Skip to content

Bump the production-dependencies group with 6 updates#377

Merged
smarnach merged 2 commits intomainfrom
dependabot/uv/production-dependencies-ca7c15d5fd
Mar 9, 2026
Merged

Bump the production-dependencies group with 6 updates#377
smarnach merged 2 commits intomainfrom
dependabot/uv/production-dependencies-ca7c15d5fd

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Feb 19, 2026
edited
Loading

Bumps the production-dependencies group with 6 updates:

Package From To
gunicorn 24.1.1 25.1.0
ruff 0.14.14 0.15.1
sentry-sdk 2.22.0 2.53.0
sphinxcontrib-httpdomain 1.8.1 2.0.0
symbolic 12.17.1 12.17.2
werkzeug 3.1.5 3.1.6

Updates gunicorn from 24.1.1 to 25.1.0

Release notes

Sourced from gunicorn's releases.

Gunicorn 25.1.0

New Features

  • Control Interface (gunicornc): Add interactive control interface for managing running Gunicorn instances, similar to birdc for BIRD routing daemon ([PR #3505](benoitc/gunicorn#3505))

    • Unix socket-based communication with JSON protocol
    • Interactive mode with readline support and command history
    • Commands: show all/workers/dirty/config/stats/listeners
    • Worker management: worker add/remove/kill, dirty add/remove
    • Server control: reload, reopen, shutdown
    • New settings: --control-socket, --control-socket-mode, --no-control-socket
    • New CLI tool: gunicornc for connecting to control socket
    • See Control Interface Guide for details

  • Dirty Stash: Add global shared state between workers via dirty.stash ([PR #3503](benoitc/gunicorn#3503))

    • In-memory key-value store accessible by all workers
    • Supports get, set, delete, clear, keys, and has operations
    • Useful for sharing state like feature flags, rate limits, or cached data

  • Dirty Binary Protocol: Implement efficient binary protocol for dirty arbiter IPC using TLV (Type-Length-Value) encoding ([PR #3500](benoitc/gunicorn#3500))

    • More efficient than JSON for binary data
    • Supports all Python types: str, bytes, int, float, bool, None, list, dict
    • Better performance for large payloads

  • Dirty TTIN/TTOU Signals: Add dynamic worker scaling for dirty arbiters ([PR #3504](benoitc/gunicorn#3504))

    • Send SIGTTIN to increase dirty workers
    • Send SIGTTOU to decrease dirty workers
    • Respects minimum worker constraints from app configurations

Changes

  • ASGI Worker: Promoted from beta to stable
  • Dirty Arbiters: Now marked as beta feature

Documentation

  • Fix Markdown formatting in /configure documentation

25.0.3

What's Changed

Bug Fixes

  • Fix RuntimeError when StopIteration raised in ASGI coroutine (#3484)
  • Fix passing maxsplit in re.split() as positional argument (deprecated in Python 3.13)

... (truncated)

Commits
  • 2d43101 docs: merge gunicornc into 25.1.0 release
  • bf4ad8d docs: update 25.1.0 release date to 2026-02-13
  • 730350e Merge pull request #3505 from benoitc/feature/gunicornc-control-interface
  • 63df19b fix(tests): use process groups for reliable signal handling in PyPy
  • cd77bcc fix(tests): increase wait time for all server tests
  • 02ea985 fix(tests): improve server test reliability on FreeBSD
  • 6d81c9e fix: resolve pylint warnings
  • 7486baa fix: remove unused imports
  • 3e60d29 docs: add gunicornc control interface guide
  • e05e40d feat(ctl): add message-based dirty worker management
  • Additional commits viewable in compare view

Updates ruff from 0.14.14 to 0.15.1

Release notes

Sourced from ruff's releases.

0.15.1

Release Notes

Released on 2026-02-12.

Preview features

  • [airflow] Add ruff rules to catch deprecated Airflow imports for Airflow 3.1 (AIR321) (#22376)
  • [airflow] Third positional parameter not named ti_key should be flagged for BaseOperatorLink.get_link (AIR303) (#22828)
  • [flake8-gettext] Fix false negatives for plural argument of ngettext (INT001, INT002, INT003) (#21078)
  • [pyflakes] Fix infinite loop in preview fix for unused-import (F401) (#23038)
  • [pygrep-hooks] Detect non-existent mock methods in standalone expressions (PGH005) (#22830)
  • [pylint] Allow dunder submodules and improve diagnostic range (PLC2701) (#22804)
  • [pyupgrade] Improve diagnostic range for tuples (UP024) (#23013)
  • [refurb] Check subscripts in tuple do not use lambda parameters in reimplemented-operator (FURB118) (#23079)
  • [ruff] Detect mutable defaults in field calls (RUF008) (#23046)
  • [ruff] Ignore std cmath.inf (RUF069) (#23120)
  • [ruff] New rule float-equality-comparison (RUF069) (#20585)
  • Don't format unlabeled Markdown code blocks (#23106)
  • Markdown formatting support in LSP (#23063)
  • Support Quarto Markdown language markers (#22947)
  • Support formatting pycon Markdown code blocks (#23112)
  • Use extension mapping to select Markdown code block language (#22934)

