build(deps): Bump the python-packages group across 1 directory with 4 updates

[dependabot]

Bumps the python-packages group with 4 updates in the / directory: sqlalchemy, ruff, mypy and matplotlib.

Updates sqlalchemy from 2.0.36 to 2.0.38

Release notes

Sourced from sqlalchemy's releases.

2.0.38

Released: February 6, 2025

engine

• [engine] [bug] Fixed event-related issue where invoking Engine.execution_options() on a Engine multiple times while making use of event-registering parameters such as isolation_level would lead to internal errors involving event registration.

  References: #12289

sql

• [sql] [bug] Reorganized the internals by which the .c collection on a FromClause gets generated so that it is resilient against the collection being accessed in concurrent fashion. An example is creating a Alias or Subquery and accessing it as a module level variable. This impacts the Oracle dialect which uses such module-level global alias objects but is of general use as well.

  References: #12302

• [sql] [bug] Fixed SQL composition bug which impacted caching where using a None value inside of an in_() expression would bypass the usual "expanded bind parameter" logic used by the IN construct, which allows proper caching to take place.

  References: #12314

postgresql

• [postgresql] [usecase] [asyncio] Added an additional asyncio.shield() call within the connection terminate process of the asyncpg driver, to mitigate an issue where terminate would be prevented from completing under the anyio concurrency library.

  References: #12077

• [postgresql] [bug] Adjusted the asyncpg connection wrapper so that the connection.transaction() call sent to asyncpg sends None for isolation_level if not otherwise set in the SQLAlchemy dialect/wrapper, thereby allowing asyncpg to make use of the server level setting for isolation_level in the absense of a client-level setting. Previously, this behavior of asyncpg was blocked by a hardcoded read_committed.

... (truncated)

Commits

• See full diff in compare view

Updates ruff from 0.8.0 to 0.9.6

Release notes

Sourced from ruff's releases.

0.9.6

Release Notes

Preview features

• [airflow] Add external_task.{ExternalTaskMarker, ExternalTaskSensor} for AIR302 (#16014)
• [flake8-builtins] Make strict module name comparison optional (A005) (#15951)
• [flake8-pyi] Extend fix to Python <= 3.9 for redundant-none-literal (PYI061) (#16044)
• [pylint] Also report when the object isn't a literal (PLE1310) (#15985)
• [ruff] Implement indented-form-feed (RUF054) (#16049)
• [ruff] Skip type definitions for missing-f-string-syntax (RUF027) (#16054)

Rule changes

• [flake8-annotations] Correct syntax for typing.Union in suggested return type fixes for ANN20x rules (#16025)
• [flake8-builtins] Match upstream module name comparison (A005) (#16006)
• [flake8-comprehensions] Detect overshadowed list/set/dict, ignore variadics and named expressions (C417) (#15955)
• [flake8-pie] Remove following comma correctly when the unpacked dictionary is empty (PIE800) (#16008)
• [flake8-simplify] Only trigger SIM401 on known dictionaries (#15995)
• [pylint] Do not report calls when object type and argument type mismatch, remove custom escape handling logic (PLE1310) (#15984)
• [pyupgrade] Comments within parenthesized value ranges should not affect applicability (UP040) (#16027)
• [pyupgrade] Don't introduce invalid syntax when upgrading old-style type aliases with parenthesized multiline values (UP040) (#16026)
• [pyupgrade] Ensure we do not rename two type parameters to the same name (UP049) (#16038)
• [pyupgrade] [ruff] Don't apply renamings if the new name is shadowed in a scope of one of the references to the binding (UP049, RUF052) (#16032)
• [ruff] Update RUF009 to behave similar to B008 and ignore attributes with immutable types (#16048)

Server

• Root exclusions in the server to project root (#16043)

Bug fixes

• [flake8-datetime] Ignore .replace() calls while looking for .astimezone (#16050)
• [flake8-type-checking] Avoid TC004 false positive where the runtime definition is provided by __getattr__ (#16052)

Documentation

• Improve ruff-lsp migration document (#16072)
• Undeprecate ruff.nativeServer (#16039)

Contributors

• @​AlexWaygood
• @​Daverball
• @​InSyncWithFoo
• @​Lee-W
• @​MichaReiser
• @​carlosgmartin
• @​dhruvmanila
• @​dylwil3
• @​junhsonjb

... (truncated)

Changelog

Sourced from ruff's changelog.

