Deps: Bump the python-packages group with 2 updates

[dependabot]

Bumps the python-packages group with 2 updates: anyio and ruff.

Updates anyio from 4.10.0 to 4.11.0

Release notes

Sourced from anyio's releases.

4.11.0

• Added support for cancellation reasons (the reason parameter to CancelScope.cancel()) (#975)
• Bumped the minimum version of Trio to v0.31.0
• Added the ability to enter the event loop from foreign (non-worker) threads by passing the return value of anyio.lowlevel.current_token() to anyio.from_thread.run() and anyio.from_thread.run_sync() as the token keyword argument (#256)
• Added pytest option (anyio_mode = "auto") to make the pytest plugin automatically handle all async tests (#971)
• Added the anyio.Condition.wait_for() method for feature parity with asyncio (#974)
• Changed the default type argument of anyio.abc.TaskStatus from Any to None (#964)
• Fixed TCP listener behavior to guarantee the same ephemeral port is used for all socket listeners when local_port=0 (#857; PR by @​11kkw and @​agronholm)
• Fixed inconsistency between Trio and asyncio where a TCP stream that previously raised a BrokenResourceError on send() would still raise BrokenResourceError after the stream was closed on asyncio, but ClosedResourceError on Trio. They now both raise a ClosedResourceError in this scenario. (#671)

Changelog

Sourced from anyio's changelog.

Version history

This library adheres to Semantic Versioning 2.0 <http://semver.org/>_.

4.11.0

• Added support for cancellation reasons (the reason parameter to CancelScope.cancel()) ([#975](https://github.com/agronholm/anyio/issues/975) <https://github.com/agronholm/anyio/pull/975>_)
• Bumped the minimum version of Trio to v0.31.0
• Added the ability to enter the event loop from foreign (non-worker) threads by passing the return value of anyio.lowlevel.current_token() to anyio.from_thread.run() and anyio.from_thread.run_sync() as the token keyword argument ([#256](https://github.com/agronholm/anyio/issues/256) <https://github.com/agronholm/anyio/issues/256>_)
• Added pytest option (anyio_mode = "auto") to make the pytest plugin automatically handle all async tests ([#971](https://github.com/agronholm/anyio/issues/971) <https://github.com/agronholm/anyio/pull/971>_)
• Added the anyio.Condition.wait_for() method for feature parity with asyncio ([#974](https://github.com/agronholm/anyio/issues/974) <https://github.com/agronholm/anyio/pull/974>_)
• Changed the default type argument of anyio.abc.TaskStatus from Any to None ([#964](https://github.com/agronholm/anyio/issues/964) <https://github.com/agronholm/anyio/pull/964>_)
• Fixed TCP listener behavior to guarantee the same ephemeral port is used for all socket listeners when local_port=0 ([#857](https://github.com/agronholm/anyio/issues/857) <https://github.com/agronholm/anyio/issues/857>_; PR by @​11kkw and @​agronholm)
• Fixed inconsistency between Trio and asyncio where a TCP stream that previously raised a BrokenResourceError on send() would still raise BrokenResourceError after the stream was closed on asyncio, but ClosedResourceError on Trio. They now both raise a ClosedResourceError in this scenario. ([#671](https://github.com/agronholm/anyio/issues/671) <https://github.com/agronholm/anyio/issues/671>_)

4.10.0

• Added the feed_data() method to the BufferedByteReceiveStream class, allowing users to inject data directly into the buffer

• Added various class methods to wrap existing sockets as listeners or socket streams:

  • SocketListener.from_socket()
  • SocketStream.from_socket()
  • UNIXSocketStream.from_socket()
  • UDPSocket.from_socket()
  • ConnectedUDPSocket.from_socket()
  • UNIXDatagramSocket.from_socket()
  • ConnectedUNIXDatagramSocket.from_socket()

• Added a hierarchy of connectable stream classes for transparently connecting to various remote or local endpoints for exchanging bytes or objects

• Added context manager mix-in classes (anyio.ContextManagerMixin and anyio.AsyncContextManagerMixin) to help write classes that embed other context managers, particularly cancel scopes or task groups ([#905](https://github.com/agronholm/anyio/issues/905) <https://github.com/agronholm/anyio/pull/905>_; PR by @​agronholm and

... (truncated)

Commits

• 08737af Bumped up the version
• 8bb9fe0 Fixed the inconsistent exception on sending to a closed TCP stream (#980)
• 9637093 [pre-commit.ci] pre-commit autoupdate (#981)
• f1bc6ee Fixed changelog entry formatting
• 0b58964 Mentioned the sub-interpreter support in the README
• 1ed112c Ensure same port is used for IPv4/IPv6 when creating TCP listener with local_...
• aceeee0 Re-enabled coverage reporting on macOS
• 6b890dc Reworded a changelog entry and added PR links to others
• 944257d Updated pre-commit modules
• 087975f Fixed a documentation style (#976)
• Additional commits viewable in compare view

Updates ruff from 0.13.1 to 0.13.2

Release notes

Sourced from ruff's releases.

0.13.2

Release Notes

Released on 2025-09-25.

Preview features

• [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
• [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
• [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
• [ruff] Implement logging-eager-conversion (RUF065) (#19942)
• Include .pyw files by default when linting and formatting (#20458)

Bug fixes

• Deduplicate input paths (#20105)
• [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
• [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
• [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
• [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
• [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
• [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

• Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• Update import path to ruff-wasm-web (#20539)
• [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

• [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
• [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

• @​BurntSushi
• @​mtshiba
• @​second-ed
• @​danparizher
• @​ShikChen
• @​PieterCK
• @​GDYendell
• @​RazerM
• @​TaKO8Ki
• @​amyreese
• @​ntbre
• @​MichaReiser

Install ruff 0.13.2

... (truncated)

Changelog

Sourced from ruff's changelog.

0.13.2

Released on 2025-09-25.

Preview features

• [flake8-async] Implement blocking-path-method (ASYNC240) (#20264)
• [flake8-bugbear] Implement map-without-explicit-strict (B912) (#20429)
• [flake8-bultins] Detect class-scope builtin shadowing in decorators, default args, and attribute initializers (A003) (#20178)
• [ruff] Implement logging-eager-conversion (RUF065) (#19942)
• Include .pyw files by default when linting and formatting (#20458)

Bug fixes

• Deduplicate input paths (#20105)
• [flake8-comprehensions] Preserve trailing commas for single-element lists (C409) (#19571)
• [flake8-pyi] Avoid syntax error from conflict with PIE790 (PYI021) (#20010)
• [flake8-simplify] Correct fix for positive maxsplit without separator (SIM905) (#20056)
• [pyupgrade] Fix UP008 not to apply when __class__ is a local variable (#20497)
• [ruff] Fix B004 to skip invalid hasattr/getattr calls (#20486)
• [ruff] Replace -nan with nan when using the value to construct a Decimal (FURB164 ) (#20391)

Documentation

• Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• Update import path to ruff-wasm-web (#20539)
• [flake8-bandit] Clarify the supported hashing functions (S324) (#20534)

Other changes

• [playground] Allow hover quick fixes to appear for overlapping diagnostics (#20527)
• [playground] Fix non‑BMP code point handling in quick fixes and markers (#20526)

Contributors

• @​BurntSushi
• @​mtshiba
• @​second-ed
• @​danparizher
• @​ShikChen
• @​PieterCK
• @​GDYendell
• @​RazerM
• @​TaKO8Ki
• @​amyreese
• @​ntbre
• @​MichaReiser

Commits

• b0bdf03 Bump 0.13.2 (#20576)
• 7331d39 Update rooster to 0.1.0 (#20575)
• 529e5fa [ty] Ecosystem analyzer: timing report (#20571)
• efbb80f [ty] Remove hack in protocol satisfiability check (#20568)
• 9f3cffc Add 'Finding ways to help' to CONTRIBUTING.md (#20567)
• 21be94a [ty] Explicitly test assignability/subtyping between unions of nominal types ...
• b7d5dc9 [ty] Add tests for interactions of @classmethod, @staticmethod, and proto...
• e1bb74b [ty] Match variadic argument to variadic parameter (#20511)
• edeb458 [ty] fallback to resolve_real_module in file_to_module (#20461)
• bea92c8 [ty] More precise type inference for dictionary literals (#20523)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Conventional Commits Report

Type	Number
Dependencies	1

🚀 Conventional commits found.

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 99.35%. Comparing base (ea63e08) to head (2ca4e72).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #299   +/-   ##
=======================================
  Coverage   99.35%   99.35%           
=======================================
  Files           7        7           
  Lines         464      464           
=======================================
  Hits          461      461           
  Misses          3        3           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.