Lock file maintenance Python dependencies (main)

[renovate]

Note

Mend has cancelled the proposed renaming of the Renovate GitHub app being renamed to mend[bot].

This notice will be removed on 2025-10-07.

---

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
		lockFileMaintenance	All locks refreshed
boto3	dependencies	patch	^1.40.36 -> ^1.40.46
cosl	charm-libs	minor	1.1.0 -> 1.3.0
cryptography (changelog)	charm-libs	patch	46.0.1 -> 46.0.2
pydantic (changelog)	charm-libs	patch	1.10.23 -> 1.10.24
pydantic (changelog)	dependencies	patch	^1.10.23 -> ^1.10.24
pytest-operator	integration	patch	^0.43.1 -> ^0.43.2
ruff (source, changelog)	format	patch	^0.13.1 -> ^0.13.3

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Release Notes

boto/boto3 (boto3)

v1.40.46

Compare Source

=======

• api-change:backup: [botocore] Adds optional MaxScheduledRunsPreview input to GetBackupPlan API to provide a preview of up to 10 next scheduled backup plan runs in the GetBackupPlan response.
• api-change:bedrock-agentcore: [botocore] Add support for batch memory management, agent card retrieval and session termination
• api-change:bedrock-agentcore-control: [botocore] Add support for VM lifecycle configuration parameters and A2A protocol
• api-change:glue: [botocore] Adds labeling for DataQualityRuleResult for GetDataQualityResult and PublishDataQualityResult APIs
• api-change:mediaconnect: [botocore] Enabling Tag-on-Create for AWS Elemental MediaConnect flow-based resource types
• api-change:memorydb: [botocore] Support for DescribeMultiRegionParameterGroups and DescribeMultiRegionParameters API.
• api-change:quicksight: [botocore] Documentation improvements for QuickSight API documentation to clarify that delete operation APIs are global.
• api-change:rds: [botocore] Documentation updates to the CreateDBClusterMessage$PubliclyAccessible and CreateDBInstanceMessage$PubliclyAccessible properties.
• api-change:resource-explorer-2: [botocore] Add new AWS Resource Explorer APIs

v1.40.45

Compare Source

=======

• api-change:cleanrooms: [botocore] Added support for reading data sources across regions, and results delivery to allowedlisted regions.
• api-change:medialive: [botocore] AWS Elemental MediaLive enables Mediapackage V2 users to configure ID3, KLV, Nielsen ID3, and Segment Length related parameters through the Mediapackage output group.
• api-change:payment-cryptography-data: [botocore] Added a new API - translateKeyMaterial; allows keys wrapped by ECDH derived keys to be rewrapped under a static AES keyblock without first importing the key into the service.
• api-change:qconnect: [botocore] Updated Amazon Q in Connect APIs to support Email Contact Recommendations.

v1.40.44

Compare Source

=======

• api-change:cloudformation: [botocore] Add new warning type 'EXCLUDED_RESOURCES'
• api-change:connectcases: [botocore] New Search All Related Items API enables searching related items across cases
• api-change:dynamodb: [botocore] Add support for dual-stack account endpoint generation
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:guardduty: [botocore] Updated descriptions for the Location parameter in CreateTrustedEntitySet and CreateThreatEntitySet.
• api-change:synthetics: [botocore] Adds support to configure canaries with pre-configured blueprint code on supported runtime versions. This behavior can be controlled via the new BlueprintTypes property exposed in the CreateCanary and UpdateCanary APIs.

v1.40.43

Compare Source

=======

• api-change:chime-sdk-meetings: [botocore] Add support to receive dual stack MediaPlacement URLs in Chime Meetings SDK
• api-change:cleanrooms: [botocore] This release introduces data access budgets to control how many times a table can be used for queries and jobs in a collaboration.
• api-change:cleanroomsml: [botocore] This release introduces data access budgets to view how many times an input channel can be used for ML jobs in a collaboration.
• api-change:dms: [botocore] This is a doc-only update, revising text for kms-key-arns.
• api-change:ecs: [botocore] This is a documentation only Amazon ECS release that adds additional information for health checks.
• api-change:pcs: [botocore] Added the UpdateCluster API action to modify cluster configurations, and Slurm custom settings for queues.

v1.40.42

Compare Source

=======

• api-change:application-signals: [botocore] Amazon CloudWatch Application Signals is introducing the Application Map to give users a more comprehensive view of their service health. Users will now be able to group services, track their latest deployments, and view automated audit findings concerning service performance.
• api-change:bedrock-agentcore-control: [botocore] Tagging support for AgentCore Gateway
• api-change:chime-sdk-voice: [botocore] Added support for IPv4-only and dual-stack network configurations for VoiceConnector and CreateVoiceConnector API.
• api-change:connectcases: [botocore] This release adds support for two new related item types: ConnectCase for linking Amazon Connect cases and Custom for user-defined related items with configurable fields.
• api-change:customer-profiles: [botocore] This release introduces ListProfileHistoryRecords and GetProfileHistoryRecord APIs for comprehensive profile history tracking with complete audit trails of creation, updates, merges, deletions, and data ingestion events.
• api-change:datasync: [botocore] Added support for FIPS VPC endpoints in FIPS-enabled AWS Regions.
• api-change:datazone: [botocore] This release adds support for creation of EMR on EKS Connections in Amazon DataZone.
• api-change:ds: [botocore] AWS Directory service now supports IPv6-native and dual-stack configurations for AWS Managed Microsoft AD, AD Connector, and Simple AD (dual-stack only). Additionally, AWS Managed Microsoft AD Standard Edition directories can be upgraded to Enterprise Edition directories through a single API call.
• api-change:ecs: [botocore] This release adds support for Managed Instances on Amazon ECS.
• api-change:fsx: [botocore] Add Dual-Stack support for Amazon FSx for NetApp ONTAP and Windows File Server
• api-change:mediatailor: [botocore] Adding TPS Traffic Shaping to Prefetch Schedules
• api-change:quicksight: [botocore] added warnings to a few CLI pages
• api-change:rds: [botocore] Enhanced RDS error handling: Added DBProxyEndpointNotFoundFault, DBShardGroupNotFoundFault, KMSKeyNotAccessibleFault for snapshots/restores/backups, NetworkTypeNotSupported, StorageTypeNotSupportedFault for restores, and granular state validation faults. Changed DBInstanceNotReadyFault to HTTP 400.
• api-change:transfer: [botocore] Add support for updating server identity provider type

v1.40.41

Compare Source

=======

• api-change:bedrock: [botocore] Release for fixing GetFoundationModel API behavior. Imported and custom models have their own exclusive API and GetFM should not accept those ARNS as input
• api-change:bedrock-runtime: [botocore] New stop reason for Converse and ConverseStream
• api-change:imagebuilder: [botocore] This release introduces several new features and improvements to enhance pipeline management, logging, and resource configuration.
• api-change:vpc-lattice: [botocore] Adds support for specifying the number of IPv4 addresses in each ENI for the resource gateway for VPC Lattice.

v1.40.40

Compare Source

=======

• api-change:bedrock-agent-runtime: [botocore] This release enhances the information provided through Flow Traces. New information includes source/next node tracking, execution chains for complex nodes, dependency action (operation) details, and dependency traces.
• api-change:bedrock-data-automation: [botocore] Added support for configurable Speaker Labeling and Channel Labeling features for Audio modality.
• api-change:billing: [botocore] Add ability to combine custom billing views to create new consolidated views.
• api-change:ce: [botocore] Support for payer account dimension and billing view health status.
• api-change:connect: [botocore] Adds supports for manual contact picking (WorkList) operations on Routing Profiles, Agent Management and SearchContacts APIs.
• api-change:dynamodbstreams: [botocore] Added support for IPv6 compatible endpoints for DynamoDB Streams.
• api-change:ec2: [botocore] This release includes documentation updates for Amazon EBS General Purpose SSD (gp3) volumes with larger size and higher IOPS and throughput.
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:redshift: [botocore] Support tagging and tag propagation to IAM Identity Center for Redshift Idc Applications

v1.40.39

Compare Source

=======

• api-change:glue: [botocore] Update GetConnection(s) API to return KmsKeyArn & Add 63 missing connection types
• api-change:lightsail: [botocore] Attribute HTTP binding update for Get/Delete operations
• api-change:network-firewall: [botocore] Network Firewall now introduces Reject and Alert action support for stateful domain list rule groups, providing customers with more granular control over their network traffic.

v1.40.38

Compare Source

=======

• api-change:appstream: [botocore] G6f instance support for AppStream 2.0
• api-change:cloudwatch: [botocore] Fix default dualstack FIPS endpoints in AWS GovCloud(US) regions
• api-change:dax: [botocore] This release adds support for IPv6-only, DUAL_STACK DAX instances
• api-change:endpoint-rules: [botocore] Update endpoint-rules client to latest version
• api-change:kms: [botocore] Documentation only updates for KMS.
• api-change:neptune: [botocore] Doc-only update to address customer use.

v1.40.37

Compare Source

=======

• api-change:cleanrooms: [botocore] Added support for running incremental ID mapping for rule-based workflows.
• api-change:ec2: [botocore] Add Amazon EC2 R8gn instance types
• api-change:entityresolution: [botocore] Support incremental id mapping workflow for AWS Entity Resolution
• api-change:ssm: [botocore] Added Dualstack support to GetDeployablePatchSnapshotForInstance
• api-change:sso-admin: [botocore] Add support for encryption at rest with Customer Managed KMS Key in AWS IAM Identity Center
• api-change:sso-oidc: [botocore] This release includes exception definition and documentation updates.

canonical/cos-lib (cosl)

v1.3.0

Compare Source

What's Changed

• feat: Cosl owns type_convert_stored by @​MichaelThamm in #​155
• chore: Version bump by @​MichaelThamm in #​157

Full Changelog: canonical/cos-lib@1.2.0...1.3.0

v1.2.0

Compare Source

What's Changed

• feat: add time validation module by @​sinapah in #​154

Full Changelog: canonical/cos-lib@1.1.0...1.2.0

pyca/cryptography (cryptography)

v46.0.2

Compare Source

pydantic/pydantic (pydantic)

v1.10.24: 2025-09-25

Compare Source

What's Changed

• Add user warning when using Python 3.14 by @​Viicos in #​12263
  Pydantic V1 will not work with Python 3.14 and greater. A warning is now raised as no actual
  error show up when using it, but the core behavior will silently get broken at runtime.
• Fix mypy plugin issue for mypy v1.18 by @​cdce8p in #​12254
  This fixes another mypy issue that was discovered after the previous v1.10.23 release.

Full Changelog: pydantic/pydantic@v1.10.23...v1.10.24

charmed-kubernetes/pytest-operator (pytest-operator)

v0.43.2

Compare Source

What's Changed

• fix: cloud entries in an dictionary were being deleted while iterating the object by @​addyess in #​155

Full Changelog: charmed-kubernetes/pytest-operator@v0.43.1...v0.43.2

astral-sh/ruff (ruff)

v0.13.3

Compare Source

Released on 2025-10-02.

Preview features

• Display diffs for ruff format --check and add support for different output formats (#​20443)
• [pyflakes] Handle some common submodule import situations for unused-import (F401) (#​20200)
• [ruff] Do not flag %r + repr() combinations (RUF065) (#​20600)

Bug fixes

• [cli] Add conflict between --add-noqa and --diff options (#​20642)
• [pylint] Exempt required imports from PLR0402 (#​20381)
• [pylint] Fix missing max-nested-blocks in settings display (#​20574)
• [pyupgrade] Prevent infinite loop with I002 and UP026 (#​20634)

Rule changes

• [flake8-simplify] Improve help message clarity (SIM105) (#​20548)

Documentation

• Add the The Basics title back to CONTRIBUTING.md (#​20624)
• Fixed documentation for try_consider_else (#​20587)
• [isort] Clarify dependency between order-by-type and case-sensitive settings (#​20559)
• [pylint] Clarify fix safety to include left-hand hashability (PLR6201) (#​20518)

Other changes

• [playground] Fix quick fixes for empty ranges in playground (#​20599)

Contributors

• @​TaKO8Ki
• @​ntBre
• @​dylwil3
• @​MichaReiser
• @​danparizher
• @​LilMonk
• @​mgiovani
• @​IDrokin117

v0.13.2

Compare Source

Released on 2025-09-25.

Preview features

• [flake8-async] Implement blocking-path-method (ASYNC240) (#​20264)
• [flake8-bugbear] Implement map-without-explicit-strict (B912) (#​20429)
• [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#​20178)
• [ruff] Implement logging-eager-conversion (RUF065) (#​19942)
• Include .pyw files by default when linting and formatting (#​20458)

Bug fixes

• Deduplicate input paths (#​20105)
• [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#​19571)
• [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#​20010)
• [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#​20056)
• [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#​20497)
• [ruff] Fix B004 to skip invalid hasattr/getattr calls (#​20486)
• [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#​20391)

Documentation

• Add 'Finding ways to help' to CONTRIBUTING.md (#​20567)
• Update import path to ruff-wasm-web (#​20539)
• [flake8-bandit] Clarify the supported hashing functions (S324) (#​20534)

Other changes

• [playground] Allow hover quick fixes to appear for overlapping diagnostics (#​20527)
• [playground] Fix non‑BMP code point handling in quick fixes and markers (#​20526)

Contributors

• @​BurntSushi
• @​mtshiba
• @​second-ed
• @​danparizher
• @​ShikChen
• @​PieterCK
• @​GDYendell
• @​RazerM
• @​TaKO8Ki
• @​amyreese
• @​ntbre
• @​MichaReiser

---

Configuration

📅 Schedule: Branch creation - Between 01:00 AM and 05:59 AM, only on Tuesday ( * 1-5 * * 2 ) in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 75.77%. Comparing base (605999e) to head (2784c3d).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1203   +/-   ##
=======================================
  Coverage   75.77%   75.77%           
=======================================
  Files          16       16           
  Lines        4165     4165           
  Branches      629      629           
=======================================
  Hits         3156     3156           
  Misses        789      789           
  Partials      220      220           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.