deps(python): bump the python-minor group across 1 directory with 7 updates

[dependabot]

Bumps the python-minor group with 7 updates in the / directory:

Package	From	To
fastapi	0.122.0	0.124.0
google-cloud-storage	3.6.0	3.7.0
pandas-stubs	2.3.2.250926	2.3.3.251201
pytest	9.0.1	9.0.2
ruff	0.14.7	0.14.8
pygal	3.0.5	3.1.0
selenium	4.38.0	4.39.0

Updates fastapi from 0.122.0 to 0.124.0

Release notes

Sourced from fastapi's releases.

0.124.0

Features

• 🚸 Improve tracebacks by adding endpoint metadata. PR #14306 by @​savannahostrowski.

Internal

• ✏️ Fix typo in scripts/mkdocs_hooks.py. PR #14457 by @​yujiteshima.

0.123.10

Fixes

• 🐛 Fix using class (not instance) dependency that has __call__ method. PR #14458 by @​YuriiMotov.
• 🐛 Fix separate_input_output_schemas=False with computed_field. PR #14453 by @​YuriiMotov.

0.123.9

Fixes

• 🐛 Fix OAuth2 scopes in OpenAPI in extra corner cases, parent dependency with scopes, sub-dependency security scheme without scopes. PR #14459 by @​tiangolo.

0.123.8

Fixes

• 🐛 Fix OpenAPI security scheme OAuth2 scopes declaration, deduplicate security schemes with different scopes. PR #14455 by @​tiangolo.

0.123.7

Fixes

• 🐛 Fix evaluating stringified annotations in Python 3.10. PR #11355 by @​chaen.

0.123.6

Fixes

• 🐛 Fix support for functools wraps and partial combined, for async and regular functions and classes in path operations and dependencies. PR #14448 by @​tiangolo.

0.123.5

Features

• ✨ Allow using dependables with functools.partial(). PR #9753 by @​lieryan.
• ✨ Add support for wrapped functions (e.g. @functools.wraps()) used with forward references. PR #5077 by @​lucaswiman.
• ✨ Handle wrapped dependencies. PR #9555 by @​phy1729.

Fixes

• 🐛 Fix optional sequence handling with new union syntax from Python 3.10. PR #14430 by @​Viicos.

Refactors

• 🔥 Remove dangling extra condiitonal no longer needed. PR #14435 by @​tiangolo.
• ♻️ Refactor internals, update is_coroutine check to reuse internal supported variants (unwrap, check class). PR #14434 by @​tiangolo.

... (truncated)

Commits

• b5ca132 🔖 Release version 0.124.0
• a2cef70 📝 Update release notes
• 5b62456 ✏️ Fix typo in scripts/mkdocs_hooks.py (#14457)
• dbd34f1 📝 Update release notes
• e1117f7 🚸 Improve tracebacks by adding endpoint metadata (#14306)
• 08b09e5 🔖 Release version 0.123.10
• e7d7038 📝 Update release notes
• da0ffab 🐛 Fix using class (not instance) dependency that has __call__ method (#14458)
• 5161694 📝 Update release notes
• 812a192 🐛 Fix separate_input_output_schemas=False with computed_field (#14453)
• Additional commits viewable in compare view

Updates google-cloud-storage from 3.6.0 to 3.7.0

Release notes

Sourced from google-cloud-storage's releases.

v3.7.0

3.7.0 (2025-12-09)

Features

• Auto enable mTLS when supported certificates are detected (#1637) (4e91c54)
• Send entire object checksum in the final api call of resumable upload (#1654) (ddce7e5)
• Support urllib3 >= 2.6.0 (#1658) (57405e9)

Bug Fixes

• bucket: Move blob fails when the new blob name contains characters that need to be url encoded (#1605) (ec470a2)

Changelog

Sourced from google-cloud-storage's changelog.

3.7.0 (2025-12-09)

Features

• Auto enable mTLS when supported certificates are detected (#1637) (4e91c54)
• Send entire object checksum in the final api call of resumable upload (#1654) (ddce7e5)
• Support urllib3 >= 2.6.0 (#1658) (57405e9)

Bug Fixes

• Fix for move_blob failure when the new blob name contains characters that need to be url encoded (#1605) (ec470a2)

Commits

• 89a947a chore(main): release 3.7.0 (#1621)
• 57405e9 feat: Support urllib3 >= 2.6.0 (#1658)
• ddce7e5 feat: send entire object checksum in the final api call of resumable upload (...
• 4e91c54 feat: Auto enable mTLS when supported certificates are detected (#1637)
• 4c6d549 chore: setup system tests for zonal buckets in cloud build (#1639)
• 6ed12b9 chore: fix failing system test due to version upgrade of urllib3 (#1651)
• 6ab8d92 chore: Add gRPC packages under extra-dependencies (#1640)
• a1c2507 chore: fix conformance test failure due to VM's API version mismatch. (#1635)
• 9e6fefd fix: Add simple flush for optimized writes (#1633)
• fcda233 chore: Add Sys test for move blob where name needs url encoding (#1624)
• Additional commits viewable in compare view

Updates pandas-stubs from 2.3.2.250926 to 2.3.3.251201

Commits

• 87f07af Version 2.3.3.251201
• 18626a9 type isin, remove redundant Iterable | Series (#1507)
• cf7478f TST: #1451 propagate upstream fixes (#1516)
• 1843952 Use np array aliases in tests (#1515)
• 085653b GH1432 Partial resolution for some TODOs (#1492)
• c616fb5 MAINT: #1503 deduplicate tests/__init__.py (#1508)
• 90b56d7 use np_ndarray_intp, np_ndarray_int64, np_ndarray_float aliases more (#1513)
• 2448b5f GH1484 Upgrade ty (#1509)
• 852ef64 FIX: #1508 numpy 1darrays in tests (#1512)
• b82986c type Index methods: putmask, asof, asof_locs, sort_values, get_indexer_non_un...
• Additional commits viewable in compare view

Updates pytest from 9.0.1 to 9.0.2

Release notes

Sourced from pytest's releases.

9.0.2

pytest 9.0.2 (2025-12-06)

Bug fixes

• #13896: The terminal progress feature added in pytest 9.0.0 has been disabled by default, except on Windows, due to compatibility issues with some terminal emulators.

  You may enable it again by passing -p terminalprogress. We may enable it by default again once compatibility improves in the future.

  Additionally, when the environment variable TERM is dumb, the escape codes are no longer emitted, even if the plugin is enabled.

• #13904: Fixed the TOML type of the tmp_path_retention_count settings in the API reference from number to string.

• #13946: The private config.inicfg attribute was changed in a breaking manner in pytest 9.0.0. Due to its usage in the ecosystem, it is now restored to working order using a compatibility shim. It will be deprecated in pytest 9.1 and removed in pytest 10.

• #13965: Fixed quadratic-time behavior when handling unittest subtests in Python 3.10.

Improved documentation

• #4492: The API Reference now contains cross-reference-able documentation of pytest's command-line flags <command-line-flags>.

Commits

• 3d10b51 Prepare release version 9.0.2
• 188750b Merge pull request #14030 from pytest-dev/patchback/backports/9.0.x/1e4b01d1f...
• b7d7bef Merge pull request #14014 from bluetech/compat-note
• bd08e85 Merge pull request #14013 from pytest-dev/patchback/backports/9.0.x/922b60377...
• bc78386 Add CLI options reference documentation (#13930)
• 5a4e398 Fix docs typo (#14005) (#14008)
• d7ae6df Merge pull request #14006 from pytest-dev/maintenance/update-plugin-list-tmpl...
• 556f6a2 pre-commit: fix rst-lint after new release (#13999) (#14001)
• c60fbe6 Fix quadratic-time behavior when handling unittest subtests in Python 3.10 ...
• 73d9b01 Merge pull request #13995 from nicoddemus/patchback/backports/9.0.x/1b5200c0f...
• Additional commits viewable in compare view

Updates ruff from 0.14.7 to 0.14.8

Release notes

Sourced from ruff's releases.

0.14.8

Release Notes

Released on 2025-12-04.

Preview features

• [flake8-bugbear] Catch yield expressions within other statements (B901) (#21200)
• [flake8-use-pathlib] Mark fixes unsafe for return type changes (PTH104, PTH105, PTH109, PTH115) (#21440)

Bug fixes

• Fix syntax error false positives for await outside functions (#21763)
• [flake8-simplify] Fix truthiness assumption for non-iterable arguments in tuple/list/set calls (SIM222, SIM223) (#21479)

Documentation

• Suggest using --output-file option in GitLab integration (#21706)

Other changes

• [syntax-error] Default type parameter followed by non-default type parameter (#21657)

Contributors

• @​kieran-ryan
• @​11happy
• @​danparizher
• @​ntBre

Install ruff 0.14.8

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.14.8/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/ruff/releases/download/0.14.8/ruff-installer.ps1 | iex"

Download ruff 0.14.8

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.8

Released on 2025-12-04.

Preview features

• [flake8-bugbear] Catch yield expressions within other statements (B901) (#21200)
• [flake8-use-pathlib] Mark fixes unsafe for return type changes (PTH104, PTH105, PTH109, PTH115) (#21440)

Bug fixes

• Fix syntax error false positives for await outside functions (#21763)
• [flake8-simplify] Fix truthiness assumption for non-iterable arguments in tuple/list/set calls (SIM222, SIM223) (#21479)

Documentation

• Suggest using --output-file option in GitLab integration (#21706)

Other changes

• [syntax-error] Default type parameter followed by non-default type parameter (#21657)

Contributors

• @​kieran-ryan
• @​11happy
• @​danparizher
• @​ntBre

Commits

• 9d4f1c6 Bump 0.14.8 (#21791)
• 326025d [ty] Always register rename provider if client doesn't support dynamic regist...
• 3aefe85 [ty] Ensure rename CursorTest calls can_rename before renaming (#21790)
• b8ecc83 Fix clippy errors on main (#21788)
• 6491932 [ty] Fix crash when hovering an unknown string annotation (#21782)
• a9f2bb4 [ty] Don't send publish diagnostics for clients supporting pull diagnostics (...
• e2b72fb [ty] cleanup test path (#21781)
• 14fce0d [ty] Improve the display of various special-form types (#21775)
• 8ebecb2 [ty] Add subdiagnostic hint if the user wrote X = Any rather than X: Any ...
• 45ac30a [ty] Teach ty the meaning of desperation (try ancestor pyproject.tomls as...
• Additional commits viewable in compare view

Updates pygal from 3.0.5 to 3.1.0

Release notes

Sourced from pygal's releases.

3.1.0

Added

• Add reverse_direction Gauge config parameter in Kozea/pygal#576

Fixed

• Fix lint
• Add read the docs yaml config
• Various clean up and update

Full Changelog: Kozea/pygal@3.0.5...3.1.0

Changelog

Sourced from pygal's changelog.

3.1.0

Fixed

• Lint
• Readthedocs config
• README and docs information

Added

• reverse_direction option for gauge

Commits

• df20193 Bump 3.1.0
• 23d0463 Merge branch 'gauge-reverse-direction'
• 8c4ec19 Add reverse_direction Gauge config parameter
• 721a587 Merge pull request #575 from Kozea/cleanup-20251128
• d386d6e Update build status badges and links
• 73bf14e Remove duplicate README file
• b93c4c4 Update copyright year
• d1efc8c Update changelog
• 8c9d2a0 Update author info
• 6ae7129 Fix minimal python version in docs
• Additional commits viewable in compare view

Updates selenium from 4.38.0 to 4.39.0

Release notes

Sourced from selenium's releases.

Selenium 4.39.0

Detailed Changelogs by Component

Java     |     Python     |     DotNet     |     Ruby     |     JavaScript

What's Changed

• [atoms] fix text node children are always considered as displayed #16284 by @​joerg1985 in SeleniumHQ/selenium#16329
• [grid] Enhance UI with theme integration and improved status indicators by @​VietND96 in SeleniumHQ/selenium#16512
• [py][bidi]: add emulation command - set_locale_override by @​navin772 in SeleniumHQ/selenium#16504
• [py][bidi]: add emulation command set_scripting_enabled by @​navin772 in SeleniumHQ/selenium#16513
• [py] Update docstrings to google pydoc format by @​iampopovich in SeleniumHQ/selenium#16511
• [java][BiDi] implement browsingContext.downloadEnd event by @​Delta456 in SeleniumHQ/selenium#16347
• Fix typo and minor formatting changes in README.md by @​cgoldberg in SeleniumHQ/selenium#16523
• [py] Update docstrings (remove reST leftovers and resolve D200) by @​iampopovich in SeleniumHQ/selenium#16525
• [py] Fix docstring formatting and apply ruff linting rules by @​cgoldberg in SeleniumHQ/selenium#16527
• [py] Fix Ruff D417 warnings in docstrings by @​iampopovich in SeleniumHQ/selenium#16535
• [py] Fix ruff D415 warnings in docstrings by @​cgoldberg in SeleniumHQ/selenium#16536
• [py][bidi]: add set_screen_orientation_override command in Emulation by @​navin772 in SeleniumHQ/selenium#16522
• [py] Fix D205 ruff warnings for docstrings and add type hints by @​iampopovich in SeleniumHQ/selenium#16537
• [py][bidi]: add set_download_behavior command by @​navin772 in SeleniumHQ/selenium#16556
• [py] Bump pytest and dev dependencies by @​cgoldberg in SeleniumHQ/selenium#16572
• [bazel] Move rules_rust to bzlmod by @​shs96c in SeleniumHQ/selenium#16566
• [ci] Make a PR for updating mirror file instead of pushing directly to trunk by @​bonigarcia in SeleniumHQ/selenium#16579
• [ci] Update mirror info (2025-11-11T15:26:46Z) by @​github-actions[bot] in SeleniumHQ/selenium#16578
• [ci] Revert latest changes related to the mirror workflow by @​bonigarcia in SeleniumHQ/selenium#16580
• [java]: refactor request interception tests and handle CORS by @​navin772 in SeleniumHQ/selenium#16585
• [py][bidi]: enable download event tests for firefox by @​navin772 in SeleniumHQ/selenium#16587
• [py] Fix more type annotations by @​iampopovich in SeleniumHQ/selenium#16551
• [java][BiDi] implement emulation.setTimezoneOverride by @​Delta456 in SeleniumHQ/selenium#16530
• [grid] Minimum Docker API 1.44 for Docker Engine v29+ in Dynamic Grid by @​VietND96 in SeleniumHQ/selenium#16591
• Show file modification time by @​asolntsev in SeleniumHQ/selenium#16589
• [py][bidi]: add emulation command set_user_agent_override by @​navin772 in SeleniumHQ/selenium#16595
• [grid] Improve Docker client for Dynamic Grid by @​VietND96 in SeleniumHQ/selenium#16596
• [py]: reuse driver in case of bidi tests by @​navin772 in SeleniumHQ/selenium#16597
• [grid] Improve browser container labels and naming in Dynamic Grid by @​VietND96 in SeleniumHQ/selenium#16599
• [build] Upgrade rules_dotnet to 0.20.5 by @​nvborisenko in SeleniumHQ/selenium#16592
• [dotnet] [bidi] Simplify namespace for communications by @​nvborisenko in SeleniumHQ/selenium#16602
• [py] Improve type hints with union syntax and native types by @​cgoldberg in SeleniumHQ/selenium#16590
• [py] Use double quotes in generate.py by @​Delta456 in SeleniumHQ/selenium#16607
• [ci] Use pagination in mirror workflow to get all Selenium releases by @​bonigarcia in SeleniumHQ/selenium#16605
• [dotnet] Generate atoms statically by @​nvborisenko in SeleniumHQ/selenium#16608
• [nodejs] Update dev dependencies to fix vulnerabilities by @​cgoldberg in SeleniumHQ/selenium#16610
• [java][BiDi] emulation: allow passing null to GeolocationOverride by @​Delta456 in SeleniumHQ/selenium#16594

... (truncated)

Commits

• 126f156 [build] Prepare for release of Selenium 4.39.0 (#16672)
• 080c81f fix flaky Ruby test devtools_spec.rb
• 87fef04 [dotnet] [bidi] Remove browsing scoped events at core level (#16694)
• d9d1d79 [dotnet] [bidi] Always provide new json options for modules (#16691)
• 54f45d3 [dotnet] [bidi] BrowsingContext type as record with equality (#16692)
• fab7984 [py] Bump urllib3 in packaging and dev dependencies (#16690)
• fb859ad [dotnet] [bidi] Stateful converters with hydration (#16670)
• cfd57e3 Revert "[java] use --enable-chrome-logs to redirect browser I/O streams"
• efe5a4f [java] Add JSpecify annotations to ChromiumDriver (Issue #14291) (#16628)
• 9667310 [java] avoid ClassCastException for unexpected driver responses #16389
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions