deps(deps): bump the python-minor-and-patch group with 5 updates

[dependabot]

Bumps the python-minor-and-patch group with 5 updates:

Package	From	To
django-reversion	6.2.0	6.3.0
tqdm	4.68.1	4.68.2
model-bakery	1.23.4	1.23.5
ruff	0.15.16	0.15.17
djlint	1.39.0	1.39.2

Updates django-reversion from 6.2.0 to 6.3.0

Release notes

Sourced from django-reversion's releases.

v6.3.0

What's Changed

• feat: add Turkish translation for django-reversion by @​mcihad in etianen/django-reversion#1000

New Contributors

• @​mcihad made their first contribution in etianen/django-reversion#1000

Full Changelog: etianen/django-reversion@v6.2.0...v6.3.0

Changelog

Sourced from django-reversion's changelog.

6.3.0 - 2026-06-12

• Added Turkish translation (@​mcihad).

Commits

• cc6d5b9 v6.3.0
• a4b9377 Merge pull request #1000 from mcihad/master
• ef59de1 feat: add Turkish translation for django-reversion
• See full diff in compare view

Updates tqdm from 4.68.1 to 4.68.2

Release notes

Sourced from tqdm's releases.

tqdm v4.68.2 stable

• revert accidental change to ascii default (fixes #1760)
  • UnicodeEncodeError: 'charmap' codec can't encode characters in position 6-7: character maps to <undefined> can be fixed by installing tqdm!=4.68.0,!=4.68.1
• misc docs updates
  • fix links
  • replace stray rst -> md syntax
  • consistent "progress bar" terminology (#1737)
• tests: fix coverage (fixes #1760)

Commits

• 4b33952 revert accidental change to tqdm(ascii) default
• b10848f docs: fix links
• 85b62dd docs: replace stray rst -> md
• d2fb04a docs: mention OpenAI sponsorship
• 85940f9 docs: consistent progress bar terminology
• 9dbb36b tests: fix coverage
• See full diff in compare view

Updates model-bakery from 1.23.4 to 1.23.5

Release notes

Sourced from model-bakery's releases.

1.23.5

Changed

• Speed up Baker.get_fields() by returning _meta.fields + _meta.many_to_many directly instead of filtering _meta.get_fields().
• [dev] Clarify Apache-2.0 license text and package metadata (#600)
• [dev] Harden GitHub Actions workflows and add Zizmor security checks (#604)

GitHub Changelog

• Bump pygments from 2.19.2 to 2.20.0 by @​dependabot[bot] in model-bakers/model_bakery#594
• Bump django from 5.2.12 to 5.2.13 by @​dependabot[bot] in model-bakers/model_bakery#596
• Update uv-build requirement from <0.11.0,>=0.9.26 to >=0.9.26,<0.12.0 by @​dependabot[bot] in model-bakers/model_bakery#595
• Bump pillow from 12.1.1 to 12.2.0 by @​dependabot[bot] in model-bakers/model_bakery#597
• Bump pytest from 9.0.2 to 9.0.3 by @​dependabot[bot] in model-bakers/model_bakery#598
• Speed up Baker.get_fields() by @​anze3db in model-bakers/model_bakery#593
• Clarify Apache-2.0 license text and package metadata by @​amureki in model-bakers/model_bakery#600
• Bump django from 5.2.13 to 5.2.14 by @​dependabot[bot] in model-bakers/model_bakery#602
• Bump urllib3 from 2.6.3 to 2.7.0 by @​dependabot[bot] in model-bakers/model_bakery#603
• Introduce Zizmor security check via pre-commit by @​amureki in model-bakers/model_bakery#604
• Bump astral-sh/setup-uv from 7.6.0 to 8.1.0 by @​dependabot[bot] in model-bakers/model_bakery#605
• Bump idna from 3.11 to 3.15 by @​dependabot[bot] in model-bakers/model_bakery#606

New Contributors

• @​anze3db made their first contribution in model-bakers/model_bakery#593

Full Changelog: model-bakers/model_bakery@1.23.4...1.23.5

Changelog

Sourced from model-bakery's changelog.

1.23.5

Changed

• Speed up Baker.get_fields() by returning _meta.fields + _meta.many_to_many directly instead of filtering _meta.get_fields().
• [dev] Clarify Apache-2.0 license text and package metadata (#600)
• [dev] Harden GitHub Actions workflows and add Zizmor security checks (#604)

Commits

• 9fbe82b Bump 1.23.5
• 8e4e13a Bump idna from 3.11 to 3.15 (#606)
• 89a449e Bump astral-sh/setup-uv from 7.6.0 to 8.1.0 (#605)
• d837e15 Introduce Zizmor security check via pre-commit (#604)
• f6532bb Bump urllib3 from 2.6.3 to 2.7.0 (#603)
• efafc2e Bump django from 5.2.13 to 5.2.14 (#602)
• 6519ce2 Clarify Apache-2.0 license text and package metadata (#600)
• 43fd807 Speed up Baker.get_fields() (#593)
• 0537ace Bump pytest from 9.0.2 to 9.0.3 (#598)
• e6f084f Bump pillow from 12.1.1 to 12.2.0 (#597)
• Additional commits viewable in compare view

Updates ruff from 0.15.16 to 0.15.17

Release notes

Sourced from ruff's releases.

0.15.17

Release Notes

Released on 2026-06-11.

Preview features

• Allow human-readable names in suppression comments (#25614)
• Fix handling of ignore comments within a disable/enable pair (#25845)
• Prioritize human-readable names in CLI output (#25869)
• Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
• [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
• [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
• [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
• [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

• Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
• [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

• [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
• [numpy] Drop autofix for np.in1d (NPY201) (#25612)
• [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

• Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

• Preserve whitespace for Quarto cell option comments (#25641)

CLI

• Allow rule names in ruff rule (#25640)

Other changes

• Fix playground diagnostics scrollbars (#25642)

Contributors

• @​SuryanshSS1011
• @​anishgirianish
• @​romero-deshaw
• @​karlhillx
• @​carljm

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.17

Released on 2026-06-11.

Preview features

• Allow human-readable names in suppression comments (#25614)
• Fix handling of ignore comments within a disable/enable pair (#25845)
• Prioritize human-readable names in CLI output (#25869)
• Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
• [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
• [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
• [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
• [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

• Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
• [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

• [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
• [numpy] Drop autofix for np.in1d (NPY201) (#25612)
• [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

• Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

• Preserve whitespace for Quarto cell option comments (#25641)

CLI

• Allow rule names in ruff rule (#25640)

Other changes

• Fix playground diagnostics scrollbars (#25642)

Contributors

• @​SuryanshSS1011
• @​anishgirianish
• @​romero-deshaw
• @​karlhillx
• @​carljm
• @​ntBre

... (truncated)

Commits

• 7c645a9 Bump 0.15.17 (#25872)
• f381eb1 Prioritize human-readable names in CLI output (#25869)
• b9b4546 Minor workflow simplification (#25870)
• 1e77ba0 [ty] Move PreformattedBlockScanner to format-agnostic location. (#25856)
• 6f2b772 [ty] Preserve nominal type of enum.property instances (#25849)
• be4777c [ty] Fix site-package error when multiple versions of pythons are installed i...
• 53f6ff7 Allow human-readable names in suppression comments (#25614)
• 6740325 [ty] Restrict uncached raw signature access (#25866)
• 970b1bf Auto-update snapshots when syncing typeshed (#25841)
• 0785793 Fix handling of ignore comments within a disable/enable pair (#25845)
• Additional commits viewable in compare view

Updates djlint from 1.39.0 to 1.39.2

Release notes

Sourced from djlint's releases.

v1.39.2

v1.39.1 was not published due to mypyc compilation error.

Packaging

• Fix mypyc compilation.

v1.39.1

This release was not published due to mypyc compilation error.

Fix

• Avoid false T027 reports for apostrophes inside quoted template strings.
• Format Alpine.js object methods in attributes when format_attribute_js_json is enabled.
• Preserve indentation after inline Jinja control-flow blocks that start with whitespace trim markers, such as {%- if ... %}...{% endif %}.
• Preserve safe inner quote style for Jinja function calls inside quoted HTML attributes.

Changelog

Sourced from djlint's changelog.

[1.39.2] - 2026-06-11

v1.39.1 was not published due to mypyc compilation error.

Packaging

• Fix mypyc compilation.

[1.39.1] - 2026-06-11

Fix

• Avoid false T027 reports for apostrophes inside quoted template strings.
• Format Alpine.js object methods in attributes when format_attribute_js_json is enabled.
• Preserve indentation after inline Jinja control-flow blocks that start with whitespace trim markers, such as {%- if ... %}...{% endif %}.
• Preserve safe inner quote style for Jinja function calls inside quoted HTML attributes.

Commits

• a8264dd v1.39.2
• 0a59136 fix mypyc compilation
• 5daa5dd v1.39.1
• 27bae44 fix(linter): avoid false T027 for apostrophes in quoted strings
• 8a9d8f0 Fix Alpine x-data method attribute formatting
• c12d4e1 improve parenthesis tests
• d575507 fix(formatter): preserve Jinja quotes in HTML attributes
• 4129b05 chore(deps): update pre-commit hook types-tqdm to v4.68.0.20260608 (#2074)
• 0730bff Fix indentation after inline trim-marker Jinja blocks
• 338dee3 chore(deps): lock file maintenance (#2073)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.