Bump the python-packages group with 5 updates

[dependabot]

Updates the requirements on pydantic-settings, ruff, sentry-sdk, setuptools and uvicorn to permit the latest version.
Updates pydantic-settings to 2.9.1

Commits

• 1874740 Prepare release 2.9.1 (#600)
• 88e77bc Fix typo in gcp secret manager error message (#598)
• e973d9a fix: Expose ConfigFileSourceMixing on top level sources/init.py (#597)
• 8c0f5f1 Fix check in CI (#595)
• 0ac2312 Prepare release 2.9.0 (#594)
• f3e5ac3 Update pydantic (#593)
• 20640b0 Cli retrieve unknown args (#588)
• ed7fd42 CLI submodel suppress. (#587)
• e9fb316 Fix for env nested enum. (#589)
• 0e9b329 CLI JSON Optional Default (#581)
• Additional commits viewable in compare view

Updates ruff from 0.11.5 to 0.11.6

Release notes

Sourced from ruff's releases.

0.11.6

Release Notes

Preview features

• Avoid adding whitespace to the end of a docstring after an escaped quote (#17216)
• [airflow] Extract AIR311 from AIR301 rules (AIR301, AIR311) (#17310, #17422)

Bug fixes

• Raise syntax error when \ is at end of file (#17409)

Contributors

• @​AlexWaygood
• @​BurntSushi
• @​Lee-W
• @​MatthewMckee4
• @​MichaReiser
• @​cake-monotone
• @​carljm
• @​charliermarsh
• @​dcreager
• @​dhruvmanila
• @​github-actions
• @​maxmynter
• @​mishamsk
• @​mtshiba
• @​ntBre
• @​renovate
• @​sharkdp

Install ruff 0.11.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.11.6/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/astral-sh/ruff/releases/download/0.11.6/ruff-installer.ps1 | iex"

Download ruff 0.11.6

File	Platform	Checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.11.6

Preview features

• Avoid adding whitespace to the end of a docstring after an escaped quote (#17216)
• [airflow] Extract AIR311 from AIR301 rules (AIR301, AIR311) (#17310, #17422)

Bug fixes

• Raise syntax error when \ is at end of file (#17409)

Commits

• fcd50a0 Bump 0.11.6 (#17449)
• 3ada36b Auto generate visit_source_order (#17180)
• bd89838 [red-knot] Initial tests for protocols (#17436)
• b32407b [red-knot] Dataclasses: synthesize __init__ with proper signature (#17428)
• b4de245 [red-knot] Dataclasses: support order=True (#17406)
• 914095d [red-knot] Super-basic generic inference at call sites (#17301)
• 5350288 [red-knot] Check assignability of bound methods to callables (#17430)
• 649610c [red-knot] Support super (#17174)
• 1a79722 [airflow] Extend AIR311 rules (#17422)
• b67590b [red-knot] simplify union size limit handling (#17429)
• Additional commits viewable in compare view

Updates sentry-sdk to 2.26.1

Release notes

Sourced from sentry-sdk's releases.

2.26.1

Various fixes & improvements

• fix(threading): Data leak in ThreadingIntegration between threads (#4281) by @​antonpirker
• fix(logging): Clarify separate warnings case is for Python <3.11 (#4296) by @​szokeasaurusrex
• fix(logging): Add formatted message to log events (#4292) by @​szokeasaurusrex
• fix(logging): Send raw logging parameters (#4291) by @​szokeasaurusrex
• fix: Revert "chore: Deprecate same_process_as_parent (#4244)" (#4290) by @​sentrivana

Changelog

Sourced from sentry-sdk's changelog.

2.26.1

Various fixes & improvements

• fix(threading): Data leak in ThreadingIntegration between threads (#4281) by @​antonpirker
• fix(logging): Clarify separate warnings case is for Python <3.11 (#4296) by @​szokeasaurusrex
• fix(logging): Add formatted message to log events (#4292) by @​szokeasaurusrex
• fix(logging): Send raw logging parameters (#4291) by @​szokeasaurusrex
• fix: Revert "chore: Deprecate same_process_as_parent (#4244)" (#4290) by @​sentrivana

2.26.0

Various fixes & improvements

• fix(debug): Do not consider parent loggers for debug logging (#4286) by @​szokeasaurusrex
• test(tracing): Simplify static/classmethod tracing tests (#4278) by @​szokeasaurusrex
• feat(transport): Add a timeout (#4252) by @​sentrivana
• meta: Change CODEOWNERS back to Python SDK owners (#4269) by @​sentrivana
• feat(logs): Add sdk name and version as log attributes (#4262) by @​AbhiPrasad
• feat(logs): Add server.address to logs (#4257) by @​AbhiPrasad
• chore: Deprecate same_process_as_parent (#4244) by @​sentrivana
• feat(logs): Add sentry.origin attribute for log handler (#4250) by @​AbhiPrasad
• feat(tests): Add optional cutoff to toxgen (#4243) by @​sentrivana
• toxgen: Retry & fail if we fail to fetch PyPI data (#4251) by @​sentrivana
• build(deps): bump actions/create-github-app-token from 1.12.0 to 2.0.2 (#4248) by @​dependabot
• Trying to prevent the grpc setup from being flaky (#4233) by @​antonpirker
• feat(breadcrumbs): add _meta information for truncation of breadcrumbs (#4007) by @​shellmayr
• tests: Move django under toxgen (#4238) by @​sentrivana
• fix: Handle JSONDecodeError gracefully in StarletteRequestExtractor (#4226) by @​moodix
• fix(asyncio): Remove shutdown handler (#4237) by @​sentrivana

2.25.1

Various fixes & improvements

• fix(logs): Add a class which batches groups of logs together. (#4229) by @​colin-sentry
• fix(logs): Use repr instead of json for message and arguments (#4227) by @​colin-sentry
• fix(logs): Debug output from Sentry logs should always be debug level. (#4224) by @​antonpirker
• fix(ai): Do not consume anthropic streaming stop (#4232) by @​colin-sentry
• fix(spotlight): Do not spam sentry_sdk.warnings logger w/ Spotlight (#4219) by @​BYK
• fix(docs): fixed code snippet (#4218) by @​antonpirker
• build(deps): bump actions/create-github-app-token from 1.11.7 to 1.12.0 (#4214) by @​dependabot

2.25.0

Various fixes & improvements

• New Beta Feature Enable Sentry logs in logging Integration (#4143) by @​colin-sentry

  You can now send existing log messages to the new Sentry Logs feature.

... (truncated)

Commits

• ec050c0 Updated changelog
• d552808 release: 2.26.1
• b2693f4 ref(logging): Clarify separate warnings case is for Python <3.11 (#4296)
• 2d392af fix: Data leak in ThreadingIntegration between threads (#4281)
• 706d2d2 Revert "chore: Deprecate same_process_as_parent (#4244)" (#4290)
• 296e288 feat(logging): Add formatted message to log events
• e71ccbf fix(logging): Send raw logging parameters
• a3d4b89 Merge branch 'release/2.26.0'
• 54d2c7e release: 2.26.0
• 5689bc0 fix(debug): Do not consider parent loggers for debug logging (#4286)
• Additional commits viewable in compare view

Updates setuptools to 79.0.0

Changelog

Sourced from setuptools's changelog.

v79.0.0

Deprecations and Removals

• Removed support for 'legacy-editable' installs. (#917)

v78.1.1

Bugfixes

• More fully sanitized the filename in PackageIndex._download. (#4946)

v78.1.0

Features

• Restore access to _get_vc_env with a warning. (#4874)

v78.0.2

Bugfixes

• Postponed removals of deprecated dash-separated and uppercase fields in setup.cfg. All packages with deprecated configurations are advised to move before 2026. (#4911)

v78.0.1

Misc

• #4909

v78.0.0

Bugfixes

... (truncated)

Commits

• 56962ec Bump version: 78.1.1 → 79.0.0
• b137521 Merge pull request #4953 from pypa/debt/917/remove-legacy-editable
• f89e652 Removed support for the 'legacy-editable' feature.
• 8e4868a Bump version: 78.1.0 → 78.1.1
• 100e9a6 Merge pull request #4951
• 8faf1d7 Add news fragment.
• 2ca4a9f Rely on re.sub to perform the decision in one expression.
• e409e80 Extract _sanitize method for sanitizing the filename.
• 250a6d1 Add a check to ensure the name resolves relative to the tmpdir.
• d8390fe Extract _resolve_download_filename with test.
• Additional commits viewable in compare view

Updates uvicorn to 0.34.2

Release notes

Sourced from uvicorn's releases.

Version 0.34.2

What's Changed

• Flush the stdout buffer on Windows to trigger reload by @​jamesh1999 in encode/uvicorn#2604

New Contributors

• @​jamesh1999 made their first contribution in encode/uvicorn#2604

Full Changelog: encode/uvicorn@0.34.1...0.34.2

Changelog

Sourced from uvicorn's changelog.

0.34.2 (April 19, 2025)

Fixed

• Flush stdout buffer on Windows to trigger reload (#2604)

0.34.1 (April 13, 2025)

Deprecated

• Deprecate ServerState in the main module (#2581)

0.34.0 (December 15, 2024)

Added

• Add content-length to 500 response in wsproto implementation (#2542)

Removed

• Drop support for Python 3.8 (#2543)

0.33.0 (December 14, 2024)

Removed

• Remove WatchGod support for --reload (#2536)

0.32.1 (November 20, 2024)

Fixed

• Drop ASGI spec version to 2.3 on HTTP scope (#2513)
• Enable httptools lenient data on httptools >= 0.6.3 (#2488)

0.32.0 (October 15, 2024)

Added

• Officially support Python 3.13 (#2482)
• Warn when max_request_limit is exceeded (#2430)

0.31.1 (October 9, 2024)

Fixed

• Support WebSockets 0.13.1 (#2471)
• Restore support for [*] in trusted hosts (#2480)
• Add PathLike[str] type hint for ssl_keyfile (#2481)

... (truncated)

Commits

• bdf95fd Version 0.34.2 (#2616)
• 86dc456 Flush the stdout buffer on Windows to trigger reload (#2604)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.