⬆️ [dev]: Bump the lockfile-dev group across 1 directory with 16 updates

[dependabot]

Bumps the lockfile-dev group with 16 updates in the / directory:

Package	From	To
typing-extensions	4.13.1	4.13.2
ruff	0.11.4	0.11.7
beautifulsoup4	4.13.3	4.13.4
certifi	2025.1.31	2025.4.26
identify	2.6.9	2.6.10
marshmallow	3.26.1	4.0.0
more-itertools	10.6.0	10.7.0
mypy-extensions	1.0.0	1.1.0
pbs-installer	2025.3.17	2025.4.9
setuptools	78.1.0	80.0.0
soupsieve	2.6	2.7
starlette	0.46.1	0.46.2
trove-classifiers	2025.3.19.19	2025.4.11.15
urllib3	2.3.0	2.4.0
uvicorn	0.34.0	0.34.2
watchfiles	1.0.4	1.0.5

Updates typing-extensions from 4.13.1 to 4.13.2

Release notes

Sourced from typing-extensions's releases.

4.13.2

• Fix TypeError when taking the union of typing_extensions.TypeAliasType and a typing.TypeAliasType on Python 3.12 and 3.13. Patch by Joren Hammudoglu.
• Backport from CPython PR #132160 to avoid having user arguments shadowed in generated __new__ by @typing_extensions.deprecated. Patch by Victorien Plot.

Changelog

Sourced from typing-extensions's changelog.

Release 4.13.2 (April 10, 2025)

• Fix TypeError when taking the union of typing_extensions.TypeAliasType and a typing.TypeAliasType on Python 3.12 and 3.13. Patch by Joren Hammudoglu.
• Backport from CPython PR #132160 to avoid having user arguments shadowed in generated __new__ by @typing_extensions.deprecated. Patch by Victorien Plot.

Commits

• 4525e9d Prepare release 4.13.2 (#583)
• 88a0c20 Do not shadow user arguments in generated __new__ by @deprecated (#581)
• 281d7b0 Add 3rd party tests for litestar (#578)
• 8092c39 fix TypeAliasType union with typing.TypeAliasType (#575)
• See full diff in compare view

Updates ruff from 0.11.4 to 0.11.7

Release notes

Sourced from ruff's releases.

0.11.7

Release Notes

Preview features

• [airflow] Apply auto fixes to cases where the names have changed in Airflow 3 (AIR301) (#17355)
• [perflint] Implement fix for manual-dict-comprehension (PERF403) (#16719)
• [syntax-errors] Make duplicate parameter names a semantic error (#17131)

Bug fixes

• [airflow] Fix typos in provider package names (AIR302, AIR312) (#17574)
• [flake8-type-checking] Visit keyword arguments in checks involving typing.cast/typing.NewType arguments (#17538)
• [pyupgrade] Preserve parenthesis when fixing native literals containing newlines (UP018) (#17220)
• [refurb] Mark the FURB161 fix unsafe except for integers and booleans (#17240)

Rule changes

• [perflint] Allow list function calls to be replaced with a comprehension (PERF401) (#17519)
• [pycodestyle] Auto-fix redundant boolean comparison (E712) (#17090)
• [pylint] make fix unsafe if delete comments (PLR1730) (#17459)

Documentation

• Add fix safety sections to docs for several rules (#17410,#17440,#17441,#17443,#17444)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​Daverball
• @​Gankra
• @​Glyphack
• @​Kalmaegi
• @​Lee-W
• @​MatthewMckee4
• @​MichaReiser
• @​VascoSch92
• @​camper42
• @​carljm
• @​dcreager
• @​dhruvmanila
• @​ericmarkmartin
• @​jnooree
• @​knavdeep152002
• @​maxmynter
• @​mtshiba
• @​ntBre
• @​renovate
• @​sharkdp
• @​w0nder1ng

... (truncated)

Changelog

Sourced from ruff's changelog.

0.11.7

Preview features

• [airflow] Apply auto fixes to cases where the names have changed in Airflow 3 (AIR301) (#17355)
• [perflint] Implement fix for manual-dict-comprehension (PERF403) (#16719)
• [syntax-errors] Make duplicate parameter names a semantic error (#17131)

Bug fixes

• [airflow] Fix typos in provider package names (AIR302, AIR312) (#17574)
• [flake8-type-checking] Visit keyword arguments in checks involving typing.cast/typing.NewType arguments (#17538)
• [pyupgrade] Preserve parenthesis when fixing native literals containing newlines (UP018) (#17220)
• [refurb] Mark the FURB161 fix unsafe except for integers and booleans (#17240)

Rule changes

• [perflint] Allow list function calls to be replaced with a comprehension (PERF401) (#17519)
• [pycodestyle] Auto-fix redundant boolean comparison (E712) (#17090)
• [pylint] make fix unsafe if delete comments (PLR1730) (#17459)

Documentation

• Add fix safety sections to docs for several rules (#17410,#17440,#17441,#17443,#17444)

0.11.6

Preview features

• Avoid adding whitespace to the end of a docstring after an escaped quote (#17216)
• [airflow] Extract AIR311 from AIR301 rules (AIR301, AIR311) (#17310, #17422)

Bug fixes

• Raise syntax error when \ is at end of file (#17409)

0.11.5

Preview features

• [airflow] Add missing AIR302 attribute check (#17115)
• [airflow] Expand module path check to individual symbols (AIR302) (#17278)
• [airflow] Extract AIR312 from AIR302 rules (AIR302, AIR312) (#17152)
• [airflow] Update oudated AIR301, AIR302 rules (#17123)
• [syntax-errors] Async comprehension in sync comprehension (#17177)
• [syntax-errors] Check annotations in annotated assignments (#17283)
• [syntax-errors] Extend annotation checks to await (#17282)

Bug fixes

... (truncated)

Commits

• f7b4851 Bump 0.11.7 (#17613)
• 9937064 [red-knot] Use iterative approach to collect overloads (#17607)
• 8d2c792 red_knot_python_semantic: avoid Rust's screaming snake case convention in mdtest
• 0f47810 red_knot_python_semantic: improve diagnostics for unsupported boolean convers...
• eb1d251 red_knot_python_semantic: add "return type span" helper method
• a45a0a9 red_knot_python_semantic: move parameter span helper method
• 43bd043 ruff_db: add a From impl for FileRange to Span
• 9a54ee3 red_knot_python_semantic: add snapshot tests for unsupported boolean conversions
• 25c3be5 [red-knot] simplify != narrowing (#17610)
• e71f3ed [red-knot] Update == and != narrowing (#17567)
• Additional commits viewable in compare view

Updates beautifulsoup4 from 4.13.3 to 4.13.4

Updates certifi from 2025.1.31 to 2025.4.26

Commits

• 275c9eb 2025.04.26 (#347)
• 3788331 Bump actions/setup-python from 5.4.0 to 5.5.0 (#346)
• 9d1f1b7 Bump actions/download-artifact from 4.1.9 to 4.2.1 (#344)
• 96b97a5 Bump actions/upload-artifact from 4.6.1 to 4.6.2 (#343)
• c054ed3 Bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 (#342)
• 44547fc Bump actions/download-artifact from 4.1.8 to 4.1.9 (#341)
• 5ea5124 Bump actions/upload-artifact from 4.6.0 to 4.6.1 (#340)
• 2f142b7 Bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 (#339)
• 80d2ebd Bump actions/setup-python from 5.3.0 to 5.4.0 (#337)
• See full diff in compare view

Updates identify from 2.6.9 to 2.6.10

Commits

• e200468 v2.6.10
• 41f40e2 Merge pull request #517 from sebastiaanspeck/patch-1
• 2ae839d Add support for Magik
• dc20df2 Merge pull request #516 from pre-commit/pre-commit-ci-update-config
• cba874f [pre-commit.ci] auto fixes from pre-commit.com hooks
• e839dfb [pre-commit.ci] pre-commit autoupdate
• See full diff in compare view

Updates marshmallow from 3.26.1 to 4.0.0

Changelog

Sourced from marshmallow's changelog.

4.0.0 (2025-04-16)

---

See :ref:upgrading_4_0 for a guide on updating your code.

Features:

• Typing: Add types to all Field <marshmallow.fields.Field> constructor kwargs (:issue:2285). Thanks :user:navignaw for the suggestion.
• DateTime <marshmallow.fields.DateTime>, Date <marshmallow.fields.Date>, Time <marshmallow.fields.Time>, TimeDelta <marshmallow.fields.TimeDelta>, and Enum <marshmallow.fields.Enum> accept their internal value types as valid input (:issue:1415). Thanks :user:bitdancer for the suggestion.
• @validates <marshmallow.validates> accepts multiple field names (:issue:1960). Backwards-incompatible: Decorated methods now receive data_key as a keyword argument. Thanks :user:dpriskorn for the suggestion and :user:dharani7998 for the PR.

Other changes:

• Typing: Field <marshmallow.fields.Field> is now a generic type with a type argument for the internal value type.

• marshmallow.fields.UUID no longer subclasses marshmallow.fields.String.

• marshmallow.Schema.load no longer silently fails to call schema validators when a generator is passed (:issue:1898). The typing of data is also updated to be more accurate. Thanks :user:ziplokk1 for reporting.

• Backwards-incompatible: Use datetime.date.fromisoformat, datetime.time.fromisoformat, and datetime.datetime.fromisoformat from the standard library to deserialize dates, times and datetimes (:pr:2078). As a consequence of this change:

  • Time with time offsets are now supported.
  • YYYY-MM-DD is now accepted as a datetime and deserialized as naive 00:00 AM.
  • from_iso_date, from_iso_time and from_iso_datetime are removed from marshmallow.utils.

• Remove isoformat, to_iso_time and to_iso_datetime from marshmallow.utils (:pr:2766).

• Remove from_rfc, and rfcformat from marshmallow.utils (:pr:2767).

• Remove is_keyed_tuple from marshmallow.utils (:pr:2768).

• Remove get_fixed_timezone from marshmallow.utils (:pr:2773).

• Backwards-incompatible: marshmallow.fields.Boolean no longer serializes non-boolean values (:pr:2725).

• Backwards-incompatible: Rename schema parameter to parent in marshmallow.fields.Field._bind_to_schema (:issue:1360).

• Backwards-incompatible: Rename pass_many parameter to pass_collection in pre/post processing methods (:issue:1369).

• Backwards-incompatible: marshmallow.fields.TimeDelta no longer truncates float values when deserializing (:pr:2654). This allows microseconds to be preserved, e.g.

.. code-block:: python

from marshmallow import fields
field = fields.TimeDelta()
Before
field.deserialize(12.9)
datetime.timedelta(seconds=12)
datetime.timedelta(seconds=12)

... (truncated)

Commits

• 84b1596 Bump version and update changelog
• a715b9e Bump sphinx-issues from 5.0.0 to 5.0.1 (#2819)
• 5c136b1 [pre-commit.ci] pre-commit autoupdate (#2817)
• df1daf0 Bump sphinxext-opengraph from 0.9.1 to 0.10.0 (#2818)
• 2fc8207 @​validates accepts multiple field names (#1965)
• b7026f3 Bump sphinx from 8.1.3 to 8.2.3
• c495e52 [pre-commit.ci] pre-commit autoupdate
• f0c6afb Add missing fields to all (#2809)
• ef06fbe [pre-commit.ci] pre-commit autoupdate (#2808)
• ffedbfe Merge branch '3.x-line' into dev
• Additional commits viewable in compare view

Updates more-itertools from 10.6.0 to 10.7.0

Release notes

Sourced from more-itertools's releases.

Version 10.7.0

See the change log here for details.

Commits

• 28ab736 Merge pull request #977 from more-itertools/version-10.7.0
• 4c1a0c7 Bump version: 10.6.0 → 10.7.0
• f2d5c9f Late-breaking changes for 10.7.0
• 5d5a9e6 Merge remote-tracking branch 'origin/master' into version-10.7.0
• 8988de6 Merge pull request #975 from rhettinger/groupby_transform_overloads
• c925c2e Fix inner Iterable types as well
• cc38c74 Fix #974: Inconsistent @​overload signatures
• 3742de9 Merge pull request #972 from ricbit/master
• c904030 Fix some typos
• 6d0fe02 Merge pull request #971 from rhettinger/small_doc_edits
• Additional commits viewable in compare view

Updates mypy-extensions from 1.0.0 to 1.1.0

Commits

• 70d9435 remove dev from version
• 8d272bb Switch build-backend to flit_core + use License-Expression for project metada...
• 1b46102 Bump dev version to 1.1.0-dev (#57)
• 400534f Deprecate mypy_extensions.NoReturn (#56)
• 23fbfa5 Update flake8 to 7.1.1 (#54)
• 9ddbb08 Cleanup tests (#55)
• 6d9c7b7 Move metadata to pyproject + drop Python 3.7 (#53)
• 812066c [pre-commit.ci] pre-commit autoupdate (#49)
• 9dd6d98 Add support for Python 3.12 (#48)
• e0c6670 Deprecate mypy_extensions.TypedDict (#47)
• Additional commits viewable in compare view

Updates pbs-installer from 2025.3.17 to 2025.4.9

Commits

• 1050a2a Bump version to 2025.04.09
• See full diff in compare view

Updates setuptools from 78.1.0 to 80.0.0

Changelog

Sourced from setuptools's changelog.

v80.0.0

Bugfixes

• Update test to honor new behavior in importlib_metadata 8.7. (#4961)

Deprecations and Removals

• Removed support for the easy_install command including the sandbox module. (#2908)
• Develop command no longer uses easy_install, but instead defers execution to pip (which then will re-invoke Setuptools via PEP 517 to build the editable wheel). Most of the options to develop are dropped. This is the final warning before the command is dropped completely in a few months. Use-cases relying on 'setup.py develop' should pin to older Setuptools version or migrate to modern build tooling. (#4955)

v79.0.1

Bugfixes

• Merge with pypa/distutils@24bd3179b including fix for pypa/distutils#355.

v79.0.0

Deprecations and Removals

• Removed support for 'legacy-editable' installs. (#917)

v78.1.1

Bugfixes

• More fully sanitized the filename in PackageIndex._download. (#4946)

Commits

• aeea792 Bump version: 79.0.1 → 80.0.0
• 2c874e7 Merge pull request #4962 from pypa/bugfix/4961-validated-eps
• 82c588a Update test to honor new behavior in importlib_metadata 8.7
• ef4cd29 Merge pull request #2908 from pypa/debt/remove-easy-install
• 85bbad4 Merge branch 'main' into debt/remove-easy-install
• 9653305 Merge pull request #4955 from pypa/debt/develop-uses-pip
• da119e7 Set a due date 6 months in advance.
• a7603da Rename news fragment to reference the pull request for better precise locality.
• 018a20c Restore a few of the options to develop.
• a5f02fe Remove another test relying on setup.py develop.
• Additional commits viewable in compare view

Updates soupsieve from 2.6 to 2.7

Release notes

Sourced from soupsieve's releases.

2.7

• NEW: Add :open pseudo selector.
• NEW: Add :muted pseudo selector.
• NEW: Recognize the following pseudo selectors: :autofill, :buffering, :fullscreen, :picture-in-picture, :popover-open, :seeking, :stalled, and :volume-locked. These selectors, while recognized, will not match any element as they require a live environment to check element states and browser states. This just prevents Soup Sieve from failing when any of these selectors are specified.
• NEW: A number of existing pseudo-classes are no longer noted as experimental.
• FIX: Typing fixes.

Commits

• a616022 Link license in readme
• 6b22489 Add new selectors and move some existing selectors out of experimental (#280)
• 48be2ee Branch specifiers on badge do not work
• fcb3aaf Actually update badge
• fef91c7 Update build badge
• 6fdce69 Fix some typing issues revealed with latest BS4 (#279)
• 6470b9d Fix a typo in faq.md (#277)
• a8080d9 Typos: Remove duplicate words
• See full diff in compare view

Updates starlette from 0.46.1 to 0.46.2

Release notes

Sourced from starlette's releases.

Version 0.46.2

What's Changed

• Use correct index on backwards compatible logic in TemplateResponse by @​alex-oleshkevich in encode/starlette#2909
• Prevents reraising of exception from BaseHTTPMiddleware by @​ramannanda9 in encode/starlette#2911

New Contributors

• @​ahryniv made their first contribution in encode/starlette#2913
• @​ramannanda9 made their first contribution in encode/starlette#2911

Full Changelog: encode/starlette@0.46.1...0.46.2

Changelog

Sourced from starlette's changelog.

0.46.2 (April 13, 2025)

Fixed

• Prevents reraising of exception from BaseHttpMiddleware #2911
• Use correct index on backwards compatible logic in TemplateResponse #2909.

Commits

• 4a81176 Version 0.46.2 (#2921)
• 48f7cd7 Prevents reraising of exception from BaseHttpMiddleware (#2911)
• 5d98cd5 Include Python 3.14 to the pipeline (#2919)
• eb6cebb Bump the python-packages group with 6 updates (#2914)
• d278caf Fix link title for contextvars.ContextVar (#2913)
• bcdf0ad fix IndexError in TemplateResponse (#2909)
• c8a4692 Update note about anyio thread pool (#2895)
• aa8f6f0 docs: fix email on sponsorship page
• a8a4437 docs: fix Alex's github handle (#2901)
• See full diff in compare view

Updates trove-classifiers from 2025.3.19.19 to 2025.4.11.15

Commits

• 466d2b2 Add classifier for Wagtail 7 (#210)
• See full diff in compare view

Updates urllib3 from 2.3.0 to 2.4.0

Release notes

Sourced from urllib3's releases.

2.4.0

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Features

• Applied PEP 639 by specifying the license fields in pyproject.toml. (#3522)
• Updated exceptions to save and restore more properties during the pickle/serialization process. (#3567)
• Added verify_flags option to create_urllib3_context with a default of VERIFY_X509_PARTIAL_CHAIN and VERIFY_X509_STRICT for Python 3.13+. (#3571)

Bugfixes

• Fixed a bug with partial reads of streaming data in Emscripten. (#3555)

Misc

• Switched to uv for installing development dependecies. (#3550)
• Removed the multiple.intoto.jsonl asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. (#3566)

Changelog

Sourced from urllib3's changelog.

2.4.0 (2025-04-10)

Features

• Applied PEP 639 by specifying the license fields in pyproject.toml. ([#3522](https://github.com/urllib3/urllib3/issues/3522) <https://github.com/urllib3/urllib3/issues/3522>__)
• Updated exceptions to save and restore more properties during the pickle/serialization process. ([#3567](https://github.com/urllib3/urllib3/issues/3567) <https://github.com/urllib3/urllib3/issues/3567>__)
• Added verify_flags option to create_urllib3_context with a default of VERIFY_X509_PARTIAL_CHAIN and VERIFY_X509_STRICT for Python 3.13+. ([#3571](https://github.com/urllib3/urllib3/issues/3571) <https://github.com/urllib3/urllib3/issues/3571>__)

Bugfixes

• Fixed a bug with partial reads of streaming data in Emscripten. ([#3555](https://github.com/urllib3/urllib3/issues/3555) <https://github.com/urllib3/urllib3/issues/3555>__)

