Skip to content

Bump the actions group with 4 updates #483

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump the actions group with 4 updates #483

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 24, 2025
edited
Loading

Bumps the actions group with 4 updates: ruff, beartype, basedpyright and pyrefly.

Updates ruff from 0.14.5 to 0.14.6

Release notes

Sourced from ruff's releases.

0.14.6

Release Notes

Released on 2025-11-21.

Preview features

  • [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

  • Adjust own-line comment placement between branches (#21185)
  • Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
  • Fix panic when formatting comments in unary expressions (#21501)
  • Respect fmt: skip for compound statements on a single line (#20633)
  • [refurb] Fix FURB103 autofix (#21454)
  • [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

  • [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

  • Render hyperlinks for lint errors (#21514)
  • Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

  • Limit eglot-format hook to eglot-managed Python buffers (#21459)
  • Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

Install ruff 0.14.6

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.14.6/ruff-installer.sh | sh
</tr></table>

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.6

Released on 2025-11-21.

Preview features

  • [flake8-bandit] Support new PySNMP API paths (S508, S509) (#21374)

Bug fixes

  • Adjust own-line comment placement between branches (#21185)
  • Avoid syntax error when formatting attribute expressions with outer parentheses, parenthesized value, and trailing comment on value (#20418)
  • Fix panic when formatting comments in unary expressions (#21501)
  • Respect fmt: skip for compound statements on a single line (#20633)
  • [refurb] Fix FURB103 autofix (#21454)
  • [ruff] Fix false positive for complex conversion specifiers in logging-eager-conversion (RUF065) (#21464)

Rule changes

  • [ruff] Avoid false positive on ClassVar reassignment (RUF012) (#21478)

CLI

  • Render hyperlinks for lint errors (#21514)
  • Add a ruff analyze option to skip over imports in TYPE_CHECKING blocks (#21472)

Documentation

  • Limit eglot-format hook to eglot-managed Python buffers (#21459)
  • Mention force-exclude in "Configuration > Python file discovery" (#21500)

Contributors

Commits
  • 59c6cb5 Bump 0.14.6 (#21558)
  • 54dba15 [ty] Improve debug messages when imports fail (#21555)
  • 1af3185 [ty] Add support for relative import completions
  • 553e568 [ty] Refactor detection of import statements for completions
  • cdef3f5 [ty] Use dedicated collector for completions
  • 6178822 [ty] Attach subdiagnostics to unresolved-import errors for relative imports...
  • 6b7adb0 [ty] support PEP 613 type aliases (#21394)
  • 06941c1 [ty] More low-hanging fruit for inlay hint goto-definition (#21548)
  • eb7c098 [ty] implement TypedDict structural assignment (#21467)
  • 1b28fc1 [ty] Add more random TypeDetails and tests (#21546)
  • Additional commits viewable in compare view

Updates beartype from 0.22.5 to 0.22.6

Commits
  • 876591c Beartype 0.22.6: Gradio, They Said. It'll Be Easy, They Said.
  • 1f57def inspect.isgeneratorfunction() mimicry x 2.
  • ae520e9 inspect.isgeneratorfunction() mimicry x 1.
  • aa872c5 PyPy resurrection x 1.
  • 4385658 docutils.core.publish_parts() >= 0.22.0.
  • de34bac Beartype 0.22.6 started.
  • See full diff in compare view

Updates basedpyright from 1.33.0 to 1.34.0

Commits
  • b908f26 1.34.0
  • 21cd035 document go to implementations
  • 08d798a hopefully fix npm tasks running with the globally installed version of node
  • 6400e27 implement textDocument/implementation to find overrides (#1636)
  • 513aa51 workaround for crash in vscode pylint plugin
  • 759c0da disable python.terminal.shellIntegration.enabled in vscode because it's broken
  • acfea41 Fix issues with highlighting decorators/properties (#1632)
  • ac639c2 remove workaround for language server crash when installing basedpyright with...
  • c7537d4 Chinese (Simplified) localization update (2025.11) (#1628)
  • 449c4b6 document hover and "go to definition" on operators
  • Additional commits viewable in compare view

Updates pyrefly from 0.41.3 to 0.43.1

Release notes

Sourced from pyrefly's releases.

Pyrefly v0.42.0 - BETA

Status : BETA 🎉
Release date: 17 Nov 2025

🚀Pyrefly is now in Beta!

We’re thrilled to announce with this release that Pyrefly has transitioned from Alpha to Beta status! This marks a new chapter for the project, with increased stability, feature maturity, and readiness for broader adoption. When using a version of Pyrefly with Beta status you can feel confident that the IDE extension is ready for production use, while core type-checking features can be used, but be aware some edge cases are still being addressed as we make progress towards a later stable v1 release (bug reports welcome!).

These release notes will use a slightly different format than usual, covering the major highlights of the last 6 months that have contributed to this milestone.

🏆 Major Highlights from Alpha Releases

1. IDE & Language Server Features

  • Instant IDE Startup: Major performance improvements for large environments.
  • Semantic Highlighting, Inlay Hints: Enhanced code readability and added highlighting for unreachable blocks and unused function parameters. Unnecessary/obvious inlay hints are no longer displayed.
  • Hover Cards & Docstrings: Richer information in tooltips, including docstrings for built-in types and links to error documentation.
  • Configurable LSP Features: Greater control over enabling/disabling IDE features like autocomplete, go-to-definition, and hover.
  • Extensions released for a range of popular IDEs, including VSCode, PyCharm and more!
  • Some relevant issues: #853, #1403, #1335, #873, #802, #716

2. Type Checking Enhancements

  • Improved overload evaluation: Fully compliant with the Python typing spec
  • Smarter Type Narrowing: Improved handling of variable types in loops, control flow, and pattern matching. Added ability to understand patterns like `getattr()`, `hasattr()`, and `dict.get()`
  • TypedDict & Protocol Improvements: More accurate type checking for structural types, including handling for union keys and improved inheritance checks.
  • Additional Python typing features: LiteralString & TypeAliasType support, abstract class instantiation checks, unused awaitable checks, multiple inheritance consistency checks, and more!
  • Configurable Type Inference: Advanced features like empty container inference and return type inference can be toggled via config.
  • Some relevant issues: #684, #872, #1058, #940, #815, #1461, #44

3. Error Reporting & Suppression

  • Granular Error Filtering: Filter summarized errors by code, set error severity, and get clickable links to docs.
  • Suppression Workflow: Scripts and commands to silence new errors after upgrades, making large codebase migrations manageable.
  • Improved Error Messages: Clearer, more actionable diagnostics for overloads, missing imports, and more.
  • Some relevant issues: #1276, #1302, #890, #1401

4. Framework Integrations

  • Django: Partial support, with ongoing improvements for model field inference, enum support, and lazy label handling.
  • Pydantic: Experimental support, with growing documentation and bug fixes.
  • Some relevant issues: #316, #334, #1276, #839

5. Jupyter Notebook Support (Experimental)

  • Full Language Server Integration: Diagnostics, inlay hints, go-to-definition, hover, semantic tokens, signature help, and completions now work out-of-the-box for .ipynb files.
  • CLI Type Checking for Notebooks
  • Jupyter Lab Integration

... (truncated)

Commits
  • a4d0bfa bump version
  • 693b94f highlight false negative
  • 8a3b4d9 filter star imports from unused detection
  • 95c23bd fix unused variable detection for reassignments
  • d668be0 Test that Union types do not split properly.
  • 549429e Implement write_type.
  • fcbf942 fix parsing of multi-line parameter descriptions in docstrings #1588 (#1629)
  • 19a2edc Implement write_targs
  • 1bd817f Implement write_lit
  • 853af26 Implement write_qname
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the actions group with 4 updates
fb78ece 
Bumps the actions group with 4 updates: [ruff](https://github.com/astral-sh/ruff), [beartype](https://github.com/beartype/beartype), [basedpyright](https://github.com/detachhead/basedpyright) and [pyrefly](https://github.com/facebook/pyrefly).


Updates `ruff` from 0.14.5 to 0.14.6
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.14.5...0.14.6)

Updates `beartype` from 0.22.5 to 0.22.6
- [Release notes](https://github.com/beartype/beartype/releases)
- [Changelog](https://github.com/beartype/beartype/blob/main/doc/RELEASE.rst)
- [Commits](beartype/beartype@v0.22.5...v0.22.6)

Updates `basedpyright` from 1.33.0 to 1.34.0
- [Release notes](https://github.com/detachhead/basedpyright/releases)
- [Commits](DetachHead/basedpyright@v1.33.0...v1.34.0)

Updates `pyrefly` from 0.41.3 to 0.43.1
- [Release notes](https://github.com/facebook/pyrefly/releases)
- [Commits](facebook/pyrefly@0.41.3...0.43.1)

---
updated-dependencies:
- dependency-name: ruff
  dependency-version: 0.14.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: beartype
  dependency-version: 0.22.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: actions
- dependency-name: basedpyright
  dependency-version: 1.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
- dependency-name: pyrefly
  dependency-version: 0.43.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from jorenham as a code owner November 24, 2025 19:10
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 29, 2025

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot bot closed this Nov 29, 2025
@dependabot dependabot bot deleted the dependabot/uv/actions-32ba303695 branch November 29, 2025 03:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jorenham jorenham Awaiting requested review from jorenham jorenham is a code owner

Assignees

No one assigned

Labels

topic: dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants