chore(deps-dev): bump the python-dependencies group across 1 directory with 10 updates

[dependabot]

Updates the requirements on uvicorn, boto3, pypdf, langchain, langchain-core, langchain-openai, cachetools, moto[proxy], pyjwt and black to permit the latest version.
Updates uvicorn to 0.42.0

Release notes

Sourced from uvicorn's releases.

Version 0.42.0

Changed

• Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

• Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• Fix multiple issues in websockets sans-io implementation (#2825)

---

New Contributors

• @​bysiber made their first contribution in Kludex/uvicorn#2825

---

Full Changelog: Kludex/uvicorn@0.41.0...0.42.0

Changelog

Sourced from uvicorn's changelog.

0.42.0 (March 16, 2026)

Changed

• Use bytearray for request body accumulation to avoid O(n^2) allocation on fragmented bodies (#2845)

Fixed

• Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• Fix multiple issues in websockets sans-io implementation (#2825)

0.41.0 (February 16, 2026)

Added

• Add --limit-max-requests-jitter to stagger worker restarts (#2707)
• Add socket path to scope["server"] (#2561)

Changed

• Rename LifespanOn.error_occured to error_occurred (#2776)

Fixed

• Ignore permission denied errors in watchfiles reloader (#2817)
• Ensure lifespan shutdown runs when should_exit is set during startup (#2812)
• Reduce the log level of 'request limit exceeded' messages (#2788)

0.40.0 (December 21, 2025)

Remove

• Drop support for Python 3.9 (#2772)

0.39.0 (December 21, 2025)

Fixed

• Send close frame on ASGI return for WebSockets (#2769)
• Explicitly start ASGI run with empty context (#2742)

0.38.0 (October 18, 2025)

Added

• Support Python 3.14 (#2723)

0.37.0 (September 23, 2025)

Added

... (truncated)

Commits

• 02bed6f Version 0.42.0 (#2852)
• d8f2501 chore: pre-create Config objects in benchmarks to measure protocol hot paths ...
• 9dbb783 Add WebSocket protocol benchmarks for wsproto and websockets-sansio (#2849)
• b3c69da Use bytearray for request body accumulation (#2845)
• 3f3ebee Disable pytest-xdist for CodSpeed benchmark runs (#2847)
• d072de7 Add fragmented body benchmark for chunked body accumulation (#2846)
• e300c2c Add CodSpeed benchmark suite for HTTP protocol hot paths (#2844)
• 1fa6976 Escape brackets and backslash in httptools HEADER_RE regex (#2824)
• 59ec1de Fix multiple issues in websockets sansio implementation (#2825)
• 2fc0efc Clarify Windows asyncio event loop selection in docs (#2843)
• Additional commits viewable in compare view

Updates boto3 from 1.42.59 to 1.42.69

Commits

• 3f60ae5 Merge branch 'release-1.42.69'
• e1a1595 Bumping version to 1.42.69
• 1eb051c Add changelog entries from botocore
• fbfa858 Bump github/codeql-action from 4.32.1 to 4.33.0 (#4735)
• 6b10acd Merge branch 'release-1.42.68'
• 4b02b3c Merge branch 'release-1.42.68' into develop
• 0b7dcef Bumping version to 1.42.68
• 5754b6f Add changelog entries from botocore
• b1ff6b0 Merge branch 'release-1.42.67'
• d62e89b Merge branch 'release-1.42.67' into develop
• Additional commits viewable in compare view

Updates pypdf from 6.7.5 to 6.9.0

Release notes

Sourced from pypdf's releases.

Version 6.9.0, 2026-03-15

What's new

New Features (ENH)

• Expose /Perms verification result on Encryption object (#3672) by @​costajohnt

Performance Improvements (PI)

• Fix O(n²) performance in NameObject read/write (#3679) by @​dmitry-kostin
• Batch-parse all objects in ObjStm on first access (#3677) by @​dmitry-kostin

Bug Fixes (BUG)

• Avoid sharing array-based content streams between pages (#3681) by @​stefan6419846
• Avoid accessing invalid page when inserting blank page under some conditions (#3529) by @​j-t-1

Full Changelog

Version 6.8.0, 2026-03-09

What's new

Security (SEC)

• Limit allowed /Length value of stream (#3675) by @​stefan6419846

New Features (ENH)

• Add /IRT (in-reply-to) support for markup annotations (#3631) by @​costajohnt

Documentation (DOC)

• Avoid using PageObject.replace_contents on PdfReader (#3669) by @​stefan6419846
• Document how to disable jbig2dec calls by @​stefan6419846

Full Changelog

Changelog

Sourced from pypdf's changelog.

Version 6.9.0, 2026-03-15

New Features (ENH)

• Expose /Perms verification result on Encryption object (#3672)

Performance Improvements (PI)

• Fix O(n²) performance in NameObject read/write (#3679)
• Batch-parse all objects in ObjStm on first access (#3677)

Bug Fixes (BUG)

• Avoid sharing array-based content streams between pages (#3681)
• Avoid accessing invalid page when inserting blank page under some conditions (#3529)

Full Changelog

Version 6.8.0, 2026-03-09

Security (SEC)

• Limit allowed /Length value of stream (#3675)

New Features (ENH)

• Add /IRT (in-reply-to) support for markup annotations (#3631)

Documentation (DOC)

• Avoid using PageObject.replace_contents on PdfReader (#3669)
• Document how to disable jbig2dec calls

Full Changelog

Commits

• 8f1f4aa REL: 6.9.0
• 5a9a0da BUG: Avoid sharing array-based content streams between pages (#3681)
• a3451e8 ENH: Expose /Perms verification result on Encryption object (#3672)
• 3a4e913 PI: Fix O(n²) performance in NameObject read/write (#3679)
• cf2e518 PI: Batch-parse all objects in ObjStm on first access (#3677)
• 2cfcd7e BUG: Avoid accessing invalid page when inserting blank page under some condit...
• a869ece REL: 6.8.0
• 3c550b3 SEC: Limit allowed /Length value of stream (#3675)
• 5dae0e2 MAINT: Document and test XMP security (#3674)
• b9f66ab DEV: Change to loadfile strategy for PyPy in CI (#3671)
• Additional commits viewable in compare view

Updates langchain from 1.2.10 to 1.2.12

Release notes

Sourced from langchain's releases.

langchain-core==1.2.12

Changes since langchain-core==1.2.11

release(core): 1.2.12 (#35192) fix(core): fix setting ChatGeneration.text (#35191)

langchain==1.2.12

Changes since langchain==1.2.11

release(langchain_v1): 1.2.12 (#35770) feat: tracing for wrap model + tool call (#35765)

langchain-core==1.2.11

Changes since langchain-core==1.2.10

release(core): 1.2.11 (#35144) fix(openai): sanitize urls when counting tokens in images (#35143) chore(core): clean up docstring mismatch and redundant logic in langchain-core (#35064) fix(core): replace bare except with Exception in tracer (#35138)

langchain==1.2.11

Changes since langchain==1.2.10

release(langchain_v1): 1.2.11 (#35723) fix(langchain): normalize custom detector output to prevent KeyError in hash/mask strategies (#35651) chore: bump the minor-and-patch group across 3 directories with 7 updates (#35605) chore(langchain): switch refs from gemini-3 to gemini-3.1 (#35535) chore: bump the langchain-deps group across 3 directories with 7 updates (#35513) chore: bump langgraph-checkpoint from 3.0.1 to 4.0.0 in /libs/langchain_v1 (#35445) chore: bump the langchain-deps group across 3 directories with 14 updates (#35441) chore: bump google-cloud-aiplatform from 1.127.0 to 1.133.0 in /libs/langchain_v1 (#35397) revert: add ChatAnthropicBedrockWrapper (#35371) fix(langchain): support anthropic-bedrock in init_chat_model (#35366) style: fix some ruff noqa (#35321) fix(langchain): allow Gemini 3 models to use ProviderStrategy with tools (#34464) docs: fix docstring inaccuracies and update outdated LangSmith URLs (#35283) feat(openai): support automatic server-side compaction (#35212) chore: bump the langchain-deps group across 3 directories with 8 updates (#35257) feat(openrouter): add langchain-openrouter provider package (#35211) style: bump ruff version to 0.15 (#35042) chore(deps): bump pillow from 12.0.0 to 12.1.1 in /libs/langchain_v1 (#35174) chore(core): raise more descriptive model error in init_chat_model (#35167) chore(deps): bump langsmith from 0.4.42 to 0.6.3 in /libs/langchain_v1 (#35149) chore(deps): bump cryptography from 46.0.3 to 46.0.5 in /libs/langchain_v1 (#35148)

Commits

• 2a137bf release(langchain_v1): 1.2.12 (#35770)
• 25f94ee feat: tracing for wrap model + tool call (#35765)
• f9dbd22 fix(openai): typo (#35763)
• 70cd1bd ci: allow bot bypass (#35762)
• 3e4c0d5 chore(model-profiles): refresh model profile data (#35754)
• 7cef35b chore: add reference docs MCP (#35737)
• 057c484 release(langchain_v1): 1.2.11 (#35723)
• cb50fed ci: bypass issue-link gate for trusted contributors (#35720)
• 292d0bd docs(huggingface): add [full] install guidance and sentence-transformers>=5.2...
• 3e459be ci: use app token for external PR label to trigger downstream workflows (#35710)
• Additional commits viewable in compare view

Updates langchain-core from 1.2.17 to 1.2.19

Release notes

Sourced from langchain-core's releases.

langchain-core==1.2.19

Changes since langchain-core==1.2.18

release(core): 1.2.19 (#35832) chore(core): move BaseCrossEncoder to langchain-core (#35809) chore: bump tornado from 6.5.2 to 6.5.5 in /libs/core (#35775)

langchain-core==1.2.18

Changes since langchain-core==1.2.17

release(core): 1.2.18 (#35704) fix(core): fix double backticks in deprecation docstring for alternative_import (#35658) fix(core): preserve default_factory when generating tool call schema (#35550) feat(openai): support tool search (#35582) chore: bump the minor-and-patch group across 3 directories with 7 updates (#35605)

Commits

• 41cca20 release(core): 1.2.19 (#35832)
• 307cdca chore(core): move BaseCrossEncoder to langchain-core (#35809)
• cee6430 refactor(xai): remove redundant lc_attributes override (#35791)
• 6b9b4c6 feat(xai): support base_url alias and XAI_API_BASE env var (#35790)
• b676167 fix(deepseek): accept base_url as alias for api_base (#35789)
• 5d9568b feat(model-profiles): new fields + Makefile target (#35788)
• 1891d41 chore: bump tornado from 6.5.2 to 6.5.5 in /libs/text-splitters (#35774)
• 1d954bc chore: bump tornado from 6.5.2 to 6.5.5 in /libs/langchain (#35773)
• 261b1d5 chore: bump tornado from 6.5.2 to 6.5.5 in /libs/core (#35775)
• 9521c67 fix(openai): close PIL Image handles in token counting to prevent fd leak (#3...
• Additional commits viewable in compare view

Updates langchain-openai from 1.1.10 to 1.1.11

Release notes

Sourced from langchain-openai's releases.

langchain-openai==1.1.11

Changes since langchain-openai==1.1.10

fix(openai): bump min core version (#35705) release(openai): 1.1.11 (#35703) fix(openai): update responses API model detection for pro and codex models (#35594) feat(openai): support tool search (#35582) chore: bump langgraph from 1.0.8 to 1.0.10rc1 in /libs/partners/openai (#35612) chore(model-profiles): refresh model profile data (#35593) fix(openai): avoid PydanticSerializationUnexpectedValue for structured output (#35543) feat(openrouter): add streaming token usage support (#35559) fix: compaction typo (#35467) fix(openai): add test for CSV and accommodate breaking changes in file url inputs (#35454) chore: bump langgraph-checkpoint from 3.0.0 to 4.0.0 in /libs/partners/openai (#35448) fix(model-profiles): sort generated profiles by model ID for stable diffs (#35344) fix(openai): accept valid responses that are falsy at runtime (#35307)

Commits

• fcca6e2 fix(openai): bump min core version (#35705)
• 6b25caf release(core): 1.2.18 (#35704)
• 6371450 release(openai): 1.1.11 (#35703)
• ee64597 ci: auto-reopen external PRs after issue link requirement is satisfied (#35699)
• 1a39508 ci: update PR template (#35698)
• 5b1b37e ci: auto-close external PRs failing issue-link check (#35697)
• de5d68c ci: require PR author is assigned to linked issue (#35692)
• 225bb5b ci(infra): require issue link for external PRs (#35690)
• 360e016 ci: add contributor tier labels, PR size labels, and backfill job (#35687)
• 527fc02 chore(model-profiles): refresh model profile data (#35681)
• Additional commits viewable in compare view

Updates cachetools from 7.0.2 to 7.0.5

Changelog

Sourced from cachetools's changelog.

v7.0.5 (2026-03-09)

• Minor @cachedmethod performance improvements.

v7.0.4 (2026-03-08)

• Fix and properly document @cachedmethod.cache_key behavior.

• Minor documentation improvements.

v7.0.3 (2026-03-05)

• Fix DeprecationWarning when creating an autospec mock with @cachedmethod decorations.

Commits

• 5dce86f Release v7.0.5.
• af5e688 Minor @​cachedmethod performance improvements.
• 0ca75e6 Relase v7.0.4.
• 5b1fa39 Prepare v7.0.4.
• 18e5930 Fix #218: Fix and properly document @​cachedmethod.cache_key handling.
• 98ec79f Drop "class method" from @​cachedmethod docstring.
• 93822a3 Release v7.0.3.
• 57d2e48 Fix #387: Handle obj=None case for inspection in _DescriptorBase.
• See full diff in compare view

Updates moto[proxy] from 5.1.21 to 5.1.22

Changelog

Sourced from moto[proxy]'s changelog.

5.1.22

Docker Digest for 5.1.22: sha256:1e3802c95726373544967b428201c548f0247c15b00db2d96a5ba0a77d8643b8

New Methods:
    * APIGateway:
        * delete_model()
* Athena:
    * tag_resource()
    * untag_resource()


Pipes:

list_tags_for_resource()



OSIS:

delete_resource_policy()
get_resource_policy()
put_resource_policy()



RDS:

copy_db_cluster_parameter_group()



STS:

get_access_key_info()



Transfer:

list_servers()





Miscellaneous:
* CloudFormation now supports the creation/update/deletion of AWS::CloudWatch::Dashboard resources
* CloudFormation now supports the creation/update/deletion of AWS::KMS::Alias resources
* CloudFormation now supports the creation/update/deletion of AWS::SSM::Document resources
* EC2: create_fleet() now supports the parameters DryRun and LaunchTemplateConfigs.Overrides
* EC2: describe_network_interfaces() now supports the 'attachment.attachment-id'-filter
* EC2: Instances created from a LaunchTemplate now have the 'aws:ec2launchtemplate:id' and 'aws:ec2launchtemplate:version' tags
* RDS: create_db_cluster_parameter_group() now validates the provided group name/description/familiy
* RDS: delete_db_cluster_parameter_group() now validates that the provided group exists
* S3: delete_object() now supports IfMatch
* SecretsManager: create-secret() now throw ResourceExistsException for duplicate requests with different token (broken since 5.1.11)
* SQS: send_message() now returns the SequenceNumber-attribute
* VPCLattice: list_access_log_subscriptions() now also supports arns as resourceIdentifiers

Commits

• 28d5ca8 Pre-Release: Up Version Number
• f58dc18 Prep release 5.1.22 (#9824)
• 84cbb40 chore: update SSM default parameters (#9828)
• 2f32dc1 chore: update EC2 Instance Types (#9827)
• 2a1c7ca chore: update EC2 Instance Offerings (#9826)
• e063c5a chore: update EMR Instance Types (#9825)
• 681b47a API Gateway: implement DeleteModel operation (#9823)
• d652e4a STS: implement GetAccessKeyInfo operation (#9822)
• 40a6520 Implement Athena TagResource and UntagResource (#9796)
• dc425e8 Modernize Java tests (#9817)
• Additional commits viewable in compare view

Updates pyjwt from 2.11.0 to 2.12.1

Release notes

Sourced from pyjwt's releases.

2.12.1

What's Changed

• Add typing_extensions dependency for Python < 3.11 by @​jpadilla in jpadilla/pyjwt#1151

Full Changelog: jpadilla/pyjwt@2.12.0...2.12.1

2.12.0

Security

• Validate the crit (Critical) Header Parameter defined in RFC 7515 §4.1.11. by @​dmbs335 in GHSA-752w-5fwx-jx9f

What's Changed

• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1132
• chore(docs): fix docs build by @​tamird in jpadilla/pyjwt#1137
• Annotate PyJWKSet.keys for pyright by @​tamird in jpadilla/pyjwt#1134
• fix: close HTTPError to prevent ResourceWarning on Python 3.14 by @​veeceey in jpadilla/pyjwt#1133
• chore: remove superfluous constants by @​tamird in jpadilla/pyjwt#1136
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1135
• chore(tests): enable mypy by @​tamird in jpadilla/pyjwt#1138
• Bump actions/download-artifact from 7 to 8 by @​dependabot[bot] in jpadilla/pyjwt#1142
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1141
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in jpadilla/pyjwt#1145
• fix: do not store reference to algorithms dict on PyJWK by @​akx in jpadilla/pyjwt#1143
• Use PyJWK algorithm when encoding without explicit algorithm by @​jpadilla in jpadilla/pyjwt#1148

New Contributors

• @​tamird made their first contribution in jpadilla/pyjwt#1137
• @​veeceey made their first contribution in jpadilla/pyjwt#1133

Full Changelog: jpadilla/pyjwt@2.11.0...2.12.0

Changelog

Sourced from pyjwt's changelog.

v2.12.1 <https://github.com/jpadilla/pyjwt/compare/2.12.0...2.12.1>__

Fixed

- Add missing ``typing_extensions`` dependency for Python < 3.11 in `[#1150](https://github.com/jpadilla/pyjwt/issues/1150) <https://github.com/jpadilla/pyjwt/issues/1150>`__
v2.12.0 &lt;https://github.com/jpadilla/pyjwt/compare/2.11.0...2.12.0&gt;__
Fixed

• Annotate PyJWKSet.keys for pyright by @​tamird in [#1134](https://github.com/jpadilla/pyjwt/issues/1134) <https://github.com/jpadilla/pyjwt/pull/1134>__
• Close HTTPError response to prevent ResourceWarning on Python 3.14 by @​veeceey in [#1133](https://github.com/jpadilla/pyjwt/issues/1133) <https://github.com/jpadilla/pyjwt/pull/1133>__
• Do not keep algorithms dict in PyJWK instances by @​akx in [#1143](https://github.com/jpadilla/pyjwt/issues/1143) <https://github.com/jpadilla/pyjwt/pull/1143>__
• Validate the crit (Critical) Header Parameter defined in RFC 7515 §4.1.11. by @​dmbs335 in GHSA-752w-5fwx-jx9f <https://github.com/jpadilla/pyjwt/security/advisories/GHSA-752w-5fwx-jx9f>__
• Use PyJWK algorithm when encoding without explicit algorithm in [#1148](https://github.com/jpadilla/pyjwt/issues/1148) <https://github.com/jpadilla/pyjwt/pull/1148>__

Added

- Docs: Add ``PyJWKClient`` API reference and document the two-tier caching system (JWK Set cache and signing key LRU cache).

Commits

• a4e1a3d Add typing_extensions dependency for Python < 3.11 (#1151)
• bd9700c Use PyJWK algorithm when encoding without explicit algorithm (#1148)
• 051ea34 Merge commit from fork
• 1451d70 fix: do not store reference to algorithms dict on PyJWK (#1143)
• f3ba74c [pre-commit.ci] pre-commit autoupdate (#1145)
• 0318ffa [pre-commit.ci] pre-commit autoupdate (#1141)
• a52753d Bump actions/download-artifact from 7 to 8 (#1142)
• b85050f chore(tests): enable mypy (#1138)
• 1272b26 [pre-commit.ci] pre-commit autoupdate (#1135)
• 99a8728 chore: remove superfluous constants (#1136)
• Additional commits viewable in compare view

Updates black from 26.1.0 to 26.3.1

Release notes

Sourced from black's releases.

26.3.1

Stable style

• Prevent Jupyter notebook magic masking collisions from corrupting cells by using exact-length placeholders for short magics and aborting if a placeholder can no longer be unmasked safely (#5038)

Configuration

• Always hash cache filename components derived from --python-cell-magics so custom magic names cannot affect cache paths (#5038)

Blackd

• Disable browser-originated requests by default, add configurable origin allowlisting and request body limits, and bound executor submissions to improve backpressure (#5039)

26.3.0

Stable style

• Don't double-decode input, causing non-UTF-8 files to be corrupted (#4964)
• Fix crash on standalone comment in lambda default arguments (#4993)
• Preserve parentheses when # type: ignore comments would be merged with other comments on the same line, preventing AST equivalence failures (#4888)

Preview style

• Fix bug where if guards in case blocks were incorrectly split when the pattern had a trailing comma (#4884)
• Fix string_processing crashing on unassigned long string literals with trailing commas (one-item tuples) (#4929)
• Simplify implementation of the power operator "hugging" logic (#4918)

Packaging

• Fix shutdown errors in PyInstaller builds on macOS by disabling multiprocessing in frozen environments (#4930)

Performance

• Introduce winloop for windows as an alternative to uvloop (#4996)
• Remove deprecated function uvloop.install() in favor of uvloop.new_event_loop() (#4996)
• Rename maybe_install_uvloop function to maybe_use_uvloop to simplify loop installation and creation of either a uvloop/winloop evenloop or default eventloop (#4996)

Output

... (truncated)

Changelog

Sourced from black's changelog.

26.3.1

Stable style

• Prevent Jupyter notebook magic masking collisions from corrupting cells by using exact-length placeholders for short magics and aborting if a placeholder can no longer be unmasked safely (#5038)

Configuration

• Always hash cache filename components derived from --python-cell-magics so custom magic names cannot affect cache paths (#5038)

Blackd

• Disable browser-originated requests by default, add configurable origin allowlisting and request body limits, and bound executor submissions to improve backpressure (#5039)

26.3.0

Stable style

• Don't double-decode input, causing non-UTF-8 files to be corrupted (#4964)
• Fix crash on standalone comment in lambda default arguments (#4993)
• Preserve parentheses when # type: ignore comments would be merged with other comments on the same line, preventing AST equivalence failures (#4888)

Preview style

• Fix bug where if guards in case blocks were incorrectly split when the pattern had a trailing comma (#4884)
• Fix string_processing crashing on unassigned long string literals with trailing commas (one-item tuples) (#4929)
• Simplify implementation of the power operator "hugging" logic (#4918)

Packaging

• Fix shutdown errors in PyInstaller builds on macOS by disabling multiprocessing in frozen environments (#4930)

Performance

• Introduce winloop for windows as an alternative to uvloop (#4996)
• Remove deprecated function uvloop.install() in favor of uvloop.new_event_loop() (#4996)
• Rename maybe_install_uvloop function to maybe_use_uvloop to simplify loop installation and creation of either a uvloop/winloop evenloop or default eventloop (#4996)

... (truncated)

Commits

• c6755bb Prepare release 26.3.1 (#5046)
• 69973fd Harden blackd browser-facing request handling (#5039)
• 4937fe6 Fix some shenanigans with the cache file and IPython (#5038)
• 2e641d1 docs: remove outdated Black Playground references (#5044)
• c014b22 Remove unused internal code (#5041)
• 0dae20b Add new changelog (#5036)
• c5c1cbd Minor release patches (#5035)
• 7e5a828 docs: clarify relationship between Black style and PEP 8 (#5025)
• 69705de docs: add clearer pyproject configuration guidance (#5026)
• 35ea679 Prepare release 26.3.0 (#5032)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions