Bump the minor-or-patch group across 1 directory with 3 updates

[dependabot]

Bumps the minor-or-patch group with 3 updates in the / directory: beartype, certifi and sphinx-substitution-extensions.

Updates beartype from 0.22.4 to 0.22.6

Release notes

Sourced from beartype's releases.

Beartype 0.22.5: Beloved Even by PYTHONOPTIMIZE=1

@​beartype 0.22.5 does stuff. Uhhh. Wait. Why are we releasing yet another @​beartype 0.22.x patch within the span of ten seconds? We were just here. We already released @​beartype 0.22.4 a week ago. Wasn't that good enough!? I... I guess not. Turns out ${PYTHONOPTIMIZE} support has been busted in @​beartype for literally years. Probably decades. Nobody cared – until somebody cared. I blame only myself despite wanting to point the finger at somebody else. Anybody else. I'll take anybody. Let's start over.

@​beartype 0.22.5 valiantly arises from the ashes of our issue tracker like a burning phoenix on fire!!!! You can't stop this:

# Via "pip", the once-great venerable master packager now fallen on hard times:
$ pip install --upgrade beartype        # <-- you go, pipe-smoking pip
Via "uv", the plucky upstart spiky-haired kid wielding a sword larger than its body:
$ uv lock --upgrade-package beartype    # <-- you do what you need to do, ultraviolet radiation

@​beartype 0.22.5 stoically puts on the sunglasses so you don't have to.

The sky is blue and I have hair again.

@​beartype 0.22.5 is helping @​leycec and his beautiful science wife to eat food. Thanks entirely to...

GitHub Sponsors: Befriend the Bear and Get a Bear for Life

This release comes courtesy these proud GitHub Sponsors, without whom everyone in the @​leycec family would currently be eating grasshoppers in the abandoned back lot again:

• @​sesco-llc (SESCO Enterprises), "The Power of Innovation in Trading": this inspires me to get out of the house and do something https://sescollc.com
• @​DylanModesitt (Dylan Modesitt), quantitative strategies energy trading associate: ...wikipedia, don't fail me now! https://dylanmodesitt.com
• [Tidelift][], graciously paying out recurring income to security-sensitive open-source projects like @​beartype: so much hype https://www.sonarsource.com/products/sonarqube/advanced-security

If you represent a security-conscious corporate, government, or non-profit, the best way bar none for you to support @​beartype and secure your own workflow is by subscribing to [Tidelift][] through [SonarQube Advanced Security][]. Security giant [Sonar][] recently acquired [Tidelift][], guaranteeing the economic viability of the Tidelift model for billions of future open-source projects that have yet to be born. Join the jargon-laden conversation and pay someone else to think about unreadable acronyms like SAST, SCA, and SBOM for once.

Thanks so much, masters of fintech and lifted tides.

The Masters of Fintech and Lifted Tides. That's who.

Gods Not Another Patch Release. What's Still Wrong with You, @​beartype?

@​beartype 0.22.5 is a patch release that guarantees compatibility with Python optimization. Both the @beartype decorator and beartype.claw import hooks now silently reduce to noops (i.e., do nothing rather than type-checking everything) when users:

• Pass one or more -O options to the Python interpreter (e.g., python -O worldshattering_app_shatters_world_accidentally.py).
• Set the ${PYTHONOPTIMIZE} environment variable to a positive integer (e.g., PYTHONOPTIMIZE=1 python worldrepairing_app_repairs_world_shattered_by_worldshattering_app.py).

FastMCP users really care about Python optimization. Apparently, nobody else does. Makes sense. Even @​beartype is too slow for those speed-obsessed LLM gurus. How can this be!? It's never enough for the AI. In the relentless drive for faster query turnaround times, FastMCP is plumbing the depths of the impossible. There are always casualties on the road to progress. @​beartype was one of those casualties. But no more.

@​beartype 0.22.5 is a burning phoenix on fire. It's not a metaphor anymore. We're pretty sure our issue tracker is on fire. What is it now? Still 98 open issues despite a flurry of recent issue resolutions that took our last will to code? Yup. 98 open issues. My... my gods. GitHub. Does no one sleep around here? 😮‍💨

@​beartype + PYTHONOPTIMIZE=1: because you're too tired to even run @​beartype anymore.

... (truncated)

Commits

• 876591c Beartype 0.22.6: Gradio, They Said. It'll Be Easy, They Said.
• 1f57def inspect.isgeneratorfunction() mimicry x 2.
• ae520e9 inspect.isgeneratorfunction() mimicry x 1.
• aa872c5 PyPy resurrection x 1.
• 4385658 docutils.core.publish_parts() >= 0.22.0.
• de34bac Beartype 0.22.6 started.
• ec7400f Beartype 0.22.5: Beloved Even by PYTHONOPTIMIZE=1
• d639335 beartype.claw + ${PYTHONOPTIMIZE}.
• e114bd1 @beartype(conf=...) + ${PYTHONOPTIMIZE}.
• 2a29e8e Continuous integration (CI) badge.
• Additional commits viewable in compare view

Updates certifi from 2025.10.5 to 2025.11.12

Commits

• 37ea150 2025.11.12 (#375)
• 2fa50bb Bump actions/upload-artifact from 4.6.2 to 5.0.0 (#374)
• 6cadb53 Bump actions/download-artifact from 5.0.0 to 6.0.0 (#373)
• See full diff in compare view

Updates sphinx-substitution-extensions from 2025.10.24 to 2025.11.17

Release notes

Sourced from sphinx-substitution-extensions's releases.

Release 2025.11.17

2025.11.17 (2025-11-17)

Changelog

Sourced from sphinx-substitution-extensions's changelog.

2025.11.17

• Give version in extension metadata.

• literalinclude directive now supports the following options:

  • :content-substitutions: - Performs substitutions on the included file content.
  • :path-substitutions: - Performs substitutions on the file path.

• image directive now supports the following option:

  • :path-substitutions: - Performs substitutions on the image file path.

• Add substitutions_default_enabled configuration option to enable substitutions by default. When set to True in conf.py:

  • Substitutions are applied to all code-block directives without requiring the :substitutions: flag. Use the :nosubstitutions: flag on individual code blocks to disable substitutions when the default is enabled.
  • Substitutions are applied to all literalinclude directives (both content and path) without requiring the :content-substitutions: or :path-substitutions: flags. Use the :nocontent-substitutions: or :nopath-substitutions: flags on individual literalinclude directives to disable substitutions when the default is enabled.
  • Substitutions are applied to all image directives (path) without requiring the :path-substitutions: flag. Use the :nopath-substitutions: flag on individual image directives to disable substitutions when the default is enabled.

Commits

• a8f3746 Bump CHANGELOG
• 2ceca0f Merge pull request #1264 from adamtheturtle/fix-md-sample
• 3e26f1f Add Markdown examples for new directive support
• 549be97 Merge pull request #1263 from adamtheturtle/image-subst
• 0b675f8 Remove some comments
• 0debe43 Fix mypy
• b74929a Fix pyright and use more useful sample image
• ebdd07e Add images to the samples
• fc80e88 Add path substitutions for images
• 739cca0 Merge pull request #1262 from adamtheturtle/add-default-substitutions-config
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.