update deps(deps): bump the python-packages group across 1 directory with 5 updates

[dependabot]

Bumps the python-packages group with 5 updates in the / directory:

Package	From	To
lxml	5.3.1	6.0.2
termcolor	2.5.0	3.1.0
black	25.1.0	25.9.0
mypy	1.15.0	1.18.2
pytest	8.3.5	8.4.2

Updates lxml from 5.3.1 to 6.0.2

Release notes

Sourced from lxml's releases.

lxml-6.0.2

No release notes provided.

lxml-6.0.1

No release notes provided.

lxml-6.0.0

No release notes provided.

lxml-5.4.0

5.4.0 (2025-04-22)

Bugs fixed

• LP#2107279: Binary wheels use libxml2 2.13.8 and libxslt 1.1.43 to resolve several CVEs. (Binary wheels for Windows continue to use a patched libxml2 2.11.9 and libxslt 1.1.39.) Issue found by Anatoly Katyushin, see https://bugs.launchpad.net/lxml/+bug/2107279

lxml-5.3.2

No release notes provided.

Changelog

Sourced from lxml's changelog.

6.0.2 (2025-09-21)

Bugs fixed

• LP#2125278: Compilation with libxml2 2.15.0 failed. Original patch by Xi Ruoyao.

• Setting decompress=True in the parser had no effect in libxml2 2.15.

• Binary wheels on Linux and macOS use the library version libxml2 2.14.6. See https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.14.6

• Test failures in libxml2 2.15.0 were fixed.

Other changes

• Binary wheels for Py3.9-3.11 on the riscv64 architecture were added.

• Error constants were updated to match libxml2 2.15.0.

• Built using Cython 3.1.4.

6.0.1 (2025-08-22)

Bugs fixed

• LP#2116333: lxml.sax._getNsTag() could fail with an exception on malformed input.

• GH#467: Some test adaptations were made for libxml2 2.15. Patch by Nick Wellnhofer.

• LP2119510, GH#473: A Python compatibility test was fixed for Python 3.14+. Patch by Lumír Balhar.

• GH#471: Wheels for "riscv64" on recent Python versions were added. Patch by ffgan.

• GH#469: The wheel build no longer requires the wheel package unconditionally. Patch by Miro Hrončok.

• Binary wheels use the library version libxml2 2.14.5. See https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.14.5

• Windows binary wheels continue to use a security patched library version libxml2 2.11.9.

... (truncated)

Commits

• 283d02e Build: Minor readability cleanup.
• 52cf97c Revert "Build: Avoid redundant manylinux2014 builds across newer jobs."
• a21e474 Build: Avoid redundant manylinux2014 builds across newer jobs.
• 58d4d2b Build: Upgrade libxml2 to 2.14.6.
• e5d80da Build: Clean up and simplify target selection and environment setup in pyproj...
• e913380 Build: Limit optimised wheel builds to AMD64 and Arm64 to save time and resou...
• d22f6a1 Build: bump actions/setup-python in the github-actions group (GH-479)
• f8fa76d Build: Prevent redundant branch wheel builds for pull requests.
• b3e9372 Build: bump pypa/cibuildwheel in the github-actions group (GH-478)
• a7ec229 Prepare release of lxml 6.0.2.
• Additional commits viewable in compare view

Updates termcolor from 2.5.0 to 3.1.0

Release notes

Sourced from termcolor's releases.

Release 3.1.0

Added

• Add true colour RGB option as input arguments (#102) @​icyveins7
• Cache system lookups to save invocation time (#107) @​miketheman
• Advertise typing via classifier (#104) @​miketheman

Changed

• Migrate coverage configuration to pyproject.toml (#105) @​miketheman

Release 3.0.1

Fixed

• Fix licence filename in metadata (#100) @​hugovk

Release 3.0.0

Added

• Add support for Python 3.14 (#87) @​hugovk

Changed

• Only apply FORCE_COLOR, NO_COLOR and ANSI_COLORS_DISABLED when present and not an empty string (#92) @​hugovk
• Replace deprecated classifier with licence expression (PEP 639) (#95) @​hugovk
• Speedup: move typing imports into type-checking block (#94) @​hugovk
• Lint with faster action-pre-commit-uv: 1m22s -> 48s and 21s -> 15s (#86) @​hugovk

Removed

• Replace literal types with strings (#97) @​hugovk
• Remove deprecated __ALL__, use __all__ instead (#93) @​hugovk

Commits

• 1e0ae11 Test free-threaded Python 3.13t and 3.14t (#111)
• 9e3f5bb Test free-threaded Python 3.13t and 3.14t
• 52bf721 Add mutation testing (#109)
• 968cfa5 Add tests for cprint kwargs
• 6048bd5 Add mutation testing
• fd08149 Test code branches (#108)
• b32a006 Test code branches
• 60815d2 Cache system lookups to save invocation time (#107)
• 7e1e892 Complete coverage via added tests (#106)
• e516dd5 Cache system lookups to save invocation time
• Additional commits viewable in compare view

Updates black from 25.1.0 to 25.9.0

Release notes

Sourced from black's releases.

25.9.0

Highlights

• Remove support for pre-python 3.7 await/async as soft keywords/variable names (#4676)

Stable style

• Fix crash while formatting a long del statement containing tuples (#4628)
• Fix crash while formatting expressions using the walrus operator in complex with statements (#4630)
• Handle # fmt: skip followed by a comment at the end of file (#4635)
• Fix crash when a tuple appears in the as clause of a with statement (#4634)
• Fix crash when tuple is used as a context manager inside a with statement (#4646)
• Fix crash when formatting a \ followed by a \r followed by a comment (#4663)
• Fix crash on a \\r\n (#4673)
• Fix crash on await ... (where ... is a literal Ellipsis) (#4676)
• Fix crash on parenthesized expression inside a type parameter bound (#4684)
• Fix crash when using line ranges excluding indented single line decorated items (#4670)

Preview style

• Fix a bug where one-liner functions/conditionals marked with # fmt: skip would still be formatted (#4552)
• Improve multiline_string_handling with ternaries and dictionaries (#4657)
• Fix a bug where string_processing would not split f-strings directly after expressions (#4680)
• Wrap the in clause of comprehensions across lines if necessary (#4699)
• Remove parentheses around multiple exception types in except and except* without as. (#4720)
• Add \r style newlines to the potential newlines to normalize file newlines both from and to (#4710)

Parser

• Rewrite tokenizer to improve performance and compliance (#4536)
• Fix bug where certain unusual expressions (e.g., lambdas) were not accepted in type parameter bounds and defaults. (#4602)

Performance

• Avoid using an extra process when running with only one worker (#4734)

Integrations

• Fix the version check in the vim file to reject Python 3.8 (#4567)
• Enhance GitHub Action psf/black to read Black version from an additional section in pyproject.toml: [project.dependency-groups] (#4606)
• Build gallery docker image with python3-slim and reduce image size (#4686)

... (truncated)

Changelog

Sourced from black's changelog.

25.9.0

Highlights

• Remove support for pre-python 3.7 await/async as soft keywords/variable names (#4676)

Stable style

• Fix crash while formatting a long del statement containing tuples (#4628)
• Fix crash while formatting expressions using the walrus operator in complex with statements (#4630)
• Handle # fmt: skip followed by a comment at the end of file (#4635)
• Fix crash when a tuple appears in the as clause of a with statement (#4634)
• Fix crash when tuple is used as a context manager inside a with statement (#4646)
• Fix crash when formatting a \ followed by a \r followed by a comment (#4663)
• Fix crash on a \\r\n (#4673)
• Fix crash on await ... (where ... is a literal Ellipsis) (#4676)
• Fix crash on parenthesized expression inside a type parameter bound (#4684)
• Fix crash when using line ranges excluding indented single line decorated items (#4670)

Preview style

• Fix a bug where one-liner functions/conditionals marked with # fmt: skip would still be formatted (#4552)
• Improve multiline_string_handling with ternaries and dictionaries (#4657)
• Fix a bug where string_processing would not split f-strings directly after expressions (#4680)
• Wrap the in clause of comprehensions across lines if necessary (#4699)
• Remove parentheses around multiple exception types in except and except* without as. (#4720)
• Add \r style newlines to the potential newlines to normalize file newlines both from and to (#4710)

Parser

• Rewrite tokenizer to improve performance and compliance (#4536)
• Fix bug where certain unusual expressions (e.g., lambdas) were not accepted in type parameter bounds and defaults. (#4602)

Performance

• Avoid using an extra process when running with only one worker (#4734)

Integrations

• Fix the version check in the vim file to reject Python 3.8 (#4567)
• Enhance GitHub Action psf/black to read Black version from an additional section in pyproject.toml: [project.dependency-groups] (#4606)

... (truncated)

Commits

• af0ba72 Prepare docs for release 25.9.0 (#4751)
• ffc01a0 Fix schema generation error caused by new click version (#4750)
• 626b32f Add normalizing for \r style newlines (#4710)
• 57a4612 Fix mypy type issue (#4745)
• 4f6ad7c Wrap the in clause of comprehensions across lines if necessary (#4699)
• 24f5169 ci: Run diff-shades on unstable instead of preview (#4741)
• 4d55e60 Bump actions/setup-python from 5 to 6 (#4744)
• 0cf39ef Improve the performance of get_string_prefix (#4742)
• 1f779de Fix line ranges decorator edge case (#4670)
• 203fd6b Optimize Line string method (#4739)
• Additional commits viewable in compare view

Updates mypy from 1.15.0 to 1.18.2

Changelog

Sourced from mypy's changelog.

Mypy 1.18.2

• Fix crash on recursive alias (Ivan Levkivskyi, PR 19845)
• Add additional guidance for stubtest errors when runtime is object.__init__ (Stephen Morton, PR 19733)
• Fix handling of None values in f-string expressions in mypyc (BobTheBuidler, PR 19846)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Ali Hamdan
• Anthony Sottile
• BobTheBuidler
• Brian Schubert
• Chainfire
• Charlie Denton
• Christoph Tyralla
• CoolCat467
• Daniel Hnyk
• Emily
• Emma Smith
• Ethan Sarp
• Ivan Levkivskyi
• Jahongir Qurbonov
• Jelle Zijlstra
• Joren Hammudoglu
• Jukka Lehtosalo
• Marc Mueller
• Omer Hadari
• Piotr Sawicki
• PrinceNaroliya
• Randolf Scholz
• Robsdedude
• Saul Shanabrook
• Shantanu
• Stanislav Terliakov
• Stephen Morton
• wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.17

We’ve just uploaded mypy 1.17 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

... (truncated)

Commits

• df05f05 remove +dev from version
• 01a7a12 Update changelog for 1.18.2 (#19873)
• ca5abf0 Typeshed cherry-pick: Make type of unitest.mock.Any a subclass of Any (#1...
• 9d794b5 [mypyc] fix: inappropriate Nones in f-strings (#19846)
• 2c0510c stubtest: additional guidance on errors when runtime is object.init (#19733)
• 2f3f03c Bump version to 1.18.2+dev for point release
• 7669841 Fix crash on recursive alias in indirection.py (#19845)
• 03fbaa9 bump version to 1.18.1 due to wheels failure
• b44a1fb removed +dev from version
• 7197a99 Removed Unreleased in the Changelog for Release 1.18 (#19827)
• Additional commits viewable in compare view

Updates pytest from 8.3.5 to 8.4.2

Release notes

Sourced from pytest's releases.

8.4.2

pytest 8.4.2 (2025-09-03)

Bug fixes

• #13478: Fixed a crash when using console_output_style{.interpreted-text role="confval"} with times and a module is skipped.

• #13530: Fixed a crash when using pytest.approx{.interpreted-text role="func"} and decimal.Decimal{.interpreted-text role="class"} instances with the decimal.FloatOperation{.interpreted-text role="class"} trap set.

• #13549: No longer evaluate type annotations in Python 3.14 when inspecting function signatures.

  This prevents crashes during module collection when modules do not explicitly use from __future__ import annotations and import types for annotations within a if TYPE_CHECKING: block.

• #13559: Added missing [int]{.title-ref} and [float]{.title-ref} variants to the [Literal]{.title-ref} type annotation of the [type]{.title-ref} parameter in pytest.Parser.addini{.interpreted-text role="meth"}.

• #13563: pytest.approx{.interpreted-text role="func"} now only imports numpy if NumPy is already in sys.modules. This fixes unconditional import behavior introduced in [8.4.0]{.title-ref}.

Improved documentation

• #13577: Clarify that pytest_generate_tests is discovered in test modules/classes; other hooks must be in conftest.py or plugins.

Contributor-facing changes

• #13480: Self-testing: fixed a few test failures when run with -Wdefault or a similar override.
• #13547: Self-testing: corrected expected message for test_doctest_unexpected_exception in Python 3.14.
• #13684: Make pytest's own testsuite insensitive to the presence of the CI environment variable -- by ogrisel{.interpreted-text role="user"}.

8.4.1

pytest 8.4.1 (2025-06-17)

Bug fixes

• #13461: Corrected _pytest.terminal.TerminalReporter.isatty to support being called as a method. Before it was just a boolean which could break correct code when using -o log_cli=true).

• #13477: Reintroduced pytest.PytestReturnNotNoneWarning{.interpreted-text role="class"} which was removed by accident in pytest [8.4]{.title-ref}.

  This warning is raised when a test functions returns a value other than None, which is often a mistake made by beginners.

  See return-not-none{.interpreted-text role="ref"} for more information.

• #13497: Fixed compatibility with Twisted 25+.

Improved documentation

• #13492: Fixed outdated warning about faulthandler not working on Windows.

8.4.0

pytest 8.4.0 (2025-06-02)

... (truncated)

Commits

• bfae422 Prepare release version 8.4.2
• 8990538 Fix passenv CI in tox ini and make tests insensitive to the presence of the C...
• ca676bf Merge pull request #13687 from pytest-dev/patchback/backports/8.4.x/e63f6e51c...
• 975a60a Merge pull request #13686 from pytest-dev/patchback/backports/8.4.x/12bde8af6...
• 7723ce8 Merge pull request #13683 from even-even/fix_Exeption_to_Exception_in_errorMe...
• b7f0568 Merge pull request #13685 from CoretexShadow/fix/docs-pytest-generate-tests
• 2c94c4a add missing colon (#13640) (#13641)
• c3d7684 Merge pull request #13606 from pytest-dev/patchback/backports/8.4.x/5f9938563...
• dc6e3be Merge pull request #13605 from The-Compiler/training-update-2025-07
• f87289c Fix crash with times output style and skipped module (#13573) (#13579)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions