[pip] (deps): Bump the dev-dependencies group across 1 directory with 10 updates

[dependabot]

Bumps the dev-dependencies group with 10 updates in the / directory:

Package	From	To
certifi	2024.12.14	2025.1.31
filelock	3.16.1	3.17.0
identify	2.6.5	2.6.6
junit-xml	1.8	1.9
mutmut	3.2.2	3.2.3
pre-commit	4.0.1	4.1.0
pyright	1.1.391	1.1.393
pytest-github-actions-annotate-failures	0.2.0	0.3.0
ruff	0.8.6	0.9.4
virtualenv	20.28.1	20.29.1

Updates certifi from 2024.12.14 to 2025.1.31

Commits

• 088f931 2025.01.31 (#336)
• 1c17795 Bump pypa/gh-action-pypi-publish from 1.12.3 to 1.12.4 (#335)
• a2e88f0 Bump actions/upload-artifact from 4.5.0 to 4.6.0 (#334)
• 82284ed Bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 (#333)
• 10d3d1d Bump actions/upload-artifact from 4.4.3 to 4.5.0 (#332)
• See full diff in compare view

Updates filelock from 3.16.1 to 3.17.0

Release notes

Sourced from filelock's releases.

Drop 3.8

Full Changelog: tox-dev/filelock@3.16.1...3.17.0

Commits

• 5eb02b2 Drop 3.8 (#388)
• 23a9848 Bump astral-sh/setup-uv from 4 to 5 (#387)
• 79a9583 Bump pypa/gh-action-pypi-publish from 1.12.2 to 1.12.3 (#386)
• 46dddc8 [pre-commit.ci] pre-commit autoupdate (#385)
• 57f488f [pre-commit.ci] pre-commit autoupdate (#383)
• d4feb5a [pre-commit.ci] pre-commit autoupdate (#382)
• fb2a4e2 Bump astral-sh/setup-uv from 3 to 4 (#381)
• 07c2840 [pre-commit.ci] pre-commit autoupdate (#379)
• ee4c7ba [pre-commit.ci] pre-commit autoupdate (#377)
• 2e1a1b2 [pre-commit.ci] pre-commit autoupdate (#374)
• Additional commits viewable in compare view

Updates identify from 2.6.5 to 2.6.6

Commits

• 5bc1845 v2.6.6
• 7b82a63 Merge pull request #500 from vlotorev/patch-1
• 26e13ca Add '.asm' file extension as 'asm' filetype
• f093855 Merge pull request #499 from pre-commit/pre-commit-ci-update-config
• e9ef72e [pre-commit.ci] pre-commit autoupdate
• See full diff in compare view

Updates junit-xml from 1.8 to 1.9

Commits

• See full diff in compare view

Updates mutmut from 3.2.2 to 3.2.3

Changelog

Sourced from mutmut's changelog.

3.2.3

* Crash with error message on invalid imports for `src` module


Autodetect simpler project configurations with test_*.py in the dir directly


Handle filenames (as opposed to dirnames) in paths_to_mutate


Also copy setup.cfg and pyproject.toml by default


Handle single line paths_to_mutate

Commits

• 20d0a62 Release
• 548c0ed Remove testing of EOL python versions
• ec387be Crash with error message on invalid imports for src module
• c388a99 Autodetect simpler project configurations with test_*.py in the dir directly
• c8fd9f9 Handle filenames (as opposed to dirnames) in paths_to_mutate
• 1e809bf Merge pull request #357 from WillGibson/patch-1
• 772c413 Correct position of comma CONTRIBUTING.rst
• ca3e690 Merge pull request #356 from WillGibson/test-multiple-python-versions
• 98b5f5c Merge pull request #355 from WillGibson/initial-contributing-documentation
• 292b9c5 Temporarily lock to GitHub Actions unit test runner to ubuntu-22.04
• Additional commits viewable in compare view

Updates pre-commit from 4.0.1 to 4.1.0

Release notes

Sourced from pre-commit's releases.

pre-commit v4.1.0

Features

• Add language: julia.
  • #3348 PR by @​fredrikekre.
  • #2689 issue @​jmuchovej.

Fixes

• Disable automatic toolchain switching for language: golang.
  • #3304 PR by @​AleksaC.
  • #3300 issue by @​AleksaC.
  • #3149 issue by @​nijel.
• Fix language: r installation when initiated by RStudio.
  • #3389 PR by @​lorenzwalthert.
  • #3385 issue by @​lorenzwalthert.

Changelog

Sourced from pre-commit's changelog.

4.1.0 - 2025-01-20

Features

• Add language: julia.
  • #3348 PR by @​fredrikekre.
  • #2689 issue @​jmuchovej.

Fixes

• Disable automatic toolchain switching for language: golang.
  • #3304 PR by @​AleksaC.
  • #3300 issue by @​AleksaC.
  • #3149 issue by @​nijel.
• Fix language: r installation when initiated by RStudio.
  • #3389 PR by @​lorenzwalthert.
  • #3385 issue by @​lorenzwalthert.

Commits

• b152e92 v4.1.0
• c3125a4 Merge pull request #3389 from lorenzwalthert/dev-always-unset-renv
• c2c061c fix: ensure env patch is applied for vanilla emulation
• cd429db Merge pull request #3382 from pre-commit/pre-commit-ci-update-config
• 9b9f8e2 [pre-commit.ci] pre-commit autoupdate
• 86300a4 Merge pull request #3376 from pre-commit/r-gone
• 77edad8 install r on ubuntu runners
• 18b3939 Merge pull request #3375 from pre-commit/dotnet-tests-ubuntu-latest
• 31cb945 Merge pull request #3374 from pre-commit/docker-image-tests-ubuntu-22-not-pre...
• 28c3d81 update .net tests to use .net 8
• Additional commits viewable in compare view

Updates pyright from 1.1.391 to 1.1.393

Commits

• c82fac2 [pyright updated to 1.1.393] Update Version (#332)
• 33dece9 chore: release v1.1.392.post0 (#331)
• f15e56f feat: bundle pyright inside wheel (#300)
• f5c7731 [pyright updated to 1.1.392] Update Version (#329)
• 08b251c CI: lower ubunutu version + bump macos + node 18 (#330)
• See full diff in compare view

Updates pytest-github-actions-annotate-failures from 0.2.0 to 0.3.0

Release notes

Sourced from pytest-github-actions-annotate-failures's releases.

Version 0.3.0

• Test on Python 3.13 #89
• Support pytest 7.4+ #97 (thanks to @​edgarrmondragon)
• Require Python 3.8+ #87 (thanks to @​edgarrmondragon)
• Require pytest 6+ #86 (thanks to @​edgarrmondragon)
• Speed up CI and testing #93
• Use Ruff formatter #96
• Use dependency-groups for tests #99
• Add GitHub Attestations #100

Full Changelog: pytest-dev/pytest-github-actions-annotate-failures@v0.2.0...v0.3.0

Changelog

Sourced from pytest-github-actions-annotate-failures's changelog.

0.3.0 (2025-01-17)

• Test on Python 3.13 #89
• Support pytest 7.4+ #97 (thanks to @​edgarrmondragon)
• Require Python 3.8+ #87 (thanks to @​edgarrmondragon)
• Require pytest 6+ #86 (thanks to @​edgarrmondragon)
• Speed up CI and testing #93
• Use Ruff formatter #96
• Use dependency-groups for tests #99
• Add GitHub Attestations #100

Commits

• f07eea3 ci: id-token, not token (#104)
• 739d5d4 ci: token permissions (#103)
• dfe556c ci: missing needs in deploy (#102)
• f5a1662 chore: release 0.3 (#101)
• 5da3a46 chore: prepare for 0.3 (#98)
• c3c29e9 ci: add github attestations (#100)
• 5f93cf9 chore: use dependency-groups (#99)
• b18bbb5 ci: add 3.13 (#89)
• fd623c1 fix: support Pytest 7.4+ (#97)
• e4336fb Bump Ruff and use formatter (#96)
• Additional commits viewable in compare view

Updates ruff from 0.8.6 to 0.9.4

Release notes

Sourced from ruff's releases.

