Lock file maintenance Python dependencies (main)

[renovate]

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
		lockFileMaintenance	All locks refreshed
boto3	dependencies	patch	^1.40.21 -> ^1.40.31
poetry-core	charm-libs	minor	2.1.3 -> 2.2.0
pydantic (changelog)	charm-libs	patch	1.10.22 -> 1.10.23
pydantic (changelog)	dependencies	patch	^1.10.22 -> ^1.10.23
pytest (changelog)	integration	patch	^8.4.1 -> ^8.4.2
pytest (changelog)	unit	patch	^8.4.1 -> ^8.4.2
ruff (source, changelog)	format	minor	^0.12.11 -> ^0.13.0

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Release Notes

boto/boto3 (boto3)

v1.40.31

Compare Source

=======

• api-change:ce: [botocore] Added endpoint support for eusc-de-east-1 region.
• api-change:medical-imaging: [botocore] Added support for OpenID Connect (OIDC) custom authorizer
• api-change:observabilityadmin: [botocore] CloudWatch Observability Admin adds the ability to enable telemetry centralization in customers' Organizations. The release introduces new APIs to manage centralization rules, which define settings to replicate telemetry data to a central destination in the customers' Organization.
• api-change:s3control: [botocore] Introduce three new encryption filters: EncryptionType (SSE-S3, SSE-KMS, DSSE-KMS, SSE-C, NOT-SSE), KmsKeyArn (for SSE-KMS and DSSE-KMS), and BucketKeyEnabled (for SSE-KMS).
• api-change:sms: [botocore] The sms client has been removed following the deprecation of the service.

v1.40.30

Compare Source

=======

• api-change:payment-cryptography: [botocore] Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export

v1.40.29

Compare Source

=======

• api-change:amp: [botocore] Add Vended Logs APIs for Amazon Prometheus Managed Collector
• api-change:datazone: [botocore] adding IAM principal id to IAM user profile details
• api-change:ecs: [botocore] This release supports hook details for Amazon ECS lifecycle hooks.
• api-change:emr-containers: [botocore] Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration.
• api-change:evs: [botocore] CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses.
• api-change:guardduty: [botocore] Updated Java SDK implementation of entity set status in GuardDuty API.
• api-change:medialive: [botocore] AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations.
• api-change:quicksight: [botocore] This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A.
• api-change:rds: [botocore] Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines.

v1.40.28

Compare Source

=======

• api-change:networkflowmonitor: [botocore] Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION).
• api-change:payment-cryptography: [botocore] AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions.

v1.40.27

Compare Source

=======

• api-change:autoscaling: [botocore] Added WaitForTransitioningInstances parameter to the CancelInstanceRefresh API, allowing the caller to cancel an instance refresh without waiting for on-going launches and terminations.
• api-change:cloudwatch: [botocore] Added a new API - DescribeAlarmContributors API, to retrieve alarm contributors in ALARM state. Added support in DescribeAlarmHistory API to query alarm contributor history
• api-change:connect: [botocore] SDK release for user defined predefined attributes.
• api-change:datazone: [botocore] Adds support for custom blueprints
• api-change:mediapackagev2: [botocore] Added CUE tag SCTE output to MediaPackageV2 HLS and LL-HLS manifests.
• api-change:organizations: [botocore] Documentation updates for AWS Organizations APIs.
• api-change:sagemaker: [botocore] Released IPv6 support with dual-stack domain options on SageMaker Studio and introduced support for p6-b200.48xlarge instance type on SageMaker Studio for JupyterLab and CodeEditor applications.

v1.40.26

Compare Source

=======

• api-change:iotsitewise: [botocore] Add ComputationModelVersion support in IoT SiteWise APIs
• api-change:s3: [botocore] This release includes backward compatibility work on the "Expires" parameter.
• api-change:securityhub: [botocore] This release adds the RESOURCE_NOT_FOUND error code as a possible value in responses to the following operations: BatchGetStandardsControlAssociations, BatchUpdateStandardsControlAssociations, and BatchGetSecurityControls.

v1.40.25

Compare Source

=======

• api-change:ecs: [botocore] This is a documentation only release that adds additional information for Amazon ECS Availability Zone rebalancing.
• api-change:pcs: [botocore] Documentation-only update to add AccountingStorageEnforce to SlurmCustomSetting.
• api-change:sagemaker: [botocore] Release IPv6 support with dualstack in SageMaker Notebooks, Tiered Storage Checkpointing Support in SageMaker HyperPod and P5.4xlarge instance type for SageMaker Hosting.

v1.40.24

Compare Source

=======

• api-change:cleanrooms: [botocore] Add support for configurable compute sizes for PySpark jobs.
• api-change:cloudformation: [botocore] ListHookResults API now supports retrieving invocation results for all CloudFormation Hooks (previously limited to create change set and Cloud Control operations) with new optional parameters for filtering by Hook status and ARN.
• api-change:ec2: [botocore] Add m8i, m8i-flex and i8ge instance types.
• api-change:opensearchserverless: [botocore] Add support for Federal Information Processing Standards (FIPS) and Federal Risk and Authorization Management Program (FedRAMP) compliance
• api-change:rds: [botocore] Added new EndpointNetworkType and TargetConnectionNetworkType fields in Proxy APIs to support IPv6
• api-change:verifiedpermissions: [botocore] Amazon Verified Permissions / Features : Adds support for datetime and duration attribute values.

v1.40.23

Compare Source

=======

• api-change:cleanrooms: [botocore] Added support for adding new data provider members to an existing collaboration.
• api-change:cleanroomsml: [botocore] AWS Clean Rooms ML adds log sanitization for privacy-enhanced error summaries, supports new instance types for custom models providing better performance and lower costs, and deprecates P3-series instances.
• api-change:cloudfront: [botocore] Adding an optional field IpAddressType in CustomOriginConfig
• api-change:mq: [botocore] Add CONFIG_MANAGED as a supported AuthenticationStrategy for Amazon MQ for RabbitMQ brokers. Make username and password optional on broker creation for CONFIG_MANAGED brokers.
• api-change:rds: [botocore] This release adds support for MasterUserAuthenticationType parameter on CreateDBInstance, ModifyDBInstance, CreateDBCluster, and ModifyDBCluster operations.
• api-change:route53: [botocore] Amazon Route 53 now supports the Asia Pacific (New Zealand) Region (ap-southeast-6) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region.
• api-change:route53domains: [botocore] Added new ExtraParams AU_ELIGIBILITY_TYPE, AU_POLICY_REASON, and AU_REGISTRANT_NAME

v1.40.22

Compare Source

=======

• api-change:ec2: [botocore] MaximumEbsAttachments and AttachmentLimitType fields added to DescribeInstanceTypesResponse. G6f, Gr6f, R8i, R8i-flex and p5.4xlarge instance types added to InstanceTypes enum.
• api-change:neptune: [botocore] Removed the deprecated marker from publiclyAccessible parameter from DbInstance, CreateDbInstance and ModifyDbInstance and added relevant usage information for the parameter.
• api-change:notifications: [botocore] Added Org support for notifications: - ListMemberAccounts gets member accounts list, AssociateOrganizationalUnit links OU to notification configuration, DisassociateOrganizationalUnit removes OU from notification configuration, ListOrganizationalUnits shows OUs configured for notifications.
• api-change:workmail: [botocore] Make RoleArn an optional parameter for the PutEmailMonitoringConfiguration API, and add UnsupportedOperationException to RegisterToWorkMail.

python-poetry/poetry-core (poetry-core)

v2.2.0

Compare Source

Added

• Add support for nesting dependency groups (#​837).
• Add support for PEP 735 dependency groups (#​823).
• Add support for PEP 639 license clarity (#​870).
• Add support for Python 3.14 (#​877,
  #​884).

Changed

• Normalize dependency group names (#​868).
• Deprecate table values and values that are not valid SPDX expressions for [project.license] (#​870).
• Update list of supported licenses (#​872).

Fixed

• Fix an issue where explicitly included files that are in .gitignore were not included in the distribution (#​874).
• Fix an issue where marker operations could result in invalid markers (#​875).

pydantic/pydantic (pydantic)

v1.10.23: 2025-09-13

Compare Source

v1.10.23 (2025-09-13)

• Fix mypy plugin for mypy 1.18 by @​cdce8p in #​12207

Full Changelog: pydantic/pydantic@v1.10.22...v1.10.23

pytest-dev/pytest (pytest)

v8.4.2

Compare Source

astral-sh/ruff (ruff)

v0.13.0

Compare Source

Check out the blog post for a migration
guide and overview of the changes!

Breaking changes

• Several rules can now add from __future__ import annotations automatically

  TC001, TC002, TC003, RUF013, and UP037 now add from __future__ import annotations as part of their fixes when the
  lint.future-annotations setting is enabled. This allows the rules to move
  more imports into TYPE_CHECKING blocks (TC001, TC002, and TC003),
  use PEP 604 union syntax on Python versions before 3.10 (RUF013), and
  unquote more annotations (UP037).

• Full module paths are now used to verify first-party modules

  Ruff now checks that the full path to a module exists on disk before
  categorizing it as a first-party import. This change makes first-party
  import detection more accurate, helping to avoid false positives on local
  directories with the same name as a third-party dependency, for example. See
  the FAQ
  section on import categorization for more details.

• Deprecated rules must now be selected by exact rule code

  Ruff will no longer activate deprecated rules selected by their group name
  or prefix. As noted below, the two remaining deprecated rules were also
  removed in this release, so this won't affect any current rules, but it will
  still affect any deprecations in the future.

• The deprecated macOS configuration directory fallback has been removed

  Ruff will no longer look for a user-level configuration file at
  ~/Library/Application Support/ruff/ruff.toml on macOS. This feature was
  deprecated in v0.5 in favor of using the XDG
  specification
  (usually resolving to ~/.config/ruff/ruff.toml), like on Linux. The
  fallback and accompanying deprecation warning have now been removed.

Removed Rules

The following rules have been removed:

• pandas-df-variable-name (PD901)
• non-pep604-isinstance (UP038)

Stabilization

The following rules have been stabilized and are no longer in preview:

• airflow-dag-no-schedule-argument
  (AIR002)
• airflow3-removal (AIR301)
• airflow3-moved-to-provider
  (AIR302)
• airflow3-suggested-update
  (AIR311)
• airflow3-suggested-to-move-to-provider
  (AIR312)
• long-sleep-not-forever (ASYNC116)
• f-string-number-format (FURB116)
• os-symlink (PTH211)
• generic-not-last-base-class
  (PYI059)
• redundant-none-literal (PYI061)
• pytest-raises-ambiguous-pattern
  (RUF043)
• unused-unpacked-variable
  (RUF059)
• useless-class-metaclass-type
  (UP050)

The following behaviors have been stabilized:

• assert-raises-exception (B017)
  now checks for direct calls to unittest.TestCase.assert_raises and pytest.raises instead of
  only the context manager forms.
• missing-trailing-comma (COM812)
  and prohibited-trailing-comma
  (COM819) now check for trailing commas in PEP 695 type parameter lists.
• raw-string-in-exception (EM101)
  now also checks for byte strings in exception messages.
• invalid-mock-access (PGH005) now
  checks for AsyncMock methods like not_awaited in addition to the synchronous variants.
• useless-import-alias (PLC0414) no
  longer applies to __init__.py files, where it conflicted with one of the suggested fixes for
  unused-import (F401).
• bidirectional-unicode (PLE2502) now
  also checks for U+061C (Arabic Letter Mark).
• The fix for
  multiple-with-statements
  (SIM117) is now marked as always safe.

Preview features

• [pyupgrade] Enable UP043 in stub files (#​20027)

Bug fixes

• [pyupgrade] Apply UP008 only when the __class__ cell exists (#​19424)
• [ruff] Fix empty f-string detection in in-empty-collection (RUF060) (#​20249)

Server

• Add support for using uv as an alternative formatter backend (#​19665)

Documentation

• [pep8-naming] Fix formatting of __all__ (N816) (#​20301)

v0.12.12

Compare Source

Preview features

• Show fixes by default (#​19919)
• [airflow] Convert DatasetOrTimeSchedule(datasets=...) to AssetOrTimeSchedule(assets=...) (AIR311) (#​20202)
• [airflow] Improve the AIR002 error message (#​20173)
• [airflow] Move airflow.operators.postgres_operator.Mapping from AIR302 to AIR301 (#​20172)
• [flake8-async] Implement blocking-input rule (ASYNC250) (#​20122)
• [flake8-use-pathlib] Make PTH119 and PTH120 fixes unsafe because they can change behavior (#​20118)
• [pylint] Add U+061C to PLE2502 (#​20106)
• [ruff] Fix false negative for empty f-strings in deque calls (RUF037) (#​20109)

Bug fixes

• Less confidently mark f-strings as empty when inferring truthiness (#​20152)
• [fastapi] Fix false positive for paths with spaces around parameters (FAST003) (#​20077)
• [flake8-comprehensions] Skip C417 when lambda contains yield/yield from (#​20201)
• [perflint] Handle tuples in dictionary comprehensions (PERF403) (#​19934)

Rule changes

• [pycodestyle] Preserve return type annotation for ParamSpec (E731) (#​20108)

Documentation

• Add fix safety sections to docs (#​17490,#​17499)

---

Configuration

📅 Schedule: Branch creation - Between 01:00 AM and 05:59 AM, only on Tuesday ( * 1-5 * * 2 ) in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 75.76%. Comparing base (0b2aa92) to head (9418e94).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1143   +/-   ##
=======================================
  Coverage   75.76%   75.76%           
=======================================
  Files          16       16           
  Lines        4163     4163           
  Branches      631      631           
=======================================
  Hits         3154     3154           
  Misses        786      786           
  Partials      223      223           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.