Bump the py-version-updates group across 1 directory with 2 updates

[dependabot]

Bumps the py-version-updates group with 2 updates in the / directory: ruff and pytest-cov.

Updates ruff from 0.7.1 to 0.7.3

Release notes

Sourced from ruff's releases.

0.7.3

Release Notes

Preview features

• Formatter: Disallow single-line implicit concatenated strings (#13928)
• [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
• [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
• [refurb] Implement subclass-builtin (FURB189) (#14105)
• [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

• Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
• [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
• [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
• [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
• [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
• [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

• Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
• [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
• [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
• [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
• [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
• [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
• [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
• [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
• [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
• [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

• Add links to missing related options within rule documentations (#13971)
• Add rule short code to mkdocs tags to allow searching via rule codes (#14040)

Install ruff 0.7.3

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy ByPass -c "irm https://github.com/astral-sh/ruff/releases/download/0.7.3/ruff-installer.ps1 | iex"
</tr></table> 

... (truncated)

Changelog

Sourced from ruff's changelog.

0.7.3

Preview features

• Formatter: Disallow single-line implicit concatenated strings (#13928)
• [flake8-pyi] Include all Python file types for PYI006 and PYI066 (#14059)
• [flake8-simplify] Implement split-of-static-string (SIM905) (#14008)
• [refurb] Implement subclass-builtin (FURB189) (#14105)
• [ruff] Improve diagnostic messages and docs (RUF031, RUF032, RUF034) (#14068)

Rule changes

• Detect items that hash to same value in duplicate sets (B033, PLC0208) (#14064)
• [eradicate] Better detection of IntelliJ language injection comments (ERA001) (#14094)
• [flake8-pyi] Add autofix for docstring-in-stub (PYI021) (#14150)
• [flake8-pyi] Update duplicate-literal-member (PYI062) to alawys provide an autofix (#14188)
• [pyflakes] Detect items that hash to same value in duplicate dictionaries (F601) (#14065)
• [ruff] Fix false positive for decorators (RUF028) (#14061)

Bug fixes

• Avoid parsing joint rule codes as distinct codes in # noqa (#12809)
• [eradicate] ignore # language= in commented-out-code rule (ERA001) (#14069)
• [flake8-bugbear] - do not run mutable-argument-default on stubs (B006) (#14058)
• [flake8-builtins] Skip lambda expressions in builtin-argument-shadowing (A002) (#14144)
• [flake8-comprehension] Also remove trailing comma while fixing C409 and C419 (#14097)
• [flake8-simplify] Allow open without context manager in return statement (SIM115) (#14066)
• [pylint] Respect hash-equivalent literals in iteration-over-set (PLC0208) (#14063)
• [pylint] Update known dunder methods for Python 3.13 (PLW3201) (#14146)
• [pyupgrade] - ignore kwarg unpacking for UP044 (#14053)
• [refurb] Parse more exotic decimal strings in verbose-decimal-constructor (FURB157) (#14098)

Documentation

• Add links to missing related options within rule documentations (#13971)
• Add rule short code to mkdocs tags to allow searching via rule codes (#14040)

0.7.2

Preview features

• Fix formatting of single with-item with trailing comment (#14005)
• [pyupgrade] Add PEP 646 Unpack conversion to * with fix (UP044) (#13988)

Rule changes

• Regenerate known_stdlibs.rs with stdlibs 2024.10.25 (#13963)
• [flake8-no-pep420] Skip namespace package enforcement for PEP 723 scripts (INP001) (#13974)

Server

... (truncated)

Commits

• fbf140a Bump version to 0.7.3 (#14197)
• 670f958 [red-knot] Fix intersection simplification for ~Any/~Unknown (#14195)
• fed35a2 [red-knot] Fix is_assignable_to for unions (#14196)
• d1ef418 Docs: tweak rules documentation (#14180)
• 272d24b [flake8-pyi] Add a fix for duplicate-literal-member (#14188)
• 2624249 [red-knot] Minor: fix Literal[True] <: int (#14177)
• 4b08d17 [red-knot] Add a new Type::KnownInstanceType variant (#14155)
• 5b6169b [red-knot] Minor fix in intersection type comment (#14176)
• 2040e93 [flake8-logging-format] Fix invalid formatting value in docs of `logging-ex...
• 794eb88 [flake8-bandit] Typo in docs suspicious-pickle-import (S403) (#14175)
• Additional commits viewable in compare view

Updates pytest-cov from 5.0.0 to 6.0.0

Changelog

Sourced from pytest-cov's changelog.

6.0.0 (2024-10-29)

• Updated various documentation inaccuracies, especially on subprocess handling.
• Changed fail under checks to use the precision set in the coverage configuration. Now it will perform the check just like coverage report would.
• Added a --cov-precision cli option that can override the value set in your coverage configuration.
• Dropped support for now EOL Python 3.8.

Commits

• 9540437 Bump version: 5.0.0 → 6.0.0
• 9f81754 Further trim down envs and drop Python 3.8.
• b12b5ec Update conf.
• 23f4b27 Update changelog.
• 291a04f Bump test deps and trim config.
• 08f1101 Add --cov-precision option. Close #655.
• 76fe2a7 Move the warnings/errors in a place that doesn't import anything.
• a9ea7b7 Implement error/warning for the bad dynamic_context being set in config.
• c299e01 Add explicit suffixing to make it easier to see the identify the sources/usag...
• c87e546 Add reproducer for weird xdist dynamic_context interaction. Ref #604.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	3		0	0.06s
✅ JSON	jsonlint	1		0	0.25s
✅ JSON	prettier	1		0	0.37s
✅ JSON	v8r	1		0	2.57s
✅ MARKDOWN	markdownlint	6		0	0.84s
✅ MARKDOWN	markdown-link-check	6		0	6.19s
✅ MARKDOWN	markdown-table-formatter	6		0	0.47s
✅ REPOSITORY	checkov	yes		no	9.87s
✅ REPOSITORY	dustilock	yes		no	0.0s
✅ REPOSITORY	gitleaks	yes		no	0.08s
✅ REPOSITORY	grype	yes		no	12.96s
✅ REPOSITORY	kics	yes		no	1.41s
✅ REPOSITORY	secretlint	yes		no	0.74s
✅ REPOSITORY	syft	yes		no	0.57s
✅ REPOSITORY	trivy	yes		no	4.54s
✅ REPOSITORY	trivy-sbom	yes		no	0.92s
✅ YAML	prettier	10		0	0.53s
✅ YAML	v8r	9		0	7.0s
✅ YAML	yamllint	10		0	0.63s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

• oxsecurity/megalinter/flavors/[email protected] (56 linters)
• oxsecurity/megalinter/flavors/[email protected] (84 linters)

MegaLinter is graciously provided by OX Security

[dependabot]

Superseded by #43.