chore(deps): update pip-requirements (role-refactor)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
aiohttp	==3.13.2 → ==3.13.3
ansible (source)	==13.0.0 → ==13.2.0
ansible-lint (changelog)	==25.11.0 → ==25.12.2
apprise	==1.9.5 → ==1.9.6
certbot	==5.1.0 → ==5.2.2
psycopg (changelog)	==3.2.12 → ==3.3.2
ruamel.yaml	==0.18.16 → ==0.19.1
uv (source, changelog)	==0.9.10 → ==0.9.22

---

Release Notes

aio-libs/aiohttp (aiohttp)

v3.13.3

Compare Source

===================

This release contains fixes for several vulnerabilities. It is advised to
upgrade as soon as possible.

Bug fixes

• Fixed proxy authorization headers not being passed when reusing a connection, which caused 407 (Proxy authentication required) errors
  -- by :user:GLeurquin.

  Related issues and pull requests on GitHub:
  :issue:2596.

• Fixed multipart reading failing when encountering an empty body part -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub:
  :issue:11857.

• Fixed a case where the parser wasn't raising an exception for a websocket continuation frame when there was no initial frame in context.

  Related issues and pull requests on GitHub:
  :issue:11862.

Removals and backward incompatible breaking changes

• Brotli and brotlicffi minimum version is now 1.2.
  Decompression now has a default maximum output size of 32MiB per decompress call -- by :user:Dreamsorcerer.

  Related issues and pull requests on GitHub:
  :issue:11898.

Packaging updates and notes for downstreams

• Moved dependency metadata from :file:setup.cfg to :file:pyproject.toml per :pep:621
  -- by :user:cdce8p.

  Related issues and pull requests on GitHub:
  :issue:11643.

Contributor-facing changes

• Removed unused update-pre-commit github action workflow -- by :user:Cycloctane.

  Related issues and pull requests on GitHub:
  :issue:11689.

Miscellaneous internal changes

• Optimized web server performance when access logging is disabled by reducing time syscalls -- by :user:bdraco.

  Related issues and pull requests on GitHub:
  :issue:10713.

• Added regression test for cached logging status -- by :user:meehand.

  Related issues and pull requests on GitHub:
  :issue:11778.

---

ansible-community/ansible-build-data (ansible)

v13.2.0

Compare Source

v13.1.0

Compare Source

ansible/ansible-lint (ansible-lint)

v25.12.2

Compare Source

Fixes

• Update configuring.md to reflect correct precommit name (#​4872) @​AgustinRamiroDiaz
• fix: prevent trailing space on blank comment lines (#​4868) @​emmanuel-ferdman

Maintenance

• chore(deps): update dependencies [security] - abandoned (#​4874) @​renovate[bot]
• chore(deps): update all dependencies (#​4867) @​renovate[bot]
• chore(deps): update dependencies [security] (#​4873) @​renovate[bot]
• chore(deps): bump filelock from 3.20.0 to 3.20.1 in /.config (#​4869) @​dependabot[bot]
• chore(deps): update dependencies [security] (#​4870) @​renovate[bot]

v25.12.1

Compare Source

Features

• feat(action): Allow users to override python_version (#​4829) @​konstruktoid

Fixes

• fix: avoid stacktrace when ansible syntax check does not return filename (#​4864) @​ssbarnea
• fix: change setup-python action to specific commit (#​4856) @​arcanis
• fix: autofix comments missing space after hash (#​4855) @​emmanuel-ferdman

Maintenance

• chore(deps): update all dependencies (#​4863) @​renovate[bot]
• chore: pre-commit autoupdate (#​4859) @​pre-commit-ci[bot]
• chore: adopt pytest>=9.0.0 config (#​4861) @​Qalthos
• chore(deps): update all dependencies (#​4852) @​renovate[bot]

v25.12.0

Compare Source

Maintenance

• chore: Remove cffi, importlib-metadata, reduce core lower bound (#​4860) @​cidrblock

v25.11.1

Compare Source

Features

• feat: detect missing prefix in role's handlers vars (#​4826) @​cavcrosby

Fixes

• Migrate RTD URLs to docs.ansible.com (#​4842) @​gundalow
• fix: Pass module spec via stdin instead of command line args (#​4844) @​apollo13
• fix: Update mypy python version to 3.12 (#​4846) @​alisonlhart

Maintenance

• chore(deps): update all dependencies (#​4833) @​renovate[bot]
• chore(deps): bump js-yaml from 4.1.0 to 4.1.1 in /test/schemas (#​4849) @​dependabot[bot]
• chore(deps-dev): bump glob from 10.4.5 to 10.5.0 in /test/schemas (#​4847) @​dependabot[bot]
• Add support for Fedora 43 (#​4836) @​jsf9k

caronc/apprise (apprise)

v1.9.6

Compare Source

What's Changed

📣 New Notification Services:

• 46elks support in #​1438
• Dot Support by @​HerbertGao in #​1445
• NotificationAPI Support in #​1399
• Brevo Support by in #​1455

🐞 Bugfixes

• Updated RPM Spec file to fix rpmbuild errors on koji in #​1421
• Added py.typed back into repository and Manifest in #​1426
• fix(telegram): support <code> blocks wrapped in <pre> for syntax highlighting by @​hmnd in #​1423
• Apprise API payload bugfix in #​1428
• Matrix room/alias accepted characters re-aligned - bugfix in #​1442
• fix parsing of USA callsigns--specifically different prefix/suffix counts like 1x2 and 1x3 calls by @​NeilHanlon in #​1418
• dot:// setup_url to align with other apprise ones in #​1449 (extension to #​1445 in same release)
• fixed handling of non-standard matrix:// ports in #​1450
• Fix Reply-To header variable consistency by @​slavaGanzin in #​1446

💡 Features

• increase of Pushover attachment size to 5MB in #​1427
• Added basic support for ntfy Actions by @​ivangrimaldi in #​1436
• feat(bark): Add 'call' parameter support to NotifyBark for ringtone r… by @​HerbertGao in #​1444
• Improved TRUNCATE and SPLIT with smart text splitting in #​1459
• Added support for slack-gov.com to slack:// in #​1463
• Nextcloud group notification implementation by @​dev-KingMaster in #​1440
• Resend plugin improvements adding improved support for name=, cc=, reply=, and to= in #​1465
• discord:// supports ping= feature now in #​1466

❤️ Life-Cycle Support

• EPEL10 GitHub workflow added - RPM Building in #​1460 and #​1451
• Added additional test coverage for Apprise configuration parsing in #​1454
• Added additional workflow:// test case in #​1458
• Spelling mistakes + minor code alignment in #​1439

New Contributors

• @​hmnd made their first contribution in #​1423
• @​ivangrimaldi made their first contribution in #​1436
• @​NeilHanlon made their first contribution in #​1418
• @​slavaGanzin made their first contribution in #​1446
• @​dev-KingMaster made their first contribution in #​1440

Installation

Apprise is available on PyPI through pip:

# Install Apprise v1.9.6 from PyPI
pip install apprise==1.9.6

Full Changelog: caronc/apprise@v1.9.5...v1.9.6

certbot/certbot (certbot)

v5.2.2: Certbot 5.2.2

Compare Source

Fixed

• Fixed a regression that caused certbot to crash if multiple --webroot-path
  values were set on the command line.
  (#​10509)

v5.2.1: Certbot 5.2.1

Compare Source

Added

• Support for Python 3.14 was added.
  (#​10477)

Changed

• While nothing significant should have changed from the user's perspective,
  we've been doing a lot of internal refactoring in preparation for soon adding
  support for IP address certificates to Certbot.
  (#​10468,
  #​10478)

Fixed

• Removed vhost_combined and vhost_common log formats from included Apache
  configuration file. (#​9769)
• Due to a mistake on our end playing with GitHub's new immutable
  releases
  feature that prevented our CI from uploading additional release assets,
  Certbot 5.2.0 was not and will not be uploaded to most platforms. Instead,
  that version number will be skipped and we'll go straight to 5.2.1.
  (#​10501)

psycopg/psycopg (psycopg)

v3.3.2

Compare Source

v3.3.1

Compare Source

v3.3.0

Compare Source

v3.2.13

Compare Source

astral-sh/uv (uv)

v0.9.22

Compare Source

Released on 2026-01-06.

Enhancements

• Use a dedicated error message when lockfile can't be found (#​17318)

Bug fixes

• Filter unusable wheels from the lockfile for more architectures (#​17317)
• Correctly count retries originating from early middleware errors (#​17274)

Documentation

• Clarify requirements file format in docs (#​17284)

v0.9.21

Compare Source

Released on 2025-12-30.

Bug fixes

• Fix regression where zstd distribution hashes were not considered valid (#​17265)

Documentation

• Fix a typo in the resolution documentation (#​17258)
• Fix a typo in python install --default documentation (#​9826)

v0.9.20

Released on 2025-12-29.

This is a re-release of 0.9.20, with internal crate versions incremented to enable publishing to crates.io.

v0.9.19

Released on 2025-12-29.

Python

• Add CPython 3.15.0a3 (#​17165)

Enhancements

• Allow uv pip compile to install missing python interpreters in cases where it would otherwise fail (#​17216)
• Avoid creating file contents with uv init --bare --script (#​17162)
• Respect --torch-backend in uv tool commands (#​17117)
• Support comma-separated values in --no-binary and --only-binary (#​17185)

Preview features

• Summarize package changes in uv sync with JSON output format (#​16981)

Performance

• Avoid two hot String allocations in deserialization (#​17221)
• Cache NVIDIA-hosted wheels by default (#​17164)

Bug fixes

• Avoid enforcing incorrect hash in mixed-hash settings (#​17157)
• Fix retry counts in cached client (#​17104)
• Respect UV_PYTHON_DOWNLOAD_MIRROR in uv python list (#​16673)
• Support remote pylock.toml files (#​17119)
• Avoid flagging proxied Git URLs as ambiguous authority (#​17234)
• Fix dropped support of - in pip constraints, overrides, and excludes (#​17188)

v0.9.18

Compare Source

Released on 2025-12-16.

Enhancements

• Add value hints to command line arguments to improve shell completion accuracy (#​17080)
• Improve error handling in uv publish (#​17096)
• Improve rendering of multiline error messages (#​17132)
• Support redirects in uv publish (#​17130)
• Include Docker images with the alpine version, e.g., python3.x-alpine3.23 (#​17100)

Configuration

• Accept --torch-backend in [tool.uv] (#​17116)

Performance

• Speed up uv cache size (#​17015)
• Initialize S3 signer once (#​17092)

Bug fixes

• Avoid panics due to reads on failed requests (#​17098)
• Enforce latest-version in @latest requests (#​17114)
• Explicitly set EntryType for file entries in tar (#​17043)
• Ignore pyproject.toml index username in lockfile comparison (#​16995)
• Relax error when using uv add with UV_GIT_LFS set (#​17127)
• Support file locks on ExFAT on macOS (#​17115)
• Change schema for exclude-newer into optional string (#​17121)

Documentation

• Drop arm musl caveat from Docker documentation (#​17111)
• Fix version reference in resolver example (#​17085)
• Better documentation for exclude-newer* (#​17079)

v0.9.17

Compare Source

Released on 2025-12-09.

Enhancements

• Add torch-tensorrt and torchao to the PyTorch list (#​17053)
• Add hint for misplaced --verbose in uv tool run (#​17020)
• Add support for relative durations in exclude-newer (a.k.a., dependency cooldowns) (#​16814)
• Add support for relocatable nushell activation script (#​17036)

Bug fixes

• Respect dropped (but explicit) indexes in dependency groups (#​17012)

Documentation

• Improve source-exclude reference docs (#​16832)
• Recommend UV_NO_DEV in Docker installs (#​17030)
• Update UV_VERSION in docs for GitLab CI/CD (#​17040)

v0.9.16

Compare Source

Released on 2025-12-06.

Python

• Add CPython 3.14.2
• Add CPython 3.13.11

Enhancements

• Add a 5m default timeout to acquiring file locks to fail faster on deadlock (#​16342)
• Add a stub debug subcommand to uv pip announcing its intentional absence (#​16966)
• Add bounds in uv add --script (#​16954)
• Add brew specific message for uv self update (#​16838)
• Error when built wheel is for the wrong platform (#​16074)
• Filter wheels from PEP 751 files based on --no-binary et al in uv pip compile (#​16956)
• Support --target and --prefix in uv pip list, uv pip freeze, and uv pip show (#​16955)
• Tweak language for build backend validation errors (#​16720)
• Use explicit credentials cache instead of global static (#​16768)
• Enable SIMD in HTML parsing (#​17010)

Preview features

• Fix missing preview warning in uv workspace metadata (#​16988)
• Add a uv auth helper --protocol bazel command (#​16886)

Bug fixes

• Fix Pyston wheel compatibility tags (#​16972)
• Allow redundant entries in tool.uv.build-backend.module-name but emit warnings (#​16928)
• Fix infinite loop in non-attribute re-treats during HTML parsing (#​17010)

Documentation

• Clarify --project flag help text to indicate project discovery (#​16965)
• Regenerate the crates.io READMEs on release (#​16992)
• Update Docker integration guide to prefer COPY over ADD for simple cases (#​16883)
• Update PyTorch documentation to include information about supporting CUDA 13.0.x (#​16957)
• Update the versioning policy (#​16710)
• Upgrade PyTorch documentation to latest versions (#​16970)

v0.9.15

Compare Source

Released on 2025-12-02.

Python

• Add CPython 3.14.1
• Add CPython 3.13.10

Enhancements

• Add ROCm 6.4 to --torch-backend=auto (#​16919)
• Add a Windows manifest to uv binaries (#​16894)
• Add LFS toggle to Git sources (#​16143)
• Cache source reads during resolution (#​16888)
• Allow reading requirements from scripts without an extension (#​16923)
• Allow reading requirements from scripts with HTTP(S) paths (#​16891)

Configuration

• Add UV_HIDE_BUILD_OUTPUT to omit build logs (#​16885)

Bug fixes

• Fix uv-trampoline-builder builds from crates.io by moving bundled executables (#​16922)
• Respect NO_COLOR and always show the command as a header when paging uv help output (#​16908)
• Use 0o666 permissions for flock files instead of 0o777 (#​16845)
• Revert "Bump astral-tl to v0.7.10 (#​16887)" to narrow down a regression causing hangs in metadata retrieval (#​16938)

Documentation

• Link to the uv version in crates.io member READMEs (#​16939)

v0.9.14

Compare Source

Released on 2025-12-01.

Performance

• Bump astral-tl to v0.7.10 to enable SIMD for HTML parsing (#​16887)

Bug fixes

• Allow earlier post releases with exclusive ordering (#​16881)
• Prefer updating existing .zshenv over creating a new one in tool update-shell (#​16866)
• Respect -e flags in uv add (#​16882)

Enhancements

• Attach subcommand to User-Agent string (#​16837)
• Prefer UV_WORKING_DIR over UV_WORKING_DIRECTORY for consistency (#​16884)

v0.9.13

Compare Source

Released on 2025-11-26.

Bug fixes

• Revert "Allow --with-requirements to load extensionless inline-metadata scripts" to fix reading of requirements files from streams (#​16861)
• Validate URL wheel tags against Requires-Python and required environments (#​16824)

Documentation

• Drop unpublished crates from the uv crates.io README (#​16847)
• Fix the links to uv in crates.io member READMEs (#​16848)

v0.9.12

Compare Source

Released on 2025-11-24.

Enhancements

• Allow --with-requirements to load extensionless inline-metadata scripts (#​16744)
• Collect and upload PEP 740 attestations during uv publish (#​16731)
• Prevent uv export from overwriting pyproject.toml (#​16745)

Documentation

• Add a crates.io README for uv (#​16809)
• Add documentation for intermediate Docker layers in a workspace (#​16787)
• Enumerate workspace members in the uv crate README (#​16811)
• Fix documentation links for crates (#​16801)
• Generate a crates.io README for uv workspace members (#​16812)
• Move the "Export" guide to the projects concept section (#​16835)
• Update the cargo install recommendation to use crates (#​16800)
• Use the word "internal" in crate descriptions (#​16810)

v0.9.11

Compare Source

Released on 2025-11-20.

Python

• Add CPython 3.15.0a2

See the python-build-standalone release notes for details.

Enhancements

• Add SBOM support to uv export (#​16523)
• Publish to crates.io (#​16770)

Preview features

• Add uv workspace list --paths (#​16776)
• Fix the preview warning on uv workspace dir (#​16775)

Bug fixes

• Fix uv init author serialization via toml_edit inline tables (#​16778)
• Fix status messages without TTY (#​16785)
• Preserve end-of-line comment whitespace when editing pyproject.toml (#​16734)
• Disable always-authenticate when running under Dependabot (#​16773)

Documentation

• Document the new behavior for free-threaded python versions (#​16781)
• Improve note about build system in publish guide (#​16788)
• Move do not upload publish note out of the guide into concepts (#​16789)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.