chore(deps): lock file maintenance

[renovate]

This PR contains the following updates:

Update	Change
lockFileMaintenance	All locks refreshed

🔧 This Pull Request updates lock files to use the latest dependency versions.

---

Configuration

📅 Schedule: Branch creation - "before 5am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[claude]

Pull Request Review - Lock File Maintenance

Summary

This automated PR updates lock files to refresh all dependencies to their latest compatible versions. All changes are minor/patch version updates.

Dependency Updates Analyzed

Security-Critical Updates

• certifi: 2025.11.12 → 2026.1.4 ✅
  • Updates SSL/TLS certificate bundle
  • Critical for secure HTTPS connections
  • Smaller bundle size (160KB → 154KB) suggests optimization
  • Recommendation: Approve - keeps SSL certificates current

Framework & Database

• dj-database-url: 3.0.1 → 3.1.0 ✅
  • Minor version bump for Django database URL parsing
  • Smaller package size suggests refactoring/cleanup
  • Low risk - utility library with stable API
  • Recommendation: Approve

Development & Testing

• faker: 39.0.0 → 40.1.0 ✅
  • Test data generation library
  • Only affects development/testing (used in generate-example-reports)
  • Low risk - isolated to test environments
  • Recommendation: Approve

Data Processing

• json5: 0.12.1 → 0.13.0 ✅

  • Minor version update for JSON5 parser
  • No breaking changes expected
  • Recommendation: Approve

• marshmallow: 4.1.2 → 4.2.0 ✅

  • Object serialization library (used in API layer)
  • Minor version - backwards compatible
  • Recommendation: Approve

System Utilities

• psutil: 7.2.0 → 7.2.1 ✅
  • Patch release for system monitoring
  • Bug fixes only per semantic versioning
  • Low risk update
  • Recommendation: Approve

Code Quality Assessment

✅ No Code Changes - Only lock file updates
✅ Automated Testing - CI pipeline running
✅ Semantic Versioning - All updates follow semver (no major version bumps)
✅ Auto-merge Enabled - Will merge automatically after CI passes

Potential Issues

No significant issues identified. All updates are:

• Minor or patch versions (backwards compatible)
• Well-maintained packages
• Already passing initial checks (CodeRabbit: SUCCESS)

Recommendations

1. Approve after CI passes - Wait for the ci workflow to complete successfully
2. Monitor post-merge - Watch for any unexpected behavior, especially:
   • SSL/TLS connection issues (certifi update)
   • API serialization issues (marshmallow update)
3. No manual intervention needed - Renovate will auto-merge once CI is green

Testing Considerations

The following areas should be covered by existing CI tests:

• Database connection parsing (dj-database-url)
• API serialization/deserialization (marshmallow)
• Test data generation (faker)
• HTTPS requests to external services (certifi)

If CI passes, these updates are safe to merge.

Security Considerations

✅ No security vulnerabilities introduced
✅ Updates include latest security patches (especially certifi)
✅ No new dependencies added
✅ No breaking changes

Final Verdict

LGTM ✅ - Approve and merge after CI passes. This is a routine maintenance PR that keeps dependencies current without introducing breaking changes.

---

Automated lock file maintenance is essential for keeping security patches current. All updates appear safe and follow semantic versioning.