build(deps): bump the dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the dependencies group with 6 updates in the / directory:

Package	From	To
boto3	1.40.15	1.40.21
boto3-stubs	1.40.15	1.40.21
botocore-stubs	1.38.46	1.40.21
coverage	7.10.4	7.10.6
tox	4.28.4	4.29.0
ruff	0.12.10	0.12.11

Updates boto3 from 1.40.15 to 1.40.21

Commits

• 8f8cca7 Merge branch 'release-1.40.21'
• f52857a Bumping version to 1.40.21
• 2929a26 Add changelog entries from botocore
• 3e12c82 Merge branch 'release-1.40.20'
• 95ccc42 Merge branch 'release-1.40.20' into develop
• 8b5d5ce Bumping version to 1.40.20
• 5be943b Add changelog entries from botocore
• 2438288 Merge branch 'release-1.40.19'
• 7630391 Merge branch 'release-1.40.19' into develop
• 29c8360 Bumping version to 1.40.19
• Additional commits viewable in compare view

Updates boto3-stubs from 1.40.15 to 1.40.21

Release notes

Sourced from boto3-stubs's releases.

8.8.0 - Python 3.8 runtime is back

Changed

• [services] install_requires section is calculated based on dependencies in use, so typing-extensions version is set properly
• [all] Replaced typing imports with collections.abc with a fallback to typing for Python <3.9
• [all] Added aliases for builtins.list, builtins.set, builtins.dict, and builtins.type, so Python 3.8 runtime should work as expected again (reported by @​YHallouard in #340 and @​Omri-Ben-Yair in #336)
• [all] Unions use the same type annotations as the rest of the structures due to proper fallbacks

Fixed

• [services] Universal input/output shapes were not replaced properly in service subresources
• [docs] Simplified doc links rendering for services
• [services] Cleaned up unnecessary imports in client.pyi
• [builder] Import records with fallback are always rendered

Commits

• See full diff in compare view

Updates botocore-stubs from 1.38.46 to 1.40.21

Commits

• See full diff in compare view

Updates coverage from 7.10.4 to 7.10.6

Changelog

Sourced from coverage's changelog.

Version 7.10.6 — 2025-08-29

• Fix: source directories were not properly communicated to subprocesses that ran in different directories, as reported in issue 1499_. This is now fixed.

• Performance: Alex Gaynor continues fine-tuning <pull 2038_>_ the speed of combination, especially with many contexts.

.. _issue 1499: nedbat/coveragepy#1499 .. _pull 2038: nedbat/coveragepy#2038

.. _changes_7-10-5:

Version 7.10.5 — 2025-08-23

• Big speed improvements for coverage combine: it's now about twice as fast! Huge thanks to Alex Gaynor for pull requests 2032 <pull 2032_>, 2033 <pull 2033_>, and 2034 <pull 2034_>_.

.. _pull 2032: nedbat/coveragepy#2032 .. _pull 2033: nedbat/coveragepy#2033 .. _pull 2034: nedbat/coveragepy#2034

.. _changes_7-10-4:

Commits

• 88c55ff docs: sample HTML for 7.10.6
• 01d8995 docs: prep for 7.10.6
• 9b0c24f docs: thanks Alex #2038
• 66d6910 fix: make source paths absolute where they exist. #1499
• bb3382f build: no need for the combine/html times now
• 9ea349a lab: warn_executed.py
• 808c9b4 build: changing metacov.ini should trigger metacov
• 384f5f2 build: oops, some 'if's are really line pragmas
• a7224af perf: pre-compute the mapping between other_db.context and main.context (#2038)
• 5c00c5b chore: bump the action-dependencies group with 3 updates (#2039)
• Additional commits viewable in compare view

Updates tox from 4.28.4 to 4.29.0

Release notes

Sourced from tox's releases.

4.29.0

What's Changed

• Docs: environment variables contain strings by @​hroncok in tox-dev/tox#3575
• 🐍 Fix sys_platform Fixture Leakage breaking the CI by @​gaborbernat in tox-dev/tox#3589
• Expose a new tox_extend_envs hook in plugins API by @​webknjaz in tox-dev/tox#3591

Full Changelog: tox-dev/tox@4.28.4...4.29.0

Changelog

Sourced from tox's changelog.

v4.29.0 (2025-08-29)

Features - 4.29.0

- A new tox life cycle event is now exposed for use via :doc:`Plugins
  API </plugins>` -- by :user:`webknjaz`.
The corresponding hook point is :func:tox_extend_envs &lt;tox.plugin.spec.tox_extend_envs&gt;. It allows plugin authors to
declare ephemeral environments that they can then populate through
the in-memory configuration loader interface.
This patch was made possible thanks to pair programming with
:user:gaborbernat at PyCon US 2025. (:issue:3510, :issue:3591)

Commits

• 59aaee9 release 4.29.0
• bf558e3 Expose a new tox_extend_envs hook in plugins API (#3591)
• eceba31 [pre-commit.ci] pre-commit autoupdate (#3587)
• 18d2943 Fix sys_platform patch in test suite leaking patching (#3589)
• 8088ecb Bump actions/checkout from 4 to 5 (#3582)
• c0b4118 [pre-commit.ci] pre-commit autoupdate (#3581)
• 1e06779 Bump actions/download-artifact from 4 to 5 (#3576)
• 7d4cb4e Docs: environment variables contain strings (#3575)
• 9930f8b [pre-commit.ci] pre-commit autoupdate (#3573)
• See full diff in compare view

Updates ruff from 0.12.10 to 0.12.11

Release notes

Sourced from ruff's releases.

0.12.11

Release Notes

Preview features

• [airflow] Extend AIR311 and AIR312 rules (#20082)
• [airflow] Replace wrong path airflow.io.storage with airflow.io.store (AIR311) (#20081)
• [flake8-async] Implement blocking-http-call-httpx-in-async-function (ASYNC212) (#20091)
• [flake8-logging-format] Add auto-fix for f-string logging calls (G004) (#19303)
• [flake8-use-pathlib] Add autofix for PTH211 (#20009)
• [flake8-use-pathlib] Make PTH100 fix unsafe because it can change behavior (#20100)

Bug fixes

• [pyflakes, pylint] Fix false positives caused by __class__ cell handling (F841, PLE0117) (#20048)
• [pyflakes] Fix allowed-unused-imports matching for top-level modules (F401) (#20115)
• [ruff] Fix false positive for t-strings in default-factory-kwarg (RUF026) (#20032)
• [ruff] Preserve relative whitespace in multi-line expressions (RUF033) (#19647)

Rule changes

• [ruff] Handle empty t-strings in unnecessary-empty-iterable-within-deque-call (RUF037) (#20045)

Documentation

• Fix incorrect D413 links in docstrings convention FAQ (#20089)
• [flake8-use-pathlib] Update links to the table showing the correspondence between os and pathlib (#20103)

Contributors

• @​AlexWaygood
• @​Avasam
• @​BurntSushi
• @​Gankra
• @​Glyphack
• @​JelleZijlstra
• @​Lee-W
• @​MatthewMckee4
• @​MichaReiser
• @​PrettyWood
• @​Renkai
• @​TaKO8Ki
• @​amyreese
• @​carljm
• @​chirizxc
• @​danparizher
• @​dhruvmanila
• @​dylwil3
• @​github-actions
• @​hamirmahal

... (truncated)

Changelog

Sourced from ruff's changelog.

0.12.11

Preview features

• [airflow] Extend AIR311 and AIR312 rules (#20082)
• [airflow] Replace wrong path airflow.io.storage with airflow.io.store (AIR311) (#20081)
• [flake8-async] Implement blocking-http-call-httpx-in-async-function (ASYNC212) (#20091)
• [flake8-logging-format] Add auto-fix for f-string logging calls (G004) (#19303)
• [flake8-use-pathlib] Add autofix for PTH211 (#20009)
• [flake8-use-pathlib] Make PTH100 fix unsafe because it can change behavior (#20100)

Bug fixes

• [pyflakes, pylint] Fix false positives caused by __class__ cell handling (F841, PLE0117) (#20048)
• [pyflakes] Fix allowed-unused-imports matching for top-level modules (F401) (#20115)
• [ruff] Fix false positive for t-strings in default-factory-kwarg (RUF026) (#20032)
• [ruff] Preserve relative whitespace in multi-line expressions (RUF033) (#19647)

Rule changes

• [ruff] Handle empty t-strings in unnecessary-empty-iterable-within-deque-call (RUF037) (#20045)

Documentation

• Fix incorrect D413 links in docstrings convention FAQ (#20089)
• [flake8-use-pathlib] Update links to the table showing the correspondence between os and pathlib (#20103)

Commits

• c2bc15b Bump 0.12.11 (#20136)
• e586f6d [ty] Benchmarks for problematic implicit instance attributes cases (#20133)
• 76a6b7e [pyflakes] Fix allowed-unused-imports matching for top-level modules (`F4...
• 1ce6571 Move GitLab output rendering to ruff_db (#20117)
• d9aaacd [ty] Evaluate reachability of non-definitely-bound to Ambiguous (#19579)
• 18eaa65 [ty] Introduce a representation for the top/bottom materialization of an inva...
• af259fa [flake8-async] Implement blocking-http-call-httpx (ASYNC212) (#20091)
• d75ef38 [ty] print diagnostics with fully qualified name to disambiguate some cases (...
• 89ca493 [ruff] Preserve relative whitespace in multi-line expressions (RUF033) (#...
• 4b80f5f [ty] Optimize TDD atom ordering (#20098)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

☂️ Python Coverage

current status: ✅

Overall Coverage

Lines	Covered	Coverage	Threshold	Status
1760	1321	75%	65%	🟢

New Files

No new covered files...

Modified Files

No covered modified files...

updated for commit: 5f41cca by action🐍

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Looks like these dependencies are no longer updatable, so this is no longer needed.