deps: bump the prod-deps group across 1 directory with 21 updates

[dependabot]

Bumps the prod-deps group with 21 updates in the / directory:

Package	From	To
django	4.2.24	5.2.7
psycopg2-binary	2.9.10	2.9.11
hiredis	3.2.1	3.3.0
drf-yasg	1.21.10	1.21.11
jellyfish	1.2.0	1.2.1
pyyaml	6.0.2	6.0.3
xlsxwriter	3.2.8	3.2.9
xmlschema	4.1.0	4.2.0
lark	1.2.2	1.3.0
shapely	2.0.7	2.1.2
django-two-factor-auth[phonenumbers]	1.17.0	1.18.1
boto3	1.40.30	1.40.55
uwsgi	2.0.30	2.0.31
coverage	7.10.6	7.11.0
tox	4.30.2	4.31.0
psutil	7.0.0	7.1.1
faker	37.6.0	37.11.0
sphinx	7.4.7	8.2.3
sphinxcontrib-spelling	8.0.0	8.0.1
docutils	0.21.2	0.22.2
hypothesis	6.138.16	6.142.1

Updates django from 4.2.24 to 5.2.7

Commits

• 3cff320 [5.2.x] Bumped version for 5.2.7 release.
• ed8fc39 [5.2.x] Fixed CVE-2025-59682 -- Fixed potential partial directory-traversal v...
• 52fbae0 [5.2.x] Fixed CVE-2025-59681 -- Protected QuerySet.annotate(), alias(), aggre...
• 1794cbf [5.2.x] Made cosmetic edits to 5.2.7 release notes.
• 81625a1 [5.2.x] Fixed #36587 -- Clarified usage of list.insert() for upload handlers.
• 6f3813e [5.2.x] Fixed #35877, Refs #36128 -- Documented unique constraint when migrat...
• 10a2d3b [5.2.x] Added stub release notes and release date for 5.2.7, 5.1.13, and 4.2.25.
• b2773a3 [5.2.x] Refs #25508 -- Used QuerySet.repr in docs/ref/contrib/postgres/se...
• 7554c54 [5.2.x] Fixed #36581 -- Updated serialization examples from XML to JSON.
• 2a2936c [5.2.x] Updated translations from Transifex.
• Additional commits viewable in compare view

Updates psycopg2-binary from 2.9.10 to 2.9.11

Changelog

Sourced from psycopg2-binary's changelog.

Current release

What's new in psycopg 2.9.11 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.14.
• Avoid a segfault passing more arguments than placeholders if Python is built with assertions enabled (:ticket:[#1791](https://github.com/psycopg/psycopg2/issues/1791)).
• ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 18.
• Drop support for Python 3.8.

What's new in psycopg 2.9.10 ^^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.13.
• Receive notifications on commit (:ticket:[#1728](https://github.com/psycopg/psycopg2/issues/1728)).
• ~psycopg2.errorcodes map and ~psycopg2.errors classes updated to PostgreSQL 17.
• Drop support for Python 3.7.

What's new in psycopg 2.9.9 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Add support for Python 3.12.
• Drop support for Python 3.6.

What's new in psycopg 2.9.8 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Wheel package bundled with PostgreSQL 16 libpq in order to add support for recent features, such as sslcertmode.

What's new in psycopg 2.9.7 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

• Fix propagation of exceptions raised during module initialization (:ticket:[#1598](https://github.com/psycopg/psycopg2/issues/1598)).
• Fix building when pg_config returns an empty string (:ticket:[#1599](https://github.com/psycopg/psycopg2/issues/1599)).
• Wheel package bundled with OpenSSL 1.1.1v.

What's new in psycopg 2.9.6 ^^^^^^^^^^^^^^^^^^^^^^^^^^^

... (truncated)

Commits

• fd9ae8c chore: bump to version 2.9.11
• d923840 chore: update docs requirements
• d42dc71 Merge branch 'fix-1791'
• 4fde656 fix: avoid failed assert passing more arguments than placeholders
• 8308c19 fix: drop warning about the use of deprecated PyWeakref_GetObject function
• 1a1eabf build(deps): bump actions/github-script from 7 to 8
• 897af8b build(deps): bump peter-evans/repository-dispatch from 3 to 4
• ceefd30 build(deps): bump actions/checkout from 4 to 5
• 4dc5854 build(deps): bump actions/setup-python from 5 to 6
• 1945788 Merge pull request #1802 from edgarrmondragon/cp314-wheels
• Additional commits viewable in compare view

Updates hiredis from 3.2.1 to 3.3.0

Release notes

Sourced from hiredis's releases.

