Skip to content

build(deps): bump the minor-and-patch group across 1 directory with 5 updates#465

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/minor-and-patch-62a378f1d0
Open

build(deps): bump the minor-and-patch group across 1 directory with 5 updates#465
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/uv/minor-and-patch-62a378f1d0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch group with 5 updates in the / directory:

Package From To
boto3 1.43.36 1.43.39
faker 40.23.0 40.28.1
django-stubs 6.0.5 6.0.6
djlint 1.39.4 1.40.1
ruff 0.15.19 0.15.20

Updates boto3 from 1.43.36 to 1.43.39

Commits
  • 121db7a Merge branch 'release-1.43.39'
  • 310317d Bumping version to 1.43.39
  • ff7c1cf Add changelog entries from botocore
  • 805c683 Update CODEOWNERS to shared Python SDK and CLI team (#4809)
  • efcfb65 Merge branch 'release-1.43.38'
  • d7aa957 Merge branch 'release-1.43.38' into develop
  • c5ccc0d Bumping version to 1.43.38
  • 2f87c21 Add changelog entries from botocore
  • af4ce8d Merge branch 'release-1.43.37'
  • 1d2f989 Merge branch 'release-1.43.37' into develop
  • Additional commits viewable in compare view

Updates faker from 40.23.0 to 40.28.1

Release notes

Sourced from faker's releases.

Release v40.28.1

See CHANGELOG.md.

Release v40.28.0

See CHANGELOG.md.

Release v40.27.0

See CHANGELOG.md.

Release v40.26.0

See CHANGELOG.md.

Release v40.25.0

See CHANGELOG.md.

Release v40.24.1

See CHANGELOG.md.

Release v40.24.0

See CHANGELOG.md.

Release v40.23.1

See CHANGELOG.md.

Changelog

Sourced from faker's changelog.

v40.28.1 - 2026-07-01

v40.28.0 - 2026-07-01

v40.27.0 - 2026-06-30

v40.26.0 - 2026-06-30

  • Update providers job, phone_number, bank and ssn for pt_BR (#2386). Thanks @​dclobato.
  • Update phone number test regex for pt_BR. Thanks @​fcurella.

v40.25.0 - 2026-06-30

v40.24.1 - 2026-06-30

  • Fix: prevent infinite recursion in _safe_random_int when both bounds collapse to the same integer (#2396). Thanks @​gaoflow.

v40.24.0 - 2026-06-30

v40.23.1 - 2026-06-30

Commits
  • bb62df7 Bump version: 40.28.0 → 40.28.1
  • 1f87cf2 📝 Update CHANGELOG.md
  • 41624e3 fix(de_DE): compute valid ISO 7064 Mod 11,10 check digit for vat_id (#2403)
  • a774234 Bump version: 40.27.0 → 40.28.0
  • 96c3090 📝 Update CHANGELOG.md
  • 20e203a feat(automotive): add es_MX (Mexico) license plate provider (#2393)
  • 98da116 Bump version: 40.26.0 → 40.27.0
  • f2c05d9 📝 Update CHANGELOG.md
  • 88a17fc 💄 format code
  • 4f7f545 feat(locale): add sr_BA ssn provider (#2391)
  • Additional commits viewable in compare view

Updates django-stubs from 6.0.5 to 6.0.6

Commits

Updates djlint from 1.39.4 to 1.40.1

Release notes

Sourced from djlint's releases.

v1.40.1

Fix

  • Preserve full djlint:off blocks before formatter passes so ignored template, script, and style content is not rewritten.
  • Preserve inline template blocks embedded in rendered text or captured content so formatting does not add meaningful whitespace or misalign following content.
  • Keep chained Jinja function calls and lookups intact when formatting template expressions.
  • Preserve whitespace-sensitive Django filter blocks instead of moving punctuation or translated text around them.
  • Keep Jinja/Nunjucks-trimmed <textarea> closing tags aligned without reformatting untrimmed textarea contents.

v1.40.0

Feature

  • Add single_attribute_per_line to wrap attributes in a Prettier-like layout using the configured indent.

v1.39.7

Fix

  • Preserve Jinja template comments inside formatted <script> and <style> blocks.

v1.39.6

Fix

  • Avoid false H025 reports for HTML-like strings inside template tags.
  • Preserve Jinja template tags inside formatted <script> and <style> blocks.

Packaging

  • Revise the minimum required dependency versions:
    • click raised from 8.0.1 to 8.2.0
    • cssbeautifier lowered from 1.14.4 to 1.13.0
    • jsbeautifier lowered from 1.14.4 to 1.13.0
    • json5 raised from 0.9.11 to 0.10.0
    • pathspec lowered from 0.12 to 0.9.0
    • pyyaml lowered from 6 to 5.1
    • regex lowered from 2023 to 2021.8.21
    • tomli is lowered from 2.0.1 to 0.2.0

v1.39.5

Fix

  • Return 1 when no files match the requested lint or format run.
  • Make --check - return 1 when formatting changes are needed.
  • Keep progress output off stdin runs.

Performance

  • Defer runtime-only imports until the CLI code paths that need them.
  • Process stdin formatting in memory instead of creating a temporary file.
  • Avoid creating an executor when a run only has one worker.
Changelog

Sourced from djlint's changelog.

[1.40.1] - 2026-07-01

Fix

  • Preserve full djlint:off blocks before formatter passes so ignored template, script, and style content is not rewritten.
  • Preserve inline template blocks embedded in rendered text or captured content so formatting does not add meaningful whitespace or misalign following content.
  • Keep chained Jinja function calls and lookups intact when formatting template expressions.
  • Preserve whitespace-sensitive Django filter blocks instead of moving punctuation or translated text around them.
  • Keep Jinja/Nunjucks-trimmed <textarea> closing tags aligned without reformatting untrimmed textarea contents.

[1.40.0] - 2026-07-01

Feature

  • Add single_attribute_per_line to wrap attributes in a Prettier-like layout using the configured indent.

[1.39.7] - 2026-06-30

Fix

  • Preserve Jinja template comments inside formatted <script> and <style> blocks.

[1.39.6] - 2026-06-30

Fix

  • Avoid false H025 reports for HTML-like strings inside template tags.
  • Preserve Jinja template tags inside formatted <script> and <style> blocks.

Packaging

  • Revise the minimum required dependency versions:
    • click raised from 8.0.1 to 8.2.0
    • cssbeautifier lowered from 1.14.4 to 1.13.0
    • jsbeautifier lowered from 1.14.4 to 1.13.0
    • json5 raised from 0.9.11 to 0.10.0
    • pathspec lowered from 0.12 to 0.9.0
    • pyyaml lowered from 6 to 5.1
    • regex lowered from 2023 to 2021.8.21
    • tomli is lowered from 2.0.1 to 0.2.0

[1.39.5] - 2026-06-29

Fix

  • Return 1 when no files match the requested lint or format run.
  • Make --check - return 1 when formatting changes are needed.
  • Keep progress output off stdin runs.

Performance

... (truncated)

Commits
  • a2e60a0 v1.40.1
  • d9b14d7 chore: fix mypy
  • bbdaffb fix(formatter): preserve djlint:off blocks
  • 192baf1 fix(formatter): keep attached template closes aligned
  • 7867aea chore(deps): lock file maintenance (#2170)
  • efc9e66 chore(deps): update pre-commit hook tombi-toml/tombi-pre-commit to v1.1.6 (#2...
  • 9eca4cd chore(deps): update pre-commit hook rbubley/mirrors-prettier to v3.9.1 (#2169)
  • 351edc9 chore(deps): update dependency postcss to v8.5.16 (#2167)
  • ad38b11 fix(formatter): preserve template whitespace semantics
  • 59ac98b docs: update translations and djlint.toml references
  • Additional commits viewable in compare view

Updates ruff from 0.15.19 to 0.15.20

Release notes

Sourced from ruff's releases.

0.15.20

Release Notes

Released on 2026-06-25.

Preview features

  • Allow human-readable names in rule selectors (#25887)
  • Emit a warning instead of an error for unknown rule selectors (#26113)
  • Match noqa shebang handling in ruff:ignore comments (#26286)
  • [ruff] Remove pytest-fixture-autouse (RUF076) (#26240, #26371)

Documentation

  • Add versioning sections to custom crate READMEs (#26317)
  • Update ruff_python_parser README for crates.io (#26315)
  • [perflint] Clarify that PERF402 applies to any iterable (#26242)

Contributors

Install ruff 0.15.20

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.20/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/ruff/releases/download/0.15.20/ruff-installer.ps1 | iex"

Download ruff 0.15.20

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum
ruff-aarch64-pc-windows-msvc.zip ARM64 Windows checksum
ruff-i686-pc-windows-msvc.zip x86 Windows checksum
ruff-x86_64-pc-windows-msvc.zip x64 Windows checksum
ruff-aarch64-unknown-linux-gnu.tar.gz ARM64 Linux checksum
ruff-i686-unknown-linux-gnu.tar.gz x86 Linux checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.20

Released on 2026-06-25.

Preview features

  • Allow human-readable names in rule selectors (#25887)
  • Emit a warning instead of an error for unknown rule selectors (#26113)
  • Match noqa shebang handling in ruff:ignore comments (#26286)
  • [ruff] Remove pytest-fixture-autouse (RUF076) (#26240, #26371)

Documentation

  • Add versioning sections to custom crate READMEs (#26317)
  • Update ruff_python_parser README for crates.io (#26315)
  • [perflint] Clarify that PERF402 applies to any iterable (#26242)

Contributors

Commits
  • f82a36b Bump 0.15.20 (#26376)
  • af32943 Improve the summarise-ecosystem-results skill (#26378)
  • 485ebab Remove RUF076 name from schema (#26371)
  • ef81835 [ty] Implement rust-analyzer's "Click for full compiler diagnostic" feature (...
  • 572b31e [ruff] Remove pytest-fixture-autouse (RUF076) (#26240)
  • f703f21 Allow human-readable names in rule selectors (#25887)
  • 0d726b2 [ty] Reuse equality semantics for membership compatibility (#25955)
  • dbe6e98 [ty] Infer definite equality comparison results (#26337)
  • e700ea3 [ty] Prove TypedDict structural patterns exhaustive (#26285)
  • 6a0d2ec [ty] Widen inferred class-valued instance attributes (#26338)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

… updates

Bumps the minor-and-patch group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.43.36` | `1.43.39` |
| [faker](https://github.com/joke2k/faker) | `40.23.0` | `40.28.1` |
| [django-stubs](https://github.com/typeddjango/django-stubs) | `6.0.5` | `6.0.6` |
| [djlint](https://github.com/djlint/djLint) | `1.39.4` | `1.40.1` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.19` | `0.15.20` |



Updates `boto3` from 1.43.36 to 1.43.39
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.43.36...1.43.39)

Updates `faker` from 40.23.0 to 40.28.1
- [Release notes](https://github.com/joke2k/faker/releases)
- [Changelog](https://github.com/joke2k/faker/blob/master/CHANGELOG.md)
- [Commits](joke2k/faker@v40.23.0...v40.28.1)

Updates `django-stubs` from 6.0.5 to 6.0.6
- [Release notes](https://github.com/typeddjango/django-stubs/releases)
- [Commits](typeddjango/django-stubs@6.0.5...6.0.6)

Updates `djlint` from 1.39.4 to 1.40.1
- [Release notes](https://github.com/djlint/djLint/releases)
- [Changelog](https://github.com/djlint/djLint/blob/master/CHANGELOG.md)
- [Commits](djlint/djLint@v1.39.4...v1.40.1)

Updates `ruff` from 0.15.19 to 0.15.20
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.19...0.15.20)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.43.39
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: faker
  dependency-version: 40.28.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: django-stubs
  dependency-version: 6.0.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: djlint
  dependency-version: 1.40.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: ruff
  dependency-version: 0.15.20
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file minor PRs that should result in a minor version bump (new small features) python:uv Pull requests that update python:uv code labels Jul 9, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 11, 2026

Copy link
Copy Markdown
Contributor Author

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file minor PRs that should result in a minor version bump (new small features) python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants