Skip to content

chore(deps): update uv: bump the uv-version-updates group across 1 directory with 9 updates#314

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/uv/uv-version-updates-417570ee52
Jun 15, 2026
Merged

chore(deps): update uv: bump the uv-version-updates group across 1 directory with 9 updates#314
github-actions[bot] merged 1 commit into
mainfrom
dependabot/uv/uv-version-updates-417570ee52

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the uv-version-updates group with 8 updates in the / directory:

Package From To
boto3 1.43.24 1.43.29
ruff 0.15.16 0.15.17
pytest 9.0.3 9.1.0
agent-framework 1.8.0 1.8.1
langchain 1.3.4 1.3.9
langchain-aws 1.5.0 1.5.1
langchain-mcp-adapters 0.2.2 0.3.0
strands-agents 1.42.0 1.43.0

Updates boto3 from 1.43.24 to 1.43.29

Commits

Updates ruff from 0.15.16 to 0.15.17

Release notes

Sourced from ruff's releases.

0.15.17

Release Notes

Released on 2026-06-11.

Preview features

  • Allow human-readable names in suppression comments (#25614)
  • Fix handling of ignore comments within a disable/enable pair (#25845)
  • Prioritize human-readable names in CLI output (#25869)
  • Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
  • [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
  • [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
  • [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
  • [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

  • Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
  • [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

  • [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
  • [numpy] Drop autofix for np.in1d (NPY201) (#25612)
  • [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

  • Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

  • Preserve whitespace for Quarto cell option comments (#25641)

CLI

  • Allow rule names in ruff rule (#25640)

Other changes

  • Fix playground diagnostics scrollbars (#25642)

Contributors

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.17

Released on 2026-06-11.

Preview features

  • Allow human-readable names in suppression comments (#25614)
  • Fix handling of ignore comments within a disable/enable pair (#25845)
  • Prioritize human-readable names in CLI output (#25869)
  • Respect diagnostic start and parent ranges and trailing comments in ruff:ignore suppressions (#25673)
  • [flake8-async] Add trio.as_safe_channel to safe decorators (ASYNC119) (#25775)
  • [flake8-pytest-style] Also check pytest_asyncio fixtures (#25375)
  • [ruff] Ban pytest autouse fixtures (RUF076) (#25477)
  • [pyupgrade] Add from __future__ import annotations automatically (UP007, UP045) (#23259)

Bug fixes

  • Fix diagnostic when ruff:enable or ruff:disable appears where ruff:ignore is expected (#25700)
  • [pyupgrade] Preserve leading empty literals to avoid syntax errors (UP032) (#25491)

Rule changes

  • [flake8-pytest-style] Clarify diagnostic message for single parameters (PT007) (#25592)
  • [numpy] Drop autofix for np.in1d (NPY201) (#25612)
  • [pylint] Exempt Python version comparisons (PLR2004) (#25743)

Performance

  • Reserve AST Vecs with correct capacity for common cases (#25451)

Formatter

  • Preserve whitespace for Quarto cell option comments (#25641)

CLI

  • Allow rule names in ruff rule (#25640)

Other changes

  • Fix playground diagnostics scrollbars (#25642)

Contributors

... (truncated)

Commits
  • 7c645a9 Bump 0.15.17 (#25872)
  • f381eb1 Prioritize human-readable names in CLI output (#25869)
  • b9b4546 Minor workflow simplification (#25870)
  • 1e77ba0 [ty] Move PreformattedBlockScanner to format-agnostic location. (#25856)
  • 6f2b772 [ty] Preserve nominal type of enum.property instances (#25849)
  • be4777c [ty] Fix site-package error when multiple versions of pythons are installed i...
  • 53f6ff7 Allow human-readable names in suppression comments (#25614)
  • 6740325 [ty] Restrict uncached raw signature access (#25866)
  • 970b1bf Auto-update snapshots when syncing typeshed (#25841)
  • 0785793 Fix handling of ignore comments within a disable/enable pair (#25845)
  • Additional commits viewable in compare view

Updates pytest from 9.0.3 to 9.1.0

Release notes

Sourced from pytest's releases.

9.1.0

pytest 9.1.0 (2026-06-13)

Removals and backward incompatible breaking changes

  • #14533: When using --doctest-modules, autouse fixtures with module, package or session scope that are defined inline in Python test modules (not plugins or conftests) will now possibly execute twice.