0.9.6

Preview features

• [airflow] Add external_task.{ExternalTaskMarker, ExternalTaskSensor} for AIR302 (#16014)
• [flake8-builtins] Make strict module name comparison optional (A005) (#15951)
• [flake8-pyi] Extend fix to Python <= 3.9 for redundant-none-literal (PYI061) (#16044)
• [pylint] Also report when the object isn't a literal (PLE1310) (#15985)
• [ruff] Implement indented-form-feed (RUF054) (#16049)
• [ruff] Skip type definitions for missing-f-string-syntax (RUF027) (#16054)

Rule changes

• [flake8-annotations] Correct syntax for typing.Union in suggested return type fixes for ANN20x rules (#16025)
• [flake8-builtins] Match upstream module name comparison (A005) (#16006)
• [flake8-comprehensions] Detect overshadowed list/set/dict, ignore variadics and named expressions (C417) (#15955)
• [flake8-pie] Remove following comma correctly when the unpacked dictionary is empty (PIE800) (#16008)
• [flake8-simplify] Only trigger SIM401 on known dictionaries (#15995)
• [pylint] Do not report calls when object type and argument type mismatch, remove custom escape handling logic (PLE1310) (#15984)
• [pyupgrade] Comments within parenthesized value ranges should not affect applicability (UP040) (#16027)
• [pyupgrade] Don't introduce invalid syntax when upgrading old-style type aliases with parenthesized multiline values (UP040) (#16026)
• [pyupgrade] Ensure we do not rename two type parameters to the same name (UP049) (#16038)
• [pyupgrade] [ruff] Don't apply renamings if the new name is shadowed in a scope of one of the references to the binding (UP049, RUF052) (#16032)
• [ruff] Update RUF009 to behave similar to B008 and ignore attributes with immutable types (#16048)

Server

• Root exclusions in the server to project root (#16043)

Bug fixes

• [flake8-datetime] Ignore .replace() calls while looking for .astimezone (#16050)
• [flake8-type-checking] Avoid TC004 false positive where the runtime definition is provided by __getattr__ (#16052)

Documentation

• Improve ruff-lsp migration document (#16072)
• Undeprecate ruff.nativeServer (#16039)

0.9.5

Preview features

• Recognize all symbols named TYPE_CHECKING for in_type_checking_block (#15719)
• [flake8-comprehensions] Handle builtins at top of file correctly for unnecessary-dict-comprehension-for-iterable (C420) (#15837)
• [flake8-logging] .exception() and exc_info= outside exception handlers (LOG004, LOG014) (#15799)
• [flake8-pyi] Fix incorrect behaviour of custom-typevar-return-type preview-mode autofix if typing was already imported (PYI019) (#15853)
• [flake8-pyi] Fix more complex cases (PYI019) (#15821)
• [flake8-pyi] Make PYI019 autofixable for .py files in preview mode as well as stubs (#15889)
• [flake8-pyi] Remove type parameter correctly when it is the last (PYI019) (#15854)

... (truncated)

Commits

• 524cf6e Bump version to 0.9.6 (#16074)
• 857cf0d Revert tailwindcss v4 update (#16075)
• 0f1eb1e Improve migration document (#16072)
• b69eb90 Fix reference definition labels for backtick-quoted shortcut links (#16035)
• d2f661f RUF009 should behave similar to B008 and ignore attributes with immutable typ...
• 07cf885 [pylint] Also report when the object isn't a literal (PLE1310) (#15985)
• c089896 Update Rust crate rustc-hash to v2.1.1 (#16060)
• 869a954 Root exclusions in the server to project root (#16043)
• cc0a5dd Directly include Settings struct for the server (#16042)
• b54e390 Update Rust crate clap to v4.5.28 (#16059)
• Additional commits viewable in compare view

Updates mypy from 1.13.0 to 1.15.0

Changelog

Sourced from mypy's changelog.

Mypy Release Notes

Next Release

...

Mypy 1.15

We’ve just uploaded mypy 1.15 to the Python Package Index (PyPI). Mypy is a static type checker for Python. This release includes new features, performance improvements and bug fixes. You can install it as follows:

python3 -m pip install -U mypy

You can read the full documentation for this release on Read the Docs.

Performance Improvements

Mypy is up to 40% faster in some use cases. This improvement comes largely from tuning the performance of the garbage collector. Additionally, the release includes several micro-optimizations that may be impactful for large projects.

Contributed by Jukka Lehtosalo

• PR 18306
• PR 18302
• PR 18298
• PR 18299

Mypyc Accelerated Mypy Wheels for ARM Linux

For best performance, mypy can be compiled to C extension modules using mypyc. This makes mypy 3-5x faster than when interpreted with pure Python. We now build and upload mypyc accelerated mypy wheels for manylinux_aarch64 to PyPI, making it easy for Linux users on ARM platforms to realise this speedup -- just pip install the latest mypy.

Contributed by Christian Bundy and Marc Mueller (PR mypy_mypyc-wheels#76, PR mypy_mypyc-wheels#89).

--strict-bytes

By default, mypy treats bytearray and memoryview values as assignable to the bytes type, for historical reasons. Use the --strict-bytes flag to disable this behavior. PEP 688 specified the removal of this special case. The flag will be enabled by default in mypy 2.0.

Contributed by Ali Hamdan (PR 18263) and Shantanu Jain (PR 13952).

Improvements to Reachability Analysis and Partial Type Handling in Loops

... (truncated)

Commits

• 9397454 remove +dev from version ahead of final release
• 686b591 remove "unreleased" from 1.15 changelog entry
• cb4b243 Various small updates to 1.15 changelog (#18599)
• 1a26502 Prepare changelog for 1.15 release (#18583)
• d4515e4 Fix a few PR links in the changelog (#18586)
• f83b643 Add object self-type to tuple test fixture (#18592)
• ebc2cb8 Prevent crash on generic NamedTuple with unresolved typevar bound (#18585)
• 63c251e empty commit to trigger wheel rebuild
• c30573e Fix literal context for ternary expressions (for real) (#18545)
• 23d862d Fix isinstance with explicit (non generic) type alias (#18512)
• Additional commits viewable in compare view

Updates matplotlib from 3.9.2 to 3.10.0

Release notes

Sourced from matplotlib's releases.

REL: v3.10.0

Highlights of this release include:

- Preliminary support for free-threaded CPython 3.13
- New more-accessible color cycle
- Dark-mode diverging colormaps
- Exception handling control
- InsetIndicator artist
- FillBetweenPolyCollection
- Fill between 3D lines
- Data in 3D plots can now be dynamically clipped to the axes view limits
- Rotating 3d plots with the mouse
- Increased Figure limits with Agg renderer
- Subfigures no longer provisional
- Subfigures are now added in row-major order

Matplotlib v3.10.0rc1

This is the first release candidate for Matplotlib 3.10.0

REL: 3.9.4

This is the fourth bugfix release of the 3.9.x series.

This release contains two bug-fixes:

• Fix toolbar icons in GTK backend
• Fix Poly3DCollection initialization with list of lists

REL: 3.9.3

This is the third bugfix release of the 3.9.x series.

This release contains several bug-fixes and adjustments:

• Fix axline with extremely small slopes
• Fix axline with non-linear axis scales
• Fix minimumSizeHint with Qt backend
• Fix config directory usage when it's behind a symlink
• Fix draggable legend when blitting is enabled
• Fix high CPU utilization in the macosx backend
• Fix multiple hatch edgecolors passed to contourf
• Improve compatibility with pytest 8.2.0

Commits

• 8d64f03 REL: v3.10.0 release
• d9dfee8 [doc] Fix dead links
• 87a603f Update release notes for 3.10.0
• cdecf97 Update github stats for 3.10
• b8d19bd Merge pull request #29306 from meeseeksmachine/auto-backport-of-pr-29242-on-v...
• a42d0ed Backport PR #29242: DOC: Add kwdoc list to scatter() docstring
• 1900640 Merge pull request #29299 from QuLogic/merge-v39x
• 815389c Merge branch 'v3.9.x' into v3.10.x
• 73873c0 DOC: Create release notes for 3.9.4
• 9d17a2b DOC: Add Zenodo DOI for 3.9.4
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #10.