chore(deps): Bump the uv-dependencies group across 1 directory with 8 updates

[dependabot]

Bumps the uv-dependencies group with 8 updates in the / directory:

Package	From	To
httpx-sse	0.4.1	0.4.3
pydantic	2.11.7	2.12.3
sse-starlette	2.3.6	3.0.2
starlette	0.46.2	0.48.0
uvicorn	0.35.0	0.38.0
python-socketio	5.13.0	5.14.2
ruff	0.12.0	0.14.1
types-requests	2.32.4.20250611	2.32.4.20250913

Updates httpx-sse from 0.4.1 to 0.4.3

Release notes

Sourced from httpx-sse's releases.

Version 0.4.3

0.4.3 - 2025-10-10

Fixed

• Fix performance issue introduced by the improved line parsing from release 0.4.2. (Pull #40)

Version 0.4.2

0.4.2 - 2025-10-07

Fixed

• Fix incorrect newline parsing that was not compliant with SSE spec. (Pull #37)

Changelog

Sourced from httpx-sse's changelog.

0.4.3 - 2025-10-10

Fixed

• Fix performance issue introduced by the improved line parsing from release 0.4.2. (Pull #40)

0.4.2 - 2025-10-07

Fixed

• Fix incorrect newline parsing that was not compliant with SSE spec. (Pull #37)

Commits

• e8fcd9e Version 0.4.3 (#41)
• 6339349 Update CHANGELOG.md
• 4787b4f Refactor _splitlines_sse to improve efficiency (#40)
• c3dd81a Version 0.4.2 (#39)
• 6297588 Changelog for Version 0.4.2
• 1ccc095 SSE spec compliant line parsing (#37)
• See full diff in compare view

Updates pydantic from 2.11.7 to 2.12.3

Release notes

Sourced from pydantic's releases.

v2.12.3 2025-10-17

v2.12.3 (2025-10-17)

What's Changed

This is the third 2.13 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

• Raise a warning when an invalid after model validator function signature is raised by @​Viicos in #12414. Starting in 2.12.0, using class methods for after model validators raised an error, but the error wasn't raised concistently. We decided to emit a deprecation warning instead.
• Add FieldInfo.asdict() method, improve documentation around FieldInfo by @​Viicos in #12411. This also adds back support for mutations on FieldInfo classes, that are reused as Annotated metadata. However, note that this is still not a supported pattern. Instead, please refer to the added example in the documentation.

The blog post section on changes was also updated to document the changes related to serialize_as_any.

Full Changelog: pydantic/pydantic@v2.12.2...v2.12.3

v2.12.2 2025-10-14

v2.12.2 (2025-10-14)

What's Changed

Fixes

• Release a new pydantic-core version, as a corrupted CPython 3.10 manylinux2014_aarch64 wheel got uploaded (pydantic-core#1843).
• Fix issue with recursive generic models with a parent model class by @​Viicos in #12398

Full Changelog: pydantic/pydantic@v2.12.1...v2.12.2

v2.12.1 2025-10-13

v2.12.1 (2025-10-13)

GitHub release

What's Changed

This is the first 2.12 patch release, addressing most (but not all yet) regressions from the initial 2.12.0 release.

Fixes

• Do not evaluate annotations when inspecting validators and serializers by @​Viicos in #12355
• Make sure None is converted as NoneType in Python 3.14 by @​Viicos in #12370
• Backport V1 runtime warning when using Python 3.14 by @​Viicos in #12367
• Fix error message for invalid validator signatures by @​Viicos in #12366
• Populate field name in ValidationInfo for validation of default value by @​Viicos in pydantic-core#1826
• Encode credentials in MultiHostUrl builder by @​willswire in pydantic-core#1829
• Respect field serializers when using serialize_as_any serialization flag by @​davidhewitt in pydantic-core#1829
• Fix various RootModel serialization issues by @​davidhewitt in pydantic-core#1836

New Contributors

... (truncated)

Changelog

Sourced from pydantic's changelog.

v2.12.3 (2025-10-17)

GitHub release

What's Changed

This is the third 2.13 patch release, fixing issues related to the FieldInfo class, and reverting a change to the supported after model validator function signatures.

• Raise a warning when an invalid after model validator function signature is raised by @​Viicos in #12414. Starting in 2.12.0, using class methods for after model validators raised an error, but the error wasn't raised concistently. We decided to emit a deprecation warning instead.
• Add FieldInfo.asdict() method, improve documentation around FieldInfo by @​Viicos in #12411. This also add back support for mutations on FieldInfo classes, that are reused as Annotated metadata. However, note that this is still not a supported pattern. Instead, please refer to the added example in the documentation.

The blog post section on changes was also updated to document the changes related to serialize_as_any.

v2.12.2 (2025-10-14)

GitHub release

What's Changed

Fixes

• Release a new pydantic-core version, as a corrupted CPython 3.10 manylinux2014_aarch64 wheel got uploaded (pydantic-core#1843).
• Fix issue with recursive generic models with a parent model class by @​Viicos in #12398

v2.12.1 (2025-10-13)

GitHub release

What's Changed

This is the first 2.12 patch release, addressing most (but not all yet) regressions from the initial 2.12.0 release.

Fixes

• Do not evaluate annotations when inspecting validators and serializers by @​Viicos in #12355
• Make sure None is converted as NoneType in Python 3.14 by @​Viicos in #12370
• Backport V1 runtime warning when using Python 3.14 by @​Viicos in #12367
• Fix error message for invalid validator signatures by @​Viicos in #12366
• Populate field name in ValidationInfo for validation of default value by @​Viicos in pydantic-core#1826
• Encode credentials in MultiHostUrl builder by @​willswire in pydantic-core#1829
• Respect field serializers when using serialize_as_any serialization flag by @​davidhewitt in pydantic-core#1829
• Fix various RootModel serialization issues by @​davidhewitt in pydantic-core#1836

New Contributors

... (truncated)

Commits

• 1a8850d Prepare release 2.12.3
• 09dbcf2 Add FieldInfo.asdict() method, improve documentation around FieldInfo
• 5da4331 Improve documentation about serialize as any behavior
• 9c86324 Raise a warning when an invalid after model validator function signature is r...
• 36a73c6 Update pydantic-extra-types dependency to version >=2.10.6
• 1e616a3 Prepare release v2.12.2
• dc302e2 Fix issue with recursive generic models with a parent model class
• 6876485 Bump pydantic-core to v2.41.4
• b4076c6 Prepare release 2.12.1
• b67f072 Bump pydantic-core to v2.41.3
• Additional commits viewable in compare view

Updates sse-starlette from 2.3.6 to 3.0.2

Release notes

Sourced from sse-starlette's releases.

v3.0.2

Full Changelog: sysid/sse-starlette@v3.0.1...v3.0.2

v3.0.1

Full Changelog: sysid/sse-starlette@v3.0.0...v3.0.1

v3.0.0

What's New in v3.0.0

No breaking changes expected.

• Fix Issue #140: Replace global AppStatus.should_exit_event with context-local events by @​sysid in sysid/sse-starlette#141

Major Thread Safety Improvements

• Multi-Threading Support: SSE now works correctly in multi-threaded applications
• Multi-Loop Support: Full compatibility with multiple asyncio event loops
• Automatic Test Isolation: No more manual state resets needed in tests
• Context-Local Events: Replaced global state with context-aware event management

Development Experience

• Modern APIs: Updated to Starlette's lifespan parameter (no more deprecation warnings)
• Clean Testing: Improved pytest configuration and dependency management

Full Changelog: sysid/sse-starlette@v2.4.1...v3.0.0

v2.4.1

Full Changelog: sysid/sse-starlette@v2.4.0...v2.4.1

v2.4.0

What's Changed

• add missing test dependencies to tox.ini by @​ancieg in sysid/sse-starlette#121
• Add an JSONServerSentEvent utility based on starlette JSONResponse by @​cjavad in sysid/sse-starlette#136

New Contributors

• @​ancieg made their first contribution in sysid/sse-starlette#121
• @​cjavad made their first contribution in sysid/sse-starlette#136

Full Changelog: sysid/sse-starlette@v2.3.6...v2.4.0

Commits

• e3c205f Bump version to 3.0.2
• 0336217 chore: removed tox from project
• 32adde7 Bump version to 3.0.1
• cf0e93e chore: remove deprecated codecov
• 160fc11 Bump version to 3.0.0
• 6ca8f65 update README.md
• 721bf2d fix: uv sync
• 9ee0f36 Merge pull request #141 from sysid/issue-140-avoid-global-object
• 573e91a test: Fix deprecation warnings and improve test configuration
• e88832f feat: Replace global AppStatus.should_exit_event with context-local events
• Additional commits viewable in compare view

Updates starlette from 0.46.2 to 0.48.0

Release notes

Sourced from starlette's releases.

Version 0.48.0

Added

• Add official Python 3.14 support #3013.

Changed

• Implement RFC9110 http status names #2939.

---

New Contributors

• @​yakimka made their first contribution in Kludex/starlette#2943
• @​mbeijen made their first contribution in Kludex/starlette#2939

Full Changelog: Kludex/starlette@0.47.3...0.48.0

Version 0.47.3

Fixed

• Use asyncio.iscoroutinefunction for Python 3.12 and older by @​mjpieters in encode/starlette#2984

---

New Contributors

• @​mjpieters made their first contribution in encode/starlette#2984

Full Changelog: Kludex/starlette@0.47.2...0.47.3

0.47.2

Fixed

• Make UploadFile check for future rollover #2962.

---

New Contributors

• @​HonakerM made their first contribution in encode/starlette#2962

Full Changelog: Kludex/starlette@0.47.1...0.47.2

Version 0.47.1

Fixed

• Use Self in TestClient.__enter__ #2951
• Allow async exception handlers to type-check #2949

---

Full Changelog: Kludex/starlette@0.47.0...0.47.1

... (truncated)

Changelog

Sourced from starlette's changelog.

0.48.0 (September 13, 2025)

Added

• Add official Python 3.14 support #3013.

Changed

• Implement RFC9110 http status names #2939.

0.47.3 (August 24, 2025)

Fixed

• Use asyncio.iscoroutinefunction for Python 3.12 and older #2984.

0.47.2 (July 20, 2025)

Fixed

• Make UploadFile check for future rollover #2962.

0.47.1 (June 21, 2025)

Fixed

• Use Self in TestClient.__enter__ #2951.
• Allow async exception handlers to type-check #2949.

0.47.0 (May 29, 2025)

Added

• Add support for ASGI pathsend extension #2671.
• Add partitioned attribute to Response.set_cookie #2501.

Changed

• Change methods parameter type from list[str] to Collection[str] #2903.
• Replace import typing by from typing import ... in the whole codebase #2867.

Fixed

• Mark ExceptionMiddleware.http_exception as async to prevent thread creation #2922.

Commits

• e18637c Version 0.48.0 (#3014)
• 1bee3ef Add official Python 3.14 support (#3013)
• c379051 Update publish.yaml with latest PyPI recommendations (#3011)
• 40a8147 feat: implement rfc9110 http status names (#2939)
• efea3b8 chore: set minimum uv version (#3012)
• 63e70d0 chore: add citation file (#3010)
• da0f1ce ci: pin github actions' versions (#3009)
• 4bd6ab1 chore: add Marcelo Trylesinski as maintainer (#3008)
• 118c7c7 Rename branch master to main (#3001)
• 73d83e9 Clarify BaseHTTPMiddleware effect on contextvars propagation (#2943)
• Additional commits viewable in compare view

Updates uvicorn from 0.35.0 to 0.38.0

Release notes

Sourced from uvicorn's releases.

Version 0.38.0

What's Changed

• Support Python 3.14 by @​Kludex in Kludex/uvicorn#2723

---

New Contributors

• @​NGANAMODEIJunior made their first contribution in Kludex/uvicorn#2713

Full Changelog: Kludex/uvicorn@0.37.0...0.38.0

Version 0.37.0

What's Changed

• Add --timeout-worker-healthcheck setting by @​Kludex in Kludex/uvicorn#2711
• Add os.PathLike[str] type to ssl_ca_certs by @​rnv812 in Kludex/uvicorn#2676

New Contributors

• @​LincolnPuzey made their first contribution in Kludex/uvicorn#2669
• @​rnv812 made their first contribution in Kludex/uvicorn#2676

Full Changelog: Kludex/uvicorn@0.36.1...0.37.0

Version 0.36.1

What's Changed

• Raise an exception when calling removed Config.setup_event_loop() by @​Kludex in Kludex/uvicorn#2709

Full Changelog: Kludex/uvicorn@0.36.0...0.36.1

Version 0.36.0

Added

• Support custom IOLOOPs by @​gnir-work in Kludex/uvicorn#2435
• Allow to provide importable string in --http, --ws and --loop by @​Kludex in Kludex/uvicorn#2658

---

New Contributors

• @​gnir-work made their first contribution in Kludex/uvicorn#2435
• @​musicinmybrain made their first contribution in Kludex/uvicorn#2659
• @​secrett2633 made their first contribution in Kludex/uvicorn#2684

Full Changelog: Kludex/uvicorn@0.35.0...0.36.0

Changelog

Sourced from uvicorn's changelog.

0.38.0 (October 18, 2025)

Added

• Support Python 3.14 (#2723)

0.37.0 (September 23, 2025)

Added

• Add --timeout-worker-healthcheck option (#2711)
• Add os.PathLike[str] type to ssl_ca_certs (#2676)

0.36.1 (September 23, 2025)

Fixed

• Raise an exception when calling removed Config.setup_event_loop() (#2709)

0.36.0 (September 20, 2025)

Added

• Support custom IOLOOPs (#2435)
• Allow to provide importable string in --http, --ws and --loop (#2658)

Commits

• 3850ad6 Version 0.38.0 (#2733)
• 9b3f17a Support Python 3.14 (#2723)
• ce79f95 Revert "Add Marcelo Trylesinski to the license (#2699)" (#2730)
• dbf8797 docs: add social icons (#2728)
• 58f28be Add section about event loop (#2725)
• 93d9510 Bump docs dependencies (#2724)
• 9b1c6c4 Move Marcelo Trylesinski to maintainers in pyproject.toml (#2719)
• 57a61d8 Add discord to README (#2718)
• 7ef5f9f chore(deps): bump astral-sh/setup-uv from 6.7.0 to 6.8.0 (#2717)
• 6d26d88 Update pyproject.toml for PEP639 compliance (#2713)
• Additional commits viewable in compare view

Updates python-socketio from 5.13.0 to 5.14.2

Release notes

Sourced from python-socketio's releases.

Release 5.14.2

See CHANGES.md for release notes.

Release 5.14.1

See CHANGES.md for release notes.

Release 5.14.0

See CHANGES.md for release notes.

Changelog

Sourced from python-socketio's changelog.

python-socketio change log

Release 5.14.2 - 2025-10-15

• Restore binary message support in message queue setups #1509 (commit)
• Fix formatting of client connection error #1507 (commit)
• Add 3.14 and pypy-3.11 CI tasks (commit)
• Improve documentation of the BaseManager.get_participants() method (commit)

Release 5.14.1 - 2025-10-02

• Restore support for rediss:// URLs, and add support for valkeys:// as well (commit)
• Add support for Redis connections using unix sockets #1503 (commit) (thanks Darren Chang!)

Release 5.14.0 - 2025-09-30

• Replace pickle with json in message queue communications #1502 (commit)
• Add support for Valkey in the Redis client managers #1488 (commit) (thanks phi-friday!)
• Keep track of which namespaces failed to connect #1496 (commit)
• Fixed transport property of the simple clients to be a string as documented #1499 (commit)
• SimpleClient.call does not raise TimeoutError on timeout #1501 (commit) (thanks James Thistlewood!)
• Wait for client to end background tasks on disconnect #1500 (commit)
• Better error logging for the Redis managers #1479 (commit) (thanks Eugnee!)
• Channel was not properly initialized in several pubsub client managers #1476 (commit) (thanks Eugnee!)
• Add message queue deployment recommendations for security (commit)
• Add missing async on session examples for the async server #1465 (commit) (thanks Func!)
• Add SPDX license identifier #1453 (commit) (thanks Marc Mueller!)

Release 5.13.0 - 2025-04-12

• Eliminate race conditions on disconnect #1441 (commit)
• Preserve exception context in Client.connect and AsyncClient.connect #1450 (commit) (thanks Tim Van Baak!)
• Allow custom client subclasses to be used in SimpleClient and AsyncSimpleClient #1432 (commit)
• Add support for Redis Sentinel URLs in RedisManager and AsyncRedisManager #1448 (commit)
• Remove incorrect reference to an asyncio installation extra in documentation #1449 (commit)

Release 5.12.1 - 2024-12-29

• Fix admin instrumentation support of disconnect reasons #1423 (commit)
• Stop using deprecated datetime functions (commit)
• Enable admin instrumentation by default in WSGI and ASGI examples (commit)
• Fixed broken gevent URL in documentation #1427 (commit) (thanks Carlos Guerrero!)

Release 5.12.0 - 2024-12-18

• Added a reason argument to the disconnect handler #1422 (commit)
• Prevented starting multiple tasks for reconnection #1369 (commit) (thanks humayunsr!)
• Fixed AsyncClient::wait() unexpected return after success reconnect #1407 (commit) (thanks Arseny!)
• Removed old constructs from old and unsupported Python versions (commit)
• Removed dependency on unittest.TestCase base class in unit tests (commit)

... (truncated)

Commits

• 08f65c2 Release 5.14.2
• 8fcbd80 Remove old build matrix exceptions #nolog (#1510)
• 1f4cd3b Add 3.14 and pypy-3.11 CI tasks
• bab4a10 Restore binary message support in message queue setups (Fixes #1508) (#1509)
• 383eeaf linter fixes #nolog
• 33722a0 Improve documentation of the BaseManager.get_participants() method
• f298c9b Fix formatting of client connection error (Fixes #1507)
• 2ffdd55 Version 5.14.2.dev0
• 0acbf19 Release 5.14.1
• 6e2d0de Restore support for rediss:// URLs, and add valkeys://
• Additional commits viewable in compare view

Updates ruff from 0.12.0 to 0.14.1

Release notes

Sourced from ruff's releases.

0.14.1

Release Notes

Released on 2025-10-16.

Preview features

• [formatter] Remove parentheses around multiple exception types on Python 3.14+ (#20768)
• [flake8-bugbear] Omit annotation in preview fix for B006 (#20877)
• [flake8-logging-format] Avoid dropping implicitly concatenated pieces in the G004 fix (#20793)
• [pydoclint] Implement docstring-extraneous-parameter (DOC102) (#20376)
• [pyupgrade] Extend UP019 to detect typing_extensions.Text (UP019) (#20825)
• [pyupgrade] Fix false negative for TypeVar with default argument in non-pep695-generic-class (UP046) (#20660)

Bug fixes

• Fix false negatives in Truthiness::from_expr for lambdas, generators, and f-strings (#20704)
• Fix syntax error false positives for escapes and quotes in f-strings (#20867)
• Fix syntax error false positives on parenthesized context managers (#20846)
• [fastapi] Fix false positives for path parameters that FastAPI doesn't recognize (FAST003) (#20687)
• [flake8-pyi] Fix operator precedence by adding parentheses when needed (PYI061) (#20508)
• [ruff] Suppress diagnostic for f-string interpolations with debug text (RUF010) (#20525)

Rule changes

• [airflow] Add warning to airflow.datasets.DatasetEvent usage (AIR301) (#20551)
• [flake8-bugbear] Mark B905 and B912 fixes as unsafe (#20695)
• Use DiagnosticTag for more rules - changes display in editors (#20758,#20734)

Documentation

• Update Python compatibility from 3.13 to 3.14 in README.md (#20852)
• Update lint.flake8-type-checking.quoted-annotations docs (#20765)
• Update setup instructions for Zed 0.208.0+ (#20902)
• [flake8-datetimez] Clarify docs for several rules (#20778)
• Fix typo in RUF015 description (#20873)

Other changes

• Reduce binary size (#20863)
• Improved error recovery for unclosed strings (including f- and t-strings) (#20848)

Contributors

• @​ntBre
• @​Paillat-dev
• @​terror
• @​pieterh-oai
• @​MichaReiser
• @​TaKO8Ki

... (truncated)

Changelog

Sourced from ruff's changelog.

0.14.1

Released on 2025-10-16.

Preview features

• [formatter] Remove parentheses around multiple exception types on Python 3.14+ (#20768)
• [flake8-bugbear] Omit annotation in preview fix for B006 (#20877)
• [flake8-logging-format] Avoid dropping implicitly concatenated pieces in the G004 fix (#20793)
• [pydoclint] Implement docstring-extraneous-parameter (DOC102) (#20376)
• [pyupgrade] Extend UP019 to detect typing_extensions.Text (UP019) (#20825)
• [pyupgrade] Fix false negative for TypeVar with default argument in non-pep695-generic-class (UP046) (#20660)

Bug fixes

• Fix false negatives in Truthiness::from_expr for lambdas, generators, and f-strings (#20704)
• Fix syntax error false positives for escapes and quotes in f-strings (#20867)
• Fix syntax error false positives on parenthesized context managers (#20846)
• [fastapi] Fix false positives for path parameters that FastAPI doesn't recognize (FAST003) (#20687)
• [flake8-pyi] Fix operator precedence by adding parentheses when needed (PYI061) (#20508)
• [ruff] Suppress diagnostic for f-string interpolations with debug text (RUF010) (#20525)

Rule changes

• [airflow] Add warning to airflow.datasets.DatasetEvent usage (AIR301) (#20551)
• [flake8-bugbear] Mark B905 and B912 fixes as unsafe (#20695)
• Use DiagnosticTag for more rules - changes display in editors (#20758,#20734)

Documentation

• Update Python compatibility from 3.13 to 3.14 in README.md (#20852)
• Update lint.flake8-type-checking.quoted-annotations docs (#20765)
• Update setup instructions for Zed 0.208.0+ (#20902)
• [flake8-datetimez] Clarify docs for several rules (#20778)
• Fix typo in RUF015 description (#20873)

Other changes

• Reduce binary size (#20863)
• Improved error recovery for unclosed strings (including f- and t-strings) (#20848)

Contributors

• @​ntBre
• @​Paillat-dev
• @​terror
• @​pieterh-oai
• @​MichaReiser
• @​TaKO8Ki
• @​ageorgou

... (truncated)

Commits

• 2bffef5 Bump 0.14.1 (#20925)
• e64d772 Standardize syntax error construction (#20903)
• 0369668 [pydoclint] Implement docstring-extraneous-parameter (DOC102) (#20376)
• 058fc37 [ty] Fix panic 'missing root' when handling completion request (#20917)
• ec9faa3 [ty] Run file watching tests serial when using nextest (#20918)
• 7155a62 [ty] Add version hint for failed stdlib attribute accesses (#20909)
• a67e069 More CI improvements (#20920)
• 6a1e91c [ty] Check typeshed VERSIONS for parent modules when reporting failed stdlib ...
• 3db5d59 Don't use codspeed or depot runners in CI jobs on forks (#20894)
• d23826c [ty] cache Type::is_redundant_with (#20477)
• Additional commits viewable in compare view

Updates types-requests from 2.32.4.20250611 to 2.32.4.20250913

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions