Bump tox from 4.32.0 to 4.51.0

[dependabot]

Bumps tox from 4.32.0 to 4.51.0.

Release notes

Sourced from tox's releases.

v4.51.0

What's Changed

• 🔒 ci(workflows): add zizmor security auditing by @​gaborbernat in tox-dev/tox#3896
• Add base_python_file config option by @​rahuldevikar in tox-dev/tox#3899
• prevent machine ISA from overriding explicit env factors by @​rahuldevikar in tox-dev/tox#3904
• 🐛 fix(config): fix handling of env_list in nested contexts by @​Daverball in tox-dev/tox#3905
• fix: enable persist-credentials for release workflow by @​rahuldevikar in tox-dev/tox#3907

New Contributors

• @​Daverball made their first contribution in tox-dev/tox#3905

Full Changelog: tox-dev/tox@4.50.3...4.51.0

v4.50.3

What's Changed

• 🐛 fix(pkg): distinguish free-threaded Python in wheel build env by @​gaborbernat in tox-dev/tox#3891

Full Changelog: tox-dev/tox@4.50.2...4.50.3

v4.50.2

What's Changed

• fix(sdist): include docs/man/tox.1.rst by @​branchv in tox-dev/tox#3890

New Contributors

• @​branchv made their first contribution in tox-dev/tox#3890

Full Changelog: tox-dev/tox@4.50.1...4.50.2

v4.50.1

What's Changed

• 🐛 fix(env): suggest normalized env name for dotted Python versions by @​gaborbernat in tox-dev/tox#3888

Full Changelog: tox-dev/tox@4.50.0...4.50.1

v4.50.0

What's Changed

• document {env:TOX_PACKAGE} for referencing built packages in commands by @​rahuldevikar in tox-dev/tox#3873
• 🧪 test(docs): validate doc config examples to prevent regressions by @​gaborbernat in tox-dev/tox#3875

... (truncated)

Changelog

Sourced from tox's changelog.

Features - 4.51.0

• Add base_python_file configuration option to read the base Python version from a file (e.g. .python-version), similar to GitHub Actions' python-version-file - by :user:rahuldevikar (:issue:3894)

Bug fixes - 4.51.0

• Prevent implicit machine ISA (e.g. arm64, x86_64) from overriding explicit architecture factors in environment names, fixing cross-architecture conflicts in multiline factor conditionals - by :user:rahuldevikar. (:issue:3903)
• Nested environment list configuration values are now properly parsed, validated and expanded by the TOML parser. This allows you to use generative environment lists in tox-gh via the TOML format. Previously this was only possible with the INI format. - by :user:Daverball (:issue:3905)

Miscellaneous internal changes - 4.51.0

• Enable persist-credentials: true in the actions/checkout step of the prepare-release workflow so that git push operations succeed during automated releases - by :user:rahuldevikar. (:issue:3907)

---

v4.50.3 (2026-03-20)

---

Bug fixes - 4.50.3

• Use separate .pkg environments for free-threaded Python targets by including the t suffix in the wheel build environment name (e.g., .pkg-cpython314t), preventing wheel tag mismatches when building for py314t - by :user:gaborbernat. (:issue:3314)

---

v4.50.2 (2026-03-19)

---

Bug fixes - 4.50.2

• Fix the sdist to include the missing docs/man/tox.1.rst file for building the manpage (:issue:3889)

---

v4.50.1 (2026-03-19)

---

Bug fixes - 4.50.1

• Detect and suggest normalized environment names when users specify dotted Python versions (e.g., py3.10-lint) that match existing environments with compact notation (e.g., py310-lint), preventing silent fallback to base

... (truncated)

Commits

• 5f1ec1a release 4.51.0
• b5f9b13 fix: enable persist-credentials for release workflow (#3907)
• 8c9c199 🐛 fix(config): fix handling of env_list in nested contexts (#3905)
• 451aa9c prevent machine ISA from overriding explicit env factors (#3904)
• 106f036 Add base_python_file config option (#3899)
• 16df4d8 🔒 ci(workflows): add zizmor security auditing (#3896)
• 140f8ae [pre-commit.ci] pre-commit autoupdate (#3893)
• 7283912 release 4.50.3
• 9672736 🐛 fix(pkg): distinguish free-threaded Python in wheel build env (#3891)
• 1662c61 release 4.50.2
• Additional commits viewable in compare view

[dependabot]

Superseded by #305.