Bump the dev-dependencies group with 4 updates

[dependabot]

Bumps the dev-dependencies group with 4 updates: hypothesis, coverage, mypy and ruff.

Updates hypothesis from 6.135.20 to 6.136.6

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.136.6

When a test is executed concurrently from multiple threads, "HealthCheck.too_slow" is now disabled, since the Python runtime may decide to switch away from a thread for arbitrarily long and Hypothesis cannot track execution time per-thread.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.5

This patch updates our vendored list of top-level domains, which is used by the provisional "domains()" strategy.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.4

"HealthCheck.differing_executors" is no longer raised if a test is executed by different executors from different threads. "HealthCheck.differing_executors" will still be raised if a test is executed by different executors in the same thread.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.3

When a test is executed concurrently from multiple threads, "DeadlineExceeded" is now disabled, since the Python runtime may decide to switch away from a thread for longer than "settings.deadline", and Hypothesis cannot track execution time per- thread. See issue #4478.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.2

"@​precondition" now errors if used without "@​rule" or "@​invariant". Doing so has no effect and is indicative of a user error (issue #4413).

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.1

Fix "on_observation()" being called with observations it wasn't responsible for generating if the test failed.

The canonical version of these notes (with links) is on readthedocs.

Hypothesis for Python - version 6.136.0

When a failure found by an alternative backend does not reproduce under the Hypothesis backend, we now raise "FlakyBackendFailure" instead of an internal "FlakyReplay" exception.

The canonical version of these notes (with links) is on readthedocs.

... (truncated)

Commits

• 8b68248 Bump hypothesis-python version to 6.136.6 and update changelog
• 3d516e7 Merge pull request #4486 from tybug/free-threading-too-slow
• 3724e99 disable HealthCheck.too_slow under threading
• 261be96 Bump hypothesis-python version to 6.136.5 and update changelog
• cc0c813 Merge pull request #4485 from tybug/liam-update-deps
• f50920e use per-file-target-version
• 1210847 minor patches
• c04ad8b avoid concurrent docs builds
• 0beac11 drop all dep bumps except ruff, mypy, crosshair
• c6a48bc update wording
• Additional commits viewable in compare view

Updates coverage from 7.9.1 to 7.10.1

Changelog

Sourced from coverage's changelog.

Version 7.10.1 — 2025-07-27

• Fix: the exclusion for if TYPE_CHECKING: was wrong: it marked the branch as partial, but it should have been a line exclusion so the entire clause would be excluded. Improves issue 831_.

• Fix: changed where .pth files are written for patch = subprocess, closing issue 2006_.

.. _issue 2006: nedbat/coveragepy#2006

.. _changes_7-10-0:

Version 7.10.0 — 2025-07-24

• A new configuration option: ":ref:config_run_patch" specifies named patches to work around some limitations in coverage measurement. These patches are available:

  • patch = _exit lets coverage save its data even when :func:os._exit() <python:os._exit> is used to abruptly end the process. This closes long-standing issue 310_ as well as its duplicates: issue 312, issue 1673, issue 1845, and issue 1941.

  • patch = subprocess measures coverage in Python subprocesses created with :mod:subprocess, :func:os.system, or one of the :func:execv <python:os.execl> or :func:spawnv <python:os.spawnl> family of functions. Closes old issue 367_ and duplicate issue 378_.

  • patch = execv adjusts the :func:execv <python:os.execl> family of functions to save coverage data before ending the current program and starting the next. Not available on Windows. Closes issue 43_ after 15 years!

• The HTML report now dimly colors subsequent lines in multi-line statements. They used to have no color. This gives a better indication of the amount of code missing in the report. Closes issue 1308_.

• Two new exclusion patterns are part of the defaults: ... is automatically excluded as a line and if TYPE_CHECKING: is excluded as a branch. Closes issue 831_.

• A new command-line option: --save-signal=USR1 specifies a signal that coverage.py will listen for. When the signal is sent, the coverage data will be saved. This makes it possible to save data from within long-running processes. Thanks, Arkady Gilinsky <pull 1998_>_.

... (truncated)

Commits

• 7fdcbeb docs: sample HTML for 7.10.1
• c9e9625 docs: prep for 7.10.1
• e8193ff chore: make upgrade
• 9aad22a test: improve the if TYPE_CHECKING: exclusion test
• 1e2f41a fix: excluding TYPE_CHECKING should have been the line not the branch
• 2134e57 fix: use getsitepackages for writing .pth files. #2006
• a4300a7 test: signal statuses are mysterious. #2008
• 2fd4961 docs: update the man page, for once
• a13607f build: comment_on_fixes should show html urls
• 0f00d49 build: bump version to 7.10.1
• Additional commits viewable in compare view

Updates mypy from 1.16.1 to 1.17.1

Changelog

Sourced from mypy's changelog.

Mypy 1.17.1

• Retain None as constraints bottom if no bottoms were provided (Stanislav Terliakov, PR 19485)
• Fix "ignored exception in hasattr" in dmypy (Stanislav Terliakov, PR 19428)
• Prevent a crash when InitVar is redefined with a method in a subclass (Stanislav Terliakov, PR 19453)

Acknowledgements

Thanks to all mypy contributors who contributed to this release:

• Alexey Makridenko
• Brian Schubert
• Chad Dombrova
• Chainfire
• Charlie Denton
• Charulata
• Christoph Tyralla
• CoolCat467
• Donal Burns
• Guy Wilson
• Ivan Levkivskyi
• johnthagen
• Jukka Lehtosalo
• Łukasz Kwieciński
• Marc Mueller
• Michael J. Sullivan
• Mikhail Golubev
• Sebastian Rittau
• Shantanu
• Stanislav Terliakov
• wyattscarpenter

I’d also like to thank my employer, Dropbox, for supporting mypy development.

Mypy 1.16

We’ve just uploaded mypy 1.16 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Different Property Getter and Setter Types

Mypy now supports using different types for a property getter and setter:

class A:
    _value: int
</tr></table> 

... (truncated)

Commits

• acb2983 Bump version to 1.17.1
• 933c913 Retain None as constraints bottom if no bottoms were provided (#19485)
• 5f4428f Fix "ignored exception in hasattr" in dmypy (#19428)
• 88fdeaa Prevent a crash when InitVar is redefined with a method in a subclass (#19453)
• e44d14f Bump version to 1.17.1+dev
• 0260991 Update version string
• 3901aa2 Updates to 1.17 changelog (#19436)
• 7d13396 Initial changelog for 1.17 release (#19427)
• a182dec Combine the revealed types of multiple iteration steps in a more robust manne...
• ab4fd57 Improve the handling of "iteration dependent" errors and notes in finally cla...
• Additional commits viewable in compare view

Updates ruff from 0.12.1 to 0.12.7

Release notes

Sourced from ruff's releases.

0.12.7

Release Notes

This is a follow-up release to 0.12.6. Because of an issue in the package metadata, 0.12.6 failed to publish fully to PyPI and has been yanked. Similarly, there is no GitHub release or Git tag for 0.12.6. The contents of the 0.12.7 release are identical to 0.12.6, except for the updated metadata.

0.12.6 Release Notes

Preview features

• [flake8-commas] Add support for trailing comma checks in type parameter lists (COM812, COM819) (#19390)
• [pylint] Implement auto-fix for missing-maxsplit-arg (PLC0207) (#19387)
• [ruff] Offer fixes for RUF039 in more cases (#19065)

Bug fixes

• Support .pyi files in ruff analyze graph (#19611)
• [flake8-pyi] Preserve inline comment in ellipsis removal (PYI013) (#19399)
• [perflint] Ignore rule if target is global or nonlocal (PERF401) (#19539)
• [pyupgrade] Fix UP030 to avoid modifying double curly braces in format strings (#19378)
• [refurb] Ignore decorated functions for FURB118 (#19339)
• [refurb] Mark int and bool cases for Decimal.from_float as safe fixes (FURB164) (#19468)
• [ruff] Fix RUF033 for named default expressions (#19115)

Rule changes

• [flake8-blind-except] Change BLE001 to permit logging.critical(..., exc_info=True) (#19520)

Performance

• Add support for specifying minimum dots in detected string imports (#19538)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​CodeMan62
• @​DimitriPapadopoulos
• @​IDrokin117
• @​Luunynliny
• @​MichaReiser
• @​UnboundVariable
• @​carljm
• @​charliermarsh
• @​clockback
• @​danparizher
• @​dcreager
• @​dhruvmanila
• @​dylwil3
• @​github-actions
• @​junhsonjb
• @​mtshiba

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.7

This is a follow-up release to 0.12.6. Because of an issue in the package metadata, 0.12.6 failed to publish fully to PyPI and has been yanked. Similarly, there is no GitHub release or Git tag for 0.12.6. The contents of the 0.12.7 release are identical to 0.12.6, except for the updated metadata.

0.12.6

Preview features

• [flake8-commas] Add support for trailing comma checks in type parameter lists (COM812, COM819) (#19390)
• [pylint] Implement auto-fix for missing-maxsplit-arg (PLC0207) (#19387)
• [ruff] Offer fixes for RUF039 in more cases (#19065)

Bug fixes

• Support .pyi files in ruff analyze graph (#19611)
• [flake8-pyi] Preserve inline comment in ellipsis removal (PYI013) (#19399)
• [perflint] Ignore rule if target is global or nonlocal (PERF401) (#19539)
• [pyupgrade] Fix UP030 to avoid modifying double curly braces in format strings (#19378)
• [refurb] Ignore decorated functions for FURB118 (#19339)
• [refurb] Mark int and bool cases for Decimal.from_float as safe fixes (FURB164) (#19468)
• [ruff] Fix RUF033 for named default expressions (#19115)

Rule changes

• [flake8-blind-except] Change BLE001 to permit logging.critical(..., exc_info=True) (#19520)

Performance

• Add support for specifying minimum dots in detected string imports (#19538)

0.12.5

Preview features

• [flake8-use-pathlib] Add autofix for PTH101, PTH104, PTH105, PTH121 (#19404)
• [ruff] Support byte strings (RUF055) (#18926)

Bug fixes

• Fix unreachable panic in parser (#19183)
• [flake8-pyi] Skip fix if all Union members are None (PYI016) (#19416)
• [perflint] Parenthesize generator expressions (PERF401) (#19325)
• [pylint] Handle empty comments after line continuation (PLR2044) (#19405)

Rule changes

• [pep8-naming] Fix N802 false positives for CGIHTTPRequestHandler and SimpleHTTPRequestHandler (#19432)

0.12.4

... (truncated)

Commits

• c5ac998 Bump 0.12.7 (#19627)
• 04a8f64 Revert license and license-files changes in pyproject.toml (#19624)
• 6e00adf Bump 0.12.6 (#19622)
• 864196b Add Checker::context method, deduplicate Unicode checks (#19609)
• ae26fa0 [flake8-pyi] Preserve inline comment in ellipsis removal (PYI013) (#19399)
• 88a6799 [ty] Add flow diagram for import resolution
• 941be52 [ty] Add comments to some core resolver functions
• 13624ce [ty] Add missing ticks and use consistent quoting
• edb2f8e [ty] Reflow some long lines
• 5e6ad84 [ty] Unexport helper function
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coveralls]

Pull Request Test Coverage Report for Build 16685396198

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 74.778%

---

Totals
Change from base Build 16366734996:	0.0%
Covered Lines:	367
Relevant Lines:	481

---

💛 - Coveralls

[coveralls]

Pull Request Test Coverage Report for Build 16685396198

Details

• 0 of 0 changed or added relevant lines in 0 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage remained the same at 74.778%

---

Totals
Change from base Build 16366734996:	0.0%
Covered Lines:	367
Relevant Lines:	481

---

💛 - Coveralls