⬆️ Update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
mkdocs-autorefs (changelog)	1.2.0 -> 1.3.0
mkdocs-material (changelog)	9.5.47 -> 9.5.49
mypy (changelog)	1.13.0 -> 1.14.1
pillow (changelog)	11.0.0 -> 11.1.0
pydantic (changelog)	2.10.2 -> 2.10.5
ruff (source, changelog)	0.8.1 -> 0.9.1

---

Release Notes

mkdocstrings/autorefs (mkdocs-autorefs)

v1.3.0

Compare Source

Compare with 1.2.0

Build

• Drop support for Python 3.8 (ee3eaad by Timothée Mazzucotelli).

Features

• Handle inline references with markup within them (54a02a7 by Timothée Mazzucotelli). Follow-up-of-issue-58
• Separate URLs in two groups, primary and secondary (559c723 by Timothée Mazzucotelli). Related-to-issue-61

Bug Fixes

• Fallback to slugified title as id for non-exact, non-code references ([Hello World][] -> [hello-world][]) (13428f1 by Timothée Mazzucotelli). Issue-58

Code Refactoring

• Deprecate fallback mechanism (5e89cd8 by Timothée Mazzucotelli). Issue-61
• Log a debug message for unresolved optional references (9e990d7 by Timothée Mazzucotelli).

squidfunk/mkdocs-material (mkdocs-material)

v9.5.49: mkdocs-material-9.5.49

Compare Source

• Adjusted title color in dark mode for all supported Mermaid.js diagrams
• Fixed #​7803: Privacy plugin crashes on generated files
• Fixed #​7781: Mermaid.js flow chart title not visible in dark mode

v9.5.48: mkdocs-material-9.5.48

Compare Source

• Fixed #​7774: Disabling social cards doesn't work

python/mypy (mypy)

v1.14.1

Compare Source

v1.14.0

Compare Source

python-pillow/Pillow (pillow)

v11.1.0

Compare Source

See GitHub Releases:

• https://github.com/python-pillow/Pillow/releases

pydantic/pydantic (pydantic)

v2.10.5

Compare Source

GitHub release

What's Changed

• Remove custom MRO implementation of Pydantic models by @​Viicos in #​11184
• Fix URL serialization for unions by @​sydney-runkle in #​11233

v2.10.4

Compare Source

GitHub release

What's Changed

Packaging

• Bump pydantic-core to v2.27.2 by @​davidhewitt in #​11138

Fixes

• Fix for comparison of AnyUrl objects by @​alexprabhat99 in #​11082
• Properly fetch PEP 695 type params for functions, do not fetch annotations from signature by @​Viicos in #​11093
• Include JSON Schema input core schema in function schemas by @​Viicos in #​11085
• Add len to _BaseUrl to avoid TypeError by @​Kharianne in #​11111
• Make sure the type reference is removed from the seen references by @​Viicos in #​11143

New Contributors

• @​FyZzyss made their first contribution in #​10789
• @​tamird made their first contribution in #​10948
• @​felixxm made their first contribution in #​11077
• @​alexprabhat99 made their first contribution in #​11082
• @​Kharianne made their first contribution in #​11111

v2.10.3

Compare Source

GitHub release

What's Changed

Fixes

• Set fields when defer_build is set on Pydantic dataclasses by @​Viicos in #​10984
• Do not resolve the JSON Schema reference for dict core schema keys by @​Viicos in #​10989
• Use the globals of the function when evaluating the return type for PlainSerializer and WrapSerializer functions by @​Viicos in #​11008
• Fix host required enforcement for urls to be compatible with v2.9 behavior by @​sydney-runkle in #​11027
• Add a default_factory_takes_validated_data property to FieldInfo by @​Viicos in #​11034
• Fix url json schema in serialization mode by @​sydney-runkle in #​11035

astral-sh/ruff (ruff)

v0.9.1

Compare Source

Preview features

• [pycodestyle] Run too-many-newlines-at-end-of-file on each cell in notebooks (W391) (#​15308)
• [ruff] Omit diagnostic for shadowed private function parameters in used-dummy-variable (RUF052) (#​15376)

Rule changes

• [flake8-bugbear] Improve assert-raises-exception message (B017) (#​15389)

Formatter

• Preserve trailing end-of line comments for the last string literal in implicitly concatenated strings (#​15378)

Server

• Fix a bug where the server and client notebooks were out of sync after reordering cells (#​15398)

Bug fixes

• [flake8-pie] Correctly remove wrapping parentheses (PIE800) (#​15394)
• [pyupgrade] Handle comments and multiline expressions correctly (UP037) (#​15337)

v0.9.0

Compare Source

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

Ruff now formats your code according to the 2025 style guide. As a result, your code might now get formatted differently. See the formatter section for a detailed list of changes.

This release doesn’t remove or remap any existing stable rules.

Stabilization

The following rules have been stabilized and are no longer in preview:

• stdlib-module-shadowing (A005).
  This rule has also been renamed: previously, it was called builtin-module-shadowing.
• builtin-lambda-argument-shadowing (A006)
• slice-to-remove-prefix-or-suffix (FURB188)
• boolean-chained-comparison (PLR1716)
• decimal-from-float-literal (RUF032)
• post-init-default (RUF033)
• useless-if-else (RUF034)

The following behaviors have been stabilized:

• pytest-parametrize-names-wrong-type (PT006): Detect pytest.parametrize calls outside decorators and calls with keyword arguments.
• module-import-not-at-top-of-file (E402): Ignore pytest.importorskip calls between import statements.
• mutable-dataclass-default (RUF008) and function-call-in-dataclass-default-argument (RUF009): Add support for attrs.
• bad-version-info-comparison (PYI006): Extend the rule to check non-stub files.

The following fixes or improvements to fixes have been stabilized:

• redundant-numeric-union (PYI041)
• duplicate-union-members (PYI016)

Formatter

This release introduces the new 2025 stable style (#​13371), stabilizing the following changes:

• Format expressions in f-string elements (#​7594)
• Alternate quotes for strings inside f-strings (#​13860)
• Preserve the casing of hex codes in f-string debug expressions (#​14766)
• Choose the quote style for each string literal in an implicitly concatenated f-string rather than for the entire string (#​13539)
• Automatically join an implicitly concatenated string into a single string literal if it fits on a single line (#​9457)
• Remove the ISC001 incompatibility warning (#​15123)
• Prefer parenthesizing the assert message over breaking the assertion expression (#​9457)
• Automatically parenthesize over-long if guards in match case clauses (#​13513)
• More consistent formatting for match case patterns (#​6933)
• Avoid unnecessary parentheses around return type annotations (#​13381)
• Keep the opening parentheses on the same line as the if keyword for comprehensions where the condition has a leading comment (#​12282)
• More consistent formatting for with statements with a single context manager for Python 3.8 or older (#​10276)
• Correctly calculate the line-width for code blocks in docstrings when using max-doc-code-line-length = "dynamic" (#​13523)

Preview features

• [flake8-bugbear] Implement class-as-data-structure (B903) (#​9601)
• [flake8-type-checking] Apply quoted-type-alias more eagerly in TYPE_CHECKING blocks and ignore it in stubs (TC008) (#​15180)
• [pylint] Ignore eq-without-hash in stub files (PLW1641) (#​15310)
• [pyupgrade] Split UP007 into two individual rules: UP007 for Union and UP045 for Optional (UP007, UP045) (#​15313)
• [ruff] New rule that detects classes that are both an enum and a dataclass (RUF049) (#​15299)
• [ruff] Recode RUF025 to RUF037 (RUF037) (#​15258)

Rule changes

• [flake8-builtins] Ignore stdlib-module-shadowing in stub files(A005) (#​15350)
• [flake8-return] Add support for functions returning typing.Never (RET503) (#​15298)

Server

• Improve the observability by removing the need for the "trace" value to turn on or off logging. The server logging is solely controlled using the logLevel server setting
  which defaults to info. This addresses the issue where users were notified about an error and told to consult the log, but it didn’t contain any messages. (#​15232)
• Ignore diagnostics from other sources for code action requests (#​15373)

CLI

• Improve the error message for --config key=value when the key is for a table and it’s a simple value

Bug fixes

• [eradicate] Ignore metadata blocks directly followed by normal blocks (ERA001) (#​15330)
• [flake8-django] Recognize other magic methods (DJ012) (#​15365)
• [pycodestyle] Avoid false positives related to type aliases (E252) (#​15356)
• [pydocstyle] Avoid treating newline-separated sections as sub-sections (D405) (#​15311)
• [pyflakes] Remove call when removing final argument from format (F523) (#​15309)
• [refurb] Mark fix as unsafe when the right-hand side is a string (FURB171) (#​15273)
• [ruff] Treat ) as a regex metacharacter (RUF043, RUF055) (#​15318)
• [ruff] Parenthesize the int-call argument when removing the int call would change semantics (RUF046) (#​15277)

v0.8.6

Compare Source

Preview features

• [format]: Preserve multiline implicit concatenated strings in docstring positions (#​15126)
• [ruff] Add rule to detect empty literal in deque call (RUF025) (#​15104)
• [ruff] Avoid reporting when ndigits is possibly negative (RUF057) (#​15234)

