Skip to content

deps(core-py): bump the all group in /core/wren-core-py with 3 updates#2224

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/core/wren-core-py/all-9382a09a9c
Open

deps(core-py): bump the all group in /core/wren-core-py with 3 updates#2224
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/pip/core/wren-core-py/all-9382a09a9c

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Bumps the all group in /core/wren-core-py with 3 updates: maturin, pytest and ruff.

Updates maturin from 1.9.4 to 1.13.1

Release notes

Sourced from maturin's releases.

v1.13.1

What's Changed

See also v1.13.0 release highlight: https://github.com/PyO3/maturin/releases/tag/v1.13.0

Full Changelog: PyO3/maturin@v1.13.0...v1.13.1

v1.13.0

maturin 1.13.0 is a feature-rich release focused on better wheel generation, improved packaging workflows, and smoother cross-platform builds. This release adds new capabilities for stub generation and PGO builds, significantly improves wheel repair support on macOS and Windows, and includes a broad set of fixes for ABI tagging, source distributions, and platform-specific build behavior.

Highlights

  • Added support for Profile-Guided Optimization (PGO).
  • Added PyO3 stub generation support, including a new generate-stubs command and --generate-stubs build option.
  • Re-implemented macOS wheel repair (delocate) and Windows wheel repair (delvewheel) in maturin, currently warn only when external shared libraries dependencies are required.
  • Added support for large zip files.
  • Added support for [tool.maturin.generate-ci.github] configuration.
  • Improved PEP 517 compatibility by respecting metadata_directory in build_wheel.

This release also includes substantial internal refactoring across build orchestration, interpreter resolution, and command structure, plus dependency and CI updates that improve maintainability and reliability.

No major intentional breaking changes are expected, but users with custom CI or packaging setups may want to validate their workflows after upgrading.

What's Changed

... (truncated)

Changelog

Sourced from maturin's changelog.

Changelog

1.13.0

  • Fix: fall back to placeholder for abi3 when found interpreters are too old (#3126)

1.13.0

  • Refactor: unified interpreter resolution pipeline (#3032)
  • Refactor: decompose large modules into focused submodules (#3052)
  • Keep cargo build artifact at original path after staging (#3054)
  • Fix --strip conflicting with --include-debuginfo in develop (#3057)
  • Fix abi3 wheel producing version-specific tags for CPython below minimum (#3061)
  • Generate-ci: use uv pip for pytest steps to fix local wheel preference (#3063)
  • Update reflink-copy to 0.1.29 to fix sparc Linux builds
  • Add [tool.maturin.generate-ci.github] config support (#3066)
  • Fix(sdist): handle parent workspaces and refactor sdist generation (#3055)
  • Test: refactor integration suite and switch mixed fixtures to cffi (#3068)
  • Fix data symlink permission handling (#3069)
  • Fix: correct bugs in audit.rs typo and module_writer (#3070)
  • Perf: use lazy-initialized regexes instead of per-call compilation (#3071)
  • Refactor: extract duplicated helpers and reduce code repetition (#3072)
  • Refactor: split monster functions into focused methods (#3073)
  • Refactor: improve type safety and API clarity (#3074)
  • Refactor: cleanup anti-patterns (#3075)
  • Refactor: decompose build_context into focused submodules (#3076)
  • Fix: skip legacy manylinux aliases not in PyPI allow-list (#3078)
  • Fix: auto-generate .def file for zig + windows-gnu to export PyInit symbol (#3079)
  • Ci: upgrade run-on-arch-action to ubuntu24.04, add deadsnakes PPA for newer Python (#3081)
  • Fix: pass -undefined dynamic_lookup via CARGO_ENCODED_RUSTFLAGS on macOS (#3083)
  • Feat: add Profile-Guided Optimization (PGO) support (#3085)
  • Respect metadata_directory in build_wheel per PEP 517 (#3086)
  • Update lddtree to 0.5.0
  • Fix cargo path with puccinialin for Windows (#3093)
  • Update and pin cargo-cyclonedx to 0.5.9
  • Ci: improve GitHub Actions generation logic (#3097)
  • Refactor: split BuildOptions and BuildContext into logical sub-groups (#3098)
  • Refactor: move subcommands to separate modules (#3099)
  • Refactor: decouple build orchestration from BuildContext (#3100)
  • Upgrade pyo3 to 0.28 (#3101)
  • Fix: only enable include_debuginfo by default on Windows in develop command
  • PyO3: Adds --generate_stubs build options (#3105)
  • Fix: prevent panic when no interpreters match abi3 minimum version (#3108)
  • Refactor to store CPython ABI metadata in a struct combining two enums (#3110)
  • Refactor: introduce WheelRepairer trait (#3112)
  • Feat: re-implement delocate for repairing macOS wheels (#3114)
  • PyO3: Adds generate-stubs command (#3115)
  • Feat: re-implement delvewheel for repairing Windows wheels (#3116)
  • Add auditwheel Warn mode, default to Warn on macOS/Windows (#3121)
  • Feat: Support large zip files (#3118)

