
ruff-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
ruff-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
ruff-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
ruff-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.7

Preview features

• Add Python version support to ruff analyze CLI (#13426)
• Add exclude support to ruff analyze (#13425)
• Fix parentheses around return type annotations (#13381)

Rule changes

• [pycodestyle] Fix: Don't autofix if the first line ends in a question mark? (D400) (#13399)

Bug fixes

• Respect lint.exclude in ruff check --add-noqa (#13427)

Performance

• Avoid tracking module resolver files in Salsa (#13437)
• Use forget for module resolver database (#13438)

0.6.6

Preview features

• [refurb] Skip slice-to-remove-prefix-or-suffix (FURB188) when non-trivial slice steps are present (#13405)
• Add a subcommand to generate dependency graphs (#13402)

Formatter

• Fix placement of inline parameter comments (#13379)

Server

• Fix off-by one error in the LineIndex::offset calculation (#13407)

Bug fixes

• [fastapi] Respect FastAPI aliases in route definitions (#13394)
• [pydocstyle] Respect word boundaries when detecting function signature in docs (#13388)

Documentation

• Add backlinks to rule overview linter (#13368)
• Fix documentation for editor vim plugin ALE (#13348)
• Fix rendering of FURB188 docs (#13406)

0.6.5

Preview features

... (truncated)

Commits

• 17c4690 Bump version to v0.6.7 (#13439)
• f06d44e Use forget for module resolver database (#13438)
• 653c090 Use an empty vendored file system in Ruff (#13436)
• 8921fbb vendored_typeshed_versions should use db.vendored (#13434)
• 3018303 Avoid parsing with Salsa (#13437)
• 6c303b2 red-knot: Add not unary operator for boolean literals (#13422)
• 7579a79 Add test coverage for non-Python globs (#13430)
• 0bbc138 Upgrade to latest cargo-dist version (#13416)
• ff11db6 Add Python version support to ruff analyze CLI (#13426)
• 2823487 Respect lint.exclude in ruff check --add-noqa (#13427)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.