build(deps): bump the minor-and-patch group with 3 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates: stac-validator, python-dotenv and uvicorn.

Updates stac-validator from 3.9.2 to 3.9.3

Release notes

Sourced from stac-validator's releases.

v3.9.3

What's Changed

• Clean recursion by @​jonhealy1 in stac-utils/stac-validator#264
  • Improved path resolution in recursive validation to handle relative paths more reliably, especially in GitHub repository structures
  • Fixed issue where validator would get confused by repository structure when validating catalogs with relative paths
  • Cleaned up path output by removing unnecessary ./ components from displayed paths

Full Changelog: stac-utils/stac-validator@v3.9.2...v3.9.3

Changelog

Sourced from stac-validator's changelog.

[v3.9.3] - 2025-06-28

Changed

• Improved path resolution in recursive validation to handle relative paths more reliably, especially in GitHub repository structures #264

Fixed

• Fixed issue where validator would get confused by repository structure when validating catalogs with relative paths #264
• Cleaned up path output by removing unnecessary ./ components from displayed paths #264

Removed

Commits

• 3abdee2 Clean recursion (#264)
• 6b969a5 Update pypi downloads badge
• See full diff in compare view

Updates python-dotenv from 1.1.0 to 1.1.1

Release notes

Sourced from python-dotenv's releases.

v1.1.1

What's Changed

• fix: ensure find_dotenv work reliably on python 3.13 by @​theskumar in theskumar/python-dotenv#563
• fix(cli): issue with execvpe on Windows by @​wrongontheinternet in theskumar/python-dotenv#566

New Contributors

• @​wrongontheinternet made their first contribution in theskumar/python-dotenv#566

Full Changelog: theskumar/python-dotenv@v1.1.0...v1.1.1

Changelog

Sourced from python-dotenv's changelog.

[1.1.1] - 2025-06-24

Fixed

• CLI: Ensure find_dotenv work reliably on python 3.13 by [@​theskumar] in #563
• CLI: revert the use of execvpe on Windows by [@​wrongontheinternet] in #566

Commits

• 16e660d Bump version: 1.1.0 → 1.1.1
• 667e82f update changelog
• 9d85edb fix(cli): issue with execvpe on Windows (#566)
• 8411987 fix: ensure find_dotenv work reliably on python 3.13 (#563)
• 01f8997 docs update
• See full diff in compare view

Updates uvicorn from 0.34.3 to 0.35.0

Release notes

Sourced from uvicorn's releases.

Version 0.35.0

Added

• Add WebSocketsSansIOProtocol by @​Kludex in encode/uvicorn#2540

Changed

• Refine help message for option --proxy-headers by @​zhangyoufu in encode/uvicorn#2653

New Contributors

• @​zhangyoufu made their first contribution in encode/uvicorn#2653

Full Changelog: Kludex/uvicorn@0.34.3...0.35.0

Changelog

Sourced from uvicorn's changelog.

0.35.0 (June 28, 2025)

Added

• Add WebSocketsSansIOProtocol (#2540)

Changed

• Refine help message for option --proxy-headers (#2653)

Commits

• daecb45 Version 0.35.0 (#2654)
• 22dfd3f refine help message for option --proxy-headers (#2653)
• b960626 Add WebSocketsSansIOProtocol (#2540)
• 5432729 Add CITATION.cff (#2649)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions