Bump the dependencies group with 21 updates

[dependabot]

Updates the requirements on ruff, tox, boto3, botocore, certifi, click, coverage, docutils, idna, mpmath, narwhals, paramiko, platformdirs, pydantic-core, pymongo, python-discovery, rpds-py, s3transfer, snowballstemmer, virtualenv and ipython to permit the latest version.
Updates ruff from 0.15.13 to 0.15.15

Release notes

Sourced from ruff's releases.

0.15.15

Release Notes

Released on 2026-05-28.

Preview features

• Fix Markdown closing fence handling (#25310)
• [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

• [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

• Avoid redundant TokenValue drops in the lexer (#25300)
• Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
• Use ThinVec in AST to shrink Stmt (#25361)

Documentation

• Fix line-length example for --config option (#25389)
• [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
• [mccabe] Improve example (C901) (#25287)
• [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
• [refurb] Document FURB192 exception change for empty sequences (#25317)
• [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

• Fix formatting of lambdas nested within f-strings (#25398)

Server

• Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

• Expand semantic syntax errors for invalid walruses (#25415)

Contributors

• @​chirizxc
• @​ntBre
• @​adityasingh2400
• @​charliermarsh
• @​fallintoplace
• @​martin-schlossarek
• @​MichaReiser

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.15

Released on 2026-05-28.

Preview features

• Fix Markdown closing fence handling (#25310)
• [pyflakes] Report duplicate imports in typing.TYPE_CHECKING block (F811) (#22560)

Bug fixes

• [pyflakes] Treat function-scope bare annotations as locals per PEP 526 (F821) (#21540)

Performance

• Avoid redundant TokenValue drops in the lexer (#25300)
• Reduce memory usage by dropping token-excess capacity and improve performance by approximating the initial tokens Vec size (#25354)
• Use ThinVec in AST to shrink Stmt (#25361)

Documentation

• Fix line-length example for --config option (#25389)
• [flake8-comprehensions] Document RecursionError edge case in __len__ (C416) (#25286)
• [mccabe] Improve example (C901) (#25287)
• [pyupgrade] Clarify fix safety docs (UP007, UP045) (#25288)
• [refurb] Document FURB192 exception change for empty sequences (#25317)
• [ruff] Document false negative for user-defined types (RUF013) (#25289)

Formatter

• Fix formatting of lambdas nested within f-strings (#25398)

Server

• Return code action for codeAction/resolve requests that contain no or no valid URL (#25365)

Other changes

• Expand semantic syntax errors for invalid walruses (#25415)

Contributors

• @​chirizxc
• @​ntBre
• @​adityasingh2400
• @​charliermarsh
• @​fallintoplace
• @​martin-schlossarek
• @​MichaReiser
• @​Ruchir28

... (truncated)

Commits

• db5aa0a Bump 0.15.15 (#25431)
• 366fe21 [ty] Improve diagnostics for syntax errors in forward annotations (#25158)
• e2e1e64 [ty] Remove excess capacity from more Salsa cached collections (#25411)
• 1bd77e1 [ty] Use diagnostic message as tie breaker when sorting (#25424)
• 7e1bc1e Add agent skills for working on ty (#25422)
• 574e107 Expand semantic syntax errors for invalid walruses (#25415)
• 4a7ca06 [ty] Display docs for matching parameter when hovering over the name of an ar...
• 5432709 Refine a few agents instructions (#25423)
• 3cb09eb [ty] Support typing.TypeForm (#25334)
• c8cd59f [ty] Infer class attributes assigned by metaclass initialization (#25342)
• Additional commits viewable in compare view

Updates tox from 3.28.0 to 4.55.0

Release notes

Sourced from tox's releases.

v4.55.0

What's Changed

• 👷 ci(schemastore): sync fork before pushing branch by @​gaborbernat in tox-dev/tox#3942
• feat: Also pass TERMINFO when in an interactive shell by @​edgarrmondragon in tox-dev/tox#3946
• 🐛 fix(pip): skip constrain_package_deps when constraints is set by @​gaborbernat in tox-dev/tox#3948

Full Changelog: tox-dev/tox@4.54.0...4.55.0

v4.54.0

What's Changed

• 🧪 test(conftest): strip broken nspkg.pth files under py3.15 by @​gaborbernat in tox-dev/tox#3937
• ✨ feat(packaging): declare tox.pytest deps via a testing extra by @​gaborbernat in tox-dev/tox#3940
• 🐛 fix(schema): cover every replace form in the TOML schema by @​gaborbernat in tox-dev/tox#3941

Full Changelog: tox-dev/tox@4.53.1...4.54.0

v4.53.1

What's Changed

• 🐛 fix(security): harden user-facing logs and untrusted inputs by @​gaborbernat in tox-dev/tox#3924
• 🐛 fix(type): correct argparse override signatures for ty 0.0.33 by @​gaborbernat in tox-dev/tox#3932
• fix: allow deps arrays in TOML schema by @​cyphercodes in tox-dev/tox#3931

New Contributors

• @​cyphercodes made their first contribution in tox-dev/tox#3931

Full Changelog: tox-dev/tox@4.53.0...4.53.1

v4.53.0

What's Changed

• ✨ feat(toml): allow bare range/labeled dicts in env_list by @​gaborbernat in tox-dev/tox#3923

Full Changelog: tox-dev/tox@4.52.1...4.53.0

v4.52.1

What's Changed

• use normalize_isa for architecture factor matching by @​rahuldevikar in tox-dev/tox#3919
• 🐛 fix(pip): invalidate install cache on resolution env var changes by @​gaborbernat in tox-dev/tox#3921

... (truncated)

Changelog

Sourced from tox's changelog.

Features - 4.55.0

• Automatically pass the TERMINFO environment variable to tox subprocesses if the output is a TTY. This variable is used by Ghostty to communicate terminal capabilities to programs. (:issue:3946)

Bug fixes - 4.55.0

• When the constraints configuration option is set, constrain_package_deps and use_frozen_constraints are now ignored. Previously, both the user-provided constraints file and the auto-generated constraints file were passed to pip during install_package_deps, which could cause resolver conflicts when the same package appeared in both files - by :user:gaborbernat. (:issue:3945) (:issue:3945)

---

v4.54.0 (2026-05-12)

---

Features - 4.54.0

• Declare the runtime dependencies of the tox.pytest plugin (pytest, devpi-process and pytest-mock) under a new testing extra, so plugin authors can pull them in via tox[testing] - by :user:gaborbernat. (:issue:3938, :issue:3940)

Bug fixes - 4.54.0

• Extend the generated TOML schema to cover every replace table form (env, ref, posargs, glob, if), including conditional replacements used inside commands. A guard test asserts the schema stays in sync with the loader implementation so future replace types cannot be added without a corresponding schema entry. (:issue:3939)

---

v4.53.1 (2026-05-02)

---

Bug fixes - 4.53.1

• Hardening pass on user-facing logging and config parsing:

  • Mask secret-looking --key=value flag values in command logs (terminal warnings, .tox/<env>/log/*.log, and Outcome __repr__) using the same keyword regex previously applied to environment variable values.
  • Resolve PEP 723 script paths and reject any that escape tox_root; cap the script read at 5 MiB so a symlink to /dev/zero cannot exhaust memory.
  • Replace eval() of a constructed Literal[...] string in the CLI parser with a direct Literal[tuple(action.choices)] subscript.
  • Pass timeout=30 to urlopen when fetching a remote requirements file so a slow or unresponsive mirror cannot hang tox indefinitely. (:issue:3924)

... (truncated)

Commits

• 928b7f0 release 4.55.0
• a43427f 🐛 fix(pip): skip constrain_package_deps when constraints is set (#3948)
• 27b68b3 [pre-commit.ci] pre-commit autoupdate (#3947)
• 4e6627c feat: Also pass TERMINFO when in an interactive shell (#3946)
• 10c431c [pre-commit.ci] pre-commit autoupdate (#3943)
• c86e876 👷 ci(schemastore): sync fork before pushing branch (#3942)
• 1f1fcc7 release 4.54.0
• b35c8ee 🐛 fix(schema): cover every replace form in the TOML schema (#3941)
• 6eb5c4f ✨ feat(packaging): declare tox.pytest deps via a testing extra (#3940)
• 1ad47dd 🧪 test(conftest): strip broken nspkg.pth files under py3.15 (#3937)
• Additional commits viewable in compare view

