build(deps): bump the dependencies group across 1 directory with 8 updates

[dependabot]

Bumps the dependencies group with 8 updates in the / directory:

Package	From	To
nvidia-cublas-cu12	12.8.3.14	12.8.4.1
granian	1.7.6	2.1.1
litestar	2.14.0	2.15.1
pydantic-settings	2.8.0	2.8.1
pyright	1.1.394	1.1.397
pylint	3.3.4	3.3.6
pytest	8.3.4	8.3.5
ruff	0.9.7	0.11.1

Updates nvidia-cublas-cu12 from 12.8.3.14 to 12.8.4.1

Updates granian from 1.7.6 to 2.1.1

Release notes

Sourced from granian's releases.

Granian 2.1.1

Patch release

Changes since 2.1.0:

• Fix a bug in RSGI implementation preventing HTTP protocol client_disconnect usage with access log enabled

Granian 2.1.0

What's Changed

New features

• Support Server header value to be customized in applications
• Bump RSGI spec to 1.5
  • Add client_disconnect coroutine to HTTP protocol

Changes

• Bump PyO3 to 0.24
• Bump dependencies

Enhancements

• Wait for inflight requests to complete on workers shutdown
• Detect client disconnection in ASGI
• Minor ASGI I/O state flow refactor

Fixes

• Embed server shutdown

Granian 2.0.1

Patch release

Changes since 2.0.0:

• Fix a regression bug preventing anyio.to_thread.run_sync to run properly

Granian 2.0.0

What's Changed

New features

• Experimental support for free-threaded Python
• runtime-blocking-threads option
• blocking-threads-idle-timeout option
• http1-header-read-timeout option
• PyPy 3.11 support
• Embeddable server variant in granian.server.embed module

Changes

• uvloop dependency is now optional and gated behind the relevant dependency extra
• BREAKING renamed threads option to runtime-threads
• BREAKING blocking-threads option now affects Python interop threads only
• BREAKING removed threading-mode in favor of runtime-mode
  • previous workers option is now st
  • previous runtime option is now mt

... (truncated)

Commits

• 77f7168 Add missing client_disconnect method to rsgi._LoggingProto
• 46f6208 Bump version to 2.1.1
• 07bb80f Bump dependencies
• 0c6897b Better var names in ASGI I/O
• e804c9e Add client disconnection handling in ASGI and RSGI (#524)
• 74020ed Skip embed test on CI
• aeac42e Review ASGI I/O flow (#523)
• 50f4a15 Support custom server header (#522)
• 1659e51 Fix embed server shutdown
• cb8f66c Bump PyO3 to 0.24 (#521)
• Additional commits viewable in compare view

Updates litestar from 2.14.0 to 2.15.1

Release notes

Sourced from litestar's releases.

v2.15.1

Sponsors 🌟

Thanks to these incredible business sponsors:

• Scalar (@​scalar), Telemetry Sports (via @​chris-telemetry)

Thanks to these incredible personal sponsors:

• Polar.sh: @​Nozavi, @​cemrehancavdar, @​thomastu

• GitHub Sponsors: @​roboflow, @​benjamin-kirkbride, @​ddahan, @​cbscsm

• OpenCollective: Christian Y

• A huge 'Thank you!' to all sponsors across Polar.sh, OpenCollective and GitHub Sponsors!

New contributors 🎉

• @​eandersons made their first contribution in litestar-org/litestar#4032

Bugfixes 🐛

• fix: Warn about using streaming responses with a body by @​provinzkraut in litestar-org/litestar#4033
• fix: Fix #4035 - incorrect deprecation warning issued when subclassing middlewares by @​provinzkraut in litestar-org/litestar#4036

Other changes

• docs: Use "click to toggle" instead of "click to expand" by @​eandersons in litestar-org/litestar#4032

Full Changelog litestar-org/litestar@v2.15.0...v2.15.1

v2.15.0

Sponsors 🌟

Thanks to these incredible business sponsors:

• Scalar (@​scalar), Telemetry Sports (via @​chris-telemetry)

Thanks to these incredible personal sponsors:

• Polar.sh: @​Nozavi, @​cemrehancavdar, @​thomastu

• GitHub Sponsors: @​roboflow, @​benjamin-kirkbride, @​ddahan, @​cbscsm

• OpenCollective: Christian Y

• A huge 'Thank you!' to all sponsors across Polar.sh, OpenCollective and GitHub Sponsors!

What's changed

New contributors 🎉

• @​iyad-f made their first contribution in litestar-org/litestar#3935
• @​pech2 made their first contribution in litestar-org/litestar#3994
• @​Ada-lave made their first contribution in litestar-org/litestar#3988
• @​YorkSu made their first contribution in litestar-org/litestar#3970
• @​sloria made their first contribution in litestar-org/litestar#3953

... (truncated)

Commits

• c5dbb6c v2.15.1
• cc6148c fix: Fix #4035 - incorrect deprecation warning issued when subclassing middle...
• 05005ca fix: Warn about using streaming responses with a body (#4033)
• e7477ac docs: Use "click to toggle" instead of "click to expand" (#4032)
• 86ceeb3 v2.15.0
• 2177560 feat(debugger): passing debugger to app (#3967)
• 12d0e8f feat: Add SerializationPlugin and InitPlugin to replace their respective ...
• cd26215 docs: fix typos in channels and responses (#4023)
• 6054667 feat(core): new base middleware (#3996)
• 27a5b1d ci: Add aggregate test step to allow for dynamic test matrix jobs to be requr...
• Additional commits viewable in compare view

Updates pydantic-settings from 2.8.0 to 2.8.1

Release notes

Sourced from pydantic-settings's releases.

v2.8.1

What's Changed

• Fix for init source kwarg alias resolution. by @​kschwab in pydantic/pydantic-settings#550
• Revert usage of positional only argument in BaseSettings.__init__ by @​Viicos in pydantic/pydantic-settings#557
• Revert use of object instead of Any by @​Viicos in pydantic/pydantic-settings#559
• Prepare release 2.8.1 by @​hramezani in pydantic/pydantic-settings#558

Full Changelog: pydantic/pydantic-settings@v2.8.0...v2.8.1

Commits

• 5f33b62 Prepare release 2.8.1 (#558)
• fa64a4e Revert use of object instead of Any (#559)
• 21e6b23 Revert usage of positional only argument in BaseSettings.__init__ (#557)
• 1a4f3f4 Fix for init source kwarg alias resolution. (#550)
• See full diff in compare view

Updates pyright from 1.1.394 to 1.1.397

Commits

• e283a98 Pyright NPM Package update to 1.1.397 (#339)
• 2a04b2c CI: bump actions versions (#340)
• 5617c6c [pyright updated to 1.1.396] Update Version (#338)
• 72e863b chore(ci): remove invalid reviewers (#336)
• 74b6b55 [pyright updated to 1.1.395] Update Version (#335)
• See full diff in compare view

Updates pylint from 3.3.4 to 3.3.6

Commits

• 7ac5a4d Bump pylint to 3.3.6, update changelog
• 32871c5 Move deprecated 'tool.setuptools.license-files', remove license classifier (#...
• 6455c45 Add pyproject.fmt to the pre-commit tooling (#10220)
• e394611 Bump types-setuptools from 75.8.2.20250305 to 76.0.0.20250313 (#10279)
• 544464a [used-before-assignment] Fix FP for inner function return type (#10275) (#10285)
• f28d768 Ref #10260 -- Add documentation for the github output format (#10272) (#10273)
• 6b68f91 Add additional permissions for backport workflow (#10269) (#10270)
• 819d606 Minor improvements to release workflow (#10267)
• aaab3cc Bump pylint to 3.3.5, update changelog (#10266)
• 1052bc8 Bump pylint to 3.3.5a0, update changelog
• Additional commits viewable in compare view

Updates pytest from 8.3.4 to 8.3.5

Release notes

Sourced from pytest's releases.

8.3.5

pytest 8.3.5 (2025-03-02)

Bug fixes

• #11777: Fixed issue where sequences were still being shortened even with -vv verbosity.
• #12888: Fixed broken input when using Python 3.13+ and a libedit build of Python, such as on macOS or with uv-managed Python binaries from the python-build-standalone project. This could manifest e.g. by a broken prompt when using Pdb, or seeing empty inputs with manual usage of input() and suspended capturing.
• #13026: Fixed AttributeError{.interpreted-text role="class"} crash when using --import-mode=importlib when top-level directory same name as another module of the standard library.
• #13053: Fixed a regression in pytest 8.3.4 where, when using --import-mode=importlib, a directory containing py file with the same name would cause an ImportError
• #13083: Fixed issue where pytest could crash if one of the collected directories got removed during collection.

Improved documentation

• #12842: Added dedicated page about using types with pytest.

  See types{.interpreted-text role="ref"} for detailed usage.

Contributor-facing changes

• #13112: Fixed selftest failures in test_terminal.py with Pygments >= 2.19.0
• #13256: Support for Towncrier versions released in 2024 has been re-enabled when building Sphinx docs -- by webknjaz{.interpreted-text role="user"}.

Commits

• b55ab2a Prepare release version 8.3.5
• e217726 Added dedicated page about using types with pytest #12842 (#12963) (#13260)
• 2fa3f83 Add more resources and studies to flaky tests page in docs (#13250) (#13259)
• e5c2efe Merge pull request #13256 from webknjaz/maintenance/towncrier-bump (#13258)
• 3419674 Merge pull request #13187 from pytest-dev/patchback/backports/8.3.x/b4009b319...
• b75cfb1 Add readline workaround for libedit (#13176)
• edbfff7 doc: Clarify capturing .readouterr() return value (#13222) (#13225)
• 2ebba00 Merge pull request #13199 from jakkdl/tox_docs_no_fetch (#13200)
• eb6496b doc: Change training to remote only (#13196) (#13197)
• 78cf1f6 ci: Bump build-and-inspect-python-package (#13188)
• Additional commits viewable in compare view

Updates ruff from 0.9.7 to 0.11.1

Release notes

Sourced from ruff's releases.

0.11.1

Release Notes

Preview features

• [airflow] Add chain, chain_linear and cross_downstream for AIR302 (#16647)
• [syntax-errors] Improve error message and range for pre-PEP-614 decorator syntax errors (#16581)
• [syntax-errors] PEP 701 f-strings before Python 3.12 (#16543)
• [syntax-errors] Parenthesized context managers before Python 3.9 (#16523)
• [syntax-errors] Star annotations before Python 3.11 (#16545)
• [syntax-errors] Star expression in index before Python 3.11 (#16544)
• [syntax-errors] Unparenthesized assignment expressions in sets and indexes (#16404)

Bug fixes

• Server: Allow FixAll action in presence of version-specific syntax errors (#16848)
• [flake8-bandit] Allow raw strings in suspicious-mark-safe-usage (S308) #16702 (#16770)
• [refurb] Avoid panicking unwrap in verbose-decimal-constructor (FURB157) (#16777)
• [refurb] Fix starred expressions fix (FURB161) (#16550)
• Fix --statistics reporting for unsafe fixes (#16756)

Rule changes

• [flake8-executables] Allow uv run in shebang line for shebang-missing-python (EXE003) (#16849,#16855)

CLI

• Add --exit-non-zero-on-format (#16009)

Documentation

• Update Ruff tutorial to avoid non-existent fix in __init__.py (#16818)
• [flake8-gettext] Swap format- and printf-in-get-text-func-call examples (INT002, INT003) (#16769)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​InSyncWithFoo
• @​MatthewMckee4
• @​MichaReiser
• @​VascoSch92
• @​ZedThree
• @​cake-monotone
• @​carljm
• @​charliermarsh
• @​dcreager
• @​dhruvmanila
• @​dylwil3
• @​github-actions
• @​junhsonjb

... (truncated)

Changelog

Sourced from ruff's changelog.

0.11.1

Preview features

• [airflow] Add chain, chain_linear and cross_downstream for AIR302 (#16647)
• [syntax-errors] Improve error message and range for pre-PEP-614 decorator syntax errors (#16581)
• [syntax-errors] PEP 701 f-strings before Python 3.12 (#16543)
• [syntax-errors] Parenthesized context managers before Python 3.9 (#16523)
• [syntax-errors] Star annotations before Python 3.11 (#16545)
• [syntax-errors] Star expression in index before Python 3.11 (#16544)
• [syntax-errors] Unparenthesized assignment expressions in sets and indexes (#16404)

Bug fixes

• Server: Allow FixAll action in presence of version-specific syntax errors (#16848)
• [flake8-bandit] Allow raw strings in suspicious-mark-safe-usage (S308) #16702 (#16770)
• [refurb] Avoid panicking unwrap in verbose-decimal-constructor (FURB157) (#16777)
• [refurb] Fix starred expressions fix (FURB161) (#16550)
• Fix --statistics reporting for unsafe fixes (#16756)

Rule changes

• [flake8-executables] Allow uv run in shebang line for shebang-missing-python (EXE003) (#16849,#16855)

CLI

• Add --exit-non-zero-on-format (#16009)

Documentation

• Update Ruff tutorial to avoid non-existent fix in __init__.py (#16818)
• [flake8-gettext] Swap format- and printf-in-get-text-func-call examples (INT002, INT003) (#16769)

0.11.0

This is a follow-up to release 0.10.0. Because of a mistake in the release process, the requires-python inference changes were not included in that release. Ruff 0.11.0 now includes this change as well as the stabilization of the preview behavior for PGH004.

Breaking changes

• Changes to how the Python version is inferred when a target-version is not specified (#16319)

  In previous versions of Ruff, you could specify your Python version with:

  • The target-version option in a ruff.toml file or the [tool.ruff] section of a pyproject.toml file.
  • The project.requires-python field in a pyproject.toml file with a [tool.ruff] section.

  These options worked well in most cases, and are still recommended for fine control of the Python version. However, because of the way Ruff discovers config files, pyproject.toml files without a [tool.ruff] section would be ignored, including the requires-python setting. Ruff would then use the default Python version (3.9 as of this writing) instead, which is surprising when you've attempted to request another version.

  In v0.10, config discovery has been updated to address this issue:

... (truncated)

Commits

• c1971fd Bump 0.11.1 (#16871)
• cdafd8e Allow discovery of venv in VIRTUAL_ENV env variable (#16853)
• 1272594 Split git pathspecs in change determination onto separate lines (#16869)
• 9d72685 Use the correct base commit for change determination (#16857)
• 47c4ccf Separate BitXorOr into BitXor and BitOr precedence (#16844)
• 74f64d3 Server: Allow FixAll action in presence of version-specific syntax errors (...
• 999fd4f [refurb] Fix starred expressions fix (FURB161) (#16550)
• 433a342 [flake8-executable] Add pytest and uv run to help message for `shebang-miss...
• 4ed93b4 Show more precise messages in invalid type expressions (#16850)
• 98fdc0e [flake8-executables] Allow uv run in shebang line for `shebang-missing-py...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.