0.9.4

Release Notes

Preview features

• [airflow] Extend airflow context parameter check for BaseOperator.execute (AIR302) (#15713)
• [airflow] Update AIR302 to check for deprecated context keys (#15144)
• [flake8-bandit] Permit suspicious imports within stub files (S4) (#15822)
• [pylint] Do not trigger PLR6201 on empty collections (#15732)
• [refurb] Do not emit diagnostic when loop variables are used outside loop body (FURB122) (#15757)
• [ruff] Add support for more re patterns (RUF055) (#15764)
• [ruff] Check for shadowed map before suggesting fix (RUF058) (#15790)
• [ruff] Do not emit diagnostic when all arguments to zip() are variadic (RUF058) (#15744)
• [ruff] Parenthesize fix when argument spans multiple lines for unnecessary-round (RUF057) (#15703)

Rule changes

• Preserve quote style in generated code (#15726, #15778, #15794)
• [flake8-bugbear] Exempt NewType calls where the original type is immutable (B008) (#15765)
• [pylint] Honor banned top-level imports by TID253 in PLC0415. (#15628)
• [pyupgrade] Ignore is_typeddict and TypedDict for deprecated-import (UP035) (#15800)

CLI

• Fix formatter warning message for flake8-quotes option (#15788)
• Implement tab autocomplete for ruff config (#15603)

Bug fixes

• [flake8-comprehensions] Do not emit unnecessary-map diagnostic when lambda has different arity (C417) (#15802)
• [flake8-comprehensions] Parenthesize sorted when needed for unnecessary-call-around-sorted (C413) (#15825)
• [pyupgrade] Handle end-of-line comments for quoted-annotation (UP037) (#15824)

Documentation

• Add missing config docstrings (#15803)
• Add references to trio.run_process and anyio.run_process (#15761)
• Use uv init --lib in tutorial (#15718)

Contributors

• @​AlexWaygood
• @​Garrett-R
• @​InSyncWithFoo
• @​JelleZijlstra
• @​Lee-W
• @​MichaReiser
• @​charliermarsh
• @​dcreager
• @​dhruvmanila
• @​dylwil3

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.4

Preview features

• [airflow] Extend airflow context parameter check for BaseOperator.execute (AIR302) (#15713)
• [airflow] Update AIR302 to check for deprecated context keys (#15144)
• [flake8-bandit] Permit suspicious imports within stub files (S4) (#15822)
• [pylint] Do not trigger PLR6201 on empty collections (#15732)
• [refurb] Do not emit diagnostic when loop variables are used outside loop body (FURB122) (#15757)
• [ruff] Add support for more re patterns (RUF055) (#15764)
• [ruff] Check for shadowed map before suggesting fix (RUF058) (#15790)
• [ruff] Do not emit diagnostic when all arguments to zip() are variadic (RUF058) (#15744)
• [ruff] Parenthesize fix when argument spans multiple lines for unnecessary-round (RUF057) (#15703)

Rule changes

• Preserve quote style in generated code (#15726, #15778, #15794)
• [flake8-bugbear] Exempt NewType calls where the original type is immutable (B008) (#15765)
• [pylint] Honor banned top-level imports by TID253 in PLC0415. (#15628)
• [pyupgrade] Ignore is_typeddict and TypedDict for deprecated-import (UP035) (#15800)

CLI

• Fix formatter warning message for flake8-quotes option (#15788)
• Implement tab autocomplete for ruff config (#15603)

Bug fixes

• [flake8-comprehensions] Do not emit unnecessary-map diagnostic when lambda has different arity (C417) (#15802)
• [flake8-comprehensions] Parenthesize sorted when needed for unnecessary-call-around-sorted (C413) (#15825)
• [pyupgrade] Handle end-of-line comments for quoted-annotation (UP037) (#15824)

Documentation

• Add missing config docstrings (#15803)
• Add references to trio.run_process and anyio.run_process (#15761)
• Use uv init --lib in tutorial (#15718)

0.9.3

Preview features

• [airflow] Argument fail_stop in DAG has been renamed as fail_fast (AIR302) (#15633)
• [airflow] Extend AIR303 with more symbols (#15611)
• [flake8-bandit] Report all references to suspicious functions (S3) (#15541)
• [flake8-pytest-style] Do not emit diagnostics for empty for loops (PT012, PT031) (#15542)
• [flake8-simplify] Avoid double negations (SIM103) (#15562)
• [pyflakes] Fix infinite loop with unused local import in __init__.py (F401) (#15517)
• [pylint] Do not report methods with only one EM101-compatible raise (PLR6301) (#15507)
• [pylint] Implement redefined-slots-in-subclass (W0244) (#9640)

... (truncated)

Commits

• 854ab03 Bump version to 0.9.4 (#15831)
• b0b8b06 Remove semicolon after TypeScript interface definition (#15827)
• 451f251 [red-knot] Clarify behavior when redeclaring base class attributes (#15826)
• 13cf3e6 [flake8-comprehensions] Parenthesize sorted when needed for `unnecessary-...
• 56f956a [pyupgrade] Handle end-of-line comments for quoted-annotation (UP037) (...
• 7a10a40 [flake8-bandit] Permit suspicious imports within stub files (S4) (#15822)
• 3125332 [red-knot] Format mdtest snippets with the latest version of black (#15819)
• 15d886a [red-knot] Consider all definitions after terminal statements unreachable (#1...
• e1c9d10 [flake8-comprehensions] Do not emit unnecessary-map diagnostic when lambd...
• 23c9884 Preserve quotes in generated f-strings (#15794)
• Additional commits viewable in compare view

Updates virtualenv from 20.28.1 to 20.29.1

Release notes

Sourced from virtualenv's releases.

20.29.1

What's Changed

• release 20.29.0 by @​gaborbernat in pypa/virtualenv#2824
• Simplify Solution to --python command-line flag precedence by @​DK96-OS in pypa/virtualenv#2826
• Change PyInfo cache versioning mechanism by @​robsdedude in pypa/virtualenv#2827

New Contributors

• @​DK96-OS made their first contribution in pypa/virtualenv#2826

Full Changelog: pypa/virtualenv@20.29.0...20.29.1

20.29.0

What's Changed

• release 20.28.1 by @​gaborbernat in pypa/virtualenv#2818
• Makes --python command-line flag take precedence over env var by @​filiplajszczak in pypa/virtualenv#2821
• Add free-threaded Python support by @​robsdedude in pypa/virtualenv#2809
• Upgrade embeded setuptools by @​gaborbernat in pypa/virtualenv#2823

New Contributors

• @​filiplajszczak made their first contribution in pypa/virtualenv#2821
• @​robsdedude made their first contribution in pypa/virtualenv#2809

Full Changelog: pypa/virtualenv@20.28.1...20.29.0

Changelog

Sourced from virtualenv's changelog.

v20.29.1 (2025-01-17)

Bugfixes - 20.29.1

- Fix PyInfo cache incompatibility warnings - by :user:`robsdedude`. (:issue:`2827`)
v20.29.0 (2025-01-15)
Features - 20.29.0

• Add support for selecting free-threaded Python interpreters, e.g., python3.13t. (:issue:2809)

Bugfixes - 20.29.0

- Upgrade embedded wheels:

setuptools to 75.8.0 from 75.6.0 (:issue:2823)

Commits

• e07c0c3 release 20.29.1
• 61bee9f Add changelog for PyInfo fix
• fd0dc85 Change PyInfo cache versioning mechanism (#2827)
• 56ef466 Merge pull request #2826 from DK96-OS/cli-precedence-2285
• caf03a2 Merge pull request #2824 from pypa/release-20.29.0
• 0f6dc41 release 20.29.0
• ea5e5cb Upgrade embeded setuptools (#2823)
• b00d59c Add free-threaded Python support (#2809)
• bc7a91a Merge pull request #2821 from filiplajszczak/cli-precedence-2285
• 11995e7 Merge pull request #2819 from pypa/pre-commit-ci-update-config
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.