chore(deps): bump the all group across 1 directory with 7 updates

[dependabot]

Bumps the all group with 7 updates in the / directory:

Package	From	To
fastapi	0.114.2	0.115.0
pydantic	2.9.1	2.9.2
mkdocs-material	9.5.34	9.5.39
poethepoet	0.28.0	0.29.0
tox	4.18.1	4.21.2
uvicorn	0.30.6	0.31.0
ruff	0.6.5	0.6.9

Updates fastapi from 0.114.2 to 0.115.0

Release notes

Sourced from fastapi's releases.

0.115.0

Highlights

Now you can declare Query, Header, and Cookie parameters with Pydantic models. 🎉

Query Parameter Models

Use Pydantic models for Query parameters:

from typing import Annotated, Literal
from fastapi import FastAPI, Query
from pydantic import BaseModel, Field
app = FastAPI()
class FilterParams(BaseModel):
limit: int = Field(100, gt=0, le=100)
offset: int = Field(0, ge=0)
order_by: Literal["created_at", "updated_at"] = "created_at"
tags: list[str] = []
@​app.get("/items/")
async def read_items(filter_query: Annotated[FilterParams, Query()]):
return filter_query

Read the new docs: Query Parameter Models.

Header Parameter Models

Use Pydantic models for Header parameters:

from typing import Annotated
from fastapi import FastAPI, Header
from pydantic import BaseModel
app = FastAPI()
class CommonHeaders(BaseModel):
host: str
save_data: bool
if_modified_since: str | None = None
traceparent: str | None = None
</tr></table>

... (truncated)

Commits

• 40e33e4 🔖 Release version 0.115.0
• b36047b 📝 Update release notes
• 7eadeb6 📝 Update release notes
• 55035f4 ✨ Add support for Pydantic models for parameters using Query, Cookie, `He...
• 0903da7 📝 Update release notes
• 4b2b14a ⬆ [pre-commit.ci] pre-commit autoupdate (#12204)
• 35df20c 📝 Update release notes
• 8eb3c56 🌐 Add Portuguese translation for `docs/pt/docs/advanced/security/http-basic-a...
• See full diff in compare view

Updates pydantic from 2.9.1 to 2.9.2

Release notes

Sourced from pydantic's releases.

v2.9.2 (2024-09-17)

What's Changed

Fixes

• Do not error when trying to evaluate annotations of private attributes by @​Viicos in #10358
• Adding notes on designing sound Callable discriminators by @​sydney-runkle in #10400
• Fix serialization schema generation when using PlainValidator by @​Viicos in #10427
• Fix Union serialization warnings by @​sydney-runkle in pydantic/pydantic-core#1449
• Fix variance issue in _IncEx type alias, only allow True by @​Viicos in #10414
• Fix ZoneInfo validation with various invalid types by @​sydney-runkle in #10408

Full Changelog: pydantic/pydantic@v2.9.1...v2.9.2

Changelog

Sourced from pydantic's changelog.

v2.9.2 (2024-09-17)

GitHub release

What's Changed

Fixes

• Do not error when trying to evaluate annotations of private attributes by @​Viicos in #10358
• Adding notes on designing sound Callable discriminators by @​sydney-runkle in #10400
• Fix serialization schema generation when using PlainValidator by @​Viicos in #10427
• Fix Union serialization warnings by @​sydney-runkle in pydantic/pydantic-core#1449
• Fix variance issue in _IncEx type alias, only allow True by @​Viicos in #10414
• Fix ZoneInfo validation with various invalid types by @​sydney-runkle in #10408

Commits

• 7cedbfb history updates
• 7eab2b8 v bump
• c0a288f Fix ZoneInfo with various invalid types (#10408)
• ea6115d Fix variance issue in _IncEx type alias, only allow True (#10414)
• fbfe25a Fix serialization schema generation when using PlainValidator (#10427)
• 26cff3c Adding notes on designing callable discriminators (#10400)
• 8a0e7ad Do not error when trying to evaluate annotations of private attributes (#10358)
• See full diff in compare view

Updates mkdocs-material from 9.5.34 to 9.5.39

Release notes

Sourced from mkdocs-material's releases.

mkdocs-material-9.5.39

• Fixed #7226: not staying on page when using mike's canonical versioning

Thanks go to @​ilyagr for their contributions

mkdocs-material-9.5.38

• Added Albanian translations

Thanks go to @​gerardkraja for their contributions

mkdocs-material-9.5.37

• Added 4th and 5th level ordered list styles
• Fixed #7548: Tags have no spacing in search

mkdocs-material-9.5.36

• Fixed #7544: Social cards incorrectly rendering HTML entities
• Fixed #7542: Improved support for setting custom list styles

mkdocs-material-9.5.35

• Fixed #7498: Search not showing for Vietnamese language

Changelog

Sourced from mkdocs-material's changelog.

mkdocs-material-9.5.39+insiders-4.53.14 (2024-09-29)

• Fixed #7567: Empty headlines when using typeset plugin with anchorlinks

mkdocs-material-9.5.39 (2024-09-29)

• Fixed #7226: not staying on page when using mike's canonical versioning

mkdocs-material-9.5.38 (2024-09-26)

• Added Albanian translations

mkdocs-material-9.5.37 (2024-09-25)

• Added 4th and 5th level ordered list styles
• Fixed #7548: Tags have no spacing in search

mkdocs-material-9.5.36 (2024-09-21)

• Fixed #7544: Social cards incorrectly rendering HTML entities
• Fixed #7542: Improved support for setting custom list styles

mkdocs-material-9.5.35 (2024-09-18)

• Fixed #7498: Search not showing for Vietnamese language

mkdocs-material-9.5.34+insiders-4.53.13 (2024-09-14)

• Fixed #7520: Social plugin errors for generated files (MkDocs 1.6+)

mkdocs-material-9.5.34 (2024-08-31)

• Updated Mermaid.js to version 11 (latest)

mkdocs-material-9.5.33 (2024-08-23)

• Fixed #7453: Incorrect position of tooltip when sorting table

mkdocs-material-9.5.32 (2024-08-19)

• Fixed RXSS vulnerability via deep link in search results
• Added support for fetching latest release from GitLab

mkdocs-material-9.5.31+insiders-4.53.12 (2024-08-02)

• Fixed #7410: Instant previews jump on content tabs with anchor links
• Fixed #7408: Instant previews jump on content tabs

mkdocs-material-9.5.31 (2024-08-02)

... (truncated)

Commits

• 70db88f Prepare 9.5.39 release
• 187705e Updated dependencies
• 56fdb28 Adjusted code copy button documentation
• aeb9492 Fixed stay no page functionality when using mike's canonical versioning (#7559)
• 50a15be Updated link to step-by-step guide on YouTube
• 117250a Prepare 9.5.38 release
• 74ca234 Added Albanian translations
• 84ddbba Prepare 9.5.37 release
• fd98413 Documentation (#7557)
• 573d23d Updated dependencies
• Additional commits viewable in compare view

Updates poethepoet from 0.28.0 to 0.29.0

Release notes

Sourced from poethepoet's releases.

0.29.0

Enhancements

• Add support for poe_tasks.toml or yaml or json files by @​nat-n in nat-n/poethepoet#241 📖
• Add support for help messages spanning multiple lines by @​taconi in nat-n/poethepoet#240
• Only depend on tomli for python<3.11 by @​nat-n in nat-n/poethepoet#243

New Contributors

• @​taconi made their first contribution in nat-n/poethepoet#240

Full Changelog: nat-n/poethepoet@v0.28.0...v0.29.0

Commits

• 72892b1 Bump version to 0.29.0
• 1bcc691 chore: only depend on tomli for older pythons (#243)
• 62c6061 Allow help text with line breaks (#240)
• de19a42 docs: Suggest edgar as name for global tasks alias
• ad24166 chore: update CONTRIBUTING.md and add pull_request_template.md
• 0dc3cc0 chore: Update GH action
• fa2f2cd Add support for poe_tasks files in toml, yaml, or json (#241)
• c5841bc Update GH actions
• See full diff in compare view

Updates tox from 4.18.1 to 4.21.2

Release notes

Sourced from tox's releases.

4.21.2

What's Changed

• Update sdist rules to include tox.toml (#3389) by @​mgorny in tox-dev/tox#3390

Full Changelog: tox-dev/tox@4.21.1...4.21.2

4.21.1

What's Changed

• Fix TOML configuration errors by @​gaborbernat in tox-dev/tox#3388

Full Changelog: tox-dev/tox@4.21.0...4.21.1

4.21.0

What's Changed

• Update Loader docs by @​ziima in tox-dev/tox#3352
• True TOML config support by @​gaborbernat in tox-dev/tox#3353

Full Changelog: tox-dev/tox@4.20.0...4.21.0

4.20.0

What's Changed

• Separate list dependencies to a separate installer class by @​gaborbernat in tox-dev/tox#3347

Full Changelog: tox-dev/tox@4.19.0...4.20.0

4.19.0

What's Changed

• Add pypy-major.minor environment name support by @​gaborbernat in tox-dev/tox#3346

Full Changelog: tox-dev/tox@4.18.1...4.19.0

Changelog

Sourced from tox's changelog.

v4.21.2 (2024-10-03)

Bugfixes - 4.21.2

- Include ``tox.toml`` in sdist archives to fix test failures resulting from its lack.
  - by :user:`mgorny` (:issue:`3389`)
v4.21.1 (2024-10-02)
Bugfixes - 4.21.1

• Fix error when using requires within a TOML configuration file - by :user:gaborbernat. (:issue:3386)

• Fix error when using deps within a TOML configuration file - by :user:gaborbernat. (:issue:3387)

• Multiple fixes for the TOML configuration by :user:gaborbernat.:

  • Do not fail when there is an empty command within commands.
  • Allow references for set_env by accepting list of dictionaries for it.
  • Do not try to be smart about reference unrolling, instead allow the user to control it via the extend flag, available both for posargs and ref replacements.
  • The ref replacements raw key has been renamed to of. (:issue:3388)

v4.21.0 (2024-09-30)

Features - 4.21.0

- Native TOML configuration support - by :user:`gaborbernat`. (:issue:`999`)
Improved Documentation - 4.21.0

• Update Loader docs - by :user:ziima (:issue:3352)

v4.20.0 (2024-09-18)

Features - 4.20.0

- Separate the list dependencies functionality to a separate abstract class allowing code reuse in plugins (such as
  ``tox-uv``) - by :gaborbernat`. (:issue:`3347`)
v4.19.0 (2024-09-17)
Features - 4.19.0

• Support pypy-<major>.<minor> environment names for PyPy environments - by :user:gaborbernat. (:issue:3346)

Commits

• c953f4f release 4.21.2
• 3ab1d3e Update sdist rules to include tox.toml (#3389) (#3390)
• 172a952 Fix user guide typo
• 434ac18 release 4.21.1
• 34d3adc Fix TOML configuration errors (#3388)
• 719b346 Update installation.rst
• 46bef9e release 4.21.0
• cea105b True TOML config support (#3353)
• a04b039 [pre-commit.ci] pre-commit autoupdate (#3385)
• f5eba31 Update Loader docs (#3352)
• Additional commits viewable in compare view

Updates uvicorn from 0.30.6 to 0.31.0

Release notes

Sourced from uvicorn's releases.

Version 0.31.0

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow specifying IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/Kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

---

Full Changelog: encode/uvicorn@0.30.6...0.31.0

Changelog

Sourced from uvicorn's changelog.

0.31.0 (2024-09-27)

Added

Improve ProxyHeadersMiddleware (#2468) and (#2231):

• Fix the host for requests from clients running on the proxy server itself.
• Fallback to host that was already set for empty x-forwarded-for headers.
• Also allow to specify IP Networks as trusted hosts. This greatly simplifies deployments on docker swarm/kubernetes, where the reverse proxy might have a dynamic IP.
  • This includes support for IPv6 Address/Networks.

Commits

• a507532 Version 0.31.0 (#2469)
• 84dd2c4 Improve ProxyHeadersMiddleware (#2468)
• 3d26ab4 Bump cryptography from 42.0.8 to 43.0.1 (#2453)
• 47304d9 Add tests and requirements.txt to sdist (#2438)
• 1cb0c32 Add missing init files in the test suite (#2432)
• See full diff in compare view

Updates ruff from 0.6.5 to 0.6.9

Release notes

Sourced from ruff's releases.

0.6.9

Release Notes

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

Install ruff 0.6.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.6.9/ruff-installer.ps1 | iex"

Download ruff 0.6.9

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.9

Preview features

• Fix codeblock dynamic line length calculation for indented docstring examples (#13523)
• [refurb] Mark FURB118 fix as unsafe (#13613)

Rule changes

• [pydocstyle] Don't raise D208 when last line is non-empty (#13372)
• [pylint] Preserve trivia (i.e. comments) in PLR5501 autofix (#13573)

Configuration

• [pyflakes] Add allow-unused-imports setting for unused-import rule (F401) (#13601)

Bug fixes

• Support ruff discovery in pip build environments (#13591)
• [flake8-bugbear] Avoid short circuiting B017 for multiple context managers (#13609)
• [pylint] Do not offer an invalid fix for PLR1716 when the comparisons contain parenthesis (#13527)
• [pyupgrade] Fix UP043 to apply to collections.abc.Generator and collections.abc.AsyncGenerator (#13611)
• [refurb] Fix handling of slices in tuples for FURB118, e.g., x[:, 1] (#13518)

Documentation

• Update GitHub Action link to astral-sh/ruff-action (#13551)

0.6.8

Preview features

• Remove unnecessary parentheses around match case clauses (#13510)
• Parenthesize overlong if guards in match..case clauses (#13513)
• Detect basic wildcard imports in ruff analyze graph (#13486)
• [pylint] Implement boolean-chained-comparison (R1716) (#13435)

Rule changes

• [lake8-simplify] Detect SIM910 when using variadic keyword arguments, i.e., **kwargs (#13503)
• [pyupgrade] Avoid false negatives with non-reference shadowed bindings of loop variables (UP028) (#13504)

Bug fixes

• Detect tuples bound to variadic positional arguments i.e. *args (#13512)
• Exit gracefully on broken pipe errors (#13485)
• Avoid panic when analyze graph hits broken pipe (#13484)

Performance

... (truncated)

Commits

• 975be9c Bump version to 0.6.9 (#13624)
• 99e4566 Mark FURB118 fix as unsafe (#13613)
• 7ad07c2 Add allow-unused-imports setting for unused-import rule (F401) (#13601)
• 4aefe52 Support ruff discovery in pip build environments (#13591)
• cc1f766 Preserve trivia (i.e. comments) in PLR5501 (#13573)
• fdd0a22 Move to maintained mirror of prettier (#13592)
• 3728d5b [pyupgrade] Fix UP043 to apply to collections.abc.Generator and `collecti...
• 7e3894f Avoid short circuiting B017 for multiple context managers (#13609)
• c3b40da Use backticks for code in red-knot messages (#13599)
• ef45185 Allow users to provide custom diagnostic messages when unwrapping calls (#13597)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[coderabbitai]

Important

Review skipped

Auto reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[dependabot]

Superseded by #200.