Skip to content

⬆️ Bump the actions group with 4 updates #972

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 7, 2025
Merged

⬆️ Bump the actions group with 4 updates #972

merged 1 commit into from
Nov 7, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 7, 2025

Bumps the actions group with 4 updates: ruff, sp-repo-review[cli], basedpyright and sp-repo-review.

Updates ruff from 0.14.3 to 0.14.4

Release notes

Sourced from ruff's releases.

0.14.4

Release Notes

Released on 2025-11-06.

Preview features

  • [formatter] Allow newlines after function headers without docstrings (#21110)
  • [formatter] Avoid extra parentheses for long match patterns with as captures (#21176)
  • [refurb] Expand fix safety for keyword arguments and Decimals (FURB164) (#21259)
  • [refurb] Preserve argument ordering in autofix (FURB103) (#20790)

Bug fixes

  • [server] Fix missing diagnostics for notebooks (#21156)
  • [flake8-bugbear] Ignore non-NFKC attribute names in B009 and B010 (#21131)
  • [refurb] Fix false negative for underscores before sign in Decimal constructor (FURB157) (#21190)
  • [ruff] Fix false positives on starred arguments (RUF057) (#21256)

Rule changes

  • [airflow] extend deprecated argument concurrency in airflow..DAG (AIR301) (#21220)

Documentation

  • Improve extend docs (#21135)
  • [flake8-comprehensions] Fix typo in C416 documentation (#21184)
  • Revise Ruff setup instructions for Zed editor (#20935)

Other changes

  • Make ruff analyze graph work with jupyter notebooks (#21161)

Contributors

Install ruff 0.14.4

Install prebuilt binaries via shell script

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.4

Released on 2025-11-06.

Preview features

  • [formatter] Allow newlines after function headers without docstrings (#21110)
  • [formatter] Avoid extra parentheses for long match patterns with as captures (#21176)
  • [refurb] Expand fix safety for keyword arguments and Decimals (FURB164) (#21259)
  • [refurb] Preserve argument ordering in autofix (FURB103) (#20790)

Bug fixes

  • [server] Fix missing diagnostics for notebooks (#21156)
  • [flake8-bugbear] Ignore non-NFKC attribute names in B009 and B010 (#21131)
  • [refurb] Fix false negative for underscores before sign in Decimal constructor (FURB157) (#21190)
  • [ruff] Fix false positives on starred arguments (RUF057) (#21256)

Rule changes

  • [airflow] extend deprecated argument concurrency in airflow..DAG (AIR301) (#21220)

Documentation

  • Improve extend docs (#21135)
  • [flake8-comprehensions] Fix typo in C416 documentation (#21184)
  • Revise Ruff setup instructions for Zed editor (#20935)

Other changes

  • Make ruff analyze graph work with jupyter notebooks (#21161)

Contributors

Commits

Updates sp-repo-review[cli] from 2025.10.20 to 2025.11.7

Release notes

Sourced from sp-repo-review[cli]'s releases.

2025.11.07

What's Changed

New Contributors

Full Changelog: scientific-python/cookie@2025.10.20...2025.11.07

Commits
  • 5c0bb86 feat: integrate helper into package properly (#675)
  • b709211 fix: make standalone helper a little nicer before removing it (#676)
  • 107064c fix: helper should sort and printout was missing sometimes (#674)
  • c9f31ba feat: check for dev dependency-group (#673)
  • f6c854e chore(deps): bump versions (#671)
  • 34a3fba fix: include markdownlint-cli2 (#672)
  • fbaca88 feat: add more Ruff checks, and a helper script (#670)
  • 141396d feat: adding mkdocs into guides and cookiecutter template (#662)
  • 7b1bfe1 feat: list requires Python too (#669)
  • ff5c94e feat: note rules not followed in ruff description (#667)
  • Additional commits viewable in compare view

Updates basedpyright from 1.32.1 to 1.33.0

Commits
  • 1a094f9 1.33.0
  • 1f1e55f October 2025 Russian localization fixes
  • da67f86 Add basedpyright.configFilePath to the language server (#1607)
  • f88523c bump python dependencies
  • 42738a8 Fix semantic token of variable of TypeVar type
  • fdb532d Test hover messages/jump-to-definition for the = in a chained __setitem__...
  • 8f106ac Fix improveNodeByOffset for chain assignments
  • e3dc447 Fix a problem with the updated filterDefinitions
  • f9fdcb0 Extend the operator “find definitions” test, implement minor optimizations, a...
  • cf1f273 Improve TypedDict handling
  • Additional commits viewable in compare view

Updates sp-repo-review from 2025.10.20 to 2025.11.7

Release notes

Sourced from sp-repo-review's releases.

2025.11.07

What's Changed

New Contributors

Full Changelog: scientific-python/cookie@2025.10.20...2025.11.07

Commits
  • 5c0bb86 feat: integrate helper into package properly (#675)
  • b709211 fix: make standalone helper a little nicer before removing it (#676)
  • 107064c fix: helper should sort and printout was missing sometimes (#674)
  • c9f31ba feat: check for dev dependency-group (#673)
  • f6c854e chore(deps): bump versions (#671)
  • 34a3fba fix: include markdownlint-cli2 (#672)
  • fbaca88 feat: add more Ruff checks, and a helper script (#670)
  • 141396d feat: adding mkdocs into guides and cookiecutter template (#662)
  • 7b1bfe1 feat: list requires Python too (#669)
  • ff5c94e feat: note rules not followed in ruff description (#667)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
⬆️ Bump the actions group with 4 updates
6a0eec3 
Bumps the actions group with 4 updates: [ruff](https://github.com/astral-sh/ruff), [sp-repo-review[cli]](https://github.com/scientific-python/cookie), [basedpyright](https://github.com/detachhead/basedpyright) and [sp-repo-review](https://github.com/scientific-python/cookie).


Updates `ruff` from 0.14.3 to 0.14.4
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.3...0.14.4)

Updates `sp-repo-review[cli]` from 2025.10.20 to 2025.11.7
- [Release notes](https://github.com/scientific-python/cookie/releases)
- [Commits](scientific-python/cookie@2025.10.20...2025.11.07)

Updates `basedpyright` from 1.32.1 to 1.33.0
- [Release notes](https://github.com/detachhead/basedpyright/releases)
- [Commits](DetachHead/basedpyright@v1.32.1...v1.33.0)

Updates `sp-repo-review` from 2025.10.20 to 2025.11.7
- [Release notes](https://github.com/scientific-python/cookie/releases)
- [Commits](scientific-python/cookie@2025.10.20...2025.11.07)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.14.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: sp-repo-review[cli]
  dependency-version: 2025.11.7
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: basedpyright
  dependency-version: 1.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: sp-repo-review
  dependency-version: 2025.11.7
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
@jorenham jorenham merged commit 3d152af into master Nov 7, 2025
21 checks passed
@dependabot dependabot bot deleted the dependabot/uv/actions-5a9ce48647 branch November 7, 2025 18:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

topic: dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jorenham