... (truncated)

Commits
  • b27b7e1 Release v1.13.1
  • 4a3df46 fix: fall back to placeholder for abi3 when found interpreters are too old (#...
  • e8ebb2f Release v1.13.0 (#3124)
  • 1e5d362 feat: Support large zip files (#3118)
  • 062bea7 Add auditwheel Warn mode, default to Warn on macOS/Windows (#3121)
  • 70ea112 feat: re-implement delvewheel for repairing Windows wheels (#3116)
  • 83cb185 PyO3: Adds generate-stubs command (#3115)
  • ac062c3 [pre-commit.ci] pre-commit autoupdate (#3117)
  • a8393eb feat: re-implement delocate for repairing macOS wheels (#3114)
  • d97bbd0 refactor: introduce WheelRepairer trait (#3112)
  • Additional commits viewable in compare view

Updates pytest from 8.4.2 to 9.0.3

Release notes

Sourced from pytest's releases.

9.0.3

pytest 9.0.3 (2026-04-07)

Bug fixes

  • #12444: Fixed pytest.approx which now correctly takes into account ~collections.abc.Mapping keys order to compare them.

  • #13634: Blocking a conftest.py file using the -p no: option is now explicitly disallowed.

    Previously this resulted in an internal assertion failure during plugin loading.

    Pytest now raises a clear UsageError explaining that conftest files are not plugins and cannot be disabled via -p.

  • #13734: Fixed crash when a test raises an exceptiongroup with __tracebackhide__ = True.

  • #14195: Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed.

  • #14343: Fixed use of insecure temporary directory (CVE-2025-71176).

Improved documentation

  • #13388: Clarified documentation for -p vs PYTEST_PLUGINS plugin loading and fixed an incorrect -p example.
  • #13731: Clarified that capture fixtures (e.g. capsys and capfd) take precedence over the -s / --capture=no command-line options in Accessing captured output from a test function <accessing-captured-output>.
  • #14088: Clarified that the default pytest_collection hook sets session.items before it calls pytest_collection_finish, not after.
  • #14255: TOML integer log levels must be quoted: Updating reference documentation.

Contributor-facing changes

  • #12689: The test reports are now published to Codecov from GitHub Actions. The test statistics is visible on the web interface.

    -- by aleguy02

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

  • #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

    You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

    Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

  • #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

  • #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

... (truncated)

Commits

Updates ruff from 0.13.1 to 0.15.12

Release notes

Sourced from ruff's releases.

0.15.12

Release Notes

Released on 2026-04-24.

Preview features

  • Implement #ruff:file-ignore file-level suppressions (#23599)
  • Implement #ruff:ignore logical-line suppressions (#23404)
  • Revert preview changes to displayed diagnostic severity in LSP (#24789)
  • [airflow] Implement task-branch-as-short-circuit (AIR004) (#23579)
  • [flake8-bugbear] Fix break/continue handling in loop-iterator-mutation (B909) (#24440)
  • [pylint] Fix PLC2701 for type parameter scopes (#24576)

Rule changes

  • [pandas-vet] Suggest .array as well in PD011 (#24805)

CLI

  • Respect default Unix permissions for cache files (#24794)

Documentation

  • [pylint] Fix PLR0124 description not to claim self-comparison always returns the same value (#24749)
  • [pyupgrade] Expand docs on reusable TypeVars and scoping (UP046) (#24153)
  • Improve rules table accessibility (#24711)

Contributors

Install ruff 0.15.12

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.12/ruff-installer.sh | sh

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.12

Released on 2026-04-24.

Preview features

  • Implement #ruff:file-ignore file-level suppressions (#23599)
  • Implement #ruff:ignore logical-line suppressions (#23404)
  • Revert preview changes to displayed diagnostic severity in LSP (#24789)
  • [airflow] Implement task-branch-as-short-circuit (AIR004) (#23579)
  • [flake8-bugbear] Fix break/continue handling in loop-iterator-mutation (B909) (#24440)
  • [pylint] Fix PLC2701 for type parameter scopes (#24576)

Rule changes

  • [pandas-vet] Suggest .array as well in PD011 (#24805)

CLI

  • Respect default Unix permissions for cache files (#24794)

Documentation

  • [pylint] Fix PLR0124 description not to claim self-comparison always returns the same value (#24749)
  • [pyupgrade] Expand docs on reusable TypeVars and scoping (UP046) (#24153)
  • Improve rules table accessibility (#24711)

Contributors

0.15.11

Released on 2026-04-16.

Preview features

  • [ruff] Ignore RUF029 when function is decorated with asynccontextmanager (#24642)
  • [airflow] Implement airflow-xcom-pull-in-template-string (AIR201) (#23583)
  • [flake8-bandit] Fix S103 false positives and negatives in mask analysis (#24424)

... (truncated)

Commits
  • 66f93cf Bump 0.15.12 (#24815)
  • 476a4d0 [ty] Complete support for more detailed diagnostics on possibly unbound error...
  • ed669ea Implement #ruff:file-ignore file-level suppressions (#23599)
  • e73d952 [ty] Include inferred type in invalid-key concise diagnostic for union/inte...
  • 80feb29 [ty] report only dead annotation-only locals as unused (#24811)
  • 0fbf2bc Drop deprecated license classifier (#24808)
  • 43b174c [ty] Infer lambda parameter types with Callable type context (#24317)
  • 4f449ae [ty] Add error context for intersection types (#24772)
  • 5b4e753 [ty] Add support for goto in literal enum member inlay hint (#24792)
  • e7cc762 [ty] Add error context for TypedDict assignments (#24790)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
deps(core-py): bump the all group in /core/wren-core-py with 3 updates
34b742e 
Bumps the all group in /core/wren-core-py with 3 updates: [maturin](https://github.com/pyo3/maturin), [pytest](https://github.com/pytest-dev/pytest) and [ruff](https://github.com/astral-sh/ruff).


Updates `maturin` from 1.9.4 to 1.13.1
- [Release notes](https://github.com/pyo3/maturin/releases)
- [Changelog](https://github.com/PyO3/maturin/blob/main/Changelog.md)
- [Commits](PyO3/maturin@v1.9.4...v1.13.1)

Updates `pytest` from 8.4.2 to 9.0.3
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@8.4.2...9.0.3)

Updates `ruff` from 0.13.1 to 0.15.12
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.13.1...0.15.12)

---
updated-dependencies:
- dependency-name: maturin
  dependency-version: 1.13.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: pytest
  dependency-version: 9.0.3
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: all
- dependency-name: ruff
  dependency-version: 0.15.12
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added core dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 4, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

core dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants