Lock file maintenance Python dependencies (16/edge)

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Confidence
		lockFileMaintenance	All locks refreshed
boto3	dependencies	patch	^1.42.35 → ^1.42.40
charmlibs-interfaces-tls-certificates	dependencies	minor	^1.4.0 → ^1.6.0
jubilant	integration	minor	^1.6.2 → ^1.7.0
ops (changelog)	charm-libs	patch	3.5.0 → 3.5.1
ops (changelog)	dependencies	patch	^3.5.0 → ^3.5.1
psutil	dependencies	patch	^7.2.1 → ^7.2.2

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Release Notes

boto/boto3 (boto3)

v1.42.40

Compare Source

=======

• api-change:bedrock-agentcore-control: [botocore] Adds tagging support for AgentCore Evaluations (evaluator and online evaluation config)
• api-change:cloudfront: [botocore] Add OriginMTLS support to CloudFront Distribution APIs
• api-change:mpa: [botocore] Updates to multi-party approval (MPA) service to add support for multi-factor authentication (MFA) for voting operations.

v1.42.39

Compare Source

=======

• api-change:connect: [botocore] This release adds Estimated Wait Time support to the GetContactMetrics API for Amazon Connect.
• api-change:quicksight: [botocore] Improve SessionTag usage guidelines in the GenerateEmbedURLForAnonymousUser API documentation. Update the GetIdentityContext document with the region support context.

v1.42.38

Compare Source

=======

• api-change:ec2: [botocore] G7e instances feature up to 8 NVIDIA RTX PRO 6000 Blackwell Server Edition GPUs with 768 GB of memory and 5th generation Intel Xeon Scalable processors. Supporting up to 192 vCPUs, 1600 Gbps networking bandwidth with EFA, up to 2 TiB of system memory, and up to 15.2 TB of local NVMe SSD storage.
• api-change:gamelift: [botocore] Amazon GameLift Servers now supports automatic scaling to and from zero instances based on game session activity. Fleets scale down to zero following a defined period of no game session activity and scale up from zero when game sessions are requested, providing an option for cost optimization.

v1.42.37

Compare Source

=======

• api-change:cognito-idp: [botocore] This release adds support for a new lambda trigger to transform federated user attributes during the authentication with external identity providers on Cognito Managed Login.
• api-change:connect: [botocore] Adds support for filtering search results based on tags assigned to contacts.
• api-change:ec2: [botocore] SearchTransitGatewayRoutes API response now includes a NextToken field, enabling pagination when retrieving large sets of transit gateway routes. Pass the returned NextToken value in subsequent requests to retrieve the next page of results.
• api-change:lambda: [botocore] We are launching ESM Metrics and logging for Kafka ESM to allow customers to monitor Kafka event processing using CloudWatch Metrics and Logs.
• api-change:mediaconnect: [botocore] This release adds support for NDI flow sources in AWS Elemental MediaConnect. You can now send content to your MediaConnect transport streams directly from your NDI environment using the new NDI source type. Also adds support for LARGE 4X flow size, which can be used when creating CDI JPEG-XS flows.
• api-change:mediaconvert: [botocore] This release adds a follow source mode for audio output channel count, an AES audio frame wrapping option for MXF outputs, and an option to signal DolbyVision compatibility using the SUPPLEMENTAL-CODECS tag in HLS manifests.
• api-change:s3: [botocore] Adds support for the UpdateObjectEncryption API to change the server-side encryption type of objects in general purpose buckets.
• api-change:s3control: [botocore] Adds support for the UpdateObjectEncryption API to change the server-side encryption type of objects in general purpose buckets.

v1.42.36

Compare Source

=======

• api-change:connect: [botocore] Added support for task attachments. The StartTaskContact API now accepts file attachments, enabling customers to include files (.csv, .doc, .docx, .heic, .jfif, .jpeg, .jpg, .mov, .mp4, .pdf, .png, .ppt, .pptx, .rtf, .txt, etc.) when creating Task contacts. Supports up to 5 attachments per task.
• api-change:deadline: [botocore] AWS Deadline Cloud now supports editing job names and descriptions after submission.
• api-change:ec2: [botocore] Releasing new EC2 instances. C8gb and M8gb with highest EBS performance, M8gn with 600 Gbps network bandwidth, X8aedz and M8azn with 5GHz AMD processors, X8i with Intel Xeon 6 processors and up to 6TB memory, and Mac-m4max with Apple M4 Max chip for 25 percent faster builds.
• api-change:medialive: [botocore] AWS Elemental MediaLive released two new features that allows customers 1) to set Output Timecode for AV1 encoder, 2) to set a Custom Epoch for CMAF Ingest and MediaPackage V2 output groups when using Pipeline Locking or Disabled Locking modes.
• api-change:sagemaker: [botocore] Idle resource sharing enables teams to borrow unused compute resources in your SageMaker HyperPod cluster. This capability maximizes resource utilization by allowing teams to borrow idle compute capacity beyond their allocated compute quotas.

canonical/jubilant (jubilant)

v1.7.0: : model_constraints, other destroy_model args

Compare Source

This release adds a model_constraints method for the juju model-constraints command, and adds the remaining arguments for the destroy_model method.

Since the previous release, we've also updated Jubilant's CI to test against Juju 4.0 -- it passes! PR #​245 fixes a bug with how invalid actions are handled on Juju 4.

What's Changed

• ci: test against Juju 4.0.0 in #​232
• feat: treat running an invalid action in Juju 4 the same way as Juju 3 in #​245
• feat: add model_constraints method to get/set machine constraints in #​236
• feat: provide additional arguments for model destruction in #​243

New Contributors

• @​Soundarya03 made their first contribution in #​236
• @​wood-push-melon made their first contribution in #​243

Full Changelog: canonical/jubilant@v1.6.2...v1.7.0

canonical/operator (ops)

v3.5.1

Compare Source

Fixes

• Use parse_rfc3339 for datetime parsing to support Juju 4 (#​2264)
• Correct the value of additional_properties in the action meta in Juju 4 (#​2250)
• Prevent KeyError on auth-type when creating CloudCredential object (#​2268)
• _checks_action should return empty list when there are no changes (#​2270)

Documentation

• Provide examples in unit testing how-to, and other small improvements (#​2251)
• Update the action how-to to explain the additionalProperties default flip (#​2249)
• For state-transition tests, clarify about immutability and reusing state (#​2153)
• Fix and clarify holistic example of handling storage (#​2098)
• Remove comments from K8s tutorial and clarify about persisting data (#​2253)
• Clarify handling of postgres relation data in K8s tutorial (#​2256)
• Improve unit tests of httpbin demo charm (#​2254)
• Add version information for tools in the charming ecosystem (#​2231)
• Avoid emojis that render differently across platforms (#​2273)
• Secrets over CMR comment added (#​2271)
• Fix charm name in httpbin deploy command (#​2276)
• Updated security@ubuntu.com PGP key (#​2286)

Tests

• Remove unnecessary test module (#​2247)

CI

• Replace git reference injection with wheel artifacts in charm test workflows (#​2252)
• Explicitly provide the charmcraft repo location in CI (#​2277)
• Remove outdated custom signature generation (#​2280)

giampaolo/psutil (psutil)

v7.2.2

Compare Source

=====

2026-01-28

Enhancements

• 2705_: [Linux]: Process.wait()_ now uses pidfd_open() + poll() for
  waiting, resulting in no busy loop and faster response times. Requires
  Linux >= 5.3 and Python >= 3.9. Falls back to traditional polling if
  unavailable.
• 2705_: [macOS], [BSD]: Process.wait()_ now uses kqueue() for waiting,
  resulting in no busy loop and faster response times.

Bug fixes

• 2701_, [macOS]: fix compilation error on macOS < 10.7. (patch by Sergey
  Fedorov)
• 2707_, [macOS]: fix potential memory leaks in error paths of
  Process.memory_full_info() and Process.threads().
• 2708_, [macOS]: Process.cmdline()_ and Process.environ()_ may fail with ``OSError: [Errno 0] Undefined error`` (from ``sysctl(KERN_PROCARGS2)``). They now raise AccessDenied`_ instead.

---

Configuration

📅 Schedule: Branch creation - Between 01:00 AM and 05:59 AM, only on Tuesday ( * 1-5 * * 2 ) in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 70.53%. Comparing base (44c4c40) to head (8cca452).
⚠️ Report is 6 commits behind head on 16/edge.

Additional details and impacted files

@@           Coverage Diff            @@
##           16/edge    #1417   +/-   ##
========================================
  Coverage    70.53%   70.53%           
========================================
  Files           16       16           
  Lines         4297     4297           
  Branches       691      691           
========================================
  Hits          3031     3031           
  Misses        1055     1055           
  Partials       211      211           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.