chore(deps-dev): bump the dev group in /api with 7 updates

[dependabot]

Bumps the dev group in /api with 7 updates:

Package	From	To
faker	40.11.0	40.11.1
basedpyright	1.38.3	1.38.4
ruff	0.15.7	0.15.8
types-oauthlib	3.3.0.20250822	3.3.0.20260324
types-regex	2026.2.28.20260301	2026.3.32.20260329
boto3-stubs	1.42.73	1.42.78
hypothesis	6.151.9	6.151.10

Updates faker from 40.11.0 to 40.11.1

Release notes

Sourced from faker's releases.

Release v40.11.1

See CHANGELOG.md.

Changelog

Sourced from faker's changelog.

v40.11.1 - 2026-03-23

• Fix: rebind deepcopy proxies to copied Faker instances. Thanks @​SunS1eep1ng.

Commits

• db42f64 Bump version: 40.11.0 → 40.11.1
• a5b9f98 📝 Update CHANGELOG.md
• 01cb8d0 fix: rebind deepcopy proxies to copied Faker instances (#2340)
• See full diff in compare view

Updates basedpyright from 1.38.3 to 1.38.4

Commits

• 2455efb 1.38.4
• 78db0e0 i hate node i hate webpack i hate all this shit
• 1cc918a use @​core-js/pure to polyfill newer ecmascript features now that it has prope...
• b31ffd9 remove unused ignoreErrors function that was added to the Promise prototy...
• 389d7e5 update typescript work properly vscode settings
• e8b2663 format markdown files with ruff since it can now format markdown codeblocks
• 17587e3 bump python dependencies
• 98e9774 fix "Received redundant open text document command" error when viewing previo...
• c777e52 fix typing_extensions auto-import
• See full diff in compare view

Updates ruff from 0.15.7 to 0.15.8

Release notes

Sourced from ruff's releases.

0.15.8

Release Notes

Released on 2026-03-26.

Preview features

• [ruff] New rule unnecessary-if (RUF050) (#24114)
• [ruff] New rule useless-finally (RUF072) (#24165)
• [ruff] New rule f-string-percent-format (RUF073): warn when using % operator on an f-string (#24162)
• [pyflakes] Recognize frozendict as a builtin for Python 3.15+ (#24100)

Bug fixes

• [flake8-async] Use fully-qualified anyio.lowlevel import in autofix (ASYNC115) (#24166)
• [flake8-bandit] Check tuple arguments for partial paths in S607 (#24080)
• [pyflakes] Skip undefined-name (F821) for conditionally deleted variables (#24088)
• E501/W505/formatter: Exclude nested pragma comments from line width calculation (#24071)
• Fix %foo? parsing in IPython assignment expressions (#24152)
• analyze graph: resolve string imports that reference attributes, not just modules (#24058)

Rule changes

• [eradicate] ignore ty: ignore comments in ERA001 (#24192)
• [flake8-bandit] Treat sys.executable as trusted input in S603 (#24106)
• [flake8-self] Recognize Self annotation and self assignment in SLF001 (#24144)
• [pyflakes] F507: Fix false negative for non-tuple RHS in %-formatting (#24142)
• [refurb] Parenthesize generator arguments in FURB142 fixer (#24200)

Performance

• Speed up diagnostic rendering (#24146)

Server

• Warn when Markdown files are skipped due to preview being disabled (#24150)

Documentation

• Clarify extend-ignore and extend-select settings documentation (#24064)
• Mention AI policy in PR template (#24198)

Other changes

• Use trusted publishing for NPM packages (#24171)

Contributors

• @​bitloi
• @​Sim-hu

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.8

Released on 2026-03-26.

Preview features

• [ruff] New rule unnecessary-if (RUF050) (#24114)
• [ruff] New rule useless-finally (RUF072) (#24165)
• [ruff] New rule f-string-percent-format (RUF073): warn when using % operator on an f-string (#24162)
• [pyflakes] Recognize frozendict as a builtin for Python 3.15+ (#24100)

Bug fixes

• [flake8-async] Use fully-qualified anyio.lowlevel import in autofix (ASYNC115) (#24166)
• [flake8-bandit] Check tuple arguments for partial paths in S607 (#24080)
• [pyflakes] Skip undefined-name (F821) for conditionally deleted variables (#24088)
• E501/W505/formatter: Exclude nested pragma comments from line width calculation (#24071)
• Fix %foo? parsing in IPython assignment expressions (#24152)
• analyze graph: resolve string imports that reference attributes, not just modules (#24058)

Rule changes

• [eradicate] ignore ty: ignore comments in ERA001 (#24192)
• [flake8-bandit] Treat sys.executable as trusted input in S603 (#24106)
• [flake8-self] Recognize Self annotation and self assignment in SLF001 (#24144)
• [pyflakes] F507: Fix false negative for non-tuple RHS in %-formatting (#24142)
• [refurb] Parenthesize generator arguments in FURB142 fixer (#24200)

Performance

• Speed up diagnostic rendering (#24146)

Server

• Warn when Markdown files are skipped due to preview being disabled (#24150)

Documentation

• Clarify extend-ignore and extend-select settings documentation (#24064)
• Mention AI policy in PR template (#24198)

Other changes

• Use trusted publishing for NPM packages (#24171)

Contributors

• @​bitloi
• @​Sim-hu
• @​mvanhorn

... (truncated)

Commits

• c2a8815 Release 0.15.8 (#24217)
• d444d52 [ty] Infer lambda expressions with Callable type context (#22633)
• 9622285 [ty] Autocomplete arguments if in arguments node (#24167)
• d812662 Use the release environment in publish-docs (#24214)
• eda2355 [ty] Show Final source in final assignment diagnostic (#24194)
• 929eb52 [ty] Enforce Final attribute assignment rules for annotated and augmented wri...
• 34998be [ty] Fix typo in comment (#24211)
• 560aca0 [ty] Minor simplifications to some benchmark code (#24209)
• 683bae5 [ty] Track non-terminal-call constraints in global scope (#23245)
• 4704c2a [ty] Remove unnecessary intermediate collection in `StaticClassLiteral::field...
• Additional commits viewable in compare view

Updates types-oauthlib from 3.3.0.20250822 to 3.3.0.20260324

Commits

• See full diff in compare view

Updates types-regex from 2026.2.28.20260301 to 2026.3.32.20260329

Commits

• See full diff in compare view

Updates boto3-stubs from 1.42.73 to 1.42.78

Release notes

Sourced from boto3-stubs's releases.

8.8.0 - Python 3.8 runtime is back

Changed

• [services] install_requires section is calculated based on dependencies in use, so typing-extensions version is set properly
• [all] Replaced typing imports with collections.abc with a fallback to typing for Python <3.9
• [all] Added aliases for builtins.list, builtins.set, builtins.dict, and builtins.type, so Python 3.8 runtime should work as expected again (reported by @​YHallouard in #340 and @​Omri-Ben-Yair in #336)
• [all] Unions use the same type annotations as the rest of the structures due to proper fallbacks

Fixed

• [services] Universal input/output shapes were not replaced properly in service subresources
• [docs] Simplified doc links rendering for services
• [services] Cleaned up unnecessary imports in client.pyi
• [builder] Import records with fallback are always rendered

Commits

• See full diff in compare view

Updates hypothesis from 6.151.9 to 6.151.10

Release notes

Sourced from hypothesis's releases.

Hypothesis for Python - version 6.151.10

When shrinking takes more than five minutes, Hypothesis now prints the "@​seed" decorator alongside the slow-shrinking warning so you can reproduce the failure.

Thanks to Ian Hunt-Isaak for this contribution!

The canonical version of these notes (with links) is on readthedocs.

Commits

• dd619a8 Bump hypothesis-python version to 6.151.10 and update changelog
• 47bf92e Merge pull request #4685 from HypothesisWorks/create-pull-request/patch
• e87b8ba Update pinned dependencies
• d2a9a59 Merge pull request #4677 from ianhi/slow-shrink-seed
• 1d6046a format
• 36c2cae refactor and reword
• 3d54cdc Merge remote-tracking branch 'upstream/master' into slow-shrink-seed
• c1d70b8 Merge pull request #4679 from HypothesisWorks/create-pull-request/patch
• e1e0ba1 Update pinned dependencies
• 9fe714d Merge pull request #4678 from HypothesisWorks/create-pull-request/patch
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions