Bump the python-packages group with 9 updates

[dependabot]

Bumps the python-packages group with 9 updates:

Package	From	To
aiofiles	24.1.0	25.1.0
fastapi	0.118.0	0.120.4
logfire[fastapi]	4.10.0	4.14.2
pydantic	2.11.9	2.12.3
sentry-sdk[fastapi]	2.39.0	2.43.0
starlette	0.48.0	0.49.2
uvicorn	0.37.0	0.38.0
isort	6.0.1	7.0.0
ruff	0.13.2	0.14.3

Updates aiofiles from 24.1.0 to 25.1.0

Release notes

Sourced from aiofiles's releases.

v25.1.0

• Switch to uv + add Python v3.14 support. (#219)
• Add ruff formatter and linter. #216
• Drop Python 3.8 support. If you require it, use version 24.1.0. #204

New Contributors

• @​danielsmyers made their first contribution in Tinche/aiofiles#185
• @​stankudrow made their first contribution in Tinche/aiofiles#192
• @​waketzheng made their first contribution in Tinche/aiofiles#221

Full Changelog: Tinche/aiofiles@v24.1.0...v25.1.0

Changelog

Sourced from aiofiles's changelog.

25.1.0 (2025-10-09)

• Switch to uv + add Python v3.14 support. (#219)
• Add ruff formatter and linter. #216
• Drop Python 3.8 support. If you require it, use version 24.1.0. #204

Commits

• 348f5ef v25.1.0
• 5e1bb8f docs: update readme to use ruff badge (#221)
• 6fdc25c Move to uv. (#219)
• 1989132 set 'function' as a default fixture loop scope value
• 8986452 add the 'asyncio_default_fixture_loop_scope=session' option
• ccab1ff update pytest-asyncio==1.0.0
• 8727c96 add PR #216 into the CHANGELOG
• a9388e5 add TID and ignore TID252
• 7603664 remove [ruff].exclude keyval
• 7c49a5c add final newlines
• Additional commits viewable in compare view

Updates fastapi from 0.118.0 to 0.120.4

Release notes

Sourced from fastapi's releases.

0.120.4

Fixes

• 🐛 Fix security schemes in OpenAPI when added at the top level app. PR #14266 by @​YuriiMotov.

0.120.3

Refactors

• ♻️ Reduce internal cyclic recursion in dependencies, from 2 functions calling each other to 1 calling itself. PR #14256 by @​tiangolo.
• ♻️ Refactor internals of dependencies, simplify code and remove get_param_sub_dependant. PR #14255 by @​tiangolo.
• ♻️ Refactor internals of dependencies, simplify using dataclasses. PR #14254 by @​tiangolo.

Docs

• 📝 Update note for untranslated pages. PR #14257 by @​YuriiMotov.

0.120.2

Fixes

• 🐛 Fix separation of schemas with nested models introduced in 0.119.0. PR #14246 by @​tiangolo.

Internal

• 🔧 Add sponsor: SerpApi. PR #14248 by @​tiangolo.
• ⬆ Bump actions/download-artifact from 5 to 6. PR #14236 by @​dependabot[bot].
• ⬆ [pre-commit.ci] pre-commit autoupdate. PR #14237 by @​pre-commit-ci[bot].
• ⬆ Bump actions/upload-artifact from 4 to 5. PR #14235 by @​dependabot[bot].

0.120.1

Upgrades

• ⬆️ Bump Starlette to <0.50.0. PR #14234 by @​YuriiMotov.

Internal

• 🔧 Add license and license-files to pyproject.toml, remove License from classifiers. PR #14230 by @​YuriiMotov.

0.120.0

There are no major nor breaking changes in this release. ☕️

The internal reference documentation now uses annotated_doc.Doc instead of typing_extensions.Doc, this adds a new (very small) dependency on annotated-doc, a package made just to provide that Doc documentation utility class.