Misc

• Switched to uv for installing development dependecies. ([#3550](https://github.com/urllib3/urllib3/issues/3550) <https://github.com/urllib3/urllib3/issues/3550>__)
• Removed the multiple.intoto.jsonl asset from GitHub releases. Attestation of release files since v2.3.0 can be found on PyPI. ([#3566](https://github.com/urllib3/urllib3/issues/3566) <https://github.com/urllib3/urllib3/issues/3566>__)

Commits

• a5ff7ac Release 2.4.0
• a135db2 Upgrade memray and coverage to fix macOS tests (#3589)
• 8f40e71 Upgrade the publishing action to get correct licensing info on PyPI (#3585)
• 3ff4e49 Add a link to the 2024 annual report (#3586)
• 75709c1 Set verify flags in create_urllib3_context (#3577)
• 5c8f82a Bump astral-sh/setup-uv from 5.3.0 to 5.4.1 (#3580)
• 42e90d8 Bump actions/setup-python from 5.4.0 to 5.5.0 (#3579)
• 3e8f2db Stop using Ubuntu 20.04 and 22.04 in CI (#3570)
• e29db82 Update exceptions to have more of their attributes pickled (#3572)
• f8a0c43 Add PyPy 3.11 to CI
• Additional commits viewable in compare view

Updates uvicorn from 0.34.0 to 0.34.2

Release notes

Sourced from uvicorn's releases.

Version 0.34.2

What's Changed

• Flush the stdout buffer on Windows to trigger reload by @​jamesh1999 in encode/uvicorn#2604

New Contributors

• @​jamesh1999 made their first contribution in encode/uvicorn#2604

Full Changelog: encode/uvicorn@0.34.1...0.34.2

Version 0.34.1

What's Changed

• Deprecate ServerState in the main module by @​Kludex in encode/uvicorn#2581

New Contributors

• @​RakhimovRamis made their first contribution in encode/uvicorn#2567
• @​carlwgeorge made their first contribution in encode/uvicorn#2590

Full Changelog: encode/uvicorn@0.34.0...0.34.1

Changelog

Sourced from uvicorn's changelog.

0.34.2 (April 19, 2025)

Fixed

• Flush stdout buffer on Windows to trigger reload (#2604)

0.34.1 (April 13, 2025)

Deprecated

• Deprecate ServerState in the main module (#2581)

Commits

• bdf95fd Version 0.34.2 (#2616)
• 86dc456 Flush the stdout buffer on Windows to trigger reload (#2604)
• 695820a Version 0.34.1 (#2612)
• 56c45db docs: add sponsorship banner (#2611)
• f2192cc docs: add section about Docker under Deployment (#2610)
• 7fb029d Bump the python-packages group with 8 updates (#2606)
• 4fdfec4 docs: mention discord instead of gitter (#2595)
• e5f3663 Speed up test suite with pytest-xdist (#2537)
• 2445e79 docs: improve settings page (#2594)
• 7abc199 Bump the python-packages group with 5 updates (#2588)
• Additional commits viewable in compare view

Updates watchfiles from 1.0.4 to 1.0.5

Release notes

Sourced from watchfiles's releases.

v1.0.5 2025-04-08

What's Changed

• Bump pyo3 from 0.23.3 to 0.24.1 by @​dependabot in samuelcolvin/watchfiles#333
• use uv publish --trusted-publishing, remove twine check by @​samuelcolvin in samuelcolvin/watchfiles#334
• uprev to 1.0.5 by @​samuelcolvin in samuelcolvin/watchfiles#335

Full Changelog: samuelcolvin/watchfiles@v1.0.4...v1.0.5

Commits

• 85997dd fix publishing
• 3a4c7e9 uprev to 1.0.5 (#335)
• 5be19ff use uv publish --trusted-publishing, remove twine check (#334)
• 188f5e9 Bump pyo3 from 0.23.3 to 0.24.1 (#333)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.