Bump the python-packages group with 6 updates

[dependabot]

Bumps the python-packages group with 6 updates:

Package	From	To
sqlalchemy	2.0.41	2.0.42
pre-commit	4.2.0	4.3.0
mypy	1.17.0	1.17.1
types-requests	2.32.4.20250611	2.32.4.20250809
types-authlib	1.6.0.20250711	1.6.0.20250809
ruff	0.12.4	0.12.8

Updates sqlalchemy from 2.0.41 to 2.0.42

Release notes

Sourced from sqlalchemy's releases.

2.0.42

Released: July 29, 2025

orm

• [orm] [usecase] Added dataclass_metadata argument to all ORM attribute constructors that accept dataclasses parameters, e.g. mapped_column.dataclass_metadata, relationship.dataclass_metadata, etc. It's passed to the underlying dataclass metadata attribute of the dataclass field. Pull request courtesy Sigmund Lahn.

  References: #10674

• [orm] [bug] Implemented the _orm.defer(), _orm.undefer() and _orm.load_only() loader options to work for composite attributes, a use case that had never been supported previously.

  References: #12593

• [orm] [bug] Fixed bug where the ORM would pull in the wrong column into an UPDATE when a key name inside of the ValuesBase.values() method could be located from an ORM entity mentioned in the statement, but where that ORM entity was not the actual table that the statement was inserting or updating. An extra check for this edge case is added to avoid this problem.

  References: #12692

engine

• [engine] Improved validation of execution parameters passed to the _engine.Connection.execute() and similar methods to provided a better error when tuples are passed in. Previously the execution would fail with a difficult to understand error message.

sql

• [sql] [usecase] The _sql.values() construct gains a new method _sql.Values.cte(), which allows creation of a named, explicit-columns CTE against an unnamed VALUES expression, producing a syntax that allows column-oriented selection from a VALUES construct on modern versions of PostgreSQL, SQLite, and MariaDB.

  References: #12734

• [sql] [bug] Fixed issue where select() of a free-standing scalar expression that

... (truncated)

Commits

• See full diff in compare view

Updates pre-commit from 4.2.0 to 4.3.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.3.0

Features

• language: docker / language: docker_image: detect rootless docker.
  • #3446 PR by @​matthewhughes934.
  • #1243 issue by @​dkolepp.
• language: julia: avoid startup.jl when executing hooks.
  • #3496 PR by @​ericphanson.
• language: dart: support latest dart versions which require a higher sdk lower bound.
  • #3507 PR by @​bc-lee.

Changelog

Sourced from pre-commit's changelog.

4.3.0 - 2025-08-09

Features

• language: docker / language: docker_image: detect rootless docker.
  • #3446 PR by @​matthewhughes934.
  • #1243 issue by @​dkolepp.
• language: julia: avoid startup.jl when executing hooks.
  • #3496 PR by @​ericphanson.
• language: dart: support latest dart versions which require a higher sdk lower bound.
  • #3507 PR by @​bc-lee.

Commits

• b74a22d v4.3.0
• cc899de Merge pull request #3507 from bc-lee/dart-fix
• 2a0bcea Downgrade Dart SDK version installed in the CI
• f1cc7a4 Make Dart pre-commit hook compatible with the latest Dart SDKs
• 72a3b71 Merge pull request #3504 from pre-commit/pre-commit-ci-update-config
• c8925a4 [pre-commit.ci] pre-commit autoupdate
• a5fe6c5 Merge pull request #3496 from ericphanson/eph/jl-startup
• 6f1f433 Julia language: skip startup.jl file
• c681721 Merge pull request #3499 from pre-commit/pre-commit-ci-update-config
• 4fd4537 [pre-commit.ci] pre-commit autoupdate
• Additional commits viewable in compare view

Updates mypy from 1.17.0 to 1.17.1

Changelog

Sourced from mypy's changelog.

Mypy 1.17.1

• Retain None as constraints bottom if no bottoms were provided (Stanislav Terliakov, PR 19485)
• Fix "ignored exception in hasattr" in dmypy (Stanislav Terliakov, PR 19428)
• Prevent a crash when InitVar is redefined with a method in a subclass (Stanislav Terliakov, PR 19453)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Alexey Makridenko
• Brian Schubert
• Chad Dombrova
• Chainfire
• Charlie Denton
• Charulata
• Christoph Tyralla
• CoolCat467
• Donal Burns
• Guy Wilson
• Ivan Levkivskyi
• johnthagen
• Jukka Lehtosalo
• Łukasz Kwieciński
• Marc Mueller
• Michael J. Sullivan
• Mikhail Golubev
• Sebastian Rittau
• Shantanu
• Stanislav Terliakov
• wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.16

We’ve just uploaded mypy 1.16 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Different Property Getter and Setter Types

Mypy now supports using different types for a property getter and setter:

class A:
    _value: int
</tr></table> 

... (truncated)

Commits

• acb2983 Bump version to 1.17.1
• 933c913 Retain None as constraints bottom if no bottoms were provided (#19485)
• 5f4428f Fix "ignored exception in hasattr" in dmypy (#19428)
• 88fdeaa Prevent a crash when InitVar is redefined with a method in a subclass (#19453)
• e44d14f Bump version to 1.17.1+dev
• See full diff in compare view

Updates types-requests from 2.32.4.20250611 to 2.32.4.20250809

Commits

• See full diff in compare view

Updates types-authlib from 1.6.0.20250711 to 1.6.0.20250809

Commits

• See full diff in compare view

Updates ruff from 0.12.4 to 0.12.8

Release notes

Sourced from ruff's releases.

0.12.8

Release Notes

Preview features

• [flake8-use-pathlib] Expand PTH201 to check all PurePath subclasses (#19440)

Bug fixes

• [flake8-blind-except] Change BLE001 to correctly parse exception tuples (#19747)
• [flake8-errmsg] Exclude typing.cast from EM101 (#19656)
• [flake8-simplify] Fix raw string handling in SIM905 for embedded quotes (#19591)
• [flake8-import-conventions] Avoid false positives for NFKC-normalized __debug__ import aliases in ICN001 (#19411)
• [isort] Fix syntax error after docstring ending with backslash (I002) (#19505)
• [pylint] Mark PLC0207 fixes as unsafe when *args unpacking is present (#19679)
• [pyupgrade] Prevent infinite loop with I002 (UP010, UP035) (#19413)
• [ruff] Parenthesize generator expressions in f-strings (RUF010) (#19434)

Rule changes

• [eradicate] Don't flag pyrefly pragmas as unused code (ERA001) (#19731)

Documentation

• Replace "associative" with "commutative" in docs for RUF036 (#19706)
• Fix copy and line separator colors in dark mode (#19630)
• Fix link to typing documentation (#19648)
• [refurb] Make more examples error out-of-the-box (#19695,#19673,#19672)

Other changes

• Include column numbers in GitLab output format (#19708)
• Always expand tabs to four spaces in diagnostics (#19618)
• Update pre-commit's ruff id (#19654)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​MatthewMckee4
• @​MeGaGiGaGon
• @​MichaReiser
• @​UnboundVariable
• @​cristian64
• @​danparizher
• @​dcreager
• @​deliro
• @​dhruvmanila
• @​github-actions
• @​harshil21
• @​hunterhogan

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.8

Preview features

• [flake8-use-pathlib] Expand PTH201 to check all PurePath subclasses (#19440)

Bug fixes

• [flake8-blind-except] Change BLE001 to correctly parse exception tuples (#19747)
• [flake8-errmsg] Exclude typing.cast from EM101 (#19656)
• [flake8-simplify] Fix raw string handling in SIM905 for embedded quotes (#19591)
• [flake8-import-conventions] Avoid false positives for NFKC-normalized __debug__ import aliases in ICN001 (#19411)
• [isort] Fix syntax error after docstring ending with backslash (I002) (#19505)
• [pylint] Mark PLC0207 fixes as unsafe when *args unpacking is present (#19679)
• [pyupgrade] Prevent infinite loop with I002 (UP010, UP035) (#19413)
• [ruff] Parenthesize generator expressions in f-strings (RUF010) (#19434)

Rule changes

• [eradicate] Don't flag pyrefly pragmas as unused code (ERA001) (#19731)

Documentation

• Replace "associative" with "commutative" in docs for RUF036 (#19706)
• Fix copy and line separator colors in dark mode (#19630)
• Fix link to typing documentation (#19648)
• [refurb] Make more examples error out-of-the-box (#19695,#19673,#19672)

Other changes

• Include column numbers in GitLab output format (#19708)
• Always expand tabs to four spaces in diagnostics (#19618)
• Update pre-commit's ruff id (#19654)

0.12.7

This is a follow-up release to 0.12.6. Because of an issue in the package metadata, 0.12.6 failed to publish fully to PyPI and has been yanked. Similarly, there is no GitHub release or Git tag for 0.12.6. The contents of the 0.12.7 release are identical to 0.12.6, except for the updated metadata.

0.12.6

Preview features

• [flake8-commas] Add support for trailing comma checks in type parameter lists (COM812, COM819) (#19390)
• [pylint] Implement auto-fix for missing-maxsplit-arg (PLC0207) (#19387)
• [ruff] Offer fixes for RUF039 in more cases (#19065)

Bug fixes

• Support .pyi files in ruff analyze graph (#19611)
• [flake8-pyi] Preserve inline comment in ellipsis removal (PYI013) (#19399)

... (truncated)

Commits

• f51a228 Bump 0.12.8 (#19813)
• d5e1b79 [ty] Fix static assertion size check (#19814)
• 7dfde3b Update Rust toolchain to 1.89 (#19807)
• b22586f [ty] Add ty.inlayHints.variableTypes server option (#19780)
• c401a6d [ty] Add failing tests for tuple subclasses (#19803)
• 7b6abfb [ty] Add ty.experimental.rename server setting (#19800)
• b005cdb [ty] Implemented support for "rename" language server feature (#19551)
• b96aa46 [ty] Reduce size of member table (#19572)
• cc97579 [ty] Move server capabilities creation (#19798)
• ef1802b [ty] Repurpose FunctionType.into_bound_method_type to return `BoundMethodTy...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.47%. Comparing base (4156ed7) to head (cbdb760).
⚠️ Report is 1 commits behind head on develop.

Additional details and impacted files

@@           Coverage Diff            @@
##           develop     #123   +/-   ##
========================================
  Coverage    91.47%   91.47%           
========================================
  Files          122      122           
  Lines         2534     2534           
  Branches       148      148           
========================================
  Hits          2318     2318           
  Misses         170      170           
  Partials        46       46           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.