I would expect typing_extensions.Doc to be deprecated and then removed at some point from typing_extensions, for that reason there's the new annotated-doc micro-package. If you are curious about this, you can read more in the repo for annotated-doc.

This new version 0.120.0 only contains that transition to the new home package for that utility class Doc.

Translations

• 🌐 Sync German docs. PR #14188 by @​nilslindemann.

... (truncated)

Commits

• fad35ef 🔖 Release version 0.120.4
• 4d57c13 📝 Update release notes
• 496de18 🐛 Fix security schemes in OpenAPI when added at the top level app (#14266)
• 2cf04ee 🔖 Release version 0.120.3
• ec00f5a 📝 Update release notes
• 8b46d88 📝 Update note for untranslated pages (#14257)
• 17fcbbe 📝 Update release notes
• dcfb8b9 ♻️ Reduce internal cyclic recursion in dependencies, from 2 functions calling...
• 1fc586c 📝 Update release notes
• bb88a0f ♻️ Refactor internals of dependencies, simplify code and remove `get_param_su...
• Additional commits viewable in compare view

Updates logfire[fastapi] from 4.10.0 to 4.14.2

Release notes

Sourced from logfire[fastapi]'s releases.

v4.14.2

• Ensure OTEL_EXPORTER_OTLP_HEADERS doesn't override logfire token by @​alexmojaki in #1500

v4.14.1

• Skip recording exceptions on NonRecordingSpan by @​alexmojaki in #1497

v4.14.0

• Support OpenTelemetry 1.38, fix instrument_google_genai and instrument_langchain by @​alexmojaki in #1495

v4.13.2

• Comply with opencode MCP format by @​Kludex in #1488

v4.13.1

• Add "type" keyword on opencode MCP settings by @​Kludex in #1486

v4.13.0

• Store OpenAI Responses streaming response in events format understood by UI by @​alexmojaki in #1479
• Add output option to logfire.ConsoleOptions, e.g. to log to stderr instead of stdout by @​stevenh in #1477
• Update logfire.instrument_pydantic_ai() parameters by @​alexmojaki in #1480

v4.12.0

• Record response when streaming OpenAI Responses API by @​stevenh in #1457
• Record operation.cost span attribute on OpenAI spans by @​alexmojaki in #1468

v4.11.0

• Add experimental exception_callback configuration by @​alexmojaki in #1355
• Support Instrumenting Async SqlAlchemy Engines by @​dhruv-ahuja in #1425
• Always collect operation.cost metric in spans by @​alexmojaki in #1435
• Update pyproject.toml to be PEP639 compliant by @​Kludex in #1429
• Improve canonicalize_exception_traceback for RecursionError by @​alexmojaki in #1455

Changelog

Sourced from logfire[fastapi]'s changelog.

[v4.14.2] (2025-10-24)

• Ensure OTEL_EXPORTER_OTLP_HEADERS doesn't override logfire token by @​alexmojaki in #1500

[v4.14.1] (2025-10-22)

• Skip recording exceptions on NonRecordingSpan by @​alexmojaki in #1497

[v4.14.0] (2025-10-21)

• Support OpenTelemetry 1.38, fix instrument_google_genai and instrument_langchain by @​alexmojaki in #1495

[v4.13.2] (2025-10-13)

• Comply with opencode MCP format by @​Kludex in #1488

[v4.13.1] (2025-10-13)

• Add "type" keyword on opencode MCP settings by @​Kludex in #1486

[v4.13.0] (2025-10-09)

• Store OpenAI Responses streaming response in events format understood by UI by @​alexmojaki in #1479
• Add output option to logfire.ConsoleOptions, e.g. to log to stderr instead of stdout by @​stevenh in #1477
• Update logfire.instrument_pydantic_ai() parameters by @​alexmojaki in #1480

[v4.12.0] (2025-10-08)

• Record response when streaming OpenAI Responses API by @​stevenh in #1457
• Record operation.cost span attribute on OpenAI spans by @​alexmojaki in #1468

[v4.11.0] (2025-10-03)

• Add experimental exception_callback configuration by @​alexmojaki in #1355
• Support Instrumenting Async SqlAlchemy Engines by @​dhruv-ahuja in #1425
• Always collect operation.cost metric in spans by @​alexmojaki in #1435
• Update pyproject.toml to be PEP639 compliant by @​Kludex in #1429
• Improve canonicalize_exception_traceback for RecursionError by @​alexmojaki in #1455

Commits

• ac2c8cb Release v4.14.2 (#1501)
• a5ffee3 Ensure OTEL_EXPORTER_OTLP_HEADERS doesn't override logfire token (#1500)
• 68ba6f3 Release v4.14.1 (#1498)
• ec07fa7 Skip recording exceptions on NonRecordingSpan (#1497)
• c82a1c7 Docs: link to SQL reference (#1492)
• f2cb4c8 Release v4.14.0 (#1496)
• 172122c Support OpenTelemetry 1.38, fix instrument_google_genai and `instrument_lan...
• 7573af0 Release v4.13.2 (#1489)
• 4a8386c Comply with opencode MCP format (#1488)
• 5a16a21 Release v4.13.1 (#1487)
• Additional commits viewable in compare view

Updates pydantic from 2.11.9 to 2.12.3

Release notes

Sourced from pydantic's releases.

v2.12.3 2025-10-17

v2.12.3 (2025-10-17)

What's Changed

This is the third 2.13 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

• Raise a warning when an invalid after model validator function signature is raised by @​Viicos in #12414. Starting in 2.12.0, using class methods for after model validators raised an error, but the error wasn't raised concistently. We decided to emit a deprecation warning instead.
• Add FieldInfo.asdict() method, improve documentation around FieldInfo by @​Viicos in #12411. This also adds back support for mutations on FieldInfo classes, that are reused as Annotated metadata. However, note that this is still not a supported pattern. Instead, please refer to the added example in the documentation.

The blog post section on changes was also updated to document the changes related to serialize_as_any.

Full Changelog: pydantic/pydantic@v2.12.2...v2.12.3

v2.12.2 2025-10-14

v2.12.2 (2025-10-14)

What's Changed

Fixes

• Release a new pydantic-core version, as a corrupted CPython 3.10 manylinux2014_aarch64 wheel got uploaded (pydantic-core#1843).
• Fix issue with recursive generic models with a parent model class by @​Viicos in #12398

Full Changelog: pydantic/pydantic@v2.12.1...v2.12.2

v2.12.1 2025-10-13

v2.12.1 (2025-10-13)

GitHub release

What's Changed

This is the first 2.12 patch release, addressing most (but not all yet) regressions from the initial 2.12.0 release.

Fixes

• Do not evaluate annotations when inspecting validators and serializers by @​Viicos in #12355
• Make sure None is converted as NoneType in Python 3.14 by @​Viicos in #12370
• Backport V1 runtime warning when using Python 3.14 by @​Viicos in #12367
• Fix error message for invalid validator signatures by @​Viicos in #12366
• Populate field name in ValidationInfo for validation of default value by @​Viicos in pydantic-core#1826
• Encode credentials in MultiHostUrl builder by @​willswire in pydantic-core#1829
• Respect field serializers when using serialize_as_any serialization flag by @​davidhewitt in pydantic-core#1829
• Fix various RootModel serialization issues by @​davidhewitt in pydantic-core#1836

New Contributors

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.12.3 (2025-10-17)

GitHub release

What's Changed

This is the third 2.12 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

• Raise a warning when an invalid after model validator function signature is raised by @​Viicos in #12414. Starting in 2.12.0, using class methods for after model validators raised an error, but the error wasn't raised concistently. We decided to emit a deprecation warning instead.
• Add FieldInfo.asdict() method, improve documentation around FieldInfo by @​Viicos in #12411. This also add back support for mutations on FieldInfo classes, that are reused as Annotated metadata. However, note that this is still not a supported pattern. Instead, please refer to the added example in the documentation.

The blog post section on changes was also updated to document the changes related to serialize_as_any.

v2.12.2 (2025-10-14)

GitHub release

What's Changed

Fixes

• Release a new pydantic-core version, as a corrupted CPython 3.10 manylinux2014_aarch64 wheel got uploaded (pydantic-core#1843).
• Fix issue with recursive generic models with a parent model class by @​Viicos in #12398

v2.12.1 (2025-10-13)

GitHub release

What's Changed

This is the first 2.12 patch release, addressing most (but not all yet) regressions from the initial 2.12.0 release.

Fixes

• Do not evaluate annotations when inspecting validators and serializers by @​Viicos in #12355
• Make sure None is converted as NoneType in Python 3.14 by @​Viicos in #12370
• Backport V1 runtime warning when using Python 3.14 by @​Viicos in #12367
• Fix error message for invalid validator signatures by @​Viicos in #12366
• Populate field name in ValidationInfo for validation of default value by @​Viicos in pydantic-core#1826
• Encode credentials in MultiHostUrl builder by @​willswire in pydantic-core#1829
• Respect field serializers when using serialize_as_any serialization flag by @​davidhewitt in pydantic-core#1829
• Fix various RootModel serialization issues by @​davidhewitt in pydantic-core#1836

New Contributors

... (truncated)

Commits

• 1a8850d Prepare release 2.12.3
• 09dbcf2 Add FieldInfo.asdict() method, improve documentation around FieldInfo
• 5da4331 Improve documentation about serialize as any behavior
• 9c86324 Raise a warning when an invalid after model validator function signature is r...
• 36a73c6 Update pydantic-extra-types dependency to version >=2.10.6
• 1e616a3 Prepare release v2.12.2
• dc302e2 Fix issue with recursive generic models with a parent model class
• 6876485 Bump pydantic-core to v2.41.4
• b4076c6 Prepare release 2.12.1
• b67f072 Bump pydantic-core to v2.41.3
• Additional commits viewable in compare view

Updates sentry-sdk[fastapi] from 2.39.0 to 2.43.0

Release notes

Sourced from sentry-sdk[fastapi]'s releases.

2.43.0

Various fixes & improvements

• Pydantic AI integration (#4906) by @​constantinius

  Enable the new Pydantic AI integration with the code snippet below, and you can use the Sentry AI dashboards to observe your AI calls:

  import sentry_sdk
  from sentry_sdk.integrations.pydantic_ai import PydanticAIIntegration
  sentry_sdk.init(
      dsn="<your-dsn>",
      # Set traces_sample_rate to 1.0 to capture 100%
      # of transactions for tracing.
      traces_sample_rate=1.0,
      # Add data like inputs and responses;
      # see https://docs.sentry.io/platforms/python/data-management/data-collected/ for more info
      send_default_pii=True,
      integrations=[
          PydanticAIIntegration(),
      ],
  )

• MCP Python SDK (#4964) by @​constantinius

  Enable the new Python MCP integration with the code snippet below:

  import sentry_sdk
  from sentry_sdk.integrations.mcp import MCPIntegration
  sentry_sdk.init(
      dsn="<your-dsn>",
      # Set traces_sample_rate to 1.0 to capture 100%
      # of transactions for tracing.
      traces_sample_rate=1.0,
      # Add data like inputs and responses;
      # see https://docs.sentry.io/platforms/python/data-management/data-collected/ for more info
      send_default_pii=True,
      integrations=[
          MCPIntegration(),
      ],
  )

• fix(strawberry): Remove autodetection, always use sync extension (#4984) by @​sentrivana

  Previously, StrawberryIntegration would try to guess whether it should install the sync or async version of itself. This auto-detection was very brittle and could lead to us auto-enabling async code in a sync context. With this change, StrawberryIntegration remains an auto-enabling integration, but it'll enable the sync version by default. If you want to enable the async version, pass the option explicitly:

  sentry_sdk.init(
      # ...

... (truncated)

Changelog

Sourced from sentry-sdk[fastapi]'s changelog.

2.43.0

Various fixes & improvements

• Pydantic AI integration (#4906) by @​constantinius

  Enable the new Pydantic AI integration with the code snippet below, and you can use the Sentry AI dashboards to observe your AI calls:

  import sentry_sdk
  from sentry_sdk.integrations.pydantic_ai import PydanticAIIntegration
  sentry_sdk.init(
      dsn="<your-dsn>",
      # Set traces_sample_rate to 1.0 to capture 100%
      # of transactions for tracing.
      traces_sample_rate=1.0,
      # Add data like inputs and responses;
      # see https://docs.sentry.io/platforms/python/data-management/data-collected/ for more info
      send_default_pii=True,
      integrations=[
          PydanticAIIntegration(),
      ],
  )

• MCP Python SDK (#4964) by @​constantinius

  Enable the new Python MCP integration with the code snippet below:

  import sentry_sdk
  from sentry_sdk.integrations.mcp import MCPIntegration
  sentry_sdk.init(
      dsn="<your-dsn>",
      # Set traces_sample_rate to 1.0 to capture 100%
      # of transactions for tracing.
      traces_sample_rate=1.0,
      # Add data like inputs and responses;
      # see https://docs.sentry.io/platforms/python/data-management/data-collected/ for more info
      send_default_pii=True,
      integrations=[
          MCPIntegration(),
      ],
  )

• fix(strawberry): Remove autodetection, always use sync extension (#4984) by @​sentrivana

  Previously, StrawberryIntegration would try to guess whether it should install the sync or async version of itself. This auto-detection was very brittle and could lead to us auto-enabling async code in a sync context. With this change, StrawberryIntegration remains an auto-enabling integration, but it'll enable the sync version by default. If you want to enable the async version, pass the option explicitly:

  sentry_sdk.init(

... (truncated)

Commits

• b069aa2 Update CHANGELOG.md
• a7a3fb1 release: 2.43.0
• 76cc416 fix(google-genai): Set agent name (#5038)
• b3b2eb6 fix(integrations): hooking into error tracing function to find out if an exec...
• d7ccf06 fix(django): Improve logic for classifying cache hits and misses (#5029)
• 64c145f chore(metrics): Rename _metrics to metrics (#5035)
• fe31660 fix(tracemetrics): Bump metric buffer size to 1k (#5031)
• 6e06a07 fix startlette deprecation warning (#5034)
• e636619 fix(strawberry): Remove autodetection, always use sync extension (#4984)
• 8ab8f3b ci: 🤖 Update test matrix with new releases (10/27) (#5033)
• Additional commits viewable in compare view

Updates starlette from 0.48.0 to 0.49.2

Release notes

Sourced from starlette's releases.

Version 0.49.2

Fixed

• Ignore if-modified-since header if if-none-match is present in StaticFiles #3044.

---

Full Changelog: Kludex/starlette@0.49.1...0.49.2

Version 0.49.1

This release fixes a security vulnerability in the parsing logic of the Range header in FileResponse.

You can view the full security advisory: GHSA-7f5h-v6xp-fcq8

Fixed

• Optimize the HTTP ranges parsing logic 4ea6e22b489ec388d6004cfbca52dd5b147127c5

---

Full Changelog: Kludex/starlette@0.49.0...0.49.1

Version 0.49.0

Added

• Add encoding parameter to Config class #2996.
• Support multiple cookie headers in Request.cookies #3029.
• Use Literal type for WebSocketEndpoint encoding values #3027.

Changed

• Do not pollute exception context in Middleware when using BaseHTTPMiddleware #2976.

---

New Contributors

• @​TheWesDias made their first contribution in Kludex/starlette#3017
• @​gmos2104 made their first contribution in Kludex/starlette#3027
• @​secrett2633 made their first contribution in Kludex/starlette#2996
• @​adam-sikora made their first contribution in Kludex/starlette#2976

Full Changelog: Kludex/starlette@0.48.0...0.49.0

Changelog

Sourced from starlette's changelog.

0.49.2 (November 1, 2025)

Fixed

• Ignore if-modified-since header if if-none-match is present in StaticFiles #3044.

0.49.1 (October 28, 2025)

This release fixes a security vulnerability in the parsing logic of the Range header in FileResponse.

You can view the full security advisory: GHSA-7f5h-v6xp-fcq8

Fixed

• Optimize the HTTP ranges parsing logic 4ea6e22b489ec388d6004cfbca52dd5b147127c5

0.49.0 (October 28, 2025)

Added

• Add encoding parameter to Config class #2996.
• Support multiple cookie headers in Request.cookies #3029.
• Use Literal type for WebSocketEndpoint encoding values #3027.

Changed

• Do not pollute exception context in Middleware when using BaseHTTPMiddleware #2976.

Commits

• 85bf027 Version 0.49.2 (#3058)
• 3d480dd Ignore if-modified-since if if-none-match is present (#3057)
• da06052 Bump the github-actions group with 3 updates (#3056)
• 34caa99 Add groups configuration for GitHub Actions (#3055)
• 7e4b742 Version 0.49.1 (#3047)
• 4ea6e22 Merge commit from fork
• 7d88ea6 Version 0.49.0 (#3046)
• 26d66bb Do not pollute exception context in Middleware (#2976)
• a59397d Set encodings when reading config files (#2996)
• 3b7f0cb test: add test for unknown status (#3035)
• Additional commits viewable in compare view

Updates uvicorn from 0.37.0 to 0.38.0

Release notes

Sourced from uvicorn's releases.

Version 0.38.0

What's Changed

• Support Python 3.14 by @​Kludex in Kludex/uvicorn#2723

---

New Contributors

• @​NGANAMODEIJunior made their first contribution in Kludex/uvicorn#2713

Full Changelog: Kludex/uvicorn@0.37.0...0.38.0

Changelog

Sourced from uvicorn's changelog.

0.38.0 (October 18, 2025)

Added

• Support Python 3.14 (#2723)

Commits

• 3850ad6 Version 0.38.0 (#2733)
• 9b3f17a Support Python 3.14 (#2723)
• ce79f95 Revert "Add Marcelo Trylesinski to the license (#2699)" (#2730)
• dbf8797 docs: add social icons (#2728)
• 58f28be Add section about event loop (#2725)
• 93d9510 Bump docs dependencies (#2724)
• 9b1c6c4 Move Marcelo Trylesinski to maintainers in pyproject.toml (#2719)
• 57a61d8 Add discord to README (#2718)
• 7ef5f9f chore(deps): bump astral-sh/setup-uv from 6.7.0 to 6.8.0 (#2717)
• 6d26d88 Update pyproject.toml for PEP639 compliance (#2713)
• See full diff in compare view

Updates isort from 6.0.1 to 7.0.0

Release notes

Sourced from isort's releases.

7.0.0

Changes

💥 Breaking Changes

• Drop support for Python 3.9 (#2430) @​DanielNoord

🚀 Features

• Show absolute paths in skipped file messages (#2416) @​pranlawate

🪲 Fixes

• Some fixes for Python 3.14 (#2433) @​DanielNoord
• Test on 3.14 and fix any bugs (#2425) @​DanielNoord
• Update CHANGELOG.md + Fix Formatting and Grammar (#2419) @​lukbrew25
• Fix output of hanging indent for long lines with noqa (#2407) @​matan1008

👷 Continuous Integration

• Format with ruff instead of black (#2432) @​DanielNoord
• Target 3.10 for ruff (#2431) @​DanielNoord
• Update development dependencies to latest version (#2426) @​DanielNoord
• docs: update pre-commit examples to version 6.1.0 (#2413) @​pranlawate
• Small cleanup for developer environment (#2418) @​DanielNoord

