Skip to content

Bump the patches group across 1 directory with 3 updates#1835

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/patches-76e31704a0
Open

Bump the patches group across 1 directory with 3 updates#1835
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/uv/patches-76e31704a0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 1, 2026

Bumps the patches group with 3 updates in the / directory: django-polymorphic, prek and ruff.

Updates django-polymorphic from 4.11.2 to 4.11.3

Release notes

Sourced from django-polymorphic's releases.

v4.11.3

What's Changed

New Contributors

Full Changelog: django-commons/django-polymorphic@v4.11.2...v4.11.3

Commits
  • 866c93f fix release workflow
  • 98c2b67 move codecov from token to oidc
  • 46efb98 fix release workflow, spellcheck
  • 0651e8b update setup-just action
  • 814abca upgrade lock file, upgrade type checking, cut release for django-commons
  • 4e977e6 Update CODE_OF_CONDUCT.md from django-commons
  • 7c07349 jazzband -> django-commons updates
  • 61b460c Bump the gha-updates group with 7 updates
  • 77c8730 Bump cryptography from 46.0.6 to 46.0.7
  • 0913418 Bump pytest from 9.0.2 to 9.0.3
  • Additional commits viewable in compare view

Updates prek from 0.3.10 to 0.3.11

Release notes

Sourced from prek's releases.

0.3.11

Release Notes

Released on 2026-04-27.

Highlights

Hook entries now have an explicit shell option for shell snippets. Set shell: sh, bash, pwsh, powershell, or cmd when an entry should be evaluated by that shell; leaving it unset keeps prek's direct argv execution.

prek auto-update can now filter tag candidates before choosing an update. Both options take glob patterns: use --include-tag to only consider matching tag names, and --exclude-tag to skip matching tags such as moving tags or prereleases.

Enhancements

  • Add auto-update --exclude-repo <repo> to skip repos (#1983)
  • Add auto-update --exit-code to exit with non-zero on updates (#2002)
  • Add auto-update --include-tag <pattern>/--exclude-tag <pattern> to filter tags (#1984)
  • Adds an explicit shell hook option for entries that should run as shell source (#2004)
  • Make --hook-dir optional for hook-impl (#1989)
  • Skip shim warning when --script-version is missing (#1990)

Bug fixes

  • Install Ruby executable in gem bin (#2017)
  • Use dedicated Android npm package (#1982)
  • Use stable repo keys without breaking cached clones (#1995)

Documentation

  • Explain prek name (#1980)
  • Clarify pass_filenames concurrency docs (#1999)
  • Reorganize documentation references (#2005)
  • Clarify hook author manifest env docs (#1991)
  • docs: add Sentry to users list (#1981)

Contributors

Install prek 0.3.11

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/j178/prek/releases/download/v0.3.11/prek-installer.sh | sh

... (truncated)

Changelog

Sourced from prek's changelog.

0.3.11

Released on 2026-04-27.

Highlights

Hook entries now have an explicit shell option for shell snippets. Set shell: sh, bash, pwsh, powershell, or cmd when an entry should be evaluated by that shell; leaving it unset keeps prek's direct argv execution.

prek auto-update can now filter tag candidates before choosing an update. Both options take glob patterns: use --include-tag to only consider matching tag names, and --exclude-tag to skip matching tags such as moving tags or prereleases.

Enhancements

  • Add auto-update --exclude-repo <repo> to skip repos (#1983)
  • Add auto-update --exit-code to exit with non-zero on updates (#2002)
  • Add auto-update --include-tag <pattern>/--exclude-tag <pattern> to filter tags (#1984)
  • Adds an explicit shell hook option for entries that should run as shell source (#2004)
  • Make --hook-dir optional for hook-impl (#1989)
  • Skip shim warning when --script-version is missing (#1990)

Bug fixes

  • Install Ruby executable in gem bin (#2017)
  • Use dedicated Android npm package (#1982)
  • Use stable repo keys without breaking cached clones (#1995)

Documentation

  • Explain prek name (#1980)
  • Clarify pass_filenames concurrency docs (#1999)
  • Reorganize documentation references (#2005)
  • Clarify hook author manifest env docs (#1991)
  • docs: add Sentry to users list (#1981)

Contributors

Commits

Updates ruff from 0.15.11 to 0.15.12

Release notes

Sourced from ruff's releases.

0.15.12

Release Notes

Released on 2026-04-24.

Preview features

  • Implement #ruff:file-ignore file-level suppressions (#23599)
  • Implement #ruff:ignore logical-line suppressions (#23404)
  • Revert preview changes to displayed diagnostic severity in LSP (#24789)
  • [airflow] Implement task-branch-as-short-circuit (AIR004) (#23579)
  • [flake8-bugbear] Fix break/continue handling in loop-iterator-mutation (B909) (#24440)
  • [pylint] Fix PLC2701 for type parameter scopes (#24576)

Rule changes

  • [pandas-vet] Suggest .array as well in PD011 (#24805)

CLI

  • Respect default Unix permissions for cache files (#24794)

Documentation

  • [pylint] Fix PLR0124 description not to claim self-comparison always returns the same value (#24749)
  • [pyupgrade] Expand docs on reusable TypeVars and scoping (UP046) (#24153)
  • Improve rules table accessibility (#24711)

Contributors

Install ruff 0.15.12

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.12/ruff-installer.sh | sh

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.12

Released on 2026-04-24.

Preview features

  • Implement #ruff:file-ignore file-level suppressions (#23599)
  • Implement #ruff:ignore logical-line suppressions (#23404)
  • Revert preview changes to displayed diagnostic severity in LSP (#24789)
  • [airflow] Implement task-branch-as-short-circuit (AIR004) (#23579)
  • [flake8-bugbear] Fix break/continue handling in loop-iterator-mutation (B909) (#24440)
  • [pylint] Fix PLC2701 for type parameter scopes (#24576)

Rule changes

  • [pandas-vet] Suggest .array as well in PD011 (#24805)

CLI

  • Respect default Unix permissions for cache files (#24794)

Documentation

  • [pylint] Fix PLR0124 description not to claim self-comparison always returns the same value (#24749)
  • [pyupgrade] Expand docs on reusable TypeVars and scoping (UP046) (#24153)
  • Improve rules table accessibility (#24711)

Contributors

Commits
  • 66f93cf Bump 0.15.12 (#24815)
  • 476a4d0 [ty] Complete support for more detailed diagnostics on possibly unbound error...
  • ed669ea Implement #ruff:file-ignore file-level suppressions (#23599)
  • e73d952 [ty] Include inferred type in invalid-key concise diagnostic for union/inte...
  • 80feb29 [ty] report only dead annotation-only locals as unused (#24811)
  • 0fbf2bc Drop deprecated license classifier (#24808)
  • 43b174c [ty] Infer lambda parameter types with Callable type context (#24317)
  • 4f449ae [ty] Add error context for intersection types (#24772)
  • 5b4e753 [ty] Add support for goto in literal enum member inlay hint (#24792)
  • e7cc762 [ty] Add error context for TypedDict assignments (#24790)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the patches group across 1 directory with 3 updates
cd4cfad 
Bumps the patches group with 3 updates in the / directory: [django-polymorphic](https://github.com/django-commons/django-polymorphic), [prek](https://github.com/j178/prek) and [ruff](https://github.com/astral-sh/ruff).


Updates `django-polymorphic` from 4.11.2 to 4.11.3
- [Release notes](https://github.com/django-commons/django-polymorphic/releases)
- [Commits](django-commons/django-polymorphic@v4.11.2...v4.11.3)

Updates `prek` from 0.3.10 to 0.3.11
- [Release notes](https://github.com/j178/prek/releases)
- [Changelog](https://github.com/j178/prek/blob/master/CHANGELOG.md)
- [Commits](j178/prek@v0.3.10...v0.3.11)

Updates `ruff` from 0.15.11 to 0.15.12
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.11...0.15.12)

---
updated-dependencies:
- dependency-name: django-polymorphic
  dependency-version: 4.11.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: prek
  dependency-version: 0.3.11
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
- dependency-name: ruff
  dependency-version: 0.15.12
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: patches
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 1, 2026
@coveralls
Copy link
Copy Markdown

coveralls commented May 1, 2026

Coverage Status

coverage: 81.356%. remained the same — dependabot/uv/patches-76e31704a0 into main

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@coveralls