Rule changes

• [flake8-todos] remove issue code length restriction (TD003) (#​15175)
• [pyflakes] Ignore errors in @no_type_check string annotations (F722, F821) (#​15215)

CLI

• Show errors for attempted fixes only when passed --verbose (#​15237)

Bug fixes

• [ruff] Avoid syntax error when removing int over multiple lines (RUF046) (#​15230)
• [pyupgrade] Revert "Add all PEP-585 names to UP006 rule" (#​15250)

v0.8.5

Compare Source

Preview features

• [airflow] Extend names moved from core to provider (AIR303) (#​15145, #​15159, #​15196, #​15216)
• [airflow] Extend rule to check class attributes, methods, arguments (AIR302) (#​15054, #​15083)
• [fastapi] Update FAST002 to check keyword-only arguments (#​15119)
• [flake8-type-checking] Disable TC006 and TC007 in stub files (#​15179)
• [pylint] Detect nested methods correctly (PLW1641) (#​15032)
• [ruff] Detect more strict-integer expressions (RUF046) (#​14833)
• [ruff] Implement falsy-dict-get-fallback (RUF056) (#​15160)
• [ruff] Implement unnecessary-round (RUF057) (#​14828)

Rule changes

• Visit PEP 764 inline TypedDict keys as non-type-expressions (#​15073)
• [flake8-comprehensions] Skip C416 if comprehension contains unpacking (#​14909)
• [flake8-pie] Allow cast(SomeType, ...) (PIE796) (#​15141)
• [flake8-simplify] More precise inference for dictionaries (SIM300) (#​15164)
• [flake8-use-pathlib] Catch redundant joins in PTH201 and avoid syntax errors (#​15177)
• [pycodestyle] Preserve original value format (E731) (#​15097)
• [pydocstyle] Split on first whitespace character (D403) (#​15082)
• [pyupgrade] Add all PEP-585 names to UP006 rule (#​5454)

Configuration

• [flake8-type-checking] Improve flexibility of runtime-evaluated-decorators (#​15204)
• [pydocstyle] Add setting to ignore missing documentation for *args and **kwargs parameters (D417) (#​15210)
• [ruff] Add an allowlist for unsafe-markup-use (RUF035) (#​15076)

Bug fixes

• Fix type subscript on older python versions (#​15090)
• Use TypeChecker for detecting fastapi routes (#​15093)
• [pycodestyle] Avoid false positives and negatives related to type parameter default syntax (E225, E251) (#​15214)

Documentation

• Fix incorrect doc in shebang-not-executable (EXE001) and add git+windows solution to executable bit (#​15208)
• Rename rules currently not conforming to naming convention (#​15102)

v0.8.4

Compare Source

Preview features

• [airflow] Extend AIR302 with additional functions and classes (#​15015)
• [airflow] Implement moved-to-provider-in-3 for modules that has been moved to Airflow providers (AIR303) (#​14764)
• [flake8-use-pathlib] Extend check for invalid path suffix to include the case "." (PTH210) (#​14902)
• [perflint] Fix panic in PERF401 when list variable is after the for loop (#​14971)
• [perflint] Simplify finding the loop target in PERF401 (#​15025)
• [pylint] Preserve original value format (PLR6104) (#​14978)
• [ruff] Avoid false positives for RUF027 for typing context bindings (#​15037)
• [ruff] Check for ambiguous pattern passed to pytest.raises() (RUF043) (#​14966)

Rule changes

• [flake8-bandit] Check S105 for annotated assignment (#​15059)
• [flake8-pyi] More autofixes for redundant-none-literal (PYI061) (#​14872)
• [pydocstyle] Skip leading whitespace for D403 (#​14963)
• [ruff] Skip SQLModel base classes for mutable-class-default (RUF012) (#​14949)

Bug

• [perflint] Parenthesize walrus expressions in autofix for manual-list-comprehension (PERF401) (#​15050)

Server

• Check diagnostic refresh support from client capability which enables dynamic configuration for various editors (#​15014)

v0.8.3

Compare Source

Preview features

• Fix fstring formatting removing overlong implicit concatenated string in expression part (#​14811)
• [airflow] Add fix to remove deprecated keyword arguments (AIR302) (#​14887)
• [airflow]: Extend rule to include deprecated names for Airflow 3.0 (AIR302) (#​14765 and #​14804)
• [flake8-bugbear] Improve error messages for except* (B025, B029, B030, B904) (#​14815)
• [flake8-bugbear] itertools.batched() without explicit strict (B911) (#​14408)
• [flake8-use-pathlib] Dotless suffix passed to Path.with_suffix() (PTH210) (#​14779)
• [pylint] Include parentheses and multiple comparators in check for boolean-chained-comparison (PLR1716) (#​14781)
• [ruff] Do not simplify round() calls (RUF046) (#​14832)
• [ruff] Don't emit used-dummy-variable on function parameters (RUF052) (#​14818)
• [ruff] Implement if-key-in-dict-del (RUF051) (#​14553)
• [ruff] Mark autofix for RUF052 as always unsafe (#​14824)
• [ruff] Teach autofix for used-dummy-variable about TypeVars etc. (RUF052) (#​14819)

Rule changes

• [flake8-bugbear] Offer unsafe autofix for no-explicit-stacklevel (B028) (#​14829)
• [flake8-pyi] Skip all type definitions in string-or-bytes-too-long (PYI053) (#​14797)
• [pyupgrade] Do not report when a UTF-8 comment is followed by a non-UTF-8 one (UP009) (#​14728)
• [pyupgrade] Mark fixes for convert-typed-dict-functional-to-class and convert-named-tuple-functional-to-class as unsafe if they will remove comments (UP013, UP014) (#​14842)

Bug fixes

• Raise syntax error for mixing except and except* (#​14895)
• [flake8-bugbear] Fix B028 to allow stacklevel to be explicitly assigned as a positional argument (#​14868)
• [flake8-bugbear] Skip B028 if warnings.warn is called with *args or **kwargs (#​14870)
• [flake8-comprehensions] Skip iterables with named expressions in unnecessary-map (C417) (#​14827)
• [flake8-pyi] Also remove self and cls's annotation (PYI034) (#​14801)
• [flake8-pytest-style] Fix pytest-parametrize-names-wrong-type (PT006) to edit both argnames and argvalues if both of them are single-element tuples/lists (#​14699)
• [perflint] Improve autofix for PERF401 (#​14369)
• [pylint] Fix PLW1508 false positive for default string created via a mult operation (#​14841)

v0.8.2

Compare Source

Preview features

• [airflow] Avoid deprecated values (AIR302) (#​14582)
• [airflow] Extend removed names for AIR302 (#​14734)
• [ruff] Extend unnecessary-regular-expression to non-literal strings (RUF055) (#​14679)
• [ruff] Implement used-dummy-variable (RUF052) (#​14611)
• [ruff] Implement unnecessary-cast-to-int (RUF046) (#​14697)

Rule changes

• [airflow] Check AIR001 from builtin or providers operators module (#​14631)
• [flake8-pytest-style] Remove @ in pytest.mark.parametrize rule messages (#​14770)
• [pandas-vet] Skip rules if the panda module hasn't been seen (#​14671)
• [pylint] Fix false negatives for ascii and sorted in len-as-condition (PLC1802) (#​14692)
• [refurb] Guard hashlib imports and mark hashlib-digest-hex fix as safe (FURB181) (#​14694)

Configuration

• [flake8-import-conventions] Improve syntax check for aliases supplied in configuration for unconventional-import-alias (ICN001) (#​14745)

Bug fixes

• Revert: [pyflakes] Avoid false positives in @no_type_check contexts (F821, F722) (#​14615) (#​14726)
• [pep8-naming] Avoid false positive for class Bar(type(foo)) (N804) (#​14683)
• [pycodestyle] Handle f-strings properly for invalid-escape-sequence (W605) (#​14748)
• [pylint] Ignore @overload in PLR0904 (#​14730)
• [refurb] Handle non-finite decimals in verbose-decimal-constructor (FURB157) (#​14596)
• [ruff] Avoid emitting assignment-in-assert when all references to the assigned variable are themselves inside asserts (RUF018) (#​14661)

Documentation

• Improve docs for flake8-use-pathlib rules (#​14741)
• Improve error messages and docs for flake8-comprehensions rules (#​14729)
• [flake8-type-checking] Expands TC006 docs to better explain itself (#​14749)

---

Configuration

📅 Schedule: Branch creation - "after 11am on friday" in timezone Europe/Amsterdam, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 98.11%. Comparing base (65f3c50) to head (799979d).

Additional details and impacted files

@@           Coverage Diff           @@
##           master     #185   +/-   ##
=======================================
  Coverage   98.11%   98.11%           
=======================================
  Files          30       30           
  Lines         795      795           
=======================================
  Hits          780      780           
  Misses         15       15           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.