Skip to content

Bump the pip-deps group across 1 directory with 6 updates#3126

Open
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/pip/pip-deps-2e611ed01f
Open

Bump the pip-deps group across 1 directory with 6 updates#3126
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/pip/pip-deps-2e611ed01f

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 8, 2026

Copy link
Copy Markdown
Contributor

Bumps the pip-deps group with 6 updates in the / directory:

Package From To
boto3 1.43.18 1.43.24
flask-cors 6.0.2 6.0.3
moto 5.2.1 5.2.2
ruff 0.15.15 0.15.16
openapi-spec-validator 0.8.5 0.9.0
cfn-lint 1.51.2 1.51.4

Updates boto3 from 1.43.18 to 1.43.24

Commits
  • b2b302b Merge branch 'release-1.43.24'
  • 02fd3ca Bumping version to 1.43.24
  • fcaf9ff Add changelog entries from botocore
  • f2106e0 Merge branch 'release-1.43.23'
  • 5f98326 Merge branch 'release-1.43.23' into develop
  • d7e5b7c Bumping version to 1.43.23
  • 86efe86 Add changelog entries from botocore
  • 8384440 Merge branch 'release-1.43.22'
  • eea01a7 Merge branch 'release-1.43.22' into develop
  • eff8ee7 Bumping version to 1.43.22
  • Additional commits viewable in compare view

Updates flask-cors from 6.0.2 to 6.0.3

Release notes

Sourced from flask-cors's releases.

6.0.3

What's Changed

Full Changelog: corydolphin/flask-cors@6.0.2...6.0.3

6.0.3-pre

What's Changed

Full Changelog: corydolphin/flask-cors@6.0.2...6.0.3

Commits

Updates moto from 5.2.1 to 5.2.2

Changelog

Sourced from moto's changelog.

5.2.2

Docker Digest for 5.2.2: sha256:d8ae5edc2bf080e7e4c13f9bd4b29b53ac3b4427e92956318db3dbe23ec43eb7

New Methods:
    * DS:
        * disable_radius()
        * enable_radius()

* KinesisAnalyticsV2:
    * untag_resource()

    

  • 

    Logs:
    

      

    • start_live_tail()
      • 

    

    • 

  • 

    SESv2:
    

      

    • update_contact()
      • 

    • update_contact_list()
      • 

    

    • 

  • 

    SWF:
    

      

    • tag_resource()
      • 

    • untag_resource()
      






Miscellaneous:

* ACM: import_certificate() now accepts certificates without a CN

* ACM: request_certificate() now preserves the default options when not all are provided

* CloudFormation: Created Lambda resources now take the use_docker-configuration into account

* CloudFormation: update_stack_instances() now validates that a StackInstance exists

* Events: create_partner_event_source() now returns the EventSourceArn-attribute

* Route53: list_resource_record_sets() no longer returns a TTL for aliases

* S3: completed_multipart_upload() is now compatible with external tools like PyArrow

* S3: get_object() now supports all Response* headers

Commits

Updates ruff from 0.15.15 to 0.15.16

Release notes

Sourced from ruff's releases.

0.15.16

Release Notes

Released on 2026-06-04.

Preview features

  • [flake8-async] Implement yield-in-context-manager-in-async-generator (ASYNC119) (#24644)
  • [pylint] Narrow diagnostic range and exclude cases without exception handlers (PLW0717) (#25440)
  • [ruff] Treat yield before break from a terminal loop as terminal (RUF075) (#25447)

Bug fixes

  • [eradicate] Avoid flagging ruff:ignore comments as code (ERA001) (#25537)
  • [eradicate] Fix ERA001/RUF100 conflict when noqa is on commented-out code (#25414)
  • [pyflakes] Avoid removing the format call when it would change behavior (F523) (#25320)
  • [pylint] Avoid syntax errors in invalid character replacements in f-strings before Python 3.12 (PLE2510, PLE2512, PLE2513, PLE2514, PLE2515) (#25544)
  • [pyupgrade] Avoid converting format calls with more kinds of side effects (UP032) (#25484)

Rule changes

  • [flake8-pytest-style] Avoid fixes for ambiguous argnames and argvalues combinations (PT006) (#24776)

Performance

  • Drop excess capacity from statement suites during parsing (#25368)

Documentation

  • [pydocstyle] Improve discoverability of rules enabled for each convention (#24973)
  • [ruff] Restore example code for Python versions before 3.15 (RUF017) (#25439)
  • Fix typo bin/activebin/activate in tutorial (#25473)

Other changes

  • Shrink additional parser AST collections (#25465)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.16

Released on 2026-06-04.

Preview features

  • [flake8-async] Implement yield-in-context-manager-in-async-generator (ASYNC119) (#24644)
  • [pylint] Narrow diagnostic range and exclude cases without exception handlers (PLW0717) (#25440)
  • [ruff] Treat yield before break from a terminal loop as terminal (RUF075) (#25447)

Bug fixes

  • [eradicate] Avoid flagging ruff:ignore comments as code (ERA001) (#25537)
  • [eradicate] Fix ERA001/RUF100 conflict when noqa is on commented-out code (#25414)
  • [pyflakes] Avoid removing the format call when it would change behavior (F523) (#25320)
  • [pylint] Avoid syntax errors in invalid character replacements in f-strings before Python 3.12 (PLE2510, PLE2512, PLE2513, PLE2514, PLE2515) (#25544)
  • [pyupgrade] Avoid converting format calls with more kinds of side effects (UP032) (#25484)

Rule changes

  • [flake8-pytest-style] Avoid fixes for ambiguous argnames and argvalues combinations (PT006) (#24776)

Performance

  • Drop excess capacity from statement suites during parsing (#25368)

Documentation

  • [pydocstyle] Improve discoverability of rules enabled for each convention (#24973)
  • [ruff] Restore example code for Python versions before 3.15 (RUF017) (#25439)
  • Fix typo bin/activebin/activate in tutorial (#25473)

Other changes

  • Shrink additional parser AST collections (#25465)

Contributors

Commits

Updates openapi-spec-validator from 0.8.5 to 0.9.0

Release notes

Sourced from openapi-spec-validator's releases.

0.9.0

Upgrades

  • Upgrade schema-validator 0.9 #505
  • Upgrade jsonschema-path 0.5 #506

Backward incompatibilities

  • Validation results may change for specifications that previously relied on discriminator-based narrowing or on discriminator mapping resolution errors during validation. #505
Commits
  • 2121137 Version 0.9.0
  • ee4683b Merge pull request #506 from python-openapi/feature/upgrade-jsonschema-path-0.5
  • 692131c Upgrade jsonschema-path 0.5
  • 27cb341 Merge pull request #505 from python-openapi/feature/upgrade-schema-validator-...
  • 4413a52 Upgrade schema-validator 0.9
  • f407ed7 Merge pull request #484 from python-openapi/dependabot/pip/isort-8.0.1
  • 081f3be Bump isort from 8.0.0 to 8.0.1
  • d931faf Merge pull request #497 from python-openapi/dependabot/pip/mypy-1.20.2
  • f8c6261 Bump mypy from 1.19.1 to 2.1.0
  • 1b5dafd Merge pull request #500 from python-openapi/dependabot/pip/urllib3-2.7.0
  • Additional commits viewable in compare view

Updates cfn-lint from 1.51.2 to 1.51.4

Release notes

Sourced from cfn-lint's releases.

Release v1.51.4

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.51.3...v1.51.4

Release v1.51.3

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.51.2...v1.51.3

Changelog

Sourced from cfn-lint's changelog.

v1.51.4

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.51.3...v1.51.4

v1.51.3

What's Changed

Full Changelog: aws-cloudformation/cfn-lint@v1.51.2...v1.51.3

Commits
  • aa3fd8a Release v1.51.4 (#4537)
  • 312f4a0 Update CloudFormation schemas to 2026-06-03 (#4534)
  • 414222a fix: E3042 false positive when Essential is omitted from ECS containers (#4536)
  • c065c7e Release v1.51.3 (#4533)
  • afd7953 fix: Update Lambda runtime lifecycle dates from AWS docs (#4532)
  • 7d296bb Update CloudFormation schemas to 2026-06-02 (#4523)
  • 8b8a663 fix: Sync update_schemas_manually.py with committed manual.json files (#4530)
  • 52d689f feat: Add OpenSearch instance type validation from pricing API (#4525)
  • adba00c fix: Allow ARN format for Lambda FunctionName property (#4529)
  • 976b861 Revert: S3 bucket names with uppercase should remain an error (#4528)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the pip-deps group across 1 directory with 6 updates
0a8c69b 
Bumps the pip-deps group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.43.18` | `1.43.24` |
| [flask-cors](https://github.com/corydolphin/flask-cors) | `6.0.2` | `6.0.3` |
| [moto](https://github.com/getmoto/moto) | `5.2.1` | `5.2.2` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.15` | `0.15.16` |
| [openapi-spec-validator](https://github.com/python-openapi/openapi-spec-validator) | `0.8.5` | `0.9.0` |
| [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) | `1.51.2` | `1.51.4` |



Updates `boto3` from 1.43.18 to 1.43.24
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.43.18...1.43.24)

Updates `flask-cors` from 6.0.2 to 6.0.3
- [Release notes](https://github.com/corydolphin/flask-cors/releases)
- [Changelog](https://github.com/corydolphin/flask-cors/blob/main/CHANGELOG.md)
- [Commits](corydolphin/flask-cors@6.0.2...6.0.3)

Updates `moto` from 5.2.1 to 5.2.2
- [Release notes](https://github.com/getmoto/moto/releases)
- [Changelog](https://github.com/getmoto/moto/blob/master/CHANGELOG.md)
- [Commits](getmoto/moto@5.2.1...5.2.2)

Updates `ruff` from 0.15.15 to 0.15.16
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.15...0.15.16)

Updates `openapi-spec-validator` from 0.8.5 to 0.9.0
- [Release notes](https://github.com/python-openapi/openapi-spec-validator/releases)
- [Commits](python-openapi/openapi-spec-validator@0.8.5...0.9.0)

Updates `cfn-lint` from 1.51.2 to 1.51.4
- [Release notes](https://github.com/aws-cloudformation/cfn-lint/releases)
- [Changelog](https://github.com/aws-cloudformation/cfn-lint/blob/main/CHANGELOG.md)
- [Commits](aws-cloudformation/cfn-lint@v1.51.2...v1.51.4)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.43.24
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: flask-cors
  dependency-version: 6.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: moto
  dependency-version: 5.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: ruff
  dependency-version: 0.15.16
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
- dependency-name: openapi-spec-validator
  dependency-version: 0.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: pip-deps
- dependency-name: cfn-lint
  dependency-version: 1.51.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: pip-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project labels Jun 8, 2026
@dependabot dependabot Bot requested review from a team as code owners June 8, 2026 19:43
@dependabot dependabot Bot added minor Bump the minor version number of this project bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version labels Jun 8, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bumpless Changes to documentation, CI/CD pipelines, etc that don't affect the project's version minor Bump the minor version number of this project

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants