deps: bump the minor-and-patch group with 3 updates

[dependabot]

Bumps the minor-and-patch group with 3 updates: requests, selenium and playwright.

Updates requests from 2.34.0 to 2.34.2

Release notes

Sourced from requests's releases.

v2.34.2

2.34.2 (2026-05-14)

• Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2342-2026-05-14

v2.34.1

2.34.1 (2026-05-13)

Bugfixes

• Widened json input type from dict and list to Mapping and Sequence. (#7436)
• Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
• Response.reason moved from str | None to str to improve handling for users. (#7437)
• Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)

New Contributors

• @​k223kim made their first contribution in psf/requests#7433

Full Changelog: https://github.com/psf/requests/blob/main/HISTORY.md#2341-2026-05-13

Changelog

Sourced from requests's changelog.

2.34.2 (2026-05-14)

• Moved headers input type back to Mapping to avoid invariance issues with MutableMapping and inferred dict types. Users calling Request.headers.update() may need to narrow typing in their code. (#7441)

2.34.1 (2026-05-13)

Bugfixes

• Widened json input type from dict and list to Mapping and Sequence. (#7436)
• Changed headers input type to MutableMapping and removed None from Request.headers typing to improve handling for users. (#7431)
• Response.reason moved from str | None to str to improve handling for users. (#7437)
• Fixed a bug where some bodies with custom __getattr__ implementations weren't being properly detected as Iterables. (#7433)

Commits

• 6e83187 v2.34.2
• 84d10f0 Move Request.headers back to Mapping (#7441)
• b7b549b v2.34.1
• e511bc7 Fix mutability issues with headers input types (#7431)
• 5691f59 Update JsonType containers to read-based collections (#7436)
• 2144213 Constrain Response.reason to str (#7437)
• 6404f34 Fix prepare_body stream detection for __getattr__-based file wrappers (#7...
• See full diff in compare view

Updates selenium from 4.43.0 to 4.44.0

Release notes

Sourced from selenium's releases.

Selenium 4.44.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

What's Changed

• fix(documentation): update artifact naming for generated docs by @​diemol in SeleniumHQ/selenium#17332
• fix(ruby): retrieve devtools version dynamically for package verification by @​diemol in SeleniumHQ/selenium#17335
• [dotnet] Don't truncate internal log messages at error/warn levels by @​nvborisenko in SeleniumHQ/selenium#17333
• [dotnet] Safe modifications of internal log handlers by @​nvborisenko in SeleniumHQ/selenium#17334
• [dotnet] Remove planned obsoleted members for 4.44 by @​nvborisenko in SeleniumHQ/selenium#17328
• [dotnet] [bidi] Statically declare commands by @​nvborisenko in SeleniumHQ/selenium#17330
• [dotnet] [bidi] Statically declared events by @​nvborisenko in SeleniumHQ/selenium#17331
• [dotnet] Add C# 14 extension to polyfill ArgumentNullException.ThrowIfNull by @​RenderMichael in SeleniumHQ/selenium#16697
• [dotnet] [bidi] Align SetDownloadBehavior command by @​nvborisenko in SeleniumHQ/selenium#17336
• [dotnet] [bidi] Align ContinueWithAuth command by @​nvborisenko in SeleniumHQ/selenium#17337
• [dotnet] [bidi] Align SetGeolocation polymorphic command by @​nvborisenko in SeleniumHQ/selenium#17338
• [dotnet] [test] In-process test webserver by @​nvborisenko in SeleniumHQ/selenium#17339
• [java] deprecate the 'native' methods inside the HttpClient interface by @​joerg1985 in SeleniumHQ/selenium#17340
• CDDL 2 Python generator by @​AutomatedTester in SeleniumHQ/selenium#16914
• Fix py:local_dev rake task by @​cgoldberg in SeleniumHQ/selenium#17342
• [grid] Accept legacy session-closed event payloads by @​VietND96 in SeleniumHQ/selenium#17343
• [java] specify nullability in package org.openqa.selenium.remote by @​asolntsev in SeleniumHQ/selenium#17325
• fix NPE when response status is null by @​asolntsev in SeleniumHQ/selenium#17348
• [java] fix NoSuchElementException for custom By locators by @​Chandan25sharma in SeleniumHQ/selenium#17287
• [py] Update docs with pytest example and minor formatting fixes by @​cgoldberg in SeleniumHQ/selenium#17351
• [dotnet] Fix stopping of network monitoring via DevTools by @​nvborisenko in SeleniumHQ/selenium#17352
• [dotnet] [test] Update tests to target .NET 10 by @​nvborisenko in SeleniumHQ/selenium#17353
• [build] Clean extra tools from GHA runner to free disk space by @​cgoldberg in SeleniumHQ/selenium#17360
• Initial Creation of the Selenium CLI Tool by @​AutomatedTester in SeleniumHQ/selenium#17327
• [java] fix some nullability warnings by @​asolntsev in SeleniumHQ/selenium#17362
• [py] Use generated Bidi files instead of hand curated ones by @​AutomatedTester in SeleniumHQ/selenium#17266
• [docs] Add AI-assisted contribution policy by @​titusfortner in SeleniumHQ/selenium#17043
• [Agents] Update agents to make sure do linting. by @​AutomatedTester in SeleniumHQ/selenium#17366
• [py] Bump dependencies by @​cgoldberg in SeleniumHQ/selenium#17368
• [git] update gitignore to exclude mempalace by @​AutomatedTester in SeleniumHQ/selenium#17369
• [java] remove field ChromiumDriver.capabilities by @​asolntsev in SeleniumHQ/selenium#17363
• [spec] Use http_file for the cddl files by @​AutomatedTester in SeleniumHQ/selenium#17372
• [dotnet] [bidi] Obsolete Type(string) method in Input module by @​nvborisenko in SeleniumHQ/selenium#17377
• Fix Network failures by @​AutomatedTester in SeleniumHQ/selenium#17381
• [java] [test] Unignore bidi network conditions tests for Firefox by @​nvborisenko in SeleniumHQ/selenium#17385
• [dotnet] [test] Unignore network conditions tests for Firefox by @​nvborisenko in SeleniumHQ/selenium#17386
• [dotnet] [test] Migrate to MTP by @​nvborisenko in SeleniumHQ/selenium#17384

... (truncated)

Commits

• da2039b [build] Prepare for release of selenium-4.44.0 (#17444)
• d56867b Fix prerelease (#17442)
• 331becd [dotnet][rb][java][js][py] Automated Browser Version Update (#17440)
• 65bb32e [build] do not auto-merge browser updates (#17432)
• fd1d36d [build] dynamically add and remove rulesets for release (#17439)
• c799aff [build] fix release workflow (#17437)
• 83ce01e [dotnet] [bidi] Add DisownData command in Network module (#17436)
• f342fee [dotnet] [bidi] Additional Event streaming (breaking change) (#17349)
• dfcc86e [JavaScript] Move 'isDisplayed' atom to be typescript (#17316)
• cc26ec8 [js][py] Convert getAttribute atom from Closure to TypeScript (#17370)
• Additional commits viewable in compare view

Updates playwright from 1.59.0 to 1.60.0

Release notes

Sourced from playwright's releases.

v1.60.0

🐍 Python improvements

• New FormData class for building multipart/form-data request bodies — pass to api_request_context.post(form=…) etc.
• expect.soft(...) soft assertions collect multiple failures in a test instead of stopping at the first one. Requires up-to-date pytest integration to work.
• All timeout parameters now accept datetime.timedelta — applies wherever a timeout is taken, e.g. page.goto(), locator.click(), expect(...).to_be_visible().
• Async context manager support across more APIs — async with now works for objects returned from screencast.show_actions(), screencast.show_overlays(), etc.
• page.expect_request(...) and page.expect_response(...) now accept async predicates.
• Typed overloads for expect_event / wait_for_event so the event payload type is inferred per event name.

🌐 HAR recording on Tracing

tracing.start_har() / tracing.stop_har() expose HAR recording as a first-class tracing API, with the same content, mode and url_filter options as record_har:

context.tracing.start_har("trace.har")
page = context.new_page()
page.goto("https://playwright.dev")
context.tracing.stop_har()

🪝 Drop API

New locator.drop() simulates an external drag-and-drop of files or clipboard-like data onto an element. Playwright dispatches dragenter, dragover, and drop with a synthetic DataTransfer in the page context — works cross-browser and is great for testing upload zones:

page.locator("#dropzone").drop(
    files={"name": "note.txt", "mime_type": "text/plain", "buffer": b"hello"},
)
page.locator("#dropzone").drop(
data={
"text/plain": "hello world",
"text/uri-list": "https://example.com",
},
)

🎯 Aria snapshots

• expect(page).to_match_aria_snapshot() now works on a Page, in addition to a Locator — equivalent to asserting against page.locator("body").
• New boxes option on locator.aria_snapshot() / page.aria_snapshot() appends each element's bounding box as [box=x,y,width,height], useful for AI consumption.

New APIs

Browser, Context and Page

• Event browser.on("context") — fired when a new context is created on the browser.
• BrowserContext now mirrors lifecycle events from its pages: browser_context.on("download"), browser_context.on("frameattached"), browser_context.on("framedetached"), browser_context.on("framenavigated"), browser_context.on("pageclose"), browser_context.on("pageload").

Locators and Assertions

... (truncated)

Commits

• 93f3201 chore: roll driver to 1.60.0 (#3079)
• 0ebdf2d feat(assertions): add expect.soft() for collecting multiple failures (#3065)
• 18810d8 feat: add FormData class for form and multipart requests (#3060)
• b846cee chore: roll to 1.60.0-beta-1778142790000 (#3069)
• 873c5c7 fix(setup): update auditwheel to 6.4.0 for InWheel tempdir fix (#3063)
• 9df9fac feat: accept datetime.timedelta for timeout parameters (#3059)
• 856ae37 devops: Update EsrpRelease (#3064)
• 161bd3d build(deps): bump flake8 from 7.2.0 to 7.3.0 (#2896)
• ac9bf29 build(deps): bump types-requests from 2.32.4.20250809 to 2.32.4.20260107 (#2975)
• deb2df8 build(deps): bump pytest-cov from 6.3.0 to 7.1.0 (#2976)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: automated. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.