Updates boto3 from 1.43.10 to 1.43.19

Commits

• 3ae731c Merge branch 'release-1.43.19'
• 6b66612 Bumping version to 1.43.19
• d155391 Add changelog entries from botocore
• 1751374 Merge branch 'release-1.43.18'
• 9af7849 Merge branch 'release-1.43.18' into develop
• 1bcb376 Bumping version to 1.43.18
• 6bb2278 Add changelog entries from botocore
• 1f595ae Add a changelog for retries update (#4791)
• 8083432 Merge branch 'release-1.43.17'
• a6311df Merge branch 'release-1.43.17' into develop
• Additional commits viewable in compare view

Updates botocore from 1.43.10 to 1.43.19

Commits

• 8fdb47d Merge branch 'release-1.43.19'
• 31f3a5d Bumping version to 1.43.19
• ffc371c Update to latest models
• 96246a7 Merge branch 'release-1.43.18'
• 43619d2 Merge branch 'release-1.43.18' into develop
• e4a5e78 Bumping version to 1.43.18
• 61ab7a4 Update endpoints model
• e946091 Update to latest models
• 4465706 Merge customizations for QuickSight
• acfbbcd Add a changelog for retries update (#3717)
• Additional commits viewable in compare view

Updates certifi from 2026.4.22 to 2026.5.20

Commits

• d7ea151 2026.05.20 (#413)
• See full diff in compare view

Updates click from 8.4.0 to 8.4.1

Release notes

Sourced from click's releases.

8.4.1

This is the Click 8.4.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.4.1/ Changes: https://click.palletsprojects.com/page/changes/#version-8-4-1 Milestone: https://github.com/pallets/click/milestone/32?closed=1

• get_parameter_source() is available during eager callbacks and type conversion again. #3458 #3484
• Zsh completion scripts parse correctly on Windows. #3277 # 3466
• Shell completion of Choice Enum values produces a valid completion result. #3015
• Fix empty byte-string handling in echo. #3487
• Fix closed file error with echo_via_pager. #3449

Changelog

Sourced from click's changelog.

Version 8.4.1

Released 2026-05-21

• get_parameter_source() is available during eager callbacks and type conversion again. :issue:3458 :issue:3484
• Zsh completion scripts parse correctly on Windows. :issue:3277 :pr:3466
• Shell completion of Choice Enum values produces a valid completion result. :issue:3015
• Fix empty byte-string handling in echo. :issue:3487
• Fix closed file error with echo_via_pager. :issue:3449

Commits

• 6eeb50e release version 8.4.1
• 67921d5 change log and doc fixes (#3495)
• 9c41f46 Fix changelog and version admonitions
• 6cb3477 fix skip condition
• 5ee8e31 fix I/O operation on closed file error with CliRunner and echo_via_pager (#3482)
• becbde5 pager doesn't close std streams
• a5f5aa6 Handle empty bytes in echo (#3493)
• 4d3db84 handle empty bytes in echo
• d42f15b Fix get_parameter_source() during type conversion and eager callbacks (#3484)
• 0baa8db Document ctx.params bypass with test and doc
• Additional commits viewable in compare view

Updates coverage from 7.14.0 to 7.14.1

Changelog

Sourced from coverage's changelog.

Version 7.14.1 — 2026-05-26

• Fix: the HTML report used typographic niceties to make file paths more readable by adding a small amount of space around slashes. Those spaces interfered with searching the page for file paths of interest. Now the report uses CSS to accomplish the same visual tweak so that searches with slashes work correctly. Closes issue 2170_.

• Add a 3.16 PyPI classifier <hugo-316_>_ since we test on the 3.16 main branch.

.. _issue 2170: coveragepy/coveragepy#2170 .. _hugo-316: https://mastodon.social/@​hugovk/116588523571204490

.. _changes_7-14-0:

Commits

• 64d9b66 docs: correct the date for 7.14.1
• 6fa7dd4 chore: bump actions/dependency-review-action (#2181)
• 078afae docs: sample HTML for 7.14.1
• cb4f028 docs: prep for 7.14.1
• ae2d09f Merge branch 'nedbat/classifire-316-kits'
• 2c3568b build: declare 3.16 compatibility
• faa68f8 chore: bump github/codeql-action in the action-dependencies group (#2173)
• eb55fee test: we don't need PyPy < 7.3.22 anymore
• ac168fe test: the text summary should show missing
• fed4bd2 chore: upgrade virtualenv
• Additional commits viewable in compare view

Updates docutils from 0.22.4 to 0.23

Commits

• See full diff in compare view

Updates idna from 3.15 to 3.17

Changelog

Sourced from idna's changelog.

3.17 (2026-05-28)

• Substantial 75% reduction in memory usage through new data structures and some optimization in processing speed.
• Added a general 1024-character input length cap to the public validation, conversion, and codec entry points. This is well above any legitimate domain or label and guards against pathological inputs.

3.16 (2026-05-22)

• Add a command-line interface (python -m idna, also available as the idna script). Encodes or decodes one or more domains supplied as arguments or on standard input, with options to select A-label or U-label output and control error handling.
• Raise the minimum supported Python version to 3.9
• Various code quality improvements

Commits

• f48619c Release 3.17
• 7421ba8 Pre-release 3.17rc0
• 22ebb73 Merge pull request #251 from kjd/structure-optimizations
• 2a7ac0a Drop redundant parallel-arrays comment from uts46data
• 354eee9 Apply ruff format to uts46data.py
• 8c34ffc Refactor uts46data into parallel arrays
• 1189629 Range-encode joining_types for compact representation
• f90b87a Generic length limit for functions
• d6ffd28 Merge pull request #247 from kjd/release-3.16
• 6d1a0de Release 3.16
• Additional commits viewable in compare view

Updates mpmath from 1.3.0 to 1.4.1

Release notes

Sourced from mpmath's releases.

1.4.1

Bug fixes:

• Fix test_hexadecimal_with_libc_bulk(), see #1049 (Doug Torrance)
• Keep available deprecated aliases for mpc/mpf_log() (Sergey B Kirpichev)
• Use version_file option of setuptools-scm to keep version info, see #1048 (Sergey B Kirpichev)
• Add workaround for test on s390x, see #1061 (Sergey B Kirpichev)

Full Changelog: mpmath/mpmath@1.4.0...1.4.1

1.4.0

Features:

• Support underscores as digit separators per PEP 515, see #661 (Sergey B Kirpichev)
• Add rationals converter for mpf's, see #666 (Sergey B Kirpichev)
• Rewrite bernpoly/eulerpoly to avoid dependency on bernoulli(1) convention, see #700 (Sergey B Kirpichev)
• Support base kwarg for from_str(), see #703 (Jonathan Warner, Sergey B Kirpichev)
• Support randmatrix() for mp.iv and mp contexts, see #527 (Maximilian Gaukler)
• Added rank() function for matrices, see #610 (Jan-Philipp Hoffmann)
• Add plus flag to select the B_1 sign convention for bernoulli/bernfrac, see #724 (Jeremy Tan Jie Rui, Sergey B Kirpichev)
• Add mpf.as_integer_ratio() method, support construction of mpf from Decimal objects, see #731 (Sergey B Kirpichev)
• Expose lower/upper_gamma functions, see #740 (Sergey B Kirpichev)
• Support mpc initialization from string, see #743 (Sergey B Kirpichev)
• Support asinh/acosh/atanh in the fp context, see #750 (Sergey B Kirpichev)
• Support binary/octal/hexadecimal string output, see #711 (Jonathan Warner, Sergey B Kirpichev)
• Support pickling for matrices and mpi, see #761 (Sergey B Kirpichev)
• Support matrix.__array__() dunder method, see #767 (Sergey B Kirpichev)
• Support more number syntaxes, see #778 (Sergey B Kirpichev)
• Run mpmath as a module for interactive work, see #773, #923, #931, #936, #939 and #954 (Sergey B Kirpichev)
• Add signed option to to_man_exp(), see #783 (Sergey B Kirpichev)
• Add fp.hypot, see #798 (Sergey B Kirpichev)
• Support inf/nan's in ctx.almosteq(), #802 (Sergey B Kirpichev)
• Implement mpf.__format__(), see #819, #831, #850, #859, #857, #862, #881, #944 and #966 (Javier Garcia, Sergey B Kirpichev)
• Support conversion from scalar ndarray's, see #821 (Sergey B Kirpichev)
• Support rounding modes in mpf.__format__, see #823, #831, #834 and #969 (Javier Garcia, Sergey B Kirpichev)
• Support '%' presentation type for mpf, see #847 (Sergey B Kirpichev)
• Support gmpy2-like rounding modes in to_str(), see #830 (Javier Garcia)
• Implement 'a'/'A' formating types for mpf.__format__, see #841 and #870 (Sergey B Kirpichev)
• Add mpc.__format__(), see #855 (Sergey B Kirpichev)
• Now mpf.__round__() returns mpf, see #826 and #966 (Sergey B Kirpichev)
• Support 'b' (binary) format type for mpf/mpc, see #867 (Sergey B Kirpichev)
• Implement mpf.__floordiv__() and mpf.__divmod__(), see #873 (Sergey B Kirpichev)
• Add parameters for MPContext constructor, see #876 and #963 (Sergey B Kirpichev)
• Add MPFR-compatible aliases for rounding modes, see #892 (Sergey B Kirpichev)
• Support negative indexes in matrix, see #897 (Riccardo Orsi)
• Better introspection support for decorated functions, see #900 (Sergey B Kirpichev)
• Add moving sofa demo, see #924 (Sergey B Kirpichev)
• Support spherical Bessel functions (jn/yn), #935 (Sergey B Kirpichev)
• Add pretty_dps context property to control number of printed digits, see #933 (Sergey B Kirpichev)

... (truncated)

Changelog

Sourced from mpmath's changelog.

--1.5.0-- Released TBD

Features:

• Support special numbers in mpf_frexp() like math.frexp(), see #1081 (Sergey B Kirpichev)

Compatibility:

• Drop support for CPython 3.9, see #1058 (Sergey B Kirpichev)
• Remove deprecated math2 and rational modules, see #1057 (Sergey B Kirpichev)
• Remove deprecated mp.mpnumeric alias, see #1057 (Sergey B Kirpichev)
• Remove deprecated bitcount(), fp.is_special() and to/from_pickable() functions, see #1057 (Sergey B Kirpichev)
• Drop DeprecationWarning for force_type kwarg for matrix(), see #1057 (Sergey B Kirpichev)
• Use signed=True per default in to_man_exp(), see #1057 (Sergey B Kirpichev)
• Use asc=True per default for polynomial functions, see #1057 (Sergey B Kirpichev)

Bug fixes:

• Fix test_hexadecimal_with_libc_bulk(), see #1049 (Doug Torrance)
• Keep available deprecated aliases for mpc/mpf_log() (Sergey B Kirpichev)
• Use version_file option of setuptools-scm to keep version info, see #1048 (Sergey B Kirpichev)
• Add workaround for test on s390x, see #1061 (Sergey B Kirpichev)
• Fix signature of root(), see #1072 (Sergey B Kirpichev)
• Speedup removal trailing zeros in _normalize/from_man_exp(), see #1074 (Fredrik Johansson and Sergey B Kirpichev)
• Improve documentation about rounding in the mp context, see #1079 (Sergey B Kirpichev)
• Correct to_float() conversion for double-rounding cases (e.g. subnormals), see #1082 (Sergey B Kirpichev)
• Fix qr_solve() failure on well-conditioned matrices with zero pivot, see #1083 (Jam Balaya)

Maintenance:

• Add bash script to test package version in a frozen application version and a separate CI job to run it, see #1055 (flurin4)
• Revert "Add backport action", see #1063 (Sergey B Kirpichev)
• Test on CPython 3.15 (no GMP), see #1071 (Sergey B Kirpichev)

--1.4.1-- Released March 15, 2026

Bug fixes:

... (truncated)

Commits

• c1131e2 Merge pull request #1053 from skirpichev/release-1.4.1
• d3d3eb9 Update CHANGES
• 629daff Add a workaround for test on s390x
• 96272f3 Revert "Add backport action"
• e129480 Test frozen package version (#1055)
• 1ef88b4 Amend docstring for round_digits()
• 650520b Use version_file option of setuptools-scm to keep version info
• 501af4a Keep forever deprecated aliases for mpc/mpf_log()
• 6887127 Set argtypes for sprintf from ctypes
• f3e9cf0 Update CHANGES (free-threading support)
• Additional commits viewable in compare view

Updates narwhals from 2.21.2 to 2.22.0

Release notes

Sourced from narwhals's releases.

Narwhals v2.22.0

Changes

• test: Port Array recursion tests from polars (#3651)
• tests: Remove xfail mark in sqlframe quantile tests (#3644)
• ci: unpin pyright version (#3619)

✨ Enhancements

• feat: Add is_into_lazyframe, export missing functionalities, fix SQLFrame bug (#3613)

🐞 Bug fixes

• feat: Add is_into_lazyframe, export missing functionalities, fix SQLFrame bug (#3613)
• fix(tests): Adjust tests for Polars 1.41 changes (#3648)
• fix: .over was mutating expressions in some cases (#3638)

📖 Documentation

• docs: Update contributing and installation guides (#3656)
• docs(fix): Make zensical build strict happy (#3642)

🛠️ Other improvements

• chore: Migrate from pre-commit to prek (#3657)
• chore: Adopt uv as package manager (#3608)
• chore(typing): Enable allow-redefinition for mypy (#3650)
• ci: bump mypy to 2.1.0, pyrefly to 1.0 (#3639)
• chore: unpin duckdb in typing (#3640)
• chore: Move to src/ layout (#3631)

Thank you to all our contributors for making this release possible! @​FBruzzesi, @​MarcoGorelli and @​dangotbanned

Commits

• 805fb3d skip fairlearn in publish gate
• a9346ae release: Bump version to 2.22.0
• cf79b02 feat: Add is_into_lazyframe, export missing functionalities, fix SQLFrame b...
• a3f9c7f chore: Migrate from pre-commit to prek (#3657)
• cb5e2eb docs: Update contributing and installation guides (#3656)
• 1d75ff0 chore: Adopt uv as package manager (#3608)
• c3a512c chore(typing): Enable allow-redefinition for mypy (#3650)
• 53b5da9 test: Port Array recursion tests from polars (#3651)
• bd9035f tests: Adjust tests for Polars 1.41 changes (#3648)
• 898f9d7 tests: Remove xfail mark in sqlframe quantile tests (#3644)
• Additional commits viewable in compare view

Updates paramiko from 3.5.1 to 5.0.0

Commits

• 710cc5c What's a few weeks between friends?
• ea93c59 Fix up Ed25519Key so it has non-erroring repr() during fatal errors
• 5b90ef9 ruff/isort
• f3864b6 Changelog fixes
• acd4bc1 Replace hardcoded PEM format in PKey.write* with new parameter
• 6fa1556 Bump group-exchange kex min_bits to 2048
• eb87ad3 Fix some tests that were incorrectly passing
• 1ecc933 Remove GSSAPI support :(
• 9bf5fca Remove SHA1-based (non-GSS) kex methods
• b8f75c7 Lintin' ain't easy
• Additional commits viewable in compare view

Updates platformdirs from 4.9.6 to 4.10.0

Release notes

Sourced from platformdirs's releases.

4.10.0

What's Changed

• chore: improve platformdirs maintenance path by @​lphuc2250gma in tox-dev/platformdirs#488
• ✨ feat: add user_projects_dir for $XDG_PROJECTS_DIR by @​gaborbernat in tox-dev/platformdirs#490
• ✨ feat: add user_publicshare_dir, user_templates_dir, user_fonts_dir, user_preference_dir by @​gaborbernat in tox-dev/platformdirs#491

New Contributors

• @​lphuc2250gma made their first contribution in tox-dev/platformdirs#488

Full Changelog: tox-dev/platformdirs@4.9.6...4.10.0

Changelog

Sourced from platformdirs's changelog.

########### Changelog ###########

---

4.10.0 (2026-05-28)

---

• ✨ feat: add user_publicshare_dir, user_templates_dir, user_fonts_dir, user_preference_dir :pr:491
• ✨ feat: add user_projects_dir for $XDG_PROJECTS_DIR :pr:490
• chore: improve platformdirs maintenance path :pr:488 - by :user:lphuc2250gma

---

4.9.6 (2026-04-09)

---

• 🐛 fix(release): use double quotes for tag variable expansion :pr:477

---

4.9.5 (2026-04-06)

---

• 📝 docs(appauthor): clarify None vs False on Windows :pr:476
• Separates implementations of macOS dirs that share a default :pr:473 - by :user:Goddesen
• Remove persist-credentials: false from release job :pr:472
• fix: do not duplicate site dirs in Unix.iter_{config,site}_dirs() when use_site_for_root is active :pr:469 - by :user:viccie30
• 🔧 fix(type): resolve ty 0.0.25 type errors :pr:468
• 🔒 ci(workflows): add zizmor security auditing :pr:467
• 🐛 fix(release): generate docstrfmt-compatible changelog entries :pr:463

---

4.9.4 (2026-03-05)

---

• [pre-commit.ci] pre-commit autoupdate :pr:461 - by :user:pre-commit-ci[bot]
• Update README.md
• 📝 docs: add project logo to documentation :pr:459
• Standardize .github files to .yaml suffix
• build(deps): bump the all group with 2 updates :pr:457 - by :user:dependabot[bot]
• Move SECURITY.md to .github/SECURITY.md
• Add permissions to workflows :pr:455
• Add security policy
• [pre-commit.ci] pre-commit autoupdate :pr:454 - by :user:pre-commit-ci[bot]

---

4.9.2 (2026-02-16)

---

• 📝 docs: restructure following Diataxis framework :pr:448

... (truncated)

Commits

• 04cb136 Release 4.10.0
• 078bc61 ✨ feat: add user_publicshare_dir, user_templates_dir, user_fonts_dir, user_pr...
• d279747 ✨ feat: add user_projects_dir for $XDG_PROJECTS_DIR (#490)
• 4116391 [pre-commit.ci] pre-commit autoupdate (#489)
• dbc63f5 chore: improve platformdirs maintenance path (#488)
• 9265108 [pre-commit.ci] pre-commit autoupdate (#487)
• 9f857ec [pre-commit.ci] pre-commit autoupdate (#486)
• a76e777 [pre-commit.ci] pre-commit autoupdate (#484)
• 903fd9f [pre-commit.ci] pre-commit autoupdate (#483)
• a5da35d build(deps): bump astral-sh/setup-uv from 8.0.0 to 8.1.0 in the all group (#482)
• Additional commits viewable in compare view

Updates pydantic-core from 2.46.4 to 2.47.0

Commits

• See full diff in compare view

Updates pymongo from 4.10.1 to 4.17.0

Release notes

Sourced from pymongo's releases.

PyMongo 4.17.0

Community notes

What's Changed

• refactor(ci): replace shell=True and awk pipes with native Python by @​RinZ27 in mongodb/mongo-python-driver#2671
• PYTHON-5697 - Migrate 8.0+ tests to Windows 2022 by @​NoahStapp in mongodb/mongo-python-driver#2681
• [Spec Resync] 01-19-2026 by @​mongodb-drivers-pr-bot[bot] in mongodb/mongo-python-driver#2680
• Bump pyright from 1.1.407 to 1.1.408 by @​dependabot[bot] in mongodb/mongo-python-driver#2675
• PYTHON-5692 - [Infrastructure] Improve dependabot version updates by @​NoahStapp in mongodb/mongo-python-driver#2682
• PYTHON-5605 - Drop usage of Ubuntu 20 by @​NoahStapp in mongodb/mongo-python-driver#2683
• PYTHON-5699 & PYTHON-5698 [Spec Resync] 01-26-2026 by

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 86.45%. Comparing base (96806f9) to head (fc53736).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #419   +/-   ##
=======================================
  Coverage   86.45%   86.45%           
=======================================
  Files          14       14           
  Lines        1912     1912           
  Branches      336      336           
=======================================
  Hits         1653     1653           
  Misses        210      210           
  Partials       49       49           

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.