Bug fixes

  • Avoid false positive for undefined variables in FAST001 (#23224)
  • Avoid introducing syntax errors for FAST003 autofix (#23227)
  • Avoid suggesting InitVar for __post_init__ that references PEP 695 type parameters (#23226)
  • Deduplicate type variables in generic functions (#23225)
  • Fix exception handler parenthesis removal for Python 3.14+ (#23126)
  • Fix f-string middle panic when parsing t-strings (#23232)
  • Wrap RUF020 target for multiline fixes (#23210)
  • Wrap UP007 target for multiline fixes (#23208)
  • Fix missing diagnostics for last range suppression in file (#23242)
  • [pyupgrade] Fix syntax error on string with newline escape and comment (UP037) (#22968)

Rule changes

  • Use ruff instead of Ruff as the program name in GitHub output format (#23240)
  • [PT006] Fix syntax error when unpacking nested tuples in parametrize fixes (#22441) (#22464)
  • [airflow] Catch deprecated attribute access from context key for Airflow 3.0 (AIR301) (#22850)
  • [airflow] Capture deprecated arguments and a decorator (AIR301) (#23170)
  • [flake8-boolean-trap] Add multiprocessing.Value to excluded functions for FBT003 (#23010)
  • [flake8-bugbear] Add a secondary annotation showing the previous occurrence (B033) (#22634)
  • [flake8-type-checking] Add sub-diagnostic showing the runtime use of an annotation (TC004) (#23091)
  • [isort] Support configurable import section heading comments (#23151)
  • [ruff] Improve the diagnostic for RUF012 (#23202)

Formatter

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.1

Released on 2026-02-12.

Preview features

  • [airflow] Add ruff rules to catch deprecated Airflow imports for Airflow 3.1 (AIR321) (#22376)
  • [airflow] Third positional parameter not named ti_key should be flagged for BaseOperatorLink.get_link (AIR303) (#22828)
  • [flake8-gettext] Fix false negatives for plural argument of ngettext (INT001, INT002, INT003) (#21078)
  • [pyflakes] Fix infinite loop in preview fix for unused-import (F401) (#23038)
  • [pygrep-hooks] Detect non-existent mock methods in standalone expressions (PGH005) (#22830)
  • [pylint] Allow dunder submodules and improve diagnostic range (PLC2701) (#22804)
  • [pyupgrade] Improve diagnostic range for tuples (UP024) (#23013)
  • [refurb] Check subscripts in tuple do not use lambda parameters in reimplemented-operator (FURB118) (#23079)
  • [ruff] Detect mutable defaults in field calls (RUF008) (#23046)
  • [ruff] Ignore std cmath.inf (RUF069) (#23120)
  • [ruff] New rule float-equality-comparison (RUF069) (#20585)
  • Don't format unlabeled Markdown code blocks (#23106)
  • Markdown formatting support in LSP (#23063)
  • Support Quarto Markdown language markers (#22947)
  • Support formatting pycon Markdown code blocks (#23112)
  • Use extension mapping to select Markdown code block language (#22934)

Bug fixes

  • Avoid false positive for undefined variables in FAST001 (#23224)
  • Avoid introducing syntax errors for FAST003 autofix (#23227)
  • Avoid suggesting InitVar for __post_init__ that references PEP 695 type parameters (#23226)
  • Deduplicate type variables in generic functions (#23225)
  • Fix exception handler parenthesis removal for Python 3.14+ (#23126)
  • Fix f-string middle panic when parsing t-strings (#23232)
  • Wrap RUF020 target for multiline fixes (#23210)
  • Wrap UP007 target for multiline fixes (#23208)
  • Fix missing diagnostics for last range suppression in file (#23242)
  • [pyupgrade] Fix syntax error on string with newline escape and comment (UP037) (#22968)

Rule changes

  • Use ruff instead of Ruff as the program name in GitHub output format (#23240)
  • [PT006] Fix syntax error when unpacking nested tuples in parametrize fixes (#22441) (#22464)
  • [airflow] Catch deprecated attribute access from context key for Airflow 3.0 (AIR301) (#22850)
  • [airflow] Capture deprecated arguments and a decorator (AIR301) (#23170)
  • [flake8-boolean-trap] Add multiprocessing.Value to excluded functions for FBT003 (#23010)
  • [flake8-bugbear] Add a secondary annotation showing the previous occurrence (B033) (#22634)
  • [flake8-type-checking] Add sub-diagnostic showing the runtime use of an annotation (TC004) (#23091)
  • [isort] Support configurable import section heading comments (#23151)
  • [ruff] Improve the diagnostic for RUF012 (#23202)

Formatter

... (truncated)

Commits
  • a2f11d2 Prepare for 0.15.1 (#23253)
  • d29628e Remove docker-run-action (#23254)
  • 8a04266 [ty] Allow discovering dependencies in system Python environments (#22994)
  • 55d06c8 Ensure pending suppression diagnostics are reported (#23242)
  • d056a9f [isort] support for configurable import section heading comments (#23151)
  • e22fa4f [ty] Fix method calls on subclasses of Any (#23248)
  • fa56c15 [ty] Fix bound method access on None (#23246)
  • 4fd07d0 Make range suppression test snapshot actually useful (#23251)
  • 8c63bce [ty] Include conditional symbols (like datetime.UTC) in auto-import in more...
  • 46be943 Exclude WASM artifacts from GitHub releases (#23221)
  • Additional commits viewable in compare view

Updates sentry-sdk from 2.22.0 to 2.53.0

Release notes

Sourced from sentry-sdk's releases.

2.53.0

Bug Fixes 🐛

Openai Agents

Other

Documentation 📚

Internal Changes 🔧

Openai Agents

Other

2.52.0

New Features ✨

Other

Bug Fixes 🐛

Google Genai

Mcp

... (truncated)

Changelog

Sourced from sentry-sdk's changelog.

2.53.0

Bug Fixes 🐛

Openai Agents

Other

Documentation 📚

Internal Changes 🔧

Openai Agents

Other

2.52.0

New Features ✨

Other

Bug Fixes 🐛

Google Genai

... (truncated)

Commits
  • f75a9ac Update CHANGELOG.md
  • b700fa8 Update CHANGELOG.md
  • 45379e2 release: 2.53.0
  • 4d8faf3 test(openai-agents): New tool field and library error log (#5454)
  • d3e2c88 fix(openai-agents): Patch execute_final_output() functions following librar...
  • f71a604 fix(openai-agents): Patch execute_handoffs() functions following library re...
  • bea608c fix(openai-agents): Patch run_single_turn_streamed() functions following li...
  • 14e3e0a fix(openai-agents): Patch run_single_turn() functions following library ref...
  • a5c2906 fix(openai-agents): Patch models functions following library refactor (#5449)
  • f78df7c ci: Use fixed clickhouse action, remove aws-sam-cli dependency (#5457)
  • Additional commits viewable in compare view

Updates sphinxcontrib-httpdomain from 1.8.1 to 2.0.0

Release notes

Sourced from sphinxcontrib-httpdomain's releases.

2.0.0

Full Changelog: sphinx-contrib/httpdomain@2.0.0...2.0.0

2.0.0a4

No changes

2.0.0a3

Full Changelog: sphinx-contrib/httpdomain@2.0.0a2...2.0.0a3

  • Added missing files to the tag.

2.0.0a2

What's Changed

Compare before the new feature and after in this side-by-side screenshot.

New Contributors

Full Changelog: sphinx-contrib/httpdomain@2.0.0a1...2.0.0a2

2.0.0a1

What's Changed

New Contributors

Full Changelog: sphinx-contrib/httpdomain@1.8.1...2.0.0a1

Changelog

Sourced from sphinxcontrib-httpdomain's changelog.

:orphan:

Changelog

Version 2.0.0


unreleased

Breaking changes
................


    

  • Dropped support for Python 3.9 and older. [:pull:85 by @​stevepiercy]
    • 

  • Switched to implicit (native) namespace for sphinxcontrib. [:pull:75 by @​icemac]
    • 



Major changes
.............


    

  • Added support for Python 3.10 up to 3.14.[:pull:85 by @​stevepiercy]
    • 

  • Adjusted a unit test regular expression for :file:bottle_test.py. [:pull:85 by @​stevepiercy]
    • 

  • Use MDN documentation for information about HTTP status codes instead of w3.org. [:pull:78 by @​jamesrobson-secondmind]
    • 

  • Added :addtoc: option for http directives to register HTTP API endpoints and display them in the page-level table of contents. [:pull:80 by @​sevdog]
    • 



Internal
........


