Bump the minor-and-patch group with 2 updates

[dependabot]

Bumps the minor-and-patch group with 2 updates: pypdf and ty.

Updates pypdf from 6.6.2 to 6.7.0

Release notes

Sourced from pypdf's releases.

Version 6.7.0, 2026-02-08

What's new

Deprecations (DEP)

• Deprecate support for abbreviations in decode_stream_data (#3617) by @​stefan6419846

New Features (ENH)

• Add ability to add font resources for 14 Adobe Core fonts in text widget annotations (#3624) by @​PJBrs

Bug Fixes (BUG)

• Avoid invalid load for ICCBased FlateDecode images in mode 1 (#3619) by @​stefan6419846

Robustness (ROB)

• Fix AESV2 decryption when /Length missing in encrypt dict (#3629) by @​dmitry-kostin
• Fix merging when annotations point to NullObject (#3613) by @​stefan6419846
• Check for self._info being None in compress_identical_objects (#3612) by @​stefan6419846

Full Changelog

Changelog

Sourced from pypdf's changelog.

Version 6.7.0, 2026-02-08

Deprecations (DEP)

• Deprecate support for abbreviations in decode_stream_data (#3617)

New Features (ENH)

• Add ability to add font resources for 14 Adobe Core fonts in text widget annotations (#3624)

Bug Fixes (BUG)

• Avoid invalid load for ICCBased FlateDecode images in mode 1 (#3619)

Robustness (ROB)

• Fix AESV2 decryption when /Length missing in encrypt dict (#3629)
• Fix merging when annotations point to NullObject (#3613)
• Check for self._info being None in compress_identical_objects (#3612)

Full Changelog

Commits

• 219153e REL: 6.7.0
• cf33a60 ENH: Add ability to add font resources for 14 Adobe Core fonts in text widget...
• 3b94ce8 ROB: Fix AESV2 decryption when /Length missing in encrypt dict (#3629)
• aab6585 DEV: Update ruff to 0.15.0 (#3627)
• ecc23d8 DEV: Remove unused tools from pyproject.toml (#3623)
• 026e08a MAINT: Avoid code duplicates for test file directories (#3621)
• f6f8427 MAINT: Further refactoring of the Font and FontDescriptor classes and Core Fo...
• 8f1857d MAINT: Reduce maximum code complexity to 30 (#3620)
• 14ef6b1 BUG: Avoid invalid load for ICCBased FlateDecode images in mode 1 (#3619)
• 5d6d7f0 DEP: Deprecate support for abbreviations in decode_stream_data (#3617)
• Additional commits viewable in compare view

Updates ty from 0.0.14 to 0.0.15

Release notes

Sourced from ty's releases.

0.0.15

Release Notes

Released on 2026-02-04.

Bug fixes

• Add support for resolving imports of packages installed into Debian/Ubuntu dist-packages directories (#22466)
• Avoid not-iterable false positives when iterating over an instance of an intersection type with only negated elements (#22089)
• Fix support for stringized annotations in very large files (#22913)
• Don't emit Liskov diagnostics for methods with mangled names (#23062)
• Enforce that a Final symbol cannot be reassigned even after a conditional binding (#22986)
• Fix TypedDict construction from existing TypedDict values (#22904)
• Fix Self resolution for classes nested within methods (#22964)
• Fix bidirectional inference with PEP 695 union type aliases (#22988)
• Fix edge-case bugs when narrowing tagged unions in match statements (#22870)
• Fix false-positive diagnostics when iterating over an instance of an intersection that includes a TypeVar of which the upper bound is a union where the union includes a non-iterable type (#22117)
• Fix lookup of __contains__ to respect descriptors (#23056)
• Fix narrowing of nonlocal variables with conditional assignments (#22966)
• Fix several bugs that could affect NewTypes of NewTypes of float (#22997)
• Fix several type narrowing bugs involving PEP-695 type aliases (#22894)
• Fix spurious query cycles in decorated functions with parameter defaults, for improved performance and improved determinism (#23014)
• Fix unary and comparison operators for TypeVars with union bounds (#22925)
• Understand functions as method descriptors even if they are decorated with a decorator annotated as returning a PEP-695 alias to a Callable type (#22902)
• dataclass_transform: Fix visibility of field specifiers when models are nested inside methods (#23069)

LSP server

• Fix hover showing Unknown for bare Final instance attributes (#23003)
• Improve support for goto-type, goto-declaration, hover, and highlighting of string annotations (#22878)
• Include setters and deleters when renaming properties (#22999)
• Show type qualifiers like Final in on-hover hints (#23005)

Configuration

• Add new unused-type-ignore-comment rule (#22790)
• Add a mechanism to ignore/warn/select all rules (#22832)
• Support multiple workspace folders in a single ty LSP server instance (#22953)
• Only add ./src as a search path if ./src/__init__.py(i) does not exist (#22851)

Type checking

• Add a diagnostic detecting if a variable is declared as Final but never has any bindings (#23001)
• Add a diagnostic detecting overridden comparison dunder methods on order=True dataclasses (#22689)
• Add a hint to invalid-argument-type and invalid-assignment diagnostics if a variable is annotated with a type from the numbers module (#22931, #22938)
• Add diagnostic hint on unresolved-reference to suggest using "list" instead of "List" (#22827)
• Add new diagnostic for invalid dataclass field orders (#19825)
• Allow a subclass method with a positional-only parameter to override a superclass method without that parameter if the parameter in the subclass method has a default value (#23037)
• Allow self-referential imports outside the global scope (#22963)
• Ban ... in odd places inside tuple specializations (#22889)

... (truncated)

Changelog

Sourced from ty's changelog.

0.0.15

Released on 2026-02-04.

Bug fixes

• Add support for resolving imports of packages installed into Debian/Ubuntu dist-packages directories (#22466)
• Avoid not-iterable false positives when iterating over an instance of an intersection type with only negated elements (#22089)
• Fix support for stringized annotations in very large files (#22913)
• Don't emit Liskov diagnostics for methods with mangled names (#23062)
• Enforce that a Final symbol cannot be reassigned even after a conditional binding (#22986)
• Fix TypedDict construction from existing TypedDict values (#22904)
• Fix Self resolution for classes nested within methods (#22964)
• Fix bidirectional inference with PEP 695 union type aliases (#22988)
• Fix edge-case bugs when narrowing tagged unions in match statements (#22870)
• Fix false-positive diagnostics when iterating over an instance of an intersection that includes a TypeVar of which the upper bound is a union where the union includes a non-iterable type (#22117)
• Fix lookup of __contains__ to respect descriptors (#23056)
• Fix narrowing of nonlocal variables with conditional assignments (#22966)
• Fix several bugs that could affect NewTypes of NewTypes of float (#22997)
• Fix several type narrowing bugs involving PEP-695 type aliases (#22894)
• Fix spurious query cycles in decorated functions with parameter defaults, for improved performance and improved determinism (#23014)
• Fix unary and comparison operators for TypeVars with union bounds (#22925)
• Understand functions as method descriptors even if they are decorated with a decorator annotated as returning a PEP-695 alias to a Callable type (#22902)
• dataclass_transform: Fix visibility of field specifiers when models are nested inside methods (#23069)

LSP server

• Fix hover showing Unknown for bare Final instance attributes (#23003)
• Improve support for goto-type, goto-declaration, hover, and highlighting of string annotations (#22878)
• Include setters and deleters when renaming properties (#22999)
• Show type qualifiers like Final in on-hover hints (#23005)

Configuration

• Add new unused-type-ignore-comment rule (#22790)
• Add a mechanism to ignore/warn/select all rules (#22832)
• Support multiple workspace folders in a single ty LSP server instance (#22953)
• Only add ./src as a search path if ./src/__init__.py(i) does not exist (#22851)

Type checking

• Add a diagnostic detecting if a variable is declared as Final but never has any bindings (#23001)
• Add a diagnostic detecting overridden comparison dunder methods on order=True dataclasses (#22689)
• Add a hint to invalid-argument-type and invalid-assignment diagnostics if a variable is annotated with a type from the numbers module (#22931, #22938)
• Add diagnostic hint on unresolved-reference to suggest using "list" instead of "List" (#22827)
• Add new diagnostic for invalid dataclass field orders (#19825)
• Allow a subclass method with a positional-only parameter to override a superclass method without that parameter if the parameter in the subclass method has a default value (#23037)
• Allow self-referential imports outside the global scope (#22963)
• Ban ... in odd places inside tuple specializations (#22889)
• Ban Required, NotRequired and ReadOnly in parameter annotations (#22888)

... (truncated)

Commits

• eb43dff Bump version to 0.0.15 (#2717)
• 338058b Add instructions for how to run ty with Bazel (#2711)
• deed12c Fix ty version reporting in Docker distributions (#2702)
• 3f490fa Document configuration option for setting level for all rules (#2691)
• 7973355 Update actions/setup-python action to v6.2.0 (#2697)
• 8016db5 Update astral-sh/setup-uv action to v7.2.1 (#2695)
• 28127db Update prek dependencies (#2696)
• ae931b2 docs: add llms.txt support (#2634)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.