    If this is undesirable, move the fixture definition to a conftest.py file if possible.

    Technical explanation for those interested: When using --doctest-modules, pytest possibly collects Python modules twice, once as pytest.Module and once as a DoctestModule (depending on the configuration). Due to improvements in pytest's fixture implementation, if e.g. the DoctestModule collects a fixture, it is now visible to it only, and not to the Module. This means that both need to register the fixtures independently.

Deprecations (removal in next major release)

  • #10819: Added a deprecation warning for class-scoped fixtures defined as instance methods (without @classmethod). Such fixtures set attributes on a different instance than the test methods use, leading to unexpected behavior. Use @classmethod decorator instead -- by yastcher.

    See 10819 and 14011.

  • #12882: Calling request.getfixturevalue() <pytest.FixtureRequest.getfixturevalue> during teardown to request a fixture that was not already requested is now deprecated and will become an error in pytest 10.

    See dynamic-fixture-request-during-teardown for details.

  • #13409: Using non-~collections.abc.Collection iterables (such as generators, iterators, or custom iterable objects) for the argvalues parameter in @pytest.mark.parametrize <pytest.mark.parametrize ref> and metafunc.parametrize <pytest.Metafunc.parametrize> is now deprecated.

    These iterables get exhausted after the first iteration, leading to tests getting unexpectedly skipped in cases such as running pytest.main() multiple times, using class-level parametrize decorators, or collecting tests multiple times.

    See parametrize-iterators for details and suggestions.

  • #13946: The private config.inicfg attribute is now deprecated. Use config.getini() <pytest.Config.getini> to access configuration values instead.

    See config-inicfg for more details.

  • #14004: Passing baseid to ~pytest.FixtureDef or nodeid strings to fixture registration APIs is now deprecated. These are internal pytest APIs that are used by some plugins.

    Use the node parameter instead for fixture scoping. This enables more robust node-based matching instead of string prefix matching. If you've used nodeid=None, pass node=session instead.

    This will be removed in pytest 10.

  • #14335: The method of configuring hooks using markers, deprecated since pytest 7.2, is now scheduled to be removed in pytest 10. See hook-markers for more details.

  • #14434: The --pastebin option is now deprecated.

... (truncated)

Commits
  • b2522cf Prepare release version 9.1.0
  • 368d2fc [refactor] Tighten SetComparisonFunction to Iterator[str] (#14587)
  • ff77cd8 [refactor] Make base assertion comparisons return an iterator instead of a li...
  • 0d8491a build(deps): Bump actions/stale from 10.2.0 to 10.3.0
  • 4a809d9 Merge pull request #14568 from pytest-dev/register-fixture
  • 5dfa385 Fix recursion traceback test to cover all styles (#14582)
  • f52ff0c Add pytest.register_fixture
  • a8ac094 Merge pull request #14567 from pytest-dev/more-visibility-deprecate
  • e5620cd [pre-commit.ci] pre-commit autoupdate (#14577)
  • 2ce9c6d Merge pull request #14540 from minbang930/fix-14533-doctest-module-fixtures
  • Additional commits viewable in compare view

Updates agent-framework from 1.8.0 to 1.8.1

Release notes

Sourced from agent-framework's releases.

python-1.8.1

[1.8.1] - 2026-06-09

Added

  • agent-framework-core: Add MCP client OTel spans per GenAI semantic conventions (#6349)
  • agent-framework-core: Add MCP long-running task support (#6319)

Changed

  • agent-framework-claude: Bump claude-agent-sdk to 0.2.87 (#6248)
  • agent-framework-core: Document checkpoint storage security model and deserialization trust boundaries (#6295)
  • agent-framework-azurefunctions: Document checkpoint storage security model and deserialization trust boundaries (#6295)

Fixed

  • agent-framework-core: Filter MCP tool kwargs to declared params via allowlist (#6399)
  • agent-framework-core: Fix per-service-call history persistence with server-storing clients (#6310)
  • agent-framework-openai: Use getattr for non-OpenAI provider response compatibility (#6270)
  • agent-framework-foundry-hosting: Refactor workflow-as-agent pending request handling (#6259)
  • agent-framework-gemini: Make Gemini honor declarative outputSchema, not just JSON mode (#5893)
  • agent-framework-mem0: Isolate entity retrieval and correct app_id payload (#6242)
  • agent-framework-ag-ui: Match AG-UI approval responses to requested arguments (#6376)
Commits
  • 3daed11 Python: bump package versions for 1.8.1 release (#6420)
  • 5e09727 .NET: Add Foundry Deployment docs to HA sample READMEs (#6365)
  • 383d551 Purview: Parallelize PSPC cold-cache scope refresh (#5832)
  • 2a345e5 .NET: Fix Magentic to share agent replies across team (#6222)
  • 632f67b Python: [Generated by SRE Agent] docs: clarify checkpoint storage security mo...
  • 5e6eb6f New logo in banner (#6380)
  • dbfacbf New Microsoft Agent Framework logos (#6378)
  • 29cec0d Python: fix: use getattr for non-OpenAI provider response compatibility (#6270)
  • 96d242f .NET: Remove required token params from HarnessAgent, make compaction opt-in ...
  • 9486c76 .NET: Add Reasoning to ChatClientAgent ChatOptions merging (#5463)
  • Additional commits viewable in compare view

Updates mcp-proxy-for-aws from 1.6.0 to 1.6.1

Release notes

Sourced from mcp-proxy-for-aws's releases.

v1.6.1

What's Changed

Added

  • Metadata parameter to aws_iam_streamablehttp_client for passing additional context (#301)

Fixed

  • Pin the version of the MCP Proxy for AWS to respect best security practices (#311)

Full Changelog: v1.6.0...v1.6.1

Changelog

Sourced from mcp-proxy-for-aws's changelog.

v1.6.1 (2026-06-12)

Added

  • Metadata parameter to aws_iam_streamablehttp_client for passing additional context (#301)

Fixed

  • Pin the version of the MCP Proxy for AWS to respect best security practices (#311)
Commits
  • e0d3059 chore: release v1.6.1 (#312)
  • 2a2f79a feat(client): add metadata parameter to aws_iam_streamablehttp_client (#301)
  • 327106c Pin the version of the MCP Proxy for AWS to respect best security practices (...
  • c61ef29 chore(deps): update pip: update fastmcp requirement (#308)
  • d900d31 chore(deps): update github-actions: bump the github-actions-version-updates g...
  • dd5b134 chore(deps): update uv: bump the uv-version-updates group across 1 directory ...
  • ac093f0 chore(deps): update uv: bump aiohttp from 3.13.4 to 3.14.0 (#303)
  • 6bcc27c Add stale issue/PR workflow (#302)
  • 6da7350 chore(deps): update uv: bump the uv-version-updates group across 1 directory ...
  • 8d3eaa6 chore(deps): update github-actions: bump aws-actions/configure-aws-credential...
  • See full diff in compare view

Updates langchain from 1.3.4 to 1.3.9

Release notes

Sourced from langchain's releases.

langchain==1.3.9

Changes since langchain==1.3.8

release(anthropic): 1.4.6 (#38105) release(langchain): 1.3.9 (#38104) fix(langchain,anthropic): confine file-search results and tighten anthropic allowed_prefixes (#38106)

langchain==1.3.8

Changes since langchain==1.3.7

release(langchain): 1.3.8 (#38096) style(core,langchain,langchain-classic,partners): replace double backticks in docstrings (#38095) release(core): 1.4.6 (#38061) chore(langchain): add overloads to create_agent (#34309) chore(infra): bump mypy to 2.1 and unify type-check config across the monorepo (#36470) fix(langchain): support async middleware decorator typing (#34584) fix(langchain): tighten structured output model fallbacks (#38042) release(anthropic): 1.4.5 (#38036) hotfix(core): bump lockfile(s) (#38032) refactor(langchain): refactor test_create_agent_tool_validation (#34443)

langchain==1.3.7

Changes since langchain==1.3.6

release(langchain): 1.3.7 (#38024) style(langchain): add ruff rules ARG (#34435) feat(langchain): add ProviderToolSearchMiddleware (#37969) chore(langchain): activate mypy warn_return_any (#34249) test(langchain): mark legacy trigger view for 2.0 removal (#38002)

langchain==1.3.6

Changes since langchain==1.3.5

release(langchain): 1.3.6 (#38001) fix(langchain): preserve summarization trigger compatibility (#38000)

langchain==1.3.5

Changes since langchain==1.3.4

release(langchain): 1.3.5 (#37998) feat(langchain): port AND-capable trigger conditions to SummarizationMiddleware (#34576) hotfix(openai): min core dep (#37990) feat(openai): support apply_patch built-in tool (#37157) chore: bump pyarrow from 21.0.0 to 23.0.1 in /libs/langchain_v1 (#37930) chore: bump dependencies (#37892) chore: bump aiohttp from 3.13.4 to 3.14.0 in /libs/langchain_v1 (#37888)

Commits
  • 3bfb6a3 release(langchain): 1.3.9 (#38104)
  • dcaf779 fix(langchain,anthropic): confine file-search results and tighten anthropic `...
  • 0392b6b fix(core): fix Pydantic v1 support in tools/runnable (#33698)
  • f6d63bc release(langchain): 1.3.8 (#38096)
  • 5d20596 style(core,langchain,langchain-classic,partners): replace double backticks in...
  • fb55c66 chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/huggingface (#38...
  • 51daae5 chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/chroma (#38092)
  • 70e9579 chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/fireworks (#38093)
  • 6c0e9af chore: bump langsmith from 0.8.9 to 0.8.14 in /libs/partners/xai (#38094)
  • 222dc84 ci(infra): clarify early PR auto-close guidance (#38090)
  • Additional commits viewable in compare view

Updates langchain-aws from 1.5.0 to 1.5.1

Release notes

Sourced from langchain-aws's releases.

langchain-aws==1.5.1

What's Changed

Full Changelog: langchain-ai/langchain-aws@langchain-aws==1.5.0...langchain-aws==1.5.1

Commits
  • 4e63349 release(aws): 1.5.1 (#1084)
  • 8d76a5d chore(model-profiles): refresh model profile data (#1082)
  • c4b8de8 test(aws): silence third-party pydantic deprecation warning in pytest (#1081)
  • 4e79575 chore: bump starlette from 1.0.0 to 1.0.1 in /libs/aws in the uv group across...
  • d9acb55 test(aws): disable pytest-benchmark under xdist to silence `PytestBenchmarkWa...
  • f6c8898 test(aws): log VCR request body on cassette mismatch (temporary debug) (#1078)
  • 4ccc55c release(agentcore-codeinterpreter): 0.0.4 (#1077)
  • 52eaebf fix(agentcore-codeinterpreter): resolve to correct download_files() path when...
  • 4a7ed2f fix(agentcore-codeinterpreter): fix write() path doubling and PermissionError...
  • 0973326 release(langgraph-checkpoint-aws): 1.1.0 (#1075)
  • Additional commits viewable in compare view

Updates langchain-mcp-adapters from 0.2.2 to 0.3.0

Release notes

Sourced from langchain-mcp-adapters's releases.

langchain-mcp-adapters==0.3.0

What's Changed

New Contributors

Full Changelog: langchain-ai/langchain-mcp-adapters@langchain-mcp-adapters==0.2.2...langchain-mcp-adapters==0.3.0

Commits
  • a61c783 release: 0.3.0 (#542)
  • ef4b4d6 feat: surface MCP tool execution errors as failed tool output (#540)
  • 4f614ad fix: use non-deprecated streamable HTTP client (#541)
  • d62349d build(deps): bump the minor-and-patch group with 4 updates (#534)
  • 20eb39e build(deps-dev): bump mypy from 1.20.0 to 2.1.0 in the major group (#535)
  • 62b48ab build(deps): bump starlette from 0.49.1 to 1.0.1 in /examples/servers/streama...
  • ed77d67 build(deps): bump starlette from 0.50.0 to 1.0.1 (#537)
  • 4f9f7ea build(deps): bump the uv group across 1 directory with 2 updates (#517)
  • e82aa8c build(deps): bump pypa/gh-action-pypi-publish from 1.13.0 to 1.14.0 in the mi...
  • effc918 build(deps): bump python-multipart from 0.0.26 to 0.0.27 (#504)
  • Additional commits viewable in compare view

Updates strands-agents from 1.42.0 to 1.43.0

Release notes

Sourced from strands-agents's releases.

python/v1.43.0

What's Changed

@dependabot
chore(deps): update uv: bump the uv-version-updates group across 1 di…
ffb14b9 
…rectory with 9 updates

