build(requirements): bump the prod group with 6 updates

[dependabot]

Updates the requirements on azure-identity, dill, pillow, psutil, scipy and snowballstemmer to permit the latest version.
Updates azure-identity from 1.17.1 to 1.25.2

Release notes

Sourced from azure-identity's releases.

azure-identity_1.25.2

1.25.2 (2026-02-10)

Bugs Fixed

• Fixed an issue with certain credentials not bypassing the token cache when claims are provided in get_token or get_token_info calls. (#44552) (#44815)
• Fixed an issue where an unhelpful TypeError was raised during Entra ID token requests that returned empty responses. Now, a ClientAuthenticationError is raised with the full response for better troubleshooting. (#44258)

Other Changes

• Bumped minimum dependency on msal to >=1.31.0.
• Added debug logging of access token cache hits in several credentials to improve troubleshooting of token cache behavior. (#44963)
• Replace instances of azure.core.pipeline.transport.HttpRequest with azure.core.rest.HttpRequest. (#44993)

Commits

• 3bdfb63 [Identity] Prepare release (#45112)
• fa2d335 [Core] Update changelog for release (#45114)
• 9233cd8 Cut over test runs from tox to uv venvs (#44110)
• e25274d foundry agent cannot use key auth (#45056)
• 7337d70 [Batch] Beta data plane SDK v15.1.0b3 Track 2 (#44681)
• 65612ca Implement Input Validation for Agentic Evaluators (#44618)
• 5ec642f [core] Fix issues with url formatting (#45044)
• 496aeae Fix pylint(4.0.4) errors for exporter (#45088)
• aa421d9 App Config SDK/Provider Pylint Updates (#45050)
• 16dcd67 [AutoPR azure-mgmt-resource-deploymentstacks]-generated-from-SDK Generation -...
• Additional commits viewable in compare view

Updates dill from 0.3.9 to 0.4.1

Commits

• a9d4d39 tag: 0.4.1
• 54370bd cleanup outdated docs (#742)
• bae7c21 fix pypy311 registered, update travis ci (#741)
• 7daa95d Bump urllib3 from 2.6.0 to 2.6.3 in /docs (#739)
• 5fbd3a7 sync with rtfd 15.10.0 (#740)
• fdb4b72 update copyright for 2026, urllib3 to 2.6.0 (#738)
• e8c4221 avoid numpy segfault for 3.15.0a3 (#737)
• d948ecd ensure valid class qualname in getsource (#733)
• a843f90 sync with rtd 15.4.1 (#731)
• 08f613d dict and weakref attribute are singletons in 3.15 (#728)
• Additional commits viewable in compare view

Updates pillow from 10.4.0 to 12.1.1

Release notes

Sourced from pillow's releases.

12.1.1

https://pillow.readthedocs.io/en/stable/releasenotes/12.1.1.html

Dependencies

• Patch libavif for svt-av1 4.0 compatibility #9413 [@​hugovk]

Other changes

• Fix OOB Write with invalid tile extents #9427 [@​radarhere]

12.1.0

https://pillow.readthedocs.io/en/stable/releasenotes/12.1.0.html

Deprecations

• Deprecate getdata(), in favour of new get_flattened_data() #9292 [@​radarhere]

Documentation

• Specify APNG duration type when opening #9368 [@​radarhere]
• Added release notes for #9350 #9366 [@​radarhere]
• Update ImageMorph documentation #9349 [@​radarhere]
• Docs: update major bump cadence #9334 [@​hugovk]
• Add release notes for #9070 #9320 [@​radarhere]
• Updated Ubuntu version #9306 [@​radarhere]
• Update macOS tested Pillow versions #9265 [@​radarhere]

Dependencies

• Update harfbuzz to 12.3.0 #9355 [@​radarhere]
• Update xz to 5.8.2 #9343 [@​radarhere]
• Updated libjpeg-turbo to 3.1.3 #9333 [@​radarhere]
• Updated zlib-ng to 2.3.2 #9324 [@​radarhere]
• Updated libpng to 1.6.53 #9325 [@​radarhere]
• Update actions/checkout action to v6 #9323 [@renovate[bot]]
• Update dependency mypy to v1.19.0 #9322 [@renovate[bot]]
• Updated libpng to 1.6.51 #9305 [@​radarhere]
• Updated brotli to 1.2.0 #9284 [@​radarhere]
• Update libimagequant to 4.4.1 #9301 [@​radarhere]
• Update zlib-ng to 2.3.1, except on manylinux2014 aarch64 #9312 [@​radarhere]
• Updated harfbuzz to 12.2.0 #9289 [@​radarhere]
• Update github-actions #9277 [@renovate[bot]]

Testing

• Replace pre-commit with prek #9360 [@​hugovk]
• Test PyQt6 on Python 3.14 on Windows #9353 [@​radarhere]
• Test 32-bit Windows on Windows Server 2022 #9345 [@​radarhere]
• Correct variable type #9335 [@​radarhere]

... (truncated)

Changelog

Sourced from pillow's changelog.

Changelog (Pillow)

11.1.0 and newer

See GitHub Releases:

• https://github.com/python-pillow/Pillow/releases

11.0.0 (2024-10-15)

• Update licence to MIT-CMU #8460 [hugovk]

• Conditionally define ImageCms type hint to avoid requiring core #8197 [radarhere]

• Support writing LONG8 offsets in AppendingTiffWriter #8417 [radarhere]

• Use ImageFile.MAXBLOCK when saving TIFF images #8461 [radarhere]

• Do not close provided file handles with libtiff when saving #8458 [radarhere]

• Support ImageFilter.BuiltinFilter for I;16* images #8438 [radarhere]

• Use ImagingCore.ptr instead of ImagingCore.id #8341 [homm, radarhere, hugovk]

• Updated EPS mode when opening images without transparency #8281 [Yay295, radarhere]

• Use transparency when combining P frames from APNGs #8443 [radarhere]

• Support all resampling filters when resizing I;16* images #8422 [radarhere]

• Free memory on early return #8413 [radarhere]

• Cast int before potentially exceeding INT_MAX #8402 [radarhere]

... (truncated)

Commits

• 5158d98 12.1.1 version bump
• 9000313 Fix OOB Write with invalid tile extents (#9427)
• cd01118 Patch libavif for svt-av1 4.0 compatibility
• 46f45f6 12.1.0 version bump
• c9ac097 Simplify band splitting (#9291)
• 3baedf2 Deprecate getdata(), in favour of new get_flattened_data() (#9292)
• b51a036 Specify APNG duration type when opening (#9368)
• 8d08e31 Add release notes for #9348 (#9369)
• 432707e Added release notes for #9348
• 2d58910 Specify APNG duration type when opening
• Additional commits viewable in compare view

Updates psutil from 6.1.0 to 7.2.2

Changelog

Sourced from psutil's changelog.

7.2.2

2026-01-28

Enhancements

• 2705_: [Linux]: Process.wait()_ now uses pidfd_open() + poll() for waiting, resulting in no busy loop and faster response times. Requires Linux >= 5.3 and Python >= 3.9. Falls back to traditional polling if unavailable.
• 2705_: [macOS], [BSD]: Process.wait()_ now uses kqueue() for waiting, resulting in no busy loop and faster response times.

Bug fixes

• 2701_, [macOS]: fix compilation error on macOS < 10.7. (patch by Sergey Fedorov)
• 2707_, [macOS]: fix potential memory leaks in error paths of Process.memory_full_info() and Process.threads().
• 2708_, [macOS]: Process.cmdline()_ and Process.environ()_ may fail with ``OSError: [Errno 0] Undefined error`` (from ``sysctl(KERN_PROCARGS2)``). They now raise AccessDenied`_ instead.

7.2.1

2025-12-29

Bug fixes

• 2699_, [FreeBSD], [NetBSD]: heap_info()_ does not detect small allocations (<= 1K). In order to fix that, we now flush internal jemalloc cache before fetching the metrics.

7.2.0

2025-12-23

Enhancements

• 1275_: new heap_info()_ and heap_trim()_ functions, providing direct access to the platform's native C heap allocator (glibc, mimalloc, libmalloc). Useful to create tools to detect memory leaks.
• 2403_, [Linux]: publish wheels for Linux musl.
• 2680_: unit tests are no longer installed / part of the distribution. They now live under tests/ instead of psutil/tests.

Bug fixes

... (truncated)

Commits

• 9eea97d Pre-release
• 938ac64 Rm sphinxcontrib.googleanalytics; override layout.html
• 9dcbb7e Add sphinxcontrib-googleanalytics to requirements.txt
• 76eaf9a Try to add google analytics to doc
• de1cafa Update doc mentioning Process.wait() internal details
• bb30943 Refact can_use_pidfd_open() and can_use_kqueue()
• a571717 #2708, macos / cmdline / environ; raise AD instead of OSError(0) (#2709)
• 8b98c3e Pre-release
• 700b7e6 [macOS] fix potential leaks in error paths (#2707)
• 7cc7923 Windows / cmdline(): be more defensive in free()ing in case of error
• Additional commits viewable in compare view

Updates scipy from 1.14.1 to 1.15.3

Release notes

Sourced from scipy's releases.

SciPy 1.15.3 Release Notes

SciPy 1.15.3 is a bug-fix release with no new features compared to 1.15.2.

For the complete issue and PR lists see the raw release notes.

Authors

• Name (commits)
• aiudirog (1) +
• Nickolai Belakovski (1)
• Florian Bourgey (1) +
• Richard Strong Bowen (2) +
• Jake Bowhay (1)
• Dietrich Brunn (2)
• Evgeni Burovski (1)
• Lucas Colley (1)
• Ralf Gommers (1)
• Saarthak Gupta (1) +
• Matt Haberland (4)
• Chengyu Han (1) +
• Lukas Huber (1) +
• Nick ODell (2)
• Ilhan Polat (4)
• Tyler Reddy (52)
• Neil Schemenauer (1) +
• Dan Schult (1)
• sildater (1) +
• Gagandeep Singh (4)
• Albert Steppi (2)
• Matthias Urlichs (1) +
• David Varela (1) +
• ਗਗਨਦੀਪ ਸਿੰਘ (Gagandeep Singh) (3)

A total of 24 people contributed to this release. People with a "+" by their names contributed a patch for the first time. This list of names is automatically generated, and may not be fully complete.

SciPy 1.15.2 Release Notes

SciPy 1.15.2 is a bug-fix release with no new features compared to 1.15.1. Free-threaded Python 3.13 wheels for Linux ARM platform are available on PyPI starting with this release.

Authors

... (truncated)

Commits

• e29dcb6 REL: 1.15.3 rel commit [wheel build]
• 61e6aa1 Merge pull request #22840 from tylerjereddy/treddy_1.15.3_backports
• 18c4ca8 MAINT: PR 22840 wheel build [wheel build]
• bd0f132 MAINT: PR 22840 revisions
• 033b138 MAINT: PR 22840 revisions
• 7a283cc DOC: PR 22840 revisions
• 3d1ea40 BUG: spatial.HalfspaceIntersection: raise on non-feasible half space (#20035)
• d01b984 BUG: ndimage.median_filter: fix segfault when using mode='mirror' (#22608)
• 0879108 MAINT: special.logsumexp: fix bug when weight of largest magnitude component ...
• 9b3b2d8 Merge pull request #22869 from smurfix/main
• Additional commits viewable in compare view

Updates snowballstemmer to 3.0.1

Changelog

Sourced from snowballstemmer's changelog.

Snowball 3.0.1 (2025-05-09)

Python

• The init.py in 3.0.0 was incorrectly generated due to a missing build dependency and the list of algorithms was empty. First reported by laymonage. Thanks to Dmitry Shachnev, Henry Schreiner and Adam Turner for diagnosing and fixing. (#229, #230, #231)

• Add trove classifiers for Armenian and Yiddish which have now been registered with PyPI. Thanks to Henry Schreiner and Dmitry Shachnev. (#228)

• Update documented details of Python 2 support in old versions.

Snowball 3.0.0 (2025-05-08)

Ada

• Bug fixes:

  • Fix invalid Ada code generated for Snowball loop (it was partly Pascal!) None of the stemmers shipped in previous releases triggered this bug, but the Turkish stemmer now does.

  • The Ada runtime was not tracking the current length of the string but instead used the current limit value or some other substitute, which manifested as various incorrect behaviours for code inside of setlimit.

  • size was incorrectly returning the difference between the limit and the backwards limit.

  • lenof or sizeof on a string variable generated Ada code that didn't even compile.

  • Fix incorrect preconditions on some methods in the runtime.

  • Fix bug in runtime code used by attach, insert, <- and string variable assignment when a (sub)string was replaced with a larger string. This bug was triggered by code in the Kraaij-Pohlmann Dutch stemmer implementation (which was previously not enabled by default but is now the standard Dutch stemmer).

  • Fix invalid code generated for insert, <- and string variable assignment. This bug was triggered by code in the Kraaij-Pohlmann Dutch stemmer implementation (which was previously not enabled by default but is now the standard Dutch stemmer).

... (truncated)

Commits

• e4b3efb Update for 3.0.1
• bbd3319 Protect empty languages dict
• 298ff9f Update details of Python 2 support in old versions
• 53fe098 python: Specify correct dependencies for $(python_output_dir)/__init__.py
• 00a22de Stop excluding classifiers for Armenian and Yiddish
• abd9adc Update for 3.0.0
• d23d356 Back out incomplete ESM support for 3.0.0
• ff42274 Update draft NEWS entry
• cd61f01 tamil: remove_tense_suffix signals if ending removed
• edfe576 nepali: Reformat amongs to be clearer
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

---

📚 Documentation preview 📚: https://RDAgent--5.org.readthedocs.build/en/5/