build(deps): bump the python group with 5 updates

[dependabot]

Bumps the python group with 5 updates:

Package	From	To
fastapi	0.112.2	0.114.0
boto3	1.34.154	1.34.162
boto3-stubs	1.35.11	1.35.14
hypothesis	6.111.2	6.112.0
ruff	0.6.3	0.6.4

Updates fastapi from 0.112.2 to 0.114.0

Release notes

Sourced from fastapi's releases.

0.114.0

You can restrict form fields to only include those declared in a Pydantic model and forbid any extra field sent in the request using Pydantic's model_config = {"extra": "forbid"}:

from typing import Annotated
from fastapi import FastAPI, Form
from pydantic import BaseModel
app = FastAPI()
class FormData(BaseModel):
username: str
password: str
model_config = {"extra": "forbid"}
@​app.post("/login/")
async def login(data: Annotated[FormData, Form()]):
return data

Read the new docs: Form Models - Forbid Extra Form Fields.

Features

• ✨ Add support for forbidding extra form fields with Pydantic models. PR #12134 by @​tiangolo.

Docs

• 📝 Update docs, Form Models section title, to match config name. PR #12152 by @​tiangolo.

Internal

• ✅ Update internal tests for latest Pydantic, including CI tweaks to install the latest Pydantic. PR #12147 by @​tiangolo.

0.113.0

Now you can declare form fields with Pydantic models:

from typing import Annotated
from fastapi import FastAPI, Form
from pydantic import BaseModel
app = FastAPI()
class FormData(BaseModel):
</tr></table>

... (truncated)

Commits

• bde12fa 🔖 Release version 0.114.0
• 74842f0 📝 Update release notes
• e68d8c6 📝 Update release notes
• 4ff22a0 📝 Update docs, Form Models section title, to match config name (#12152)
• a11e392 📝 Update release notes
• 4633b1b ✨ Add support for forbidding extra form fields with Pydantic models (#12134)
• 1b06b53 📝 Update release notes
• c411b81 ✅ Update internal tests for latest Pydantic, including CI tweaks to install t...
• d86f660 🔖 Release version 0.113.0
• 179f838 📝 Update release notes
• Additional commits viewable in compare view

Updates boto3 from 1.34.154 to 1.34.162

Commits

• 59518e4 Merge branch 'release-1.34.162'
• add8a63 Bumping version to 1.34.162
• 2ec9480 Add changelog entries from botocore
• 2f927ce Merge branch 'release-1.34.161'
• 8268877 Merge branch 'release-1.34.161' into develop
• c36a3f2 Bumping version to 1.34.161
• d4b6006 Add changelog entries from botocore
• 7eb51bd Merge branch 'release-1.34.160'
• 27dcf72 Merge branch 'release-1.34.160' into develop
• edc8a5c Bumping version to 1.34.160
• Additional commits viewable in compare view

Updates boto3-stubs from 1.35.11 to 1.35.14

Commits

• See full diff in compare view

Updates hypothesis from 6.111.2 to 6.112.0

Commits

• 56ef043 Bump hypothesis-python version to 6.112.0 and update changelog
• 342017a Merge pull request #4097 from tybug/draw-bytes-min-max-size-2
• 531bdf0 Improve loop idiom
• 1636d85 rewrite release notes
• 5bc3849 extract alphabet size logic
• d2fda29 make max_size required for draw_string and draw_bytes
• 5b0ea4a remove stale comment
• 3b57de7 make linters happy
• 200c9d4 add release notes
• 5efc206 update literal data.draw_bytes calls in tests
• Additional commits viewable in compare view

Updates ruff from 0.6.3 to 0.6.4

Release notes

Sourced from ruff's releases.

0.6.4

Release Notes

Preview features

• [flake8-builtins] Use dynamic builtins list based on Python version (#13172)
• [pydoclint] Permit yielding None in DOC402 and DOC403 (#13148)
• [pylint] Update diagnostic message for PLW3201 (#13194)
• [ruff] Implement post-init-default (RUF033) (#13192)
• [ruff] Implement useless if-else (RUF034) (#13218)

Rule changes

• [flake8-pyi] Respect pep8_naming.classmethod-decorators settings when determining if a method is a classmethod in custom-type-var-return-type (PYI019) (#13162)
• [flake8-pyi] Teach various rules that annotations might be stringized (#12951)
• [pylint] Avoid no-self-use for attrs-style validators (#13166)
• [pylint] Recurse into subscript subexpressions when searching for list/dict lookups (PLR1733, PLR1736) (#13186)
• [pyupgrade] Detect aiofiles.open calls in UP015 (#13173)
• [pyupgrade] Mark sys.version_info[0] < 3 and similar comparisons as outdated (UP036) (#13175)

CLI

• Enrich messages of SARIF results (#13180)
• Handle singular case for incompatible rules warning in ruff format output (#13212)

Bug fixes

• [pydocstyle] Improve heuristics for detecting Google-style docstrings (#13142)
• [refurb] Treat sep arguments with effects as unsafe removals (FURB105) (#13165)

Contributors

• @​AlexWaygood
• @​Jinior
• @​MichaReiser
• @​RubenVanEldik
• @​RussellLuo
• @​Slyces
• @​carljm
• @​charliermarsh
• @​chriskrycho
• @​dhruvmanila
• @​dylwil3
• @​github-actions
• @​iamlucasvieira
• @​jamesbraza
• @​renovate
• @​tjkuson
• @​zhoufanjin

Install ruff 0.6.4

... (truncated)

Changelog

Sourced from ruff's changelog.

0.6.4

Preview features

• [flake8-builtins] Use dynamic builtins list based on Python version (#13172)
• [pydoclint] Permit yielding None in DOC402 and DOC403 (#13148)
• [pylint] Update diagnostic message for PLW3201 (#13194)
• [ruff] Implement post-init-default (RUF033) (#13192)
• [ruff] Implement useless if-else (RUF034) (#13218)

Rule changes

• [flake8-pyi] Respect pep8_naming.classmethod-decorators settings when determining if a method is a classmethod in custom-type-var-return-type (PYI019) (#13162)
• [flake8-pyi] Teach various rules that annotations might be stringized (#12951)
• [pylint] Avoid no-self-use for attrs-style validators (#13166)
• [pylint] Recurse into subscript subexpressions when searching for list/dict lookups (PLR1733, PLR1736) (#13186)
• [pyupgrade] Detect aiofiles.open calls in UP015 (#13173)
• [pyupgrade] Mark sys.version_info[0] < 3 and similar comparisons as outdated (UP036) (#13175)

CLI

• Enrich messages of SARIF results (#13180)
• Handle singular case for incompatible rules warning in ruff format output (#13212)

Bug fixes

• [pydocstyle] Improve heuristics for detecting Google-style docstrings (#13142)
• [refurb] Treat sep arguments with effects as unsafe removals (FURB105) (#13165)

Commits

• 65cc6ec Bump version to 0.6.4 (#13253)
• 66fe226 [red-knot] fix lookup of nonlocal names in deferred annotations (#13236)
• e965f9c [red-knot] Infer Unknown for the loop var in async for loops (#13243)
• 0512428 [red-knot] Emit a diagnostic if the value of a starred expression or a `yield...
• 46a4573 [red-knot] Add type inference for basic for loops (#13195)
• 5728909 Make mypy pass on black in knot_benchmark (#13235)
• 9d1bd7a [pylint] removed dunder methods in Python 3 (PLW3201) (#13194)
• e37bde4 [ruff] implement useless if-else (RUF034) (#13218)
• 862bd0c [red-knot] Add debug assert to check for duplicate definitions (#13214)
• e1e9143 [red-knot] Handle multiple comprehension targets (#13213)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions