Skip to content

chore(deps): bump the minor-and-patch group with 2 updates#667

Merged
oss-auto-merger[bot] merged 1 commit into
mainfrom
dependabot/uv/minor-and-patch-c446e0609d
Jul 9, 2026
Merged

chore(deps): bump the minor-and-patch group with 2 updates#667
oss-auto-merger[bot] merged 1 commit into
mainfrom
dependabot/uv/minor-and-patch-c446e0609d

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 9, 2026

Copy link
Copy Markdown
Contributor

Bumps the minor-and-patch group with 2 updates: xxhash and ruff.

Updates xxhash from 3.7.1 to 3.8.0

Release notes

Sourced from xxhash's releases.

v3.8.0

  • Speed up module-level one-shot digest(), intdigest(), and hexdigest() functions by switching them to METH_FASTCALL.
  • Keep one-shot argument handling consistent with hash constructors, including positional and keyword input/seed arguments, duplicate argument errors, and oversized seed wrapping.
  • Fix error handling in the xxh3_128 integer digest path so allocation failures are reported cleanly.
  • Fix Python 3.8 builds by adding a PyModule_AddType compatibility fallback with correct reference counting.
  • Correct type stubs for xxh64_digest(), xxh64_hexdigest(), and xxh64_intdigest(), they were incorrectly aliased to xxh3_64 functions.

Full list of changes: ifduyue/python-xxhash@v3.7.1...v3.8.0

v3.7.2

  • Register the "benchmark" pytest mark to avoid PytestUnknownMarkWarning
  • Update C extension docstrings and remove stale comments

Full list of changes: ifduyue/python-xxhash@v3.7.1...v3.7.2

Changelog

Sourced from xxhash's changelog.

v3.8.0 2026-06-27


- Speed up module-level one-shot ``digest()``, ``intdigest()``, and
  ``hexdigest()`` functions by switching them to ``METH_FASTCALL``.
- Keep one-shot argument handling consistent with hash constructors, including
  positional and keyword ``input``/``seed`` arguments, duplicate argument
  errors, and oversized seed wrapping.
- Fix error handling in the ``xxh3_128`` integer digest path so allocation
  failures are reported cleanly.
- Fix Python 3.8 builds by adding a ``PyModule_AddType`` compatibility
  fallback with correct reference counting.
- Correct type stubs for ``xxh64_digest()``, ``xxh64_hexdigest()``, and
  ``xxh64_intdigest()``, they were incorrectly aliased to xxh3_64 functions.

v3.7.2 2026-07-06

  • Register the "benchmark" pytest mark to avoid PytestUnknownMarkWarning
  • Update C extension docstrings and remove stale comments
Commits
  • 48c60f2 chore: release v3.8.0
  • c7f2397 fix: restore PyLong_FromUnsignedLong/LongLong over Py_BuildValue
  • aea7a72 test: fix positional seed tests in test_fastcall.py
  • e084433 fix: correct docstring typos in xxh3_64 copy() documentation
  • 414b254 fix(pyi): xxh64_digest/hexdigest/intdigest are functions
  • 9af9913 fix: add PyModule_AddType fallback for Python 3.8 compatibility
  • 1ecd5b4 perf: mark _get_buffer_or_str and _parse_fastcall_args as inline
  • 2b6f712 fix: detect duplicate seed, expand fastcall tests
  • 5d59623 fix: add NULL checks in xxh3_128_intdigest 128-bit math
  • 8fe3bf4 refactor: consolidate fastcall arg parsing into _parse_fastcall_args
  • Additional commits viewable in compare view

Updates ruff from 0.15.19 to 0.15.20

Release notes

Sourced from ruff's releases.

0.15.20

Release Notes

Released on 2026-06-25.

Preview features

  • Allow human-readable names in rule selectors (#25887)
  • Emit a warning instead of an error for unknown rule selectors (#26113)
  • Match noqa shebang handling in ruff:ignore comments (#26286)
  • [ruff] Remove pytest-fixture-autouse (RUF076) (#26240, #26371)

Documentation

  • Add versioning sections to custom crate READMEs (#26317)
  • Update ruff_python_parser README for crates.io (#26315)
  • [perflint] Clarify that PERF402 applies to any iterable (#26242)

Contributors

Install ruff 0.15.20

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://releases.astral.sh/github/ruff/releases/download/0.15.20/ruff-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://releases.astral.sh/github/ruff/releases/download/0.15.20/ruff-installer.ps1 | iex"

Download ruff 0.15.20

File Platform Checksum
ruff-aarch64-apple-darwin.tar.gz Apple Silicon macOS checksum
ruff-x86_64-apple-darwin.tar.gz Intel macOS checksum
ruff-aarch64-pc-windows-msvc.zip ARM64 Windows checksum
ruff-i686-pc-windows-msvc.zip x86 Windows checksum
ruff-x86_64-pc-windows-msvc.zip x64 Windows checksum
ruff-aarch64-unknown-linux-gnu.tar.gz ARM64 Linux checksum
ruff-i686-unknown-linux-gnu.tar.gz x86 Linux checksum

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.20

Released on 2026-06-25.

Preview features

  • Allow human-readable names in rule selectors (#25887)
  • Emit a warning instead of an error for unknown rule selectors (#26113)
  • Match noqa shebang handling in ruff:ignore comments (#26286)
  • [ruff] Remove pytest-fixture-autouse (RUF076) (#26240, #26371)

Documentation

  • Add versioning sections to custom crate READMEs (#26317)
  • Update ruff_python_parser README for crates.io (#26315)
  • [perflint] Clarify that PERF402 applies to any iterable (#26242)

Contributors

Commits
  • f82a36b Bump 0.15.20 (#26376)
  • af32943 Improve the summarise-ecosystem-results skill (#26378)
  • 485ebab Remove RUF076 name from schema (#26371)
  • ef81835 [ty] Implement rust-analyzer's "Click for full compiler diagnostic" feature (...
  • 572b31e [ruff] Remove pytest-fixture-autouse (RUF076) (#26240)
  • f703f21 Allow human-readable names in rule selectors (#25887)
  • 0d726b2 [ty] Reuse equality semantics for membership compatibility (#25955)
  • dbe6e98 [ty] Infer definite equality comparison results (#26337)
  • e700ea3 [ty] Prove TypedDict structural patterns exhaustive (#26285)
  • 6a0d2ec [ty] Widen inferred class-valued instance attributes (#26338)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the minor-and-patch group with 2 updates: [xxhash](https://github.com/ifduyue/python-xxhash) and [ruff](https://github.com/astral-sh/ruff).


Updates `xxhash` from 3.7.1 to 3.8.0
- [Release notes](https://github.com/ifduyue/python-xxhash/releases)
- [Changelog](https://github.com/ifduyue/python-xxhash/blob/master/CHANGELOG.rst)
- [Commits](ifduyue/python-xxhash@v3.7.1...v3.8.0)

Updates `ruff` from 0.15.19 to 0.15.20
- [Release notes](https://github.com/astral-sh/ruff/releases)
- [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md)
- [Commits](astral-sh/ruff@0.15.19...0.15.20)

---
updated-dependencies:
- dependency-name: xxhash
  dependency-version: 3.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: ruff
  dependency-version: 0.15.20
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies dealing with project dependencies python:uv Pull requests that update python:uv code labels Jul 9, 2026
@oss-auto-merger oss-auto-merger Bot enabled auto-merge (squash) July 9, 2026 07:55
@oss-auto-merger oss-auto-merger Bot merged commit 89e4ce6 into main Jul 9, 2026
9 checks passed
@oss-auto-merger oss-auto-merger Bot deleted the dependabot/uv/minor-and-patch-c446e0609d branch July 9, 2026 08:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies dealing with project dependencies python:uv Pull requests that update python:uv code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants