chore(deps-dev)(deps-dev): bump the python-dev group with 3 updates

[dependabot]

Bumps the python-dev group with 3 updates: ruff, boto3 and schemathesis.

Updates ruff from 0.15.13 to 0.15.14

Release notes

Sourced from ruff's releases.

0.15.14

Release Notes

Released on 2026-05-21.

Preview features

• [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
• [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
• [pylint] Implement too-many-try-statements (W0717) (#23970)
• [ruff] Add incorrect-decorator-order (RUF074) (#23461)
• [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

• Fix lambda formatting in interpolated string expressions (#25144)
• Treat generic frozenset annotations as immutable (#25251)
• [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
• [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

• [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
• [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

• Avoid unnecessary parser lookahead for operators (#25290)

Documentation

• Update code example setting Neovim LSP log level (#25284)

Other changes

• Add full PEP 798 support (#25104)
• Add a parser recursion limit (#24810)
• Update various ruff_python_stdlib APIs (#25273)

Contributors

• @​ocaballeror
• @​lerebear
• @​samuelcolvin
• @​baltasarblanco
• @​aconal-com
• @​anishgirianish
• @​JelleZijlstra
• @​AlexWaygood
• @​ntBre

... (truncated)

Changelog

Sourced from ruff's changelog.

0.15.14

Released on 2026-05-21.

Preview features

• [airflow] Implement airflow-task-implicit-multiple-outputs (AIR202) (#25152)
• [flake8-use-pathlib] Mark PTH101 fix as unsafe when first argument is a class attribute annotated as int (#25086)
• [pylint] Implement too-many-try-statements (W0717) (#23970)
• [ruff] Add incorrect-decorator-order (RUF074) (#23461)
• [ruff] Add fallible-context-manager (RUF075) (#22844)

Bug fixes

• Fix lambda formatting in interpolated string expressions (#25144)
• Treat generic frozenset annotations as immutable (#25251)
• [flake8-type-checking] Avoid strict behavior when future-annotations are enabled (TC001, TC002, TC003) (#25035)
• [pylint] Avoid false positives in else clause (PLR1733) (#25177)

Rule changes

• [flake8-comprehensions] Skip C417 for lambdas with positional-only parameters (#25272)
• [flake8-simplify] Preserve f-string source verbatim in SIM101 fix (#25061)

Performance

• Avoid unnecessary parser lookahead for operators (#25290)

Documentation

• Update code example setting Neovim LSP log level (#25284)

Other changes

• Add full PEP 798 support (#25104)
• Add a parser recursion limit (#24810)
• Update various ruff_python_stdlib APIs (#25273)

Contributors

• @​ocaballeror
• @​lerebear
• @​samuelcolvin
• @​baltasarblanco
• @​aconal-com
• @​anishgirianish
• @​JelleZijlstra
• @​AlexWaygood
• @​ntBre
• @​adityasingh2400

... (truncated)

Commits

• 9ad2da3 Bump 0.15.14 (#25295)
• c714e84 [ty] Modernize setup of union types in mdtests (#25291)
• 8a8e35e [flake8-comprehensions] Skip C417 for lambdas with positional-only parame...
• aea5ed4 Avoid unnecessary parser lookahead for operators (#25290)
• e9d72bb [ty] Allow enum member accesses on self (#25077)
• 6cbd59b Set exclude-newer = "7 days" in our PEP-723 scripts (#25285)
• 9999a39 Update code example on how to update Neovim LSP log level (#25284)
• 67d8c54 [ty] Retain recursively-defined state in binary expressions (#25277)
• 25a3191 [ty] Refine Callable class-decorator fallback for unknown results (#25250)
• c423054 Add a recursion limit to the parser (#24810)
• Additional commits viewable in compare view

Updates boto3 from 1.43.12 to 1.43.14

Commits

• 07953b0 Merge branch 'release-1.43.14'
• 25c77c3 Bumping version to 1.43.14
• 5e64afc Add changelog entries from botocore
• 97921f4 Merge branch 'release-1.43.13'
• 4e58a35 Merge branch 'release-1.43.13' into develop
• 1307ac2 Bumping version to 1.43.13
• c75c901 Add changelog entries from botocore
• d5eddf9 Merge branch 'release-1.43.12' into develop
• See full diff in compare view

Updates schemathesis from 4.19.0 to 4.20.0

Release notes

Sourced from schemathesis's releases.

Release 4.20.0

🚀 Added

• Override server variable defaults via [servers.variables] in config. #4166
• Form-encoded payloads for dynamic auth via payload_content_type. #4167

🏎️ Performance

• ~50% lower coverage-phase wall on definition-heavy schemas.
• Cache repeated computations during the coverage phase.
• Faster schema bundling for specs with recursive references.

🐛 Fixed

• Emit an all-valid object baseline for properties declared next to a non-object type.
• Populate nested object templates referenced via $ref instead of generating null/{}.
• Honor servers[] declared at path-item and operation scopes. #4166
• Restore per-property negatives in coverage phase when an unsatisfiable optional property would otherwise sink the template draw.
• Emit minLength negatives for string schemas whose pattern requires more characters than minLength - 1.
• Emit minLength/maxLength negatives for string schemas whose format (e.g. email, uuid) makes the bounded length unsatisfiable.
• Cover the enum / const keywords when entries violate the declared type by emitting each entry as a negative case.
• Set Content-Type: application/json on JSON-serialized nested multipart/form-data parts.
• Emit a non-empty alphabetic string (e.g. AAA) as the string-type negative for non-string parameters so ?q= no longer collapses to absent on the wire.
• Skip report aggregation for crashed xdist workers instead of failing the whole controller with AttributeError.
• Emit maxLength negatives for string schemas whose format makes the exact length unsatisfiable when maxLength exceeds 100.
• False positive negative_data_rejection for integer enum entries under type: integer / type: number.

Changelog

Sourced from schemathesis's changelog.

4.20.0 - 2026-05-24

🚀 Added

• Override server variable defaults via [servers.variables] in config. #4166
• Form-encoded payloads for dynamic auth via payload_content_type. #4167

🏎️ Performance

• ~50% lower coverage-phase wall on definition-heavy schemas.
• Cache repeated computations during the coverage phase.
• Faster schema bundling for specs with recursive references.

🐛 Fixed

• Emit an all-valid object baseline for properties declared next to a non-object type.
• Populate nested object templates referenced via $ref instead of generating null/{}.
• Honor servers[] declared at path-item and operation scopes. #4166
• Restore per-property negatives in coverage phase when an unsatisfiable optional property would otherwise sink the template draw.
• Emit minLength negatives for string schemas whose pattern requires more characters than minLength - 1.
• Emit minLength/maxLength negatives for string schemas whose format (e.g. email, uuid) makes the bounded length unsatisfiable.
• Cover the enum / const keywords when entries violate the declared type by emitting each entry as a negative case.
• Set Content-Type: application/json on JSON-serialized nested multipart/form-data parts.
• Emit a non-empty alphabetic string (e.g. AAA) as the string-type negative for non-string parameters so ?q= no longer collapses to absent on the wire.
• Skip report aggregation for crashed xdist workers instead of failing the whole controller with AttributeError.
• Emit maxLength negatives for string schemas whose format makes the exact length unsatisfiable when maxLength exceeds 100.
• False positive negative_data_rejection for integer enum entries under type: integer / type: number.

Commits

• d036377 chore: Release 4.20.0
• a44686c test: Ignore schemastore tests that contain unresolvable refs
• 715264c feat: Override server variable defaults via [servers.variables] in config
• cb37229 chore: Update tracecov to 0.21.0
• 74e86f2 chore: Update pre-commit
• 383e93e fix: Revert "Out-of-range negatives for integer fields with format: int32 /...
• de20c00 fix: False positive negative_data_rejection for integer enum entries unde...
• 412d7d5 fix: Emit maxLength negatives for string schemas whose format makes the e...
• 2ea0141 chore: Update corpus coverage audit script
• b0f1127 fix: Out-of-range negatives for integer fields with format: int32 / int64...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.