📦 Dependencies

• Bump actions/setup-python from 5 to 6 in the github-actions group (#2411) @dependabot[bot]

6.1.0

Changes

• Update docs discussions channel (#2410) @​staticdev
• Add python 3.14 classifier and badge (#2409) @​staticdev
• Drop use of non-standard pkg_resources API (#2405) @​dvarrazzo
• Use working isort version in pre-commit example (#2402) @​iainelder
• fix typo in _get_files_from_dir_cached test (#2392) @​tiltingpenguin
• Resolve bandit warnings (#2379) @​kurtmckee
• Add tox for cross-platform, parallel test suite execution (#2378) @​kurtmckee
• Add Project URLs to PyPI Side Panel (#2387) @​guillermodotn
• Fix typos (#2376) @​co63oc

👷 Continuous Integration

• Add make bash scripts portable (#2377) @​staticdev

📦 Dependencies

• Bump actions/checkout from 4 to 5 in the github-actions group (#2406) @dependabot[bot]

... (truncated)

Changelog

Sourced from isort's changelog.

Changelog

NOTE: isort follows the semver versioning standard. Find out more about isort's release policy here.

6.1.0 October 1 2025

• Add python 3.14 classifier and badge (#2409) @​staticdev
• Drop use of non-standard pkg_resources API (#2405) @​dvarrazzo

Commits

• 0a09c78 Merge pull request #2433 from DanielNoord/python-314
• 0fee794 Add 3.14 to stdlibds
• 332a1ad Bump zstandard for 3.14 compat
• f756e56 Merge pull request #2432 from DanielNoord/ruff-it-up
• 52f5134 Format with ruff instead of black
• 012aa69 Merge pull request #2431 from DanielNoord/ruff-it-up
• 89773db Target 3.10 with ruff
• 933e382 Merge pull request #2430 from DanielNoord/drop-39
• 8b6e00c Remove support for Python 3.9
• b5f9f29 Bump profile plugin to 3.10+ and re-lock
• Additional commits viewable in compare view

Updates ruff from 0.13.2 to 0.14.3

Release notes

Sourced from ruff's releases.

0.14.3

Release Notes

Released on 2025-10-30.

Preview features

• Respect --output-format with --watch (#21097)
• [pydoclint] Fix false positive on explicit exception re-raising (DOC501, DOC502) (#21011)
• [pyflakes] Revert to stable behavior if imports for module lie in alternate branches for F401 (#20878)
• [pylint] Implement stop-iteration-return (PLR1708) (#20733)
• [ruff] Add support for additional eager conversion patterns (RUF065) (#20657)

Bug fixes

• Fix finding keyword range for clause header after statement ending with semicolon (#21067)
• Fix syntax error false positive on nested alternative patterns (#21104)
• [ISC001] Fix panic when string literals are unclosed (#21034)
• [flake8-django] Apply DJ001 to annotated fields (#20907)
• [flake8-pyi] Fix PYI034 to not trigger on metaclasses (PYI034) (#20881)
• [flake8-type-checking] Fix TC003 false positive with future-annotations (#21125)
• [pyflakes] Fix false positive for __class__ in lambda expressions within class definitions (F821) (#20564)
• [pyupgrade] Fix false positive for TypeVar with default on Python <3.13 (UP046,UP047) (#21045)

Rule changes

• Add missing docstring sections to the numpy list (#20931)
• [airflow] Extend airflow.models..Param check (AIR311) (#21043)
• [airflow] Warn that airflow....DAG.create_dagrun has been removed (AIR301) (#21093)
• [refurb] Preserve digit separators in Decimal constructor (FURB157) (#20588)

Server

• Avoid sending an unnecessary "clear diagnostics" message for clients supporting pull diagnostics (#21105)

Documentation

• [flake8-bandit] Fix correct example for S308 (#21128)

Other changes

• Clearer error message when line-length goes beyond threshold (#21072)

Contributors

• @​danparizher
...

Description has been truncated

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!