    

  • Added Dependabot configuration. [:pull:85 by @​stevepiercy]
    • 

  • Replaced Travis CI with GitHub workflows for continuous integration checks. [:pull:85 by @​stevepiercy]
    • 

  • Dropped dependency on six libary. [:pull:72 by @​WAKayser]
    • 

  • Updated translations for FR and ES languages. [:pull:77 by @​nils-van-zuijlen]
    • 

  • Reorganized the repository structure to modern standards.
This included moving source files into a src directory, renaming doc to docs, and other refinements. [:pull:91 by @​stevepiercy]
    • 

  • Replaced setuptools with :file:pyproject.toml configuration for modern project management. [:pull:91 by @​stevepiercy]
    • 

  • Changed to use uv for development and continuous integration. [:pull:91 by @​stevepiercy]
    • 

  • Moved the Makefile from the documentation directory to the root of the repository, and added a suite of commands for development and testing the package. [:pull:91 by @​stevepiercy]
    • 



Documentation
.............


    

  • Simplified and updated documentation requirements in :file:rtd-requires.txt. [:pull:85 by @​stevepiercy]
    • 

  • Added a :file:.readthedocs.yaml configuration for Read the Docs builds. [:pull:85 by @​stevepiercy]
    • 

  • Added omitted change log entries for v1.8.1. [:pull:85 by @​stevepiercy]
    • 

  • Adjusted Sphinx configuration and example regex usage in :file:conf.py. [:pull:85 by @​stevepiercy]
    • 

  • Added :file:CONTRIBUTING.md to encourage contributions. [:pull:91 by @​stevepiercy]
    • 

  • Fixed broken links and redirecting links. [:pull:91 by @​stevepiercy]
</tr></table>

... (truncated)

Commits

Updates symbolic from 12.17.1 to 12.17.2

Updates werkzeug from 3.1.5 to 3.1.6

Release notes

Sourced from werkzeug's releases.

3.1.6

This is the Werkzeug 3.1.6 security fix release, which fixes a security issue but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/Werkzeug/3.1.6/ Changes: https://werkzeug.palletsprojects.com/page/changes/#version-3-1-6

  • safe_join on Windows does not allow special devices names in multi-segment paths. GHSA-29vq-49wr-vm6x
Changelog

Sourced from werkzeug's changelog.

Version 3.1.6

Released 2026-02-19

  • safe_join on Windows does not allow special devices names in multi-segment paths. :ghsa:29vq-49wr-vm6x
Commits

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the production-dependencies group with 6 updates
0de2251 
Bumps the production-dependencies group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [gunicorn](https://github.com/benoitc/gunicorn) | `24.1.1` | `25.1.0` |
| [ruff](https://github.com/astral-sh/ruff) | `0.14.14` | `0.15.1` |
| [sentry-sdk](https://github.com/getsentry/sentry-python) | `2.22.0` | `2.53.0` |
| [sphinxcontrib-httpdomain](https://github.com/sphinx-contrib/httpdomain) | `1.8.1` | `2.0.0` |
| symbolic | `12.17.1` | `12.17.2` |
| [werkzeug](https://github.com/pallets/werkzeug) | `3.1.5` | `3.1.6` |


Updates `gunicorn` from 24.1.1 to 25.1.0
- [Release notes](https://github.com/benoitc/gunicorn/releases)
- [Commits](benoitc/gunicorn@24.1.1...25.1.0)

Updates `ruff` from 0.14.14 to 0.15.1
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.14...0.15.1)

Updates `sentry-sdk` from 2.22.0 to 2.53.0
- [Release notes](https://github.com/getsentry/sentry-python/releases)
- [Changelog](https://github.com/getsentry/sentry-python/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-python@2.22.0...2.53.0)

Updates `sphinxcontrib-httpdomain` from 1.8.1 to 2.0.0
- [Release notes](https://github.com/sphinx-contrib/httpdomain/releases)
- [Changelog](https://github.com/sphinx-contrib/httpdomain/blob/main/CHANGELOG.rst)
- [Commits](sphinx-contrib/httpdomain@1.8.1...2.0.0)

Updates `symbolic` from 12.17.1 to 12.17.2

Updates `werkzeug` from 3.1.5 to 3.1.6
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](pallets/werkzeug@3.1.5...3.1.6)

---
updated-dependencies:
- dependency-name: gunicorn
  dependency-version: 25.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: ruff
  dependency-version: 0.15.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sentry-sdk
  dependency-version: 2.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: sphinxcontrib-httpdomain
  dependency-version: 2.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: symbolic
  dependency-version: 12.17.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: werkzeug
  dependency-version: 3.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Feb 19, 2026
@dependabot dependabot bot requested a review from a team as a code owner February 19, 2026 16:46
@smarnach smarnach enabled auto-merge March 9, 2026 16:15
@smarnach smarnach added this pull request to the merge queue Mar 9, 2026
Merged via the queue into main with commit f880bfd Mar 9, 2026
1 check passed
@smarnach smarnach deleted the dependabot/uv/production-dependencies-ca7c15d5fd branch March 9, 2026 16:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@smarnach smarnach smarnach approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@smarnach