Bumps the uv-version-updates group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [boto3](https://github.com/boto/boto3) | `1.43.24` | `1.43.29` |
| [ruff](https://github.com/astral-sh/ruff) | `0.15.16` | `0.15.17` |
| [pytest](https://github.com/pytest-dev/pytest) | `9.0.3` | `9.1.0` |
| [agent-framework](https://github.com/microsoft/agent-framework) | `1.8.0` | `1.8.1` |
| [langchain](https://github.com/langchain-ai/langchain) | `1.3.4` | `1.3.9` |
| [langchain-aws](https://github.com/langchain-ai/langchain-aws) | `1.5.0` | `1.5.1` |
| [langchain-mcp-adapters](https://github.com/langchain-ai/langchain-mcp-adapters) | `0.2.2` | `0.3.0` |
| [strands-agents](https://github.com/strands-agents/harness-sdk) | `1.42.0` | `1.43.0` |



Updates `boto3` from 1.43.24 to 1.43.29
- [Release notes](https://github.com/boto/boto3/releases)
- [Commits](boto/boto3@1.43.24...1.43.29)

Updates `ruff` from 0.15.16 to 0.15.17
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.16...0.15.17)

Updates `pytest` from 9.0.3 to 9.1.0
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](pytest-dev/pytest@9.0.3...9.1.0)

Updates `agent-framework` from 1.8.0 to 1.8.1
- [Release notes](https://github.com/microsoft/agent-framework/releases)
- [Commits](microsoft/agent-framework@dotnet-1.8.0...python-1.8.1)

Updates `mcp-proxy-for-aws` from 1.6.0 to 1.6.1
- [Release notes](https://github.com/aws/mcp-proxy-for-aws/releases)
- [Changelog](https://github.com/aws/mcp-proxy-for-aws/blob/main/CHANGELOG.md)
- [Commits](v1.6.0...v1.6.1)

Updates `langchain` from 1.3.4 to 1.3.9
- [Release notes](https://github.com/langchain-ai/langchain/releases)
- [Commits](langchain-ai/langchain@langchain==1.3.4...langchain==1.3.9)

Updates `langchain-aws` from 1.5.0 to 1.5.1
- [Release notes](https://github.com/langchain-ai/langchain-aws/releases)
- [Commits](langchain-ai/langchain-aws@langchain-aws==1.5.0...langchain-aws==1.5.1)

Updates `langchain-mcp-adapters` from 0.2.2 to 0.3.0
- [Release notes](https://github.com/langchain-ai/langchain-mcp-adapters/releases)
- [Commits](langchain-ai/langchain-mcp-adapters@langchain-mcp-adapters==0.2.2...langchain-mcp-adapters==0.3.0)

Updates `strands-agents` from 1.42.0 to 1.43.0
- [Release notes](https://github.com/strands-agents/harness-sdk/releases)
- [Commits](strands-agents/harness-sdk@python/v1.42.0...python/v1.43.0)

---
updated-dependencies:
- dependency-name: boto3
  dependency-version: 1.43.29
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: ruff
  dependency-version: 0.15.17
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: pytest
  dependency-version: 9.1.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: uv-version-updates
- dependency-name: agent-framework
  dependency-version: 1.8.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: mcp-proxy-for-aws
  dependency-version: 1.6.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: langchain
  dependency-version: 1.3.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: langchain-aws
  dependency-version: 1.5.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: uv-version-updates
- dependency-name: langchain-mcp-adapters
  dependency-version: 0.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-version-updates
- dependency-name: strands-agents
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: uv-version-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels Jun 15, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 15, 2026 07:13
@dependabot dependabot Bot requested review from anasstahr and arangatang June 15, 2026 07:13
@github-actions github-actions Bot enabled auto-merge June 15, 2026 07:13
@github-actions github-actions Bot added this pull request to the merge queue Jun 15, 2026
Merged via the queue into main with commit 06d2e7e Jun 15, 2026
6 checks passed
@github-actions github-actions Bot deleted the dependabot/uv/uv-version-updates-417570ee52 branch June 15, 2026 08:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@anasstahr anasstahr anasstahr approved these changes

@arangatang arangatang Awaiting requested review from arangatang arangatang is a code owner automatically assigned from aws/aws-mcp

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@anasstahr