3.3.0

Changes

• Add Python 3.14 to CI and wheels (#213 by @​zweizeichen)

Contributors

We'd like to thank all the contributors who worked on this release!

Commits

• 187d0f3 Version 3.3.0
• 3efcf03 Add Python 3.14 to CI and wheels (#213) (#215)
• 966cede Fix assertion in reader.c (#212)
• 78def30 Bump version to 3.3.0-dev
• See full diff in compare view

Updates drf-yasg from 1.21.10 to 1.21.11

Release notes

Sourced from drf-yasg's releases.

1.21.11

FIXED: Fix list views with parameters in last path segment not named "list" views (#917) ADDED: Allow overriding produces/consumes with @​swagger_auto_schema decorator (#916) FIXED: Fix filter parameters not appearing in swagger with django-filter>=25 (#926) IMPROVED: Update Python, Django, and DRF versions and packaging configuration (#922) IMPROVED: Remove usage of pkg_resources (#928) FIXED: Fix call_view_method warning to include the method name again (#923) ADDED: Add a hide download button option (#848) ADDED: Add ruff linters (#903)

Changelog

Sourced from drf-yasg's changelog.

######### Changelog #########

---

1.21.11

---

FIXED: Fix list views with parameters in last path segment not named "list" views (:pr:917) ADDED: Allow overriding produces/consumes with @​swagger_auto_schema decorator (:pr:916) FIXED: Fix filter parameters not appearing in swagger with django-filter>=25 (:pr:926) IMPROVED: Update Python, Django, and DRF versions and packaging configuration (:pr:922) IMPROVED: Remove usage of pkg_resources (:pr:928) FIXED: Fix call_view_method warning to include the method name again (:pr:923) ADDED: Add a hide download button option (:pr:848) ADDED: Add ruff linters (:pr:903)

---

1.21.10

---

FIXED: Fix type hints when using postponed evaluation of annotations (PEP-563) (:pr:840) IMPROVED: Update JSON & YAML renderers to not use a "." in their format string (:pr:911) FIXED: Fix lint errors when comparing types with == instead of is (:pr:868) IMPROVED: Update swagger-ui-dist to address CVE-2021-46708 (:pr:904)

---

1.21.9

---

ADDED: Added support for zoneinfo object fields (:pr:908)

---

1.21.8

---

ADDED: Python 3.11 and 3.12 support (:pr:891) FIXED: Fix pkg_resources version lookups for Python 3.9+ (:pr:891)

---

1.21.7

---

Release date: Jul 20, 2023

ADDED: Added drf_yasg.inspectors.query.DrfAPICompatInspector (:pr:857) ADDED: Added DrfAPICompatInspector to serve as a replacement CoreAPICompatInspector (:pr:857) ADDED: Allow DEFAULT_SPEC_RENDERERS default renderers to be overriden in the settings (:pr:857) FIXED: Fixed redoc source mapping (:pr:859)

... (truncated)

Commits

• f8cb2db Add version 1.21.11 details to the changelog (#939)
• 0c6d08d Update the ruff lint rules (#920)
• 055a74d Bump actions/setup-python from 5 to 6 in the github-actions group (#937)
• a8813ac Bump actions/checkout from 4 to 5 in the github-actions group (#936)
• 9f4b449 Restore the live demo and replace heroku with apprunner (#935)
• 2983251 fix list views with parameters in last path segment not named "list" views (#...
• a746893 allow overriding produces/consumes with @​swagger_auto_schema decorator (#916)
• e747ad6 Fixes issue with filter parameters not appearing in Swagger after upgrading t...
• ee3c871 update Python, Django, and DRF versions & packaging configuration (#922)
• be6eeed Remove usage of pkg_resources (#928)
• Additional commits viewable in compare view

Updates jellyfish from 1.2.0 to 1.2.1

Updates pyyaml from 6.0.2 to 6.0.3

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

• Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

• yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)

Commits

• 49790e7 Release 6.0.3 (#889)
• See full diff in compare view

Updates xlsxwriter from 3.2.8 to 3.2.9

Changelog

Sourced from xlsxwriter's changelog.

Release 3.2.9 - September 16 2025

• Removed the py.typed file since it was causing a lot of downstream CI failures where consumers weren't handling the xlsxwriter types correctly or taking them into account.

  The file will be re-added once the xlsxwriter typing is more comprehensive.

Commits

• e943bee Prep for release 3.2.9
• 392bd9e typing: remove py.typed file
• See full diff in compare view

Updates xmlschema from 4.1.0 to 4.2.0

Release notes

Sourced from xmlschema's releases.

v4.2.0 (2025-10-14)

• Add arguments validation for schemas and validation methods (by validation contexts)
• Add SchemaSettings dataclass for storing read-only settings for schema instances and for managing package default settings
• Add block argument to XMLResource class (issue #464)
• Add MAX_SCHEMA_SOURCES package limit (1000, applied to XsdGlobals global maps instances)
• Add MAX_XML_ELEMENTS package limit (1,000,000, applied to non-lazy XMLResource instances)
• Reduce MAX_XML_DEPTH limit to 1000 and apply it to all XMLResource instances
• Fix for substitute match in case of unexpected child (issue #461)

Changelog

Sourced from xmlschema's changelog.

v4.2.0_ (2025-10-14)

• Add arguments validation for schemas and validation methods (by validation contexts)
• Add SchemaSettings dataclass for storing read-only settings for schema instances and for managing package default settings
• Add block argument to XMLResource class (issue #464)
• Add MAX_SCHEMA_SOURCES package limit (1000, applied to XsdGlobals global maps instances)
• Add MAX_XML_ELEMENTS package limit (1,000,000, applied to non-lazy XMLResource instances)
• Reduce MAX_XML_DEPTH limit to 1000 and apply it to all XMLResource instances
• Fix for substitute match in case of unexpected child (issue #461)

Commits

• 2783030 Bump minor release
• 7c77a12 Include publiccode.yml validation workflow for CI and README changes
• 04c19d5 Fix XsdGroup.match_element (issue #461)
• dd4f279 Merge pull request #463 from publiccode-pr-bot/chore/add-publiccode-parser-ac...
• 1bd7aa6 Update GitHub workflow for CI
• 76b0f67 Patch mypy tests with protocols
• 28727bb Update docs and release info
• e4131ea Add from_settings() class method to schemas
• 0aea8de Rewrite validation contexts as normal classes
• d443d7b Full validation of context arguments
• Additional commits viewable in compare view

Updates lark from 1.2.2 to 1.3.0

Release notes

Sourced from lark's releases.

1.3.0 - Introduces text-slices, Earley fix, and various small improvements

New features

• Lark can now parse in sections of strings, using TextSlice, as a faster alternative to creating a "copy-slice" with s[i:j]. Learn more
• Added support to match on Tree instances
• When serializing a Lark instance, added the option to include the grammar object (before compilation).
• Added convenience method Tree.find_token()

Bugfixes

• Bugfix of an edge case in Earley related to representation of ambiguity.
• Bugfixes in the standalone parser related to imports
• Bugfix in indenter - now dedents always contain line information
• Various small bugfixes (see PR list below)

Full list of PRs

• Docs: Rephrase v_args() documentation to underline it only applies to Transformer classes by @​skepppy in lark-parser/lark#1458
• Tiny refactor for PR #1451 by @​erezsh in lark-parser/lark#1459
• Earley: share nodes created by the scanner with the completer by @​chanicpanic in lark-parser/lark#1451
• Better error in Lark.parse when using on_error when parser!=lalr (issue #1311) by @​erezsh in lark-parser/lark#1460
• Fix Symbol.__eq__ to return false when comparing with None by @​weaversam8 in lark-parser/lark#1481
• Mention internal/external transformers in the documentation by @​odanoburu in lark-parser/lark#1486
• Add Tree.find_token() method by @​makukha in lark-parser/lark#1467
• Type Terminal.__init__ by @​Liam-DeVoe in lark-parser/lark#1503
• Add guidance on handling comments in languages with significant indentation by @​nchammas in lark-parser/lark#1502
• [docs] Small fix for PR 1507 by @​erezsh in lark-parser/lark#1508
• Add note on binding power of numeric quantifiers by @​414owen in lark-parser/lark#1507
• Wrap functools.partial in staticmethod() to add compatibility with Python 3.14 by @​hrnciar in lark-parser/lark#1483
• Fix generic type of Transformer_InPlaceRecursive by @​lbhm in lark-parser/lark#1518
• Added TextSlice; Lark can now parse/lex a text-slice by @​erezsh in lark-parser/lark#1452
• Support match on tree by @​colmmurphyxyz in lark-parser/lark#1521
• Docs: Updated link of DSL article to a new version by @​erezsh in lark-parser/lark#1529
• better error messages for shift/reduct conflicts by @​skogsbaer in lark-parser/lark#1531
• Serialize Lark.grammar (fixes issue #1472) by @​NasalDaemon in lark-parser/lark#1506
• Fixes for PR #1506, which adds the option to cache the grammar definition by @​erezsh in lark-parser/lark#1540
• Bugfix in indenter - now always creating dedents with line information by @​erezsh in lark-parser/lark#1547
• Bugfix: issue when unpickling in the standalone parser, due to lingering Token instances by @​erezsh in lark-parser/lark#1553
• Include missing import in standalone parser by @​pdeibert in lark-parser/lark#1541
• Version bump (1.3.0) by @​erezsh in lark-parser/lark#1554

New Contributors

• @​skepppy made their first contribution in lark-parser/lark#1458
• @​weaversam8 made their first contribution in lark-parser/lark#1481
• @​odanoburu made their first contribution in lark-parser/lark#1486
• @​makukha made their first contribution in lark-parser/lark#1467
• @​Liam-DeVoe made their first contribution in lark-parser/lark#1503
• @​414owen made their first contribution in lark-parser/lark#1507
• @​hrnciar made their first contribution in lark-parser/lark#1483
• @​lbhm made their first contribution in lark-parser/lark#1518
• @​colmmurphyxyz made their first contribution in lark-parser/lark#1521

... (truncated)

Commits

• e332c2d Version bump (1.3.0)
• aa5666c Merge pull request #1541 from pdeibert/master
• 41934d3 Merge pull request #1553 from lark-parser/issue1552
• 23c95ea Bugfix: issue when unpickling in the standalone parser, due to lingering
• d1a456d Merge pull request #1547 from lark-parser/dev
• 2e3108e UnexpectedInput.pos_in_stream now defaults to 0
• 0d248fc Fix in indenter - now always creating dedents with line information
• c2e2048 Merge pull request #1540 from lark-parser/pr1506
• 2f286cc Added tests for cache_grammar
• 8a0b02d Small fix, comments, added some types
• Additional commits viewable in compare view

Updates shapely from 2.0.7 to 2.1.2

Release notes

Sourced from shapely's releases.

2.1.2

Wheels are available for Python 3.14 (and still include GEOS 3.13.1).

2.1.1

Bug fixes:

• Fix performance degradation calling shapely functions (caused by deprecation of certain positional arguments) (#2283).
• Fix crash caused by from_ragged_array() (#2291).
• Fix compilation error building with recent LLVM toolchain (#2293).

For a full changelog , see https://shapely.readthedocs.io/en/latest/release/2.x.html#version-2-1-1

2.1.0

Shapely 2.1.0 is a feature release with various new functions, improvements and bug fixes. Highlights include initial support for geometries with M or ZM values, functionality for coverage validation and simplification, and a set of new top-level functions.

Shapely supports Python >= 3.10, and binary wheels on PyPI include GEOS 3.13.1 and are now also provided for musllinux (Alpine) x86_64 platforms.

For a full changelog, see https://shapely.readthedocs.io/en/latest/release/2.x.html#version-2-1-0

2.1.0rc1

Shapely version 2.1.0 is a major release featuring various new functions, improvements and bug fixes. This is a first release candidate.

For a full changelog, see https://shapely.readthedocs.io/en/latest/release/2.x.html#version-2-1-0-unreleased

Changelog

Sourced from shapely's changelog.

2.1.2 (2025-09-24)

Wheels are available for Python 3.14 (and still include GEOS 3.13.1).

2.1.1 (2025-05-19)

Bug fixes:

• Fix performance degradation calling shapely functions (caused by deprecation of certain positional arguments) (#2283).
• Fix crash caused by from_ragged_array() (#2291).
• Fix compilation error building with recent LLVM toolchain (#2293).

2.1.0 (2025-04-03)

Shapely 2.1.0 is a feature release with various new functions, improvements and bug fixes. Highlights include initial support for geometries with M or ZM values, functionality for coverage validation and simplification, and a set of new top-level functions.

Shapely supports Python >= 3.10, and binary wheels on PyPI include GEOS 3.13.1 and are now also provided for musllinux (Alpine) x86_64 platforms.

For a full changelog, see https://shapely.readthedocs.io/en/latest/release/2.x.html#version-2-1-0

Commits

• 5fb639d RLS: 2.1.2
• 70509a1 DOC/RLS: indicate Python 3.14 support in pyproject.toml and release notes for...
• 5c572b6 CI: add testing with GEOS 3.14 and Python 3.14 (#2330)
• a909333 Bump pypa/cibuildwheel from 3.1.3 to 3.2.0 (#2328)
• 2086d44 Bump actions/setup-python from 5 to 6 (#2326)
• 50c1cf3 Bump actions/download-artifact from 4 to 5 (#2321)
• 39490ab TST: update test_coverage_union_overlapping_inputs for upstream GEOS change (...
• 5ef437c Bump actions/checkout from 4 to 5 (#2320)
• 7b5ff3d BLD: add Python 3.14 wheels [Bump pypa/cibuildwheel from 3.0.1 to 3.1.3] (#2316)
• 480dbb1 TST: update frechet_distance densify test for latest GEOS main (densify>0.001...
• Additional commits viewable in compare view

Updates django-two-factor-auth[phonenumbers] from 1.17.0 to 1.18.1

Release notes

Sourced from django-two-factor-auth[phonenumbers]'s releases.

1.18.1

Added

• New translations for Azerbaijani and Serbian

1.18.0

Fixed

• Documentation for setting yubikey support forgot to inform users they would need to add our yubikey plugin to INSTALLED_APPS
• Remove reference to release-notes that had been missed, docs now build without warnings
• WebAuthn: avoid submitting the wrong form
• Email gateway: tell user to use correct django-otp plugin
• Fix infinite redirect on admin site with AdminSiteOTPRequiredMixin

Changed

• Allow qrcode 8.x.
• phonenumbers is no longer a hard requirement for users who don't require it.
• Change EmailDevice.confirmed default to False
• Any StaticDevice can be used as backup tokens, not just those labelled "backup"

Added

• Support for Django 5.2
• Support for Python 3.13
• Django check for INSTALLED_APPS to make sure two_factor is present and comes before its plugins

Removed

• Drop support for Python 3.8

Changelog

Sourced from django-two-factor-auth[phonenumbers]'s changelog.

1.18.1

Added

• New translations for Azerbaijani and Serbian

1.18.0

Fixed

• Documentation for setting yubikey support forgot to inform users they would need to add our yubikey plugin to INSTALLED_APPS
• Remove reference to release-notes that had been missed, docs now build without warnings
• WebAuthn: avoid submitting the wrong form
• Email gateway: tell user to use correct django-otp plugin
• Fix infinite redirect on admin site with AdminSiteOTPRequiredMixin

Changed

• Allow qrcode 8.x.
• phonenumbers is no longer a hard requirement for users who don't require it.
• Change EmailDevice.confirmed default to False
• Any StaticDevice can be used as backup tokens, not just those labelled "backup"

Added

• Support for Django 5.2
• Support for Python 3.13
• Django check for INSTALLED_APPS to make sure two_factor is present and comes before its plugins

Removed

• Drop support for Python 3.8

Commits

• 38a6ba7 Merge pull request #778 from claudep/missing_trans
• 004c938 Fixes #777 - Add missing Azerbaijani and Serbian translations
• 59f4466 Merge pull request #776 from jazzband/pre-commit-ci-update-config
• d551704 [pre-commit.ci] pre-commit autoupdate
• 7405b6f Merge pull request #774 from moggers87/release-1.18.0
• b47945c Update CHANGELOG with latest changes
• b20741c Merge branch 'master' into release-1.18.0
• 966dab4 Merge pull request #775 from claudep/phoneplugin2
• 9c72f87 Refs #469 - Only import phonenumber functions when plugin is installed
• ec0923b Pull latest translations from Transifex
• Additional commits viewable in compare view

Updates boto3 from 1.40.30 to 1.40.55

Commits

• eb5f827 Merge branch 'release-1.40.55'
• 52a3496 Bumping version to 1.40.55
• 0c90e25 Add changelog entries from botocore
• 2f92c15 Merge branch 'release-1.40.54'
• eaf0158 Merge branch 'release-1.40.54' into develop
• 574a0d4 Bumping version to 1.40.54
• 1ada209 Add changelog entries from botocore
• 9a9288a Merge branch 'release-1.40.53'
• 7d581c3 Merge branch 'release-1.40.53' into develop
• 312bc51 Bumping version to 1.40.53
• Additional commits viewable in compare view

Updates uwsgi from 2.0.30 to 2.0.31

Updates coverage from 7.10.6 to 7.11.0

Changelog

Sourced from coverage's changelog.

Version 7.11.0 — 2025-10-15

• Dropped support for Python 3.9, declared support for Python 3.15 alpha.

.. _changes_7-10-7:

Version 7.10.7 — 2025-09-21

• Performance: with branch coverage in large files, generating HTML, JSON, or LCOV reports could take far too long due to some quadratic behavior when creating the function and class index pages. This is now fixed, closing issue 2048_. Thanks to Daniel Diniz for help diagnosing the problem.

• Most warnings and a few errors now have links to a page in the docs explaining the specific message. Closes issue 1921_.

.. _issue 1921: nedbat/coveragepy#1921 .. _issue 2048: nedbat/coveragepy#2048

.. _changes_7-10-6:

Commits

• 20ef00b docs: sample HTML for 7.11.0
• 5edf8eb docs: prep for 7.11.0
• 2c023ae build: 3.15 is supported
• 2f1b95b refactor: no need for _BaseCoverageException
• 72b1bcc build: test light-threads on all versions of Python
• 16e9379 refactor: move core tests to their own file
• bc8875d test: change a test to be in-process so metacov can capture its work
• 8e5d5b1 build: tweak some version info
• b0236df test: more tests for core selection, and some refactoring of them
• 56edde6 build: next version will be 7.11.0
• Additional commits viewable in compare view

Updates tox from 4.30.2 to 4.31.0

Release notes

Sourced from tox's releases.

4.31.0

What's Changed

• Address a type-conversion noted during doc builds by @​kurtmckee in tox-dev/tox#3623
• Add 3.14, drop 3.9 and support | union style by @​gaborbernat in tox-dev/tox#3624

Full Changelog: tox-dev/tox@4.30.3...4.31.0

4.30.3

What's Changed

• Isolate the test suite from any existing DEFAULT_CONFIG_FILE file by @​kurtmckee in tox-dev/tox#3612
• Fix none config file issue 3611 by @​kurtmckee in tox-dev/tox#3613
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in tox-dev/tox#3608
• Fix incorrect type annotations in PythonPathPackageWithDeps (fixes #3607) by @​PreistlyPython in tox-dev/tox#3616
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci[bot] in tox-dev/tox#3615

New Contributors

• @​PreistlyPython made their first contribution in tox-dev/tox#3616

Full Changelog: tox-dev/tox@4.30.2...4.30.3

Changelog

Sourced from tox's changelog.

v4.31.0 (2025-10-09)

No significant changes.

v4.30.3 (2025-10-02)

Bugfixes - 4.30.3

- Fix incorrect type annotation in ``PythonPathPackageWithDeps.__init__()``
  where ``deps`` was annotated as ``Sequence[Package]`` but should be
  ``Sequence[Requirement]`` to match actual runtime usage - by :user:`PreistlyPython` (:issue:`3607`)
- Fix ``None`` appearing as the config filename in error output
  when the user's default config file is corrupt. - by :user:`kurtmckee` (:issue:`3611`)

Commits

• eac78c1 release 4.31.0
• 733f5aa Add 3.14, drop 3.9 and support | union style (#3624)
• b5f1cd8 Address a type-conversion noted during doc builds (#3623)
• 1f28422 Bump astral-sh/setup-uv from 6 to 7 (#3620)
• 01442da release 4.30.3
• 984dc78 [pre-commit.ci] pre-commit autoupdate (#3615)
• 660adb5 Fix incorrect type annotations in PythonPathPackageWithDeps (fixes #3607) (#3...
• 393de39 [pre-commit.ci] pre-commit autoupdate (#3608)
• 6e32426 Fix none config file issue 3611 (#3613)
• 0805c83 Isolate the test suite from any existing DEFAULT_CONFIG_FILE file (#3612)
• See full diff in compare view

Updates psutil from 7.0.0 to 7.1.1

Changelog

Sourced from psutil's changelog.

7.1.1

2025-10-19

Enhancements

• 2645_, [SunOS]: dropped support for SunOS 10.
• 2646_, [SunOS]: add CI test runner for SunOS.

Bug fixes

• 2641_, [SunOS]: cannot compile psutil from sources due to missing C include.
• 2357_, [SunOS]: Process.cmdline()_ does not handle spaces properly. (patch by Ben Raz)

Compatibility notes

• 2645_: SunOS 10 is no longer supported.

7.1.0

2025-09-17

Enhancements

• 2581_, [Windows]: publish ARM64 wheels. (patch by Matthieu Darbois)
• 2571_, [FreeBSD]: Dropped support for FreeBSD 8 and earlier. FreeBSD 8 was maintained from 2009 to 2013.
• 2575_: introduced dprint CLI tool to format .yml and .md files.

Bug fixes

• 2473_, [macOS]: Fix build issue on macOS 11 and lower.
• 2494_, [Windows]: All APIs dealing with paths, such as Process.memory_maps(), Process.exe() and Process.open_files()_ does not properly handle UNC paths. Paths such as \\??\\C:\\Windows\\Temp and '\\Device\\HarddiskVolume1\\Windows\\Temp' are now converted to C:\\Windows\\Temp. (patch by Ben Peddell)
• 2506_, [Windows]: Windows service APIs had issues with unicode services using special characters in their name.
• 2514_, [Linux]: Process.cwd()_ sometimes fail with FileNotFoundError due to a race condition.
• 2526_, [Linux]: Process.create_time(), which is used to univocally identify a process over time, is subject to system clock updates, and as such can lead to Process.is_running() returning a wrong result. A monotonic creation time is now used instead. (patch by Jonathan Kohler)
• 2528_, [Linux]: Process.children()_ may raise PermissionError. It will now raise AccessDenied_ instead.

... (truncated)

Commits

• a07e87a Pre release
• 7a0756f Upgrade actions/setup-python@v6
• 03c5c69 setup.py: link external libs also when compiling _psutil_posix.c ext
• 49b56c2 [SunOS] Drop SunOS 10 support (#2647)
• 8aca550 [SunOS] add CI test runner for SunOS (#2646)
• c4dd48a Rename psutil_get_proc_list() to _psutil_pids()
• 567b6c9 CI: rename ci-* Makefile target
• c3f6551 avoid raising the result of pytest.skip/pytest.fail (#2638)
• a2091b9 Centralize distribution sanity check into Makefile
• 4250b8e Make ruff happy
• Additional commits viewable in compare view

Updates faker from 37.6.0 to 37.11.0

Release notes

Sourced from faker's releases.

Release v37.11.0

See CHANGELOG.md.

Release v37.10.0

See CHANGELOG.md.

Release v37.9.0

See CHANGELOG.md.

Release v37.8.0

See CHANGELOG.md.

Release v37.7.0

See CHANGELOG.md.

Changelog

Sourced from faker's changelog.

v37.11.0 - 2025-10-07

• Add French company APE code. Thanks @​fabien-michel.

v37.9.0 - 2025-10-07

• Add names generation to en_KE locale. Thanks @​titustum.

v37.8.0 - 2025-09-15

• Add Automotive providers for ja_JP locale. Thanks @​ItoRino424.

v37.7.0 - 2025-09-15

• Add Nigerian name locales (yo_NG, ha_NG, ig_NG, en_NG). Thanks @​ifeoluwaoladeji.

Commits

• 2a366a6 Bump version: 37.10.0 → 37.11.0
• 84890eb Bump version: 37.9.0 → 37.10.0
• 6e9b7ef 📝 Update CHANGELOG.md
• e8f344f 💄 Lint code
• de0efef feat: add french company APE code (#2263)
• d4826a7 Bump version: 37.8.0 → 37.9.0
• e49d9a1 📝 Update CHANGELOG.md
• 923863e 📝 Update CHANGELOG.md
• e089c8f 💄 Lint code
• b91c7c1 Add names generation to en_KE locale (#2255)
• Additional commits viewable in compare view

Updates sphinx from 7.4.7 to 8.2.3

Release notes

Sourced from