Update Analytics

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
boto3	1.35.69 -> 1.35.72
boto3-stubs	1.35.69 -> 1.35.72
pylint (changelog)	3.3.1 -> 3.3.2
pytest (changelog)	8.3.3 -> 8.3.4
ruff (source, changelog)	^0.7.0 -> ^0.8.0
safety	3.2.9 -> 3.2.11
typer (changelog)	^0.13.0 -> ^0.14.0

---

Release Notes

boto/boto3 (boto3)

v1.35.72

Compare Source

=======

• api-change:bedrock: [botocore] Add support for Knowledge Base Evaluations & LLM as a judge
• api-change:bedrock-agent: [botocore] This release introduces APIs to upload documents directly into a Knowledge Base
• api-change:bedrock-agent-runtime: [botocore] This release introduces a new Rerank API to leverage reranking models (with integration into Knowledge Bases); APIs to upload documents directly into Knowledge Base; RetrieveAndGenerateStream API for streaming response; Guardrails on Retrieve API; and ability to automatically generate filters
• api-change:chime-sdk-voice: [botocore] This release adds supports for enterprises to integrate Amazon Connect with other voice systems. It supports directly transferring voice calls and metadata without using the public telephone network. It also supports real-time and post-call analytics.
• api-change:cleanrooms: [botocore] This release allows customers and their partners to easily collaborate with data stored in Snowflake and Amazon Athena, without having to move or share their underlying data among collaborators.
• api-change:connect: [botocore] Adds support for WhatsApp Business messaging, IVR call recording, enabling Contact Lens for existing on-premise contact centers and telephony platforms, and enabling telephony and IVR migration to Amazon Connect independent of their contact center agents.
• api-change:connectcampaignsv2: [botocore] Amazon Connect Outbound Campaigns V2 / Features : Adds support for Event-Triggered Campaigns.
• api-change:customer-profiles: [botocore] This release introduces Event Trigger APIs as part of Amazon Connect Customer Profiles service.
• api-change:ec2: [botocore] Adds support for declarative policies that allow you to enforce desired configuration across an AWS organization through configuring account attributes. Adds support for Allowed AMIs that allows you to limit the use of AMIs in AWS accounts. Adds support for connectivity over non-HTTP protocols.
• api-change:ecs: [botocore] This release adds support for Container Insights with Enhanced Observability for Amazon ECS.
• api-change:eks: [botocore] Added support for Auto Mode Clusters, Hybrid Nodes, and specifying computeTypes in the DescribeAddonVersions API.
• api-change:events: [botocore] Call private APIs by configuring Connections with VPC connectivity through PrivateLink and VPC Lattice
• api-change:fsx: [botocore] FSx API changes to support the public launch of the Amazon FSx Intelligent Tiering for OpenZFS storage class.
• api-change:guardduty: [botocore] Add new Multi Domain Correlation findings.
• api-change:imagebuilder: [botocore] Added support for EC2 Image Builder's integration with AWS Marketplace for Marketplace components.
• api-change:invoicing: [botocore] AWS Invoice Configuration allows you to receive separate AWS invoices based on your organizational needs. You can use the AWS SDKs to manage Invoice Units and programmatically fetch the information of the invoice receiver.
• api-change:logs: [botocore] Adds PutIntegration, GetIntegration, ListIntegrations and DeleteIntegration APIs. Adds QueryLanguage support to StartQuery, GetQueryResults, DescribeQueries, DescribeQueryDefinitions, and PutQueryDefinition APIs.
• api-change:memorydb: [botocore] Amazon MemoryDB SDK now supports all APIs for Multi-Region. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage.
• api-change:networkflowmonitor: [botocore] This release adds documentation for a new feature in Amazon CloudWatch called Network Flow Monitor. You can use Network Flow Monitor to get near real-time metrics, including retransmissions and data transferred, for your actual workloads.
• api-change:opensearch: [botocore] This feature introduces support for CRUDL APIs, enabling the creation and management of Connected data sources.
• api-change:organizations: [botocore] Add support for policy operations on the DECLARATIVE_POLICY_EC2 policy type.
• api-change:qbusiness: [botocore] Amazon Q Business now supports capabilities to extract insights and answer questions from visual elements embedded within documents, a browser extension for Google Chrome, Mozilla Firefox, and Microsoft Edge, and attachments across conversations.
• api-change:qconnect: [botocore] This release adds following capabilities: Configuring safeguards via AIGuardrails for Q in Connect inferencing, and APIs to support Q&A self-service use cases
• api-change:rds: [botocore] Amazon RDS supports CloudWatch Database Insights. You can use the SDK to create, modify, and describe the DatabaseInsightsMode for your DB instances and clusters.
• api-change:s3: [botocore] Amazon S3 introduces support for AWS Dedicated Local Zones
• api-change:s3control: [botocore] Amazon S3 introduces support for AWS Dedicated Local Zones
• api-change:securityhub: [botocore] Add new Multi Domain Correlation findings.
• api-change:security-ir: [botocore] AWS Security Incident Response is a purpose-built security incident solution designed to help customers prepare for, respond to, and recover from security incidents.
• api-change:transfer: [botocore] AWS Transfer Family now offers Web apps that enables simple and secure access to data stored in Amazon S3.
• api-change:vpc-lattice: [botocore] Lattice APIs that allow sharing and access of VPC resources across accounts.

v1.35.71

Compare Source

=======

• api-change:bedrock-agent: [botocore] Add support for specifying embeddingDataType, either FLOAT32 or BINARY
• api-change:config: [botocore] AWS Config adds support for service-linked recorders, a new type of Config recorder managed by AWS services to record specific subsets of resource configuration data and functioning independently from customer managed AWS Config recorders.
• api-change:fsx: [botocore] This release adds EFA support to increase FSx for Lustre file systems' throughput performance to a single client instance. This can be done by specifying EfaEnabled=true at the time of creation of Persistent_2 file systems.
• api-change:observabilityadmin: [botocore] Amazon CloudWatch Observability Admin adds the ability to audit telemetry configuration for AWS resources in customers AWS Accounts and Organizations. The release introduces new APIs to turn on/off the new experience, which supports discovering supported AWS resources and their state of telemetry.

v1.35.70

Compare Source

=======

• api-change:bedrock-agent: [botocore] Custom Orchestration API release for AWSBedrockAgents.
• api-change:bedrock-agent-runtime: [botocore] Custom Orchestration and Streaming configurations API release for AWSBedrockAgents.
• api-change:connect: [botocore] Enables access to ValueMap and ValueInteger types for SegmentAttributes and fixes deserialization bug for DescribeContactFlow in AmazonConnect Public API
• api-change:ec2: [botocore] Adds support for Time-based Copy for EBS Snapshots and Cross Region PrivateLink. Time-based Copy ensures that EBS Snapshots are copied within and across AWS Regions in a specified timeframe. Cross Region PrivateLink enables customers to connect to VPC endpoint services hosted in other AWS Regions.
• api-change:qapps: [botocore] Private sharing, file upload and data collection feature support for Q Apps

pylint-dev/pylint (pylint)

v3.3.2

Compare Source

False Positives Fixed

• Fix a false positive for potential-index-error when an indexed iterable
  contains a starred element that evaluates to more than one item.

  Closes #​10076

Other Bug Fixes

• Fixes the issue with --source-root option not working when the source files are in a subdirectory of the source root (e.g. when using a /src layout).

  Closes #​10026

pytest-dev/pytest (pytest)

v8.3.4

Compare Source

pytest 8.3.4 (2024-12-01)

Bug fixes

• #​12592: Fixed KeyError{.interpreted-text role="class"} crash when using --import-mode=importlib in a directory layout where a directory contains a child directory with the same name.

• #​12818: Assertion rewriting now preserves the source ranges of the original instructions, making it play well with tools that deal with the AST, like executing.

• #​12849: ANSI escape codes for colored output now handled correctly in pytest.fail{.interpreted-text role="func"} with [pytrace=False]{.title-ref}.

• #​9353: pytest.approx{.interpreted-text role="func"} now uses strict equality when given booleans.

Improved documentation

• #​10558: Fix ambiguous docstring of pytest.Config.getoption{.interpreted-text role="func"}.

• #​10829: Improve documentation on the current handling of the --basetemp option and its lack of retention functionality (temporary directory location and retention{.interpreted-text role="ref"}).

• #​12866: Improved cross-references concerning the recwarn{.interpreted-text role="fixture"} fixture.

• #​12966: Clarify filterwarnings{.interpreted-text role="ref"} docs on filter precedence/order when using multiple @pytest.mark.filterwarnings <pytest.mark.filterwarnings ref>{.interpreted-text role="ref"} marks.

Contributor-facing changes

• #​12497: Fixed two failing pdb-related tests on Python 3.13.

astral-sh/ruff (ruff)

v0.8.1

Compare Source

Preview features

• Formatter: Avoid invalid syntax for format-spec with quotes for all Python versions (#​14625)
• Formatter: Consider quotes inside format-specs when choosing the quotes for an f-string (#​14493)
• Formatter: Do not consider f-strings with escaped newlines as multiline (#​14624)
• Formatter: Fix f-string formatting in assignment statement (#​14454)
• Formatter: Fix unnecessary space around power operator (**) in overlong f-string expressions (#​14489)
• [airflow] Avoid implicit schedule argument to DAG and @dag (AIR301) (#​14581)
• [flake8-builtins] Exempt private built-in modules (A005) (#​14505)
• [flake8-pytest-style] Fix pytest.mark.parametrize rules to check calls instead of decorators (#​14515)
• [flake8-type-checking] Implement runtime-cast-value (TC006) (#​14511)
• [flake8-type-checking] Implement unquoted-type-alias (TC007) and quoted-type-alias (TC008) (#​12927)
• [flake8-use-pathlib] Recommend Path.iterdir() over os.listdir() (PTH208) (#​14509)
• [pylint] Extend invalid-envvar-default to detect os.environ.get (PLW1508) (#​14512)
• [pylint] Implement len-test (PLC1802) (#​14309)
• [refurb] Fix bug where methods defined using lambdas were flagged by FURB118 (#​14639)
• [ruff] Auto-add r prefix when string has no backslashes for unraw-re-pattern (RUF039) (#​14536)
• [ruff] Implement invalid-assert-message-literal-argument (RUF040) (#​14488)
• [ruff] Implement unnecessary-nested-literal (RUF041) (#​14323)
• [ruff] Implement unnecessary-regular-expression (RUF055) (#​14659)

Rule changes

• Ignore more rules for stub files (#​14541)
• [pep8-naming] Eliminate false positives for single-letter names (N811, N814) (#​14584)
• [pyflakes] Avoid false positives in @no_type_check contexts (F821, F722) (#​14615)
• [ruff] Detect redirected-noqa in file-level comments (RUF101) (#​14635)
• [ruff] Mark fixes for unsorted-dunder-all and unsorted-dunder-slots as unsafe when there are complex comments in the sequence (RUF022, RUF023) (#​14560)

Bug fixes

• Avoid fixing code to None | None for redundant-none-literal (PYI061) and never-union (RUF020) (#​14583, #​14589)
• [flake8-bugbear] Fix mutable-contextvar-default to resolve annotated function calls properly (B039) (#​14532)
• [flake8-pyi, ruff] Fix traversal of nested literals and unions (PYI016, PYI051, PYI055, PYI062, RUF041) (#​14641)
• [flake8-pyi] Avoid rewriting invalid type expressions in unnecessary-type-union (PYI055) (#​14660)
• [flake8-type-checking] Avoid syntax errors and type checking problem for quoted annotations autofix (TC003, TC006) (#​14634)
• [pylint] Do not wrap function calls in parentheses in the fix for unnecessary-dunder-call (PLC2801) (#​14601)
• [ruff] Handle attrs's auto_attribs correctly (RUF009) (#​14520)

v0.8.0

Compare Source

Check out the blog post for a migration guide and overview of the changes!

Breaking changes

See also, the "Remapped rules" section which may result in disabled rules.

• Default to Python 3.9

  Ruff now defaults to Python 3.9 instead of 3.8 if no explicit Python version is configured using ruff.target-version or project.requires-python (#​13896)

• Changed location of pydoclint diagnostics

  pydoclint diagnostics now point to the first-line of the problematic docstring. Previously, this was not the case.

  If you've opted into these preview rules but have them suppressed using
  noqa comments in
  some places, this change may mean that you need to move the noqa suppression
  comments. Most users should be unaffected by this change.

• Use XDG (i.e. ~/.local/bin) instead of the Cargo home directory in the standalone installer

  Previously, Ruff's installer used $CARGO_HOME or ~/.cargo/bin for its target install directory. Now, Ruff will be installed into $XDG_BIN_HOME, $XDG_DATA_HOME/../bin, or ~/.local/bin (in that order).

  This change is only relevant to users of the standalone Ruff installer (using the shell or PowerShell script). If you installed Ruff using uv or pip, you should be unaffected.

• Changes to the line width calculation

  Ruff now uses a new version of the unicode-width Rust crate to calculate the line width. In very rare cases, this may lead to lines containing Unicode characters being reformatted, or being considered too long when they were not before (E501).

Removed Rules

The following deprecated rules have been removed:

• missing-type-self (ANN101)
• missing-type-cls (ANN102)
• syntax-error (E999)
• pytest-missing-fixture-name-underscore (PT004)
• pytest-incorrect-fixture-name-underscore (PT005)
• unpacked-list-comprehension (UP027)

Remapped rules

The following rules have been remapped to new rule codes:

• flake8-type-checking: TCH to TC

Stabilization

The following rules have been stabilized and are no longer in preview:

• builtin-import-shadowing (A004)
• mutable-contextvar-default (B039)
• fast-api-redundant-response-model (FAST001)
• fast-api-non-annotated-dependency (FAST002)
• dict-index-missing-items (PLC0206)
• pep484-style-positional-only-argument (PYI063)
• redundant-final-literal (PYI064)
• bad-version-info-order (PYI066)
• parenthesize-chained-operators (RUF021)
• unsorted-dunder-all (RUF022)
• unsorted-dunder-slots (RUF023)
• assert-with-print-message (RUF030)
• unnecessary-default-type-args (UP043)

The following behaviors have been stabilized:

• ambiguous-variable-name (E741): Violations in stub files are now ignored. Stub authors typically don't control variable names.
• printf-string-formatting (UP031): Report all printf-like usages even if no autofix is available

The following fixes have been stabilized:

• zip-instead-of-pairwise (RUF007)

Preview features

• [flake8-datetimez] Exempt min.time() and max.time() (DTZ901) (#​14394)
• [flake8-pie] Mark fix as unsafe if the following statement is a string literal (PIE790) (#​14393)
• [flake8-pyi] New rule redundant-none-literal (PYI061) (#​14316)
• [flake8-pyi] Add autofix for redundant-numeric-union (PYI041) (#​14273)
• [ruff] New rule map-int-version-parsing (RUF048) (#​14373)
• [ruff] New rule redundant-bool-literal (RUF038) (#​14319)
• [ruff] New rule unraw-re-pattern (RUF039) (#​14446)
• [pycodestyle] Exempt pytest.importorskip() calls (E402) (#​14474)
• [pylint] Autofix suggests using sets when possible (PLR1714) (#​14372)

Rule changes

• invalid-pyproject-toml (RUF200): Updated to reflect the provisionally accepted PEP 639.
• [flake8-pyi] Avoid panic in unfixable case (PYI041) (#​14402)
• [flake8-type-checking] Correctly handle quotes in subscript expression when generating an autofix (#​14371)
• [pylint] Suggest correct autofix for __contains__ (PLC2801) (#​14424)

Configuration

• Ruff now emits a warning instead of an error when a configuration ignores a rule that has been removed (#​14435)
• Ruff now validates that lint.flake8-import-conventions.aliases only uses valid module names and aliases (#​14477)

pyupio/safety (safety)

v3.2.11

Compare Source

• chore/upgrade-dparse (#​633)
• Migrate to PyPI Trusted Publisher for Automated Package Deployment (#​632)
• fix/fix-test-validate-func (#​631)
• feat: api keys now work without specifying the env (#​630)
• fix:jupyter notebook rich format removal (#​628)

v3.2.10

Compare Source

• Support for scanning pyproject.toml files (#​625)
• Update safety-schemas version used (#​624)
• Fix basic poloicy test (#​622)

fastapi/typer (typer)

v0.14.0

Compare Source

Breaking Changes

• 🔥 Remove auto naming of groups added via add_typer based on the group's callback function name. PR #​1052 by @​patrick91.

Before, it was supported to infer the name of a command group from the callback function name in the sub-app, so, in this code:

import typer

app = typer.Typer()
users_app = typer.Typer()

app.add_typer(users_app)

@​users_app.callback()
def users():  # <-- This was the inferred command group name
    """
    Manage users in the app.
    """

@&#8203;users_app.command()
def create(name: str):
    print(f"Creating user: {name}")

...the command group would be named users, based on the name of the function def users().

Now you need to set it explicitly:

import typer

app = typer.Typer()
users_app = typer.Typer()

app.add_typer(users_app, name="users")  # <-- Explicitly set the command group name

@&#8203;users_app.callback()
def users():
    """
    Manage users in the app.
    """

@&#8203;users_app.command()
def create(name: str):
    print(f"Creating user: {name}")

Updated docs SubCommand Name and Help.

Note: this change will enable important features in the next release. 🤩

Internal

• ⬆ Bump pypa/gh-action-pypi-publish from 1.10.3 to 1.12.2. PR #​1043 by @​dependabot[bot].
• ⬆ Bump mkdocs-material from 9.5.44 to 9.5.46. PR #​1062 by @​dependabot[bot].
• ⬆ Bump ruff from 0.7.4 to 0.8.0. PR #​1059 by @​dependabot[bot].
• ⬆ Bump astral-sh/setup-uv from 3 to 4. PR #​1061 by @​dependabot[bot].
• ⬆ [pre-commit.ci] pre-commit autoupdate. PR #​1053 by @​pre-commit-ci[bot].

---

Configuration

📅 Schedule: Branch creation - "on the 2nd and 4th day instance on sunday after 9pm" in timezone America/New_York, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[chouinar]

LGTM!