chore(deps): update pre-commit hook psf/black to v26.3.0

[red-hat-konflux]

This PR contains the following updates:

Package	Type	Update	Change
psf/black	repository	minor	26.1.0 -> 26.3.0

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

---

Release Notes

psf/black (psf/black)

v26.3.0

Compare Source

Stable style

• Don't double-decode input, causing non-UTF-8 files to be corrupted (#​4964)
• Fix crash on standalone comment in lambda default arguments (#​4993)
• Preserve parentheses when # type: ignore comments would be merged with other
  comments on the same line, preventing AST equivalence failures (#​4888)

Preview style

• Fix bug where if guards in case blocks were incorrectly split when the pattern had
  a trailing comma (#​4884)
• Fix string_processing crashing on unassigned long string literals with trailing
  commas (one-item tuples) (#​4929)
• Simplify implementation of the power operator "hugging" logic (#​4918)

Packaging

• Fix shutdown errors in PyInstaller builds on macOS by disabling multiprocessing in
  frozen environments (#​4930)

Performance

• Introduce winloop for windows as an alternative to uvloop (#​4996)
• Remove deprecated function uvloop.install() in favor of uvloop.new_event_loop()
  (#​4996)
• Rename maybe_install_uvloop function to maybe_use_uvloop to simplify loop
  installation and creation of either a uvloop/winloop evenloop or default eventloop
  (#​4996)

Output

• Emit a clear warning when the target Python version is newer than the running Python
  version, since AST safety checks cannot parse newer syntax. Also replace the
  misleading "INTERNAL ERROR" message with an actionable error explaining the version
  mismatch (#​4983)

Blackd

• Introduce winloop to be used when windows in use which enables blackd to run faster on
  windows when winloop is installed. (#​4996)

Integrations

• Remove unused gallery script (#​5030)
• Harden parsing of black requirements in the GitHub Action when use_pyproject is
  enabled so that only version specifiers are accepted and direct references such as
  black @​ https://... are rejected. Users should upgrade to the latest version of the
  action as soon as possible. This update is received automatically when using
  psf/black@stable, and is independent of the version of Black installed by the
  action. (#​5031)

Documentation

• Expand preview style documentation with detailed examples for wrap_comprehension_in,
  simplify_power_operator_hugging, and wrap_long_dict_values_in_parens features
  (#​4987)
• Add detailed documentation for formatting Jupyter Notebooks (#​5009)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

To execute skipped test pipelines write comment /ok-to-test.

---

Documentation

Find out how to configure dependency updates in MintMaker documentation or see all available configuration options in Renovate documentation.

[coderabbitai]

Summary by CodeRabbit

• Chores
  • Updated development tool versions to ensure code quality standards.

Walkthrough

Updated the Black code formatter version in the pre-commit configuration file from 26.1.0 to 26.3.0. No changes to hooks, arguments, or structure.

Changes

Cohort / File(s)	Summary
Pre-commit Configuration .pre-commit-config.yaml	Updated Black hook version from 26.1.0 to 26.3.0.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~1 minute

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Description check	⚠️ Warning	The description is largely incomplete compared to the template; it lacks most required sections including Additional Context, Type of change, Testing steps, and Checklist.	Complete the PR description by selecting appropriate change type(s), describing testing steps performed, and confirming the pre-merge checklist items.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and specifically describes the main change: updating the psf/black pre-commit hook from version 26.1.0 to 26.3.0.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch konflux/mintmaker/main/pre-commit-hooks

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.pre-commit-config.yaml:
- Line 4: Update the Black hook revision in .pre-commit-config.yaml from the
non-existent "26.3.0" to the published "26.1.0": locate the line containing the
rev value for the Black hook (currently "26.3.0") and change it to "26.1.0" so
pre-commit can install the correct package version.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: b29ea0c3-c722-4abf-8fd2-4ec5895d4d0b

📥 Commits

Reviewing files that changed from the base of the PR and between f194475 and dfab160.

📒 Files selected for processing (1)

• .pre-commit-config.yaml

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
# Description: Verify Black 26.3.0 exists and check for security issues

# Check PyPI for Black version availability
echo "Checking if Black 26.3.0 exists on PyPI..."
curl -s https://pypi.org/pypi/black/26.3.0/json | jq -r '.info.version // "Version not found"'

# Check for security advisories
echo -e "\nChecking for security advisories..."
gh api graphql -f query='
{
  securityVulnerabilities(first: 10, ecosystem: PIP, package: "black") {
    nodes {
      advisory {
        summary
        severity
        publishedAt
      }
      vulnerableVersionRange
      firstPatchedVersion {
        identifier
      }
    }
  }
}'

Repository: RedHatInsights/ccx-upgrades-data-eng

Length of output: 327

---

🌐 Web query:

Black 26.3.0 security vulnerabilities CVE

💡 Result:

• There is no black (Python formatter) release 26.3.0 on PyPI. The latest available release shown on PyPI is 26.1.0 (uploaded Jan 18, 2026). [1]
• Known CVE affecting Black: CVE-2024-21503 (ReDoS / improper validation), reported as affecting versions prior to 24.3.0 and fixed in 24.3.0—so 26.1.0 is not in the affected range. [2][4]
• The upstream psf/black GitHub repo currently shows no published GitHub Security Advisories. [3]

If you meant “Black 24.3.0” (not 26.3.0): that’s the version commonly referenced as the fix version for CVE-2024-21503. [2][4]

Sources: [1] PyPI black project page, [2] SentinelOne CVE-2024-21503 entry, [3] psf/black GitHub security page, [4] Safety/ResolvedSecurity CVE-2024-21503 package impact pages.

---

Use Black 26.1.0 instead of 26.3.0—the latter does not exist on PyPI.

Black 26.3.0 is not published on PyPI; the latest available version is 26.1.0 (released Jan 18, 2026). The pre-commit configuration will fail when attempting to install this non-existent version. Update the revision to 26.1.0, which has no known security vulnerabilities.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In @.pre-commit-config.yaml at line 4, Update the Black hook revision in
.pre-commit-config.yaml from the non-existent "26.3.0" to the published
"26.1.0": locate the line containing the rev value for the Black hook (currently
"26.3.0") and change it to "26.1.0" so pre-commit can install the correct
package version.