build(deps): Bump the python-packages group across 1 directory with 4 updates

[dependabot]

Bumps the python-packages group with 4 updates in the / directory: sqlalchemy, ruff, mypy and matplotlib.

Updates sqlalchemy from 2.0.36 to 2.0.38

Release notes

Sourced from sqlalchemy's releases.

2.0.38

Released: February 6, 2025

engine

• [engine] [bug] Fixed event-related issue where invoking Engine.execution_options() on a Engine multiple times while making use of event-registering parameters such as isolation_level would lead to internal errors involving event registration.

  References: #12289

sql

• [sql] [bug] Reorganized the internals by which the .c collection on a FromClause gets generated so that it is resilient against the collection being accessed in concurrent fashion. An example is creating a Alias or Subquery and accessing it as a module level variable. This impacts the Oracle dialect which uses such module-level global alias objects but is of general use as well.

  References: #12302

• [sql] [bug] Fixed SQL composition bug which impacted caching where using a None value inside of an in_() expression would bypass the usual "expanded bind parameter" logic used by the IN construct, which allows proper caching to take place.

  References: #12314

postgresql

• [postgresql] [usecase] [asyncio] Added an additional asyncio.shield() call within the connection terminate process of the asyncpg driver, to mitigate an issue where terminate would be prevented from completing under the anyio concurrency library.

  References: #12077

• [postgresql] [bug] Adjusted the asyncpg connection wrapper so that the connection.transaction() call sent to asyncpg sends None for isolation_level if not otherwise set in the SQLAlchemy dialect/wrapper, thereby allowing asyncpg to make use of the server level setting for isolation_level in the absense of a client-level setting. Previously, this behavior of asyncpg was blocked by a hardcoded read_committed.

... (truncated)

Commits

• See full diff in compare view

Updates ruff from 0.8.0 to 0.9.9

Release notes

Sourced from ruff's releases.

0.9.9

Release Notes

Preview features

• Fix caching of unsupported-syntax errors (#16425)

Bug fixes

• Only show unsupported-syntax errors in editors when preview mode is enabled (#16429)

Contributors

• @​InSyncWithFoo
• @​MichaReiser
• @​dhruvmanila
• @​ntBre

Install ruff 0.9.9

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.9.9/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.9.9/ruff-installer.ps1 | iex"

Download ruff 0.9.9

File	Platform	Checksum
ruff-aarch64-apple-darwin.tar.gz	Apple Silicon macOS	checksum
ruff-x86_64-apple-darwin.tar.gz	Intel macOS	checksum
ruff-aarch64-pc-windows-msvc.zip	ARM64 Windows	checksum
ruff-i686-pc-windows-msvc.zip	x86 Windows	checksum
ruff-x86_64-pc-windows-msvc.zip	x64 Windows	checksum
ruff-aarch64-unknown-linux-gnu.tar.gz	ARM64 Linux	checksum
ruff-i686-unknown-linux-gnu.tar.gz	x86 Linux	checksum
ruff-powerpc64-unknown-linux-gnu.tar.gz	PPC64 Linux	checksum
ruff-powerpc64le-unknown-linux-gnu.tar.gz	PPC64LE Linux	checksum
ruff-s390x-unknown-linux-gnu.tar.gz	S390x Linux	checksum
ruff-x86_64-unknown-linux-gnu.tar.gz	x64 Linux	checksum
ruff-armv7-unknown-linux-gnueabihf.tar.gz	ARMv7 Linux	checksum
ruff-aarch64-unknown-linux-musl.tar.gz	ARM64 MUSL Linux	checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.9

Preview features

• Fix caching of unsupported-syntax errors (#16425)

Bug fixes

• Only show unsupported-syntax errors in editors when preview mode is enabled (#16429)

0.9.8

Preview features

• Start detecting version-related syntax errors in the parser (#16090)

Rule changes

• [pylint] Mark fix unsafe (PLW1507) (#16343)
• [pylint] Catch case np.nan/case math.nan in match statements (PLW0177) (#16378)
• [ruff] Add more Pydantic models variants to the list of default copy semantics (RUF012) (#16291)

Server

• Avoid indexing the project if configurationPreference is editorOnly (#16381)
• Avoid unnecessary info at non-trace server log level (#16389)
• Expand ruff.configuration to allow inline config (#16296)
• Notify users for invalid client settings (#16361)

Configuration

• Add per-file-target-version option (#16257)

Bug fixes

• [refurb] Do not consider docstring(s) (FURB156) (#16391)
• [flake8-self] Ignore attribute accesses on instance-like variables (SLF001) (#16149)
• [pylint] Fix false positives, add missing methods, and support positional-only parameters (PLE0302) (#16263)
• [flake8-pyi] Mark PYI030 fix unsafe when comments are deleted (#16322)

Documentation

• Fix example for S611 (#16316)
• Normalize inconsistent markdown headings in docstrings (#16364)
• Document MSRV policy (#16384)

0.9.7

Preview features

... (truncated)

Commits

• 091d0af Bump version to Ruff 0.9.9 (#16434)
• 3d72138 Check LinterSettings::preview for version-related syntax errors (#16429)
• 4a23756 Avoid caching files with unsupported syntax errors (#16425)
• af62f79 Prioritize "bug" label for changelog sections (#16433)
• 0ced8d0 [flake8-copyright] Add links to applicable options (CPY001) (#16421)
• a8e171f Fix string-length limit in documentation for PYI054 (#16432)
• cf83584 Show version-related syntax errors in the playground (#16419)
• 764aa0e Allow passing ParseOptions to inline tests (#16357)
• 568cf88 Bump version to 0.9.8 (#16414)
• 040071b [red-knot] Ignore surrounding whitespace when looking for `<!-- snapshot-diag...
• Additional commits viewable in compare view

Updates mypy from 1.13.0 to 1.15.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next Release

Different Property Getter and Setter Types

Mypy now supports using different types for property getter and setter.

class A:
    value: int
@property
def f(self) -> int:
    return self.value
@f.setter
def f(self, x: str | int) -> None:
    try:
        self.value = int(x)
    except ValueError:
        raise Exception(f"'{x}' is not a valid value for 'f'")

Contributed by Ivan Levkivskyi (PR 18510)

Selectively Disable Deprecated Warnings

It's now possible to selectively disable warnings generated from warnings.deprecated using the --deprecated-calls-exclude option.

# mypy --enable-error-code deprecated
#      --deprecated-calls-exclude=foo.A
import foo
foo.A().func()  # OK, the deprecated warning is ignored
file foo.py
from typing_extensions import deprecated
class A:
@​deprecated("Use A.func2 instead")
def func(self): pass

Contributed by Marc Mueller (PR 18641)

Mypy 1.15

We’ve just uploaded mypy 1.15 to the Python Package Index (PyPI).

... (truncated)

Commits

• 9397454 remove +dev from version ahead of final release
• 686b591 remove "unreleased" from 1.15 changelog entry
• cb4b243 Various small updates to 1.15 changelog (#18599)
• 1a26502 Prepare changelog for 1.15 release (#18583)
• d4515e4 Fix a few PR links in the changelog (#18586)
• f83b643 Add object self-type to tuple test fixture (#18592)
• ebc2cb8 Prevent crash on generic NamedTuple with unresolved typevar bound (#18585)
• 63c251e empty commit to trigger wheel rebuild
• c30573e Fix literal context for ternary expressions (for real) (#18545)
• 23d862d Fix isinstance with explicit (non generic) type alias (#18512)
• Additional commits viewable in compare view

Updates matplotlib from 3.9.2 to 3.10.1

Release notes

Sourced from matplotlib's releases.

REL: v3.10.1

This is the first bugfix release of the 3.10.x series.

This release contains several bug-fixes and adjustments:

• Respect array alpha with interpolation_stage='rgba' in _Imagebase::_make_image
• Remove md5 usage to prevent issues on FIPS enabled systems
• Fix pyplot.matshow figure handling
• Fix modifying Axes' position also alters the original Bbox object used for initialization
• Fix title position for polar plots
• Add version gate to GTK4 calls when necessary
• Raise warning if both c and facecolors are used in scatter plot

As well as several documentation improvements and corrections.

REL: v3.10.0

Highlights of this release include:

- Preliminary support for free-threaded CPython 3.13
- New more-accessible color cycle
- Dark-mode diverging colormaps
- Exception handling control
- InsetIndicator artist
- FillBetweenPolyCollection
- Fill between 3D lines
- Data in 3D plots can now be dynamically clipped to the axes view limits
- Rotating 3d plots with the mouse
- Increased Figure limits with Agg renderer
- Subfigures no longer provisional
- Subfigures are now added in row-major order

Matplotlib v3.10.0rc1

This is the first release candidate for Matplotlib 3.10.0

REL: 3.9.4

This is the fourth bugfix release of the 3.9.x series.

This release contains two bug-fixes:

• Fix toolbar icons in GTK backend
• Fix Poly3DCollection initialization with list of lists

REL: 3.9.3

This is the third bugfix release of the 3.9.x series.

This release contains several bug-fixes and adjustments:

• Fix axline with extremely small slopes
• Fix axline with non-linear axis scales
• Fix minimumSizeHint with Qt backend

... (truncated)

Commits

• 6fc8169 REL 3.10.1
• 33361fb Release notes v3.10.1
• 2495bbc Fix toctrees for 3.10 release notes
• 526785e Github stats v3.10.1
• d23b173 Merge v3.10.0-doc into v3.10.x
• 9fe0dad Merge pull request #29682 from meeseeksmachine/auto-backport-of-pr-29680-on-v...
• d3cf53d Merge pull request #29683 from meeseeksmachine/auto-backport-of-pr-29670-on-v...
• 2944994 Backport PR #29670: DOC: change marginal scatter plot to subplot_mosaic
• b4f94a4 Backport PR #29680: DOC: fix the bug of examples\event_handling
• 4f3d478 Merge pull request #29676 from meeseeksmachine/auto-backport-of-pr-29666-on-v...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions