Update all dependencies

Author: renovate[bot]

.docker/python/Dockerfile

@@ -1,4 +1,4 @@
-FROM python:3.13.5
+FROM python:3.13.7
 ARG PACKAGE="core"
 
 COPY --from=ghcr.io/astral-sh/uv:latest /uv /bin/uv

.github/workflows/code-quality.yml

@@ -22,7 +22,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
 
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v3

.github/workflows/python.yml

@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-24.04
     steps:
       - name: Checkout source code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v5
 
       - name: Set up python
         id: setup-python

.pre-commit-config.yaml

@@ -7,7 +7,7 @@ default_language_version:
 repos:
   # general checks (see here: https://pre-commit.com/hooks.html)
   - repo: https://github.com/pre-commit/pre-commit-hooks
-    rev: v5.0.0
+    rev: v6.0.0
     hooks:
       - id: check-yaml
         args: [--allow-multiple-documents]
@@ -17,7 +17,7 @@ repos:
 
   # ruff - linting + formatting
   - repo: https://github.com/astral-sh/ruff-pre-commit
-    rev: "v0.12.1"
+    rev: "v0.12.9"
     hooks:
       - id: ruff
         name: ruff
@@ -26,7 +26,7 @@ repos:
 
   # mypy - lint-like type checking
   - repo: https://github.com/pre-commit/mirrors-mypy
-    rev: v1.16.1
+    rev: v1.17.1
     hooks:
       - id: mypy
         name: mypy
@@ -61,7 +61,7 @@ repos:
 
   # bandit - find common security issues
   - repo: https://github.com/pycqa/bandit
-    rev: 1.8.5
+    rev: 1.8.6
     hooks:
       - id: bandit
         name: bandit

.python-version

@@ -1 +1 @@
-3.13.5
+3.13.7