pip: bump the pip-updates group across 1 directory with 3 updates

[dependabot]

Updates the requirements on ruff, aiohttp and certifi to permit the latest version.
Updates ruff to 0.12.3

Release notes

Sourced from ruff's releases.

0.12.3

Release Notes

Preview features

• [flake8-bugbear] Support non-context-manager calls in B017 (#19063)
• [flake8-use-pathlib] Add autofixes for PTH100, PTH106, PTH107, PTH108, PTH110, PTH111, PTH112, PTH113, PTH114, PTH115, PTH117, PTH119, PTH120 (#19213)
• [flake8-use-pathlib] Add autofixes for PTH203, PTH204, PTH205 (#18922)

Bug fixes

• [flake8-return] Fix false-positive for variables used inside nested functions in RET504 (#18433)
• Treat form feed as valid whitespace before a line continuation (#19220)
• [flake8-type-checking] Fix syntax error introduced by fix (TC008) (#19150)
• [pyupgrade] Keyword arguments in super should suppress the UP008 fix (#19131)

Documentation

• [flake8-pyi] Make example error out-of-the-box (PYI007, PYI008) (#19103)
• [flake8-simplify] Make example error out-of-the-box (SIM116) (#19111)
• [flake8-type-checking] Make example error out-of-the-box (TC001) (#19151)
• [flake8-use-pathlib] Make example error out-of-the-box (PTH210) (#19189)
• [pycodestyle] Make example error out-of-the-box (E272) (#19191)
• [pycodestyle] Make example not raise unnecessary SyntaxError (E114) (#19190)
• [pydoclint] Make example error out-of-the-box (DOC501) (#19218)
• [pylint, pyupgrade] Fix syntax errors in examples (PLW1501, UP028) (#19127)
• [pylint] Update missing-maxsplit-arg docs and error to suggest proper usage (PLC0207) (#18949)
• [flake8-bandit] Make example error out-of-the-box (S412) (#19241)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​Gankra
• @​InSyncWithFoo
• @​LaBatata101
• @​MatthewMckee4
• @​MeGaGiGaGon
• @​MichaReiser
• @​NamelessGO
• @​UnboundVariable
• @​abhijeetbodas2001
• @​carljm
• @​charliermarsh
• @​chirizxc
• @​danparizher
• @​dhruvmanila
• @​fdosani
• @​github-actions
• @​ibraheemdev

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.3

Preview features

• [flake8-bugbear] Support non-context-manager calls in B017 (#19063)
• [flake8-use-pathlib] Add autofixes for PTH100, PTH106, PTH107, PTH108, PTH110, PTH111, PTH112, PTH113, PTH114, PTH115, PTH117, PTH119, PTH120 (#19213)
• [flake8-use-pathlib] Add autofixes for PTH203, PTH204, PTH205 (#18922)

Bug fixes

• [flake8-return] Fix false-positive for variables used inside nested functions in RET504 (#18433)
• Treat form feed as valid whitespace before a line continuation (#19220)
• [flake8-type-checking] Fix syntax error introduced by fix (TC008) (#19150)
• [pyupgrade] Keyword arguments in super should suppress the UP008 fix (#19131)

Documentation

• [flake8-pyi] Make example error out-of-the-box (PYI007, PYI008) (#19103)
• [flake8-simplify] Make example error out-of-the-box (SIM116) (#19111)
• [flake8-type-checking] Make example error out-of-the-box (TC001) (#19151)
• [flake8-use-pathlib] Make example error out-of-the-box (PTH210) (#19189)
• [pycodestyle] Make example error out-of-the-box (E272) (#19191)
• [pycodestyle] Make example not raise unnecessary SyntaxError (E114) (#19190)
• [pydoclint] Make example error out-of-the-box (DOC501) (#19218)
• [pylint, pyupgrade] Fix syntax errors in examples (PLW1501, UP028) (#19127)
• [pylint] Update missing-maxsplit-arg docs and error to suggest proper usage (PLC0207) (#18949)
• [flake8-bandit] Make example error out-of-the-box (S412) (#19241)

0.12.2

Preview features

• [flake8-pyi] Expand Optional[A] to A | None (PYI016) (#18572)
• [pyupgrade] Mark UP008 fix safe if no comments are in range (#18683)

Bug fixes

• [flake8-comprehensions] Fix C420 to prepend whitespace when needed (#18616)
• [perflint] Fix PERF403 panic on attribute or subscription loop variable (#19042)
• [pydocstyle] Fix D413 infinite loop for parenthesized docstring (#18930)
• [pylint] Fix PLW0108 autofix introducing a syntax error when the lambda's body contains an assignment expression (#18678)
• [refurb] Fix false positive on empty tuples (FURB168) (#19058)
• [ruff] Allow more field calls from attrs (RUF009) (#19021)
• [ruff] Fix syntax error introduced for an empty string followed by a u-prefixed string (UP025) (#18899)

Rule changes

• [flake8-executable] Allow uvx in shebang line (EXE003) (#18967)
• [pandas] Avoid flagging PD002 if pandas is not imported (#18963)
• [pyupgrade] Avoid PEP-604 unions with typing.NamedTuple (UP007, UP045) (#18682)

... (truncated)

Commits

• 5bc81f2 Bump 0.12.3 (#19279)
• 6908e26 Filter ruff_linter::VERSION out of SARIF output tests (#19280)
• 25c4295 [ty] Avoid stale diagnostics for open files diagnostic mode (#19273)
• 426fa4b [ty] Add signature help provider to playground (#19276)
• b0b65c2 [ty] Initial implementation of signature help provider (#19194)
• 08bc6d2 Add simple integration tests for all output formats (#19265)
• f2ae12b [flake8-return] Fix false-positive for variables used inside nested functio...
• 965f415 [ty] Add a --quiet mode (#19233)
• 83b5bbf Treat form feed as valid whitespace before a line continuation (#19220)
• 87f6f08 [ty] Make check_file a salsa query (#19255)
• Additional commits viewable in compare view

Updates aiohttp from 3.12.13 to 3.12.14

Release notes

Sourced from aiohttp's releases.

3.12.14

Bug fixes

• Fixed file uploads failing with HTTP 422 errors when encountering 307/308 redirects, and 301/302 redirects for non-POST methods, by preserving the request body when appropriate per :rfc:9110#section-15.4.3-3.1 -- by :user:bdraco.

  Related issues and pull requests on GitHub: #11270.

• Fixed :py:meth:ClientSession.close() <aiohttp.ClientSession.close> hanging indefinitely when using HTTPS requests through HTTP proxies -- by :user:bdraco.

  Related issues and pull requests on GitHub: #11273.

• Bumped minimum version of aiosignal to 1.4+ to resolve typing issues -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #11280.

Features

• Added initial trailer parsing logic to Python HTTP parser -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: #11269.

Improved documentation

• Clarified exceptions raised by WebSocketResponse.send_frame et al. -- by :user:DoctorJohn.

  Related issues and pull requests on GitHub: #11234.

... (truncated)

Changelog

Sourced from aiohttp's changelog.

3.12.14 (2025-07-10)

Bug fixes

• Fixed file uploads failing with HTTP 422 errors when encountering 307/308 redirects, and 301/302 redirects for non-POST methods, by preserving the request body when appropriate per :rfc:9110#section-15.4.3-3.1 -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:11270.

• Fixed :py:meth:ClientSession.close() <aiohttp.ClientSession.close> hanging indefinitely when using HTTPS requests through HTTP proxies -- by :user:bdraco.

  Related issues and pull requests on GitHub: :issue:11273.

• Bumped minimum version of aiosignal to 1.4+ to resolve typing issues -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:11280.

Features

• Added initial trailer parsing logic to Python HTTP parser -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub: :issue:11269.

Improved documentation

• Clarified exceptions raised by WebSocketResponse.send_frame et al. -- by :user:DoctorJohn.

... (truncated)

Commits

• 90b6cf6 Release 3.12.14 (#11298)
• 13b20a1 [PR #11290/16703bb9 backport][3.12] Fix file uploads failing with HTTP 422 on...
• edf2abd [PR #11289/e38220fc backport][3.12] Fix ClientSession.close() hanging with HT...
• e8d774f Add trailer parsing logic (#11269) (#11287)
• 0389371 [PR #11280/91108c90 backport][3.12] Bump the minimum supported version of aio...
• ce3c0a7 Bump aiosignal from 1.3.2 to 1.4.0 (#11267) (#11279)
• 133e254 [PR #11234/a83597fa backport][3.12] Document exceptions raised by send_frame ...
• 4ad78b3 Increment version to 3.12.14.dev0 (#11216)
• See full diff in compare view

Updates certifi from 2025.7.9 to 2025.7.14

Commits

• ddd90c6 2025.07.14 (#359)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions