chore(deps): update all dependencies

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update	Pending
ansible-lint (changelog)	26.3.0 → 26.4.0			dependency-groups	minor
cspell-cli	9.7.0 → 9.8.0			devDependencies	minor	10.0.0
j178/prek-action	v1 → v2			action	major
npm-check-updates	^19.3.2 → ^20.0.0			devDependencies	major
ruff (source, changelog)	0.15.8 → 0.15.9			dependency-groups	patch
tombi	0.9.13 → 0.9.15			dependency-groups	patch	0.9.16
uv (source, changelog)	0.11.2 → 0.11.3			project.dependencies	patch	0.11.4

---

Release Notes

ansible/ansible-lint (ansible-lint)

v26.4.0

Compare Source

Fixes

• fix: remove deprecated apt_key module from examples and builtins (#​5000) @​cidrblock
• fix(security): update dependencies [SECURITY] (#​5010) @​renovate[bot]
• fix: avoid permission error when linting /tmp files (#​5009) @​ssbarnea
• fix: reapply false positive patch for no-changed-when rule (#​4989) @​Red-GV
• docs: fix inaccuracies found during documentation audit (#​4999) @​cidrblock
• fix: support collection format in mock_roles (#​4980) @​emmanuel-ferdman
• fix(security): update dependencies [SECURITY] (#​4993) @​renovate[bot]

Maintenance

• chore: update hooks (#​5008) @​ssbarnea
• chore: implement workaround for coverage merging failure (#​5006) @​ssbarnea
• Add support for upcoming Ubuntu 26.04 (#​4995) @​Andiroid
• chore(deps): update all dependencies pep621 (#​4994) @​renovate[bot]
• chore(deps): bump black from 26.1.0 to 26.3.1 in /.config (#​4991) @​dependabot[bot]

streetsidesoftware/cspell-cli (cspell-cli)

v9.8.0

Compare Source

Features

• Update CSpell version (9.8.0) (#​788) (7c30268)

j178/prek-action (j178/prek-action)

v2

Compare Source

raineorshine/npm-check-updates (npm-check-updates)

v20.0.0

Compare Source

Auto Cooldown

The cooldown option is now automatically applied from the respective package manager's config:

• npm - min-release-age (#​1632)
• yarn - npmMinimalAgeGate (excluding npmPreapprovedPackages) (#​1643)
• pnpm - minimumReleaseAge (excluding minimumReleaseAgeExclude) (#​1639)

Why is this a breaking change?

• If you use any of the above configs, npm-check-updates will automatically exclude releases that do not exceed the specified minimum age as described in https://github.com/raineorshine/npm-check-updates#cooldown.
• Otherwise, you don't need to do anything.

Other changes

• Bump strip-ansi from 7.1.2 to 7.2.0 by @​dependabot[bot] in #​1620
• Bump lodash and @​types/lodash by @​dependabot[bot] in #​1615
• Bump @​typescript-eslint/eslint-plugin from 8.44.1 to 8.57.2 by @​dependabot[bot] in #​1619
• Bump hosted-git-info from 9.0.0 to 9.0.2 by @​dependabot[bot] in #​1622
• Bump glob and markdownlint-cli by @​dependabot[bot] in #​1625
• update dependencies; fix vulnerabilities by @​onemen in #​1630
• Potential fix for code scanning alert no. 13: Incomplete string escaping or encoding by @​raineorshine in #​1640

New Contributors

• @​onemen made their first contribution in #​1630
• @​Copilot made their first contribution in #​1632

Full Changelog: raineorshine/npm-check-updates@v19.6.6...v20.0.0

astral-sh/ruff (ruff)

v0.15.9

Compare Source

Released on 2026-04-02.

Preview features

• [pyflakes] Flag annotated variable redeclarations as F811 in preview mode (#​24244)
• [ruff] Allow dunder-named assignments in non-strict mode for RUF067 (#​24089)

Bug fixes

• [flake8-errmsg] Avoid shadowing existing msg in fix for EM101 (#​24363)
• [flake8-simplify] Ignore pre-initialization references in SIM113 (#​24235)
• [pycodestyle] Fix W391 fixes for consecutive empty notebook cells (#​24236)
• [pyupgrade] Fix UP008 nested class matching (#​24273)
• [pyupgrade] Ignore strings with string-only escapes (UP012) (#​16058)
• [ruff] RUF072: skip formfeeds on dedent (#​24308)
• [ruff] Avoid re-using symbol in RUF024 fix (#​24316)
• [ruff] Parenthesize expression in RUF050 fix (#​24234)
• Disallow starred expressions as values of starred expressions (#​24280)

Rule changes

• [flake8-simplify] Suppress SIM105 for except* before Python 3.12 (#​23869)
• [pyflakes] Extend F507 to flag %-format strings with zero placeholders (#​24215)
• [pyupgrade] UP018 should detect more unnecessarily wrapped literals (UP018) (#​24093)
• [pyupgrade] Fix UP008 callable scope handling to support lambdas (#​24274)
• [ruff] RUF010: Mark fix as unsafe when it deletes a comment (#​24270)

Formatter

• Add nested-string-quote-style formatting option (#​24312)

Documentation

• [flake8-bugbear] Clarify RUF071 fix safety for non-path string comparisons (#​24149)
• [flake8-type-checking] Clarify import cycle wording for TC001/TC002/TC003 (#​24322)

Other changes

• Avoid rendering fix lines with trailing whitespace after | (#​24343)

Contributors

• @​charliermarsh
• @​MichaReiser
• @​tranhoangtu-it
• @​dylwil3
• @​zsol
• @​renovate
• @​bitloi
• @​danparizher
• @​chinar-amrutkar
• @​second-ed
• @​getehen
• @​Redovo1
• @​matthewlloyd
• @​zanieb
• @​InSyncWithFoo
• @​RenzoMXD

tombi-toml/tombi (tombi)

v0.9.15

Compare Source

What's Changed

🛠️ Other Changes

• [codex] clarify config-dir reference in configuration docs by @​ya7010 in #​1677
• [codex] Clarify built-in extension support by @​ya7010 in #​1678
• docs: update reference links for configuration search by @​ya7010 in #​1679
• docs: fix link formatting in configuration search section by @​ya7010 in #​1681
• Move environment variables doc page by @​ya7010 in #​1682
• Fix docs heading slug links by @​ya7010 in #​1683
• Add TOMBI_CACHE_HOME cache override by @​ya7010 in #​1684

Full Changelog: tombi-toml/tombi@v0.9.14...v0.9.15

v0.9.14

Compare Source

What's Changed

🚀 New Features

• Support .config/tombi.toml project config by @​ya7010 in #​1676

🛠️ Other Changes

• pyproject: add dependency group navigation by @​ya7010 in #​1671
• Add Cargo feature navigation by @​ya7010 in #​1672
• Add Cargo feature usage navigation by @​ya7010 in #​1673
• Fix Cargo lockfile version resolution by @​ya7010 in #​1675

Full Changelog: tombi-toml/tombi@v0.9.13...v0.9.14

astral-sh/uv (uv)

v0.11.3

Compare Source

Released on 2026-04-01.

Enhancements

• Add progress bar for hashing phase in uv publish (#​18752)
• Add support for ROCm 7.2 (#​18730)
• Emit abi3t tags for every abi3 version (#​18777)
• Expand uv workspace metadata with dependency information from the lock (#​18356)
• Implement support for PEP 803 (#​18767)
• Pretty-print platform in built wheel errors (#​18738)
• Publish installers to /installers/uv/latest on the mirror (#​18725)
• Show free-threaded Python in built-wheel errors (#​18740)

Preview features

• Add --ignore and --ignore-until-fixed to uv audit (#​18737)

Bug fixes

• Bump simple API cache (#​18797)
• Don't drop blake2b hashes (#​18794)
• Handle broken range request implementations (#​18780)
• Remove powerpc64-unknown-linux-gnu from release build targets (#​18800)
• Respect dependency metadata overrides in uv pip check (#​18742)
• Support debug CPython ABI tags in environment compatibility (#​18739)

Documentation

• Document false opt-out for exclude-newer-package (#​18768, #​18803)

---

Configuration

📅 Schedule: Branch creation - "before 4am on monday" in timezone UTC, Automerge - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) in timezone UTC.

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[renovate]

⚠️ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: pyproject.toml

Artifact update for uv resolved to version 0.11.4, which is a pending version that has not yet passed the Minimum Release Age threshold.
Renovate was attempting to update to 0.11.3
This is (likely) not a bug in Renovate, but due to the way your project pins dependencies, _and_ how Renovate calls your package manager to update them.
Until Renovate supports specifying an exact update to your package manager (https://github.com/renovatebot/renovate/issues/41624), it is recommended to directly pin your dependencies (with `rangeStrategy=pin` for apps, or `rangeStrategy=widen` for libraries)
See also: https://docs.renovatebot.com/dependency-pinning/

File name: pyproject.toml

Artifact update for tombi resolved to version 0.9.16, which is a pending version that has not yet passed the Minimum Release Age threshold.
Renovate was attempting to update to 0.9.15
This is (likely) not a bug in Renovate, but due to the way your project pins dependencies, _and_ how Renovate calls your package manager to update them.
Until Renovate supports specifying an exact update to your package manager (https://github.com/renovatebot/renovate/issues/41624), it is recommended to directly pin your dependencies (with `rangeStrategy=pin` for apps, or `rangeStrategy=widen` for libraries)
See also: https://docs.renovatebot.com/